Report - download2276.mediafire.com/ntlou5a33wig/2j23r2touc27ha6/Subscribe%20to%20@KiraKiller

Report Overview

Submitted URL
download2276.mediafire.com/ntlou5a33wig/2j23r2touc27ha6/Subscribe%20to%20@KiraKiller_%20for%20bitlife%20(1).zip
IP
199.91.155.17
ASN
#46179 MEDIAFIRE
Submitted
2023-03-28 07:44:42
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
5
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
download2276.mediafire.com	866165	2020-07-28T18:55:23Z	2023-03-28T09:44:10Z	442 B	219 B	199.91.155.17
translate.google.com	1156	2012-05-30T03:30:32Z	2023-03-29T07:32:24Z	1.1 kB	30 kB	142.250.74.142
translate.googleapis.com	1005	2012-05-31T09:21:21Z	2023-03-29T14:58:50Z	488 B	78 kB	216.58.211.10
www.google.com	7	2015-05-10T13:11:19Z	2023-03-29T05:55:56Z	391 B	737 B	142.250.74.164
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-29T05:09:11Z	2.4 kB	6.2 kB	23.36.77.32
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-29T05:09:31Z	413 B	5.9 kB	34.160.144.191
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-29T05:09:31Z	333 B	391 B	34.117.237.239
www.mediafire.com	30109	2012-05-22T04:29:38Z	2023-03-29T12:29:53Z	3.0 kB	32 kB	104.16.53.48
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-29T05:09:04Z	2.7 kB	5.6 kB	142.250.74.131
ajax.googleapis.com	12905	2013-08-16T11:51:31Z	2023-03-29T10:10:07Z	392 B	35 kB	142.250.74.10
static.mediafire.com	47565	2017-12-11T22:20:42Z	2023-03-29T16:52:40Z	3.4 kB	167 kB	104.16.53.48
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-29T05:09:03Z	782 B	2.4 kB	35.241.9.150
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-29T05:09:32Z	606 B	127 B	54.148.183.113
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-29T10:13:53Z	399 B	1.7 kB	142.250.74.74
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-29T11:19:48Z	504 B	46 kB	216.58.207.227
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-29T05:09:12Z	3.2 kB	57 kB	34.120.237.76
www.gstatic.com	unknown	2016-07-26T11:37:06Z	2023-03-29T09:13:03Z	482 B	5.1 kB	142.250.74.3
static.cloudflareinsights.com	1294	2019-09-24T16:34:56Z	2023-03-29T10:47:08Z	457 B	392 B	104.16.56.101

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-03-28 07:44:51	medium	Client IP	Internal IP	ET HUNTING File Sharing Related Domain in DNS Lookup (download .mediafire .com)
2023-03-28 07:44:51	medium	Client IP	Internal IP	ET HUNTING File Sharing Related Domain in DNS Lookup (download .mediafire .com)
2023-03-28 07:44:51	medium	Client IP	Internal IP	ET HUNTING File Sharing Related Domain (www .mediafire .com) in DNS Lookup
2023-03-28 07:44:51	medium	Client IP	Internal IP	ET HUNTING File Sharing Related Domain (www .mediafire .com) in DNS Lookup
2023-03-28 07:44:53	medium	Client IP	Internal IP	ET HUNTING File Sharing Related Domain (www .mediafire .com) in DNS Lookup

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (23)

	URL	Size	First Seen	Last Seen
	www.mediafire.com/blank.html	1.4 kB	2023-03-29	2023-03-29
Pretty URL www.mediafire.com/blank.html IP 104.16.53.48 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:32:02 Last Seen2023-03-29 23:32:02 Times Seen1 Hash 3711643efb4e013d0f568f372b331c64 f076810421a72be3410a30c1894f54a2a8430e84 c1e769e92e44adc0d211a083f1404a106a018e423ab47452f400ef97f0de40a9 Loading...

	translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback	17 kB	2023-03-07	2024-04-26
Pretty URL translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-26 08:48:50 Times Seen14192 Hash a3eefe14b1b4698460d992bd1673a26b a2fca6ebb00b8bdcca3eda88654d02d2c165b9c4 87514750a90cd70dd22c8673cfa80d804ef55840bd0755950af2118d8d218067 Loading...

	static.cloudflareinsights.com/beacon.min.js/vb26e4fa9e5134444860be286fd8771851679335129114	17 kB	2023-03-26	2023-04-17
Pretty URL static.cloudflareinsights.com/beacon.min.js/vb26e4fa9e5134444860be286fd8771851679335129114 IP 104.16.56.101 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 13:20:50 Last Seen2023-04-17 23:16:21 Times Seen1248 Hash f23fdce5f9fc681a13ca76353818ffac 6779cba0c60c1e89ab3ec72c90a952268b2ba37d a4ef73601a6552d55503bcbd9b6cd23fc0c33fa075f8efe724cddd4e3ee55542 Loading...

	www.mediafire.com/error.php?errno=5	1.0 kB	2023-03-07	2024-04-04
Pretty URL www.mediafire.com/error.php?errno=5 IP 104.16.53.48 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:19:11 Last Seen2024-04-04 00:18:22 Times Seen326 Hash c284c571c6484b3fb5eeff65c72945da 7c97f290ba8e33eae9f5767477356a2a9e81810d 64ecc654b5fd4ba6025457d7937a8030d7b14017f2474b7e9335b448897ed68f Loading...

	www.mediafire.com/error.php?errno=5	1.4 kB	2023-03-29	2023-03-29
Pretty URL www.mediafire.com/error.php?errno=5 IP 104.16.53.48 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:32:02 Last Seen2023-03-29 23:32:02 Times Seen1 Hash a472e44e930f7921a4a3c13bdbbcc03b d02797d818208035912e9f8afec16635f607d7fe efd06eea7b5e893ea6ad6167a7cee123a6a777c9e1fe73f9af45432e37e75c1a Loading...

	http:blank	600 B	2023-03-29	2023-03-29
Pretty URL http:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:32:02 Last Seen2023-03-29 23:32:02 Times Seen1 Hash d78f44557e0d10f9fddd98fa821b1663 06180ef2b1180c05ab31a508e7fd672d3c3aceda 398e9ee2f0d6d6f7684299e246294ac47c005c0aa3a133df205153ab2aa4f107 Loading...

	www.mediafire.com/error.php?errno=5	17 B	2023-03-07	2024-04-04
Pretty URL www.mediafire.com/error.php?errno=5 IP 104.16.53.48 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:19:11 Last Seen2024-04-04 00:18:22 Times Seen241 Hash 5b20793bd6fc8f297176da8d40330642 278a1f28defed47e4a945e5fff7dad15dee9837d ea097b7a787dd2215fcf52bcc6811f10d2d7fd17bbb614c3abef74b950cb15b6 Loading...

	http:blank	580 B	2023-03-29	2023-03-29
Pretty URL http:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:32:02 Last Seen2023-03-29 23:32:02 Times Seen1 Hash d81382424f1157aa8f115f19cc859587 d13152bbc0d759823ecd582b295e000a072d9f8f 3411ccdf1371d1ff9163a822d662fcab9a2d2cbbcea6e03f4d0a5ab59e9cf42e Loading...

	translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.mwq_qkpVBgI.O/d=1/exm=el_conf/ed=1/rs=AN8SPfoKGuXXSeJIVQ4eZb0hoTPOq_41Cg/m=el_main	218 kB	2023-03-29	2023-03-29
Pretty URL translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.mwq_qkpVBgI.O/d=1/exm=el_conf/ed=1/rs=AN8SPfoKGuXXSeJIVQ4eZb0hoTPOq_41Cg/m=el_main IP 216.58.211.10 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:26:21 Last Seen2023-03-29 23:39:17 Times Seen20 Hash 012ec313ef6b1506574b655e0e3e6690 496b9ef1c497a983a233b5faab5bc19242915a0d dde1016ef1ad0387849a5b2881ba7f29a6ea3474cffaaa22710781b8f7f61c47 Loading...

	www.mediafire.com/blank.html	1.4 kB	2023-03-29	2023-03-29
Pretty URL www.mediafire.com/blank.html IP 104.16.53.48 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:32:02 Last Seen2023-03-29 23:32:02 Times Seen1 Hash 3410f6dfdf51a400d05cceca062cfa24 e83653a49d940a585a736f2edc67f1e694c20b32 48ea8acf5c5f7dc08b9d64677ceabeddb0b86362777881e19fd8e16eb0c0ea1f Loading...

	www.mediafire.com/error.php?errno=5	698 B	2023-03-07	2024-04-24
Pretty URL www.mediafire.com/error.php?errno=5 IP 104.16.53.48 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:17:21 Last Seen2024-04-24 17:14:37 Times Seen751 Hash e86b77784429ddf2f5465385fa0108f9 3949df16fcfd86209c12d8d95c460bed5d7e5471 dba4ea11bfe262eb7340fee35c5156314301051ad35ca8ad64b18e30a3d346dd Loading...

	translate.google.com/translate_a/element.js?cb=googleTranslateElementInit	80 kB	2023-03-29	2023-03-29
Pretty URL translate.google.com/translate_a/element.js?cb=googleTranslateElementInit IP 142.250.74.142 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:32:02 Last Seen2023-03-29 23:32:09 Times Seen2 Hash d52386bc9cf5b7d22a73cb6d8b330cce f4242df9d13aff5d3e9a7a9f6602aea42bc7022d e3d17a9394d8dd2fa691439191379bccfad636d4673b3bd721b4257796b997cf Loading...

	http:blank	580 B	2023-03-29	2023-03-29
Pretty URL http:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:32:02 Last Seen2023-03-29 23:32:02 Times Seen1 Hash de3ee4792fe9b3f1c738d8813995e1e4 1bc89933175ce0428e23d26492058758df908c06 fb17ae6ea2eaf9ebebba6700407d5a54f8871155afbd54e5c3c8d8cedfa551ac Loading...

	ajax.googleapis.com/ajax/libs/jquery/1.7.2/jquery.min.js	95 kB	2023-03-07	2024-04-26
Pretty URL ajax.googleapis.com/ajax/libs/jquery/1.7.2/jquery.min.js IP 142.250.74.10 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:23 Last Seen2024-04-26 07:26:04 Times Seen13782 Hash b8d64d0bc142b3f670cc0611b0aebcae abcd2ba13348f178b17141b445bc99f1917d47af 47b68dce8cb6805ad5b3ea4d27af92a241f4e29a5c12a274c852e4346a0500b4 Loading...

	www.mediafire.com/error.php?errno=5	223 B	2023-03-07	2024-04-04
Pretty URL www.mediafire.com/error.php?errno=5 IP 104.16.53.48 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:19:11 Last Seen2024-04-04 00:18:22 Times Seen327 Hash 45ec6a73396135fbc320d8726cdc9a1e 20e49d72561b29ed8d3c328553382aa19319d4aa 1600b7b29eca5fca1953c986edef585c0f27cacd3e7c4b0e22ead814e90fc0df Loading...

	www.mediafire.com/error.php?errno=5	379 B	2023-03-07	2024-04-04
Pretty URL www.mediafire.com/error.php?errno=5 IP 104.16.53.48 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:19:11 Last Seen2024-04-04 00:18:22 Times Seen327 Hash fd70a5c3a9bd041f87e4fe1d35cf22b6 47000100aa888494189a7011151fb64d8abb8bb2 21fe3ec2f1a98a7e9515fba481de438ab5a341cbffc507b4182c55540904f8eb Loading...

	www.mediafire.com/error.php?errno=5	569 B	2023-03-07	2024-04-04
Pretty URL www.mediafire.com/error.php?errno=5 IP 104.16.53.48 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:19:11 Last Seen2024-04-04 00:18:22 Times Seen314 Hash 9bd3f1430fe4cb5ae48f5b5af7b86f3c d5d5f336dc541f19b9dd844ebfa62bb725997fce 9909e8c4a6d5a5a72fb5893949e06220f70485e6444af7e22f283caee8b791e6 Loading...

	static.mediafire.com/js/master_121901.js	579 kB	2023-03-14	2023-04-10
Pretty URL static.mediafire.com/js/master_121901.js IP 104.16.53.48 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 01:55:56 Last Seen2023-04-10 17:02:06 Times Seen79 Hash 162f898663430142a4a7cb192558cb67 47ac6f1d50a711106f21d0682f74b18d9ad2fe03 6b4bbb35c93ae329516e23587dc6c7326b50ad60058f2ca8f5343a7d267d9c16 Loading...

	http:srcdoc	1.2 kB	2023-03-08	2023-04-22
Pretty URL http:srcdoc IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:55 Last Seen2023-04-22 02:10:05 Times Seen1280 Hash 1bdd099873761648dd3aa8aad60e2ac3 713e5a99347bd73f3d9c359acd1c885430e22060 0624e7ce1ad63657924f8ca830c5a9a16c721b527ea1b98d2ef471d04348a07d Loading...

		Size	First Seen	Last Seen
	#1 Write - 75116078c56deef4c70ae28e7ac5d035	462 B	2023-03-26	2023-07-17
Pretty Observations First Seen2023-03-26 05:25:58 Last Seen2023-07-17 20:39:17 Times Seen1601 Hash 75116078c56deef4c70ae28e7ac5d035 9279ec2b1ee56270231db421bf227ac1079b22b8 ee4f481d2e363866525e9087f56041bb1044e6ffe1c6ef45e3dad01c7965a53b Loading...

	#2 Write - 3f4148d3220a0f1e7a91e0c465d7fcd7	27 B	2023-03-07	2024-04-24
Pretty Observations First Seen2023-03-07 01:17:21 Last Seen2024-04-24 17:14:38 Times Seen1229 Hash 3f4148d3220a0f1e7a91e0c465d7fcd7 cd445c4a01533cacaba76f24b7867488d50a296c a69654b574e6c6f8a6e5582716fb50cb5f404cf4147a262d7618a6ea91edfb1a Loading...

	#3 Write - cc0117e2635c5de2aaae45eb443ea85b	3.0 kB	2023-03-26	2023-07-17
Pretty Observations First Seen2023-03-26 05:25:58 Last Seen2023-07-17 20:39:17 Times Seen1924 Hash cc0117e2635c5de2aaae45eb443ea85b 35c65e803b2d2d356d7ab7ad427f927a0a0b4094 16177f86176d09e885c44b3de4abd0c997deab2f0f6205f77d69813384076b17 Loading...

	#4 Write - 5362136a0d34039afcce4ae3647fa3bb	462 B	2023-03-26	2023-07-17
Pretty Observations First Seen2023-03-26 05:25:58 Last Seen2023-07-17 20:39:17 Times Seen1190 Hash 5362136a0d34039afcce4ae3647fa3bb 3f42644510b9f4dc6b74db0c20064f4d7a6a36aa b63ebd7e5028f94f073bf2d0a29f822712ff947ce4be073596197a6604d78c8e Loading...

HTTP Transactions (53)

	URL	IP	Response	Size
	download2276.mediafire.com/ntlou5a33wig/2j23r2touc27ha6/Subscribe%20to%20@KiraKiller_%20for%20bitlife%20(1).zip	199.91.155.17	302 Found	0 B
URL HTTP/1.1 download2276.mediafire.com/ntlou5a33wig/2j23r2touc27ha6/Subscribe%20to%20@KiraKiller_%20for%20bitlife%20(1).zip IP 199.91.155.17:0 ASN #46179 MEDIAFIRE File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /ntlou5a33wig/2j23r2touc27ha6/Subscribe%20to%20@KiraKiller_%20for%20bitlife%20(1).zip HTTP/1.1 Host: download2276.mediafire.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1` `HTTP/1.1 302 Found server: bd-0.1.21 location: http://www.mediafire.com/download_repair.php?flag=4&dkey=ntlou5a33wig&qkey=2j23r2touc27ha6&ip=91%2E90%2E42%2E154 content-length: 0 date: Tue, 28 Mar 2023 07:44:30 GMT`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 911d74784325663a0d95b463b0e9ae9b 21e999229be584d8e42696bce71236ad5bcb9a25 f48cbe4d605e660a45267400e0add4f7bc7cd523c450376ecd8e3a7f094abf56 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "F48CBE4D605E660A45267400E0ADD4F7BC7CD523C450376ECD8E3A7F094ABF56" Last-Modified: Mon, 27 Mar 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5309 Expires: Tue, 28 Mar 2023 09:13:00 GMT Date: Tue, 28 Mar 2023 07:44:31 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 93f633ce30c038eb581544323c5a971e 2f60526cb750c6babccc207f75fb5a8ae6f7598b 0ff6df80a892199848fb943af78541b66efc09a7ab70d4b169906fdbac1eabf8 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "0FF6DF80A892199848FB943AF78541B66EFC09A7AB70D4B169906FDBAC1EABF8" Last-Modified: Mon, 27 Mar 2023 14:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3279 Expires: Tue, 28 Mar 2023 08:39:10 GMT Date: Tue, 28 Mar 2023 07:44:31 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/	35.241.9.150	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash bc86ef2a0cee04915bc360f5821adc8f 3658f9028cce204d38f7f48fcfaa2a8e4f54383a aeecd718d03811322457de4f20828bdba86b277e7e0e328cae9c0a8075638454 HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Type, Retry-After, Content-Length, Backoff, Alert content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Tue, 28 Mar 2023 07:28:01 GMT content-type: application/json age: 990 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash c0d9353dc46e88bf564ed464b0b073c7 0b5ce170e7db24267a3ba5b79a48548b1acd2e5b 7c7ef189b14109b44aa96454ea1b94bcbd3d69599cc7ba429f8234f6acd88a9b HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "7C7EF189B14109B44AA96454EA1B94BCBD3D69599CC7BA429F8234F6ACD88A9B" Last-Modified: Mon, 27 Mar 2023 19:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=17160 Expires: Tue, 28 Mar 2023 12:30:31 GMT Date: Tue, 28 Mar 2023 07:44:31 GMT Connection: keep-alive`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash e7bace7c1e04d44012e37ddffe36e5d5 3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2 6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2 HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK x-amz-id-2: ZcvOvzmGbuZD3j2ts7KToWT2oETZNf7e0enzbg++jfoI3gbQBAgWRqrCSp9lFnm0QcfRlMPmU+o= x-amz-request-id: QS47FTD3HKEYBJZW x-amz-server-side-encryption: AES256 content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Tue, 28 Mar 2023 06:56:07 GMT age: 2904 last-modified: Sat, 11 Mar 2023 16:53:15 GMT etag: "e7bace7c1e04d44012e37ddffe36e5d5" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Tue, 28 Mar 2023 07:44:31 GMT content-type: application/json content-length: 12 access-control-allow-credentials: true vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers access-control-expose-headers: content-type strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	35.241.9.150	200 OK	329 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: ETag, Last-Modified, Retry-After, Content-Length, Alert, Cache-Control, Expires, Content-Type, Backoff, Pragma content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Tue, 28 Mar 2023 07:14:35 GMT age: 1796 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" content-type: application/json cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2

	www.mediafire.com/download_repair.php?flag=4&dkey=ntlou5a33wig&qkey=2j23r2touc27ha6&ip=91%2E90%2E42%2E154	104.16.53.48	302 Found	0 B
URL HTTP/1.1 www.mediafire.com/download_repair.php?flag=4&dkey=ntlou5a33wig&qkey=2j23r2touc27ha6&ip=91%2E90%2E42%2E154 IP 104.16.53.48:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /download_repair.php?flag=4&dkey=ntlou5a33wig&qkey=2j23r2touc27ha6&ip=91%2E90%2E42%2E154 HTTP/1.1 Host: www.mediafire.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1` HTTP/1.1 302 Found Date: Tue, 28 Mar 2023 07:44:31 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive Access-Control-Allow-Origin: * Location: /error.php?errno=5 X-Robots-Tag: noindex, nofollow CF-Cache-Status: DYNAMIC Set-Cookie: ukey=lqrtlk8qlvqm3b8ke2dc9x6harvvr700; expires=Sat, 28-Mar-2043 07:44:31 GMT; Max-Age=631152000; path=/; domain=.mediafire.com; HttpOnly __cf_bm=WIq9DtrVaHqRJcXfWc11i.ToXFjX3_qn.73WXft0d68-1679989471-0-ASygwiiErrMKzau/qzETpsiwzzGUpKqO0FFV9xUIlxGP6/1zZEsGUcvjhmDIgp+9s8PqDjD8F3cGALvrk4/uxms=; path=/; expires=Tue, 28-Mar-23 08:14:31 GMT; domain=.mediafire.com; HttpOnly; SameSite=None Server: cloudflare CF-RAY: 7aee3f942f940afe-OSL

	www.mediafire.com/error.php?errno=5	104.16.53.48	200 OK	10 kB
URL HTTP/1.1 www.mediafire.com/error.php?errno=5 IP 104.16.53.48:0 ASN #13335 CLOUDFLARENET File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (32979) Size 10 kB (10545 bytes) Hash 332051e2be45a2720385e37811ecdc9b 8ddf84d6a8d4bc38cea696aa8d052f90d18a89af 906c03410f7b498a805cc8b3e76918e589be06b871bb73a9e4b286df549cc647 HTTP Headers `GET /error.php?errno=5 HTTP/1.1 Host: www.mediafire.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Cookie: ukey=lqrtlk8qlvqm3b8ke2dc9x6harvvr700 Upgrade-Insecure-Requests: 1` HTTP/1.1 200 OK Date: Tue, 28 Mar 2023 07:44:32 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive Access-Control-Allow-Origin: * Vary: Accept-Encoding Last-Modified: Tue, 28 Mar 2023 03:43:57 GMT CF-Cache-Status: HIT Age: 5542 Expires: Tue, 28 Mar 2023 07:49:32 GMT Cache-Control: public, max-age=300 Set-Cookie: __cf_bm=OSH9FUOTFM673ccVXeCSmSdba28ewLYLatxNZQITUfk-1679989472-0-AcrJ9hcOMZRB6yK75KPlI8LHtJ6mThaesLXV7MwnziXcyMImqlCZpbih+Rk0ljpMD8vfxoHpNpXlFOG0u4YZI9U=; path=/; expires=Tue, 28-Mar-23 08:14:32 GMT; domain=.mediafire.com; HttpOnly; SameSite=None Server: cloudflare CF-RAY: 7aee3f97eb990afe-OSL Content-Encoding: gzip

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash da5340ee69a1000f751686df9e716663 a5da880a61ed119790a7990bbdcc0c97eecf04f2 d1ff10bfe40f290935abe1feeb975a6af8cf310f9ce9d45bbf482a604da73560 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "D1FF10BFE40F290935ABE1FEEB975A6AF8CF310F9CE9D45BBF482A604DA73560" Last-Modified: Mon, 27 Mar 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=2189 Expires: Tue, 28 Mar 2023 08:21:01 GMT Date: Tue, 28 Mar 2023 07:44:32 GMT Connection: keep-alive`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash d2d4415f4eeb34e663d209eeddd8d25d 5d239718d7235d1f62e10d7d381c5a063e94c73a cc35be0a21b7442cc2628ea8cd42023f81eb2deea66e5149a22776228b105213 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 28 Mar 2023 07:44:32 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash d2d4415f4eeb34e663d209eeddd8d25d 5d239718d7235d1f62e10d7d381c5a063e94c73a cc35be0a21b7442cc2628ea8cd42023f81eb2deea66e5149a22776228b105213 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 28 Mar 2023 07:44:32 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ajax.googleapis.com/ajax/libs/jquery/1.7.2/jquery.min.js	142.250.74.10	200 OK	34 kB
URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.7.2/jquery.min.js IP 142.250.74.10:0 ASN #15169 GOOGLE File type HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32769) Size 34 kB (33845 bytes) Hash d989f35706c62ce4a5c561586c55566e d32e7958e5765609bf08dcdefd0b2c2a8714ce34 375dfe942a03ee024b5cc827b3efda5550d13df7530281f50862ce3b33fcb716 HTTP Headers `GET /ajax/libs/jquery/1.7.2/jquery.min.js HTTP/1.1 Host: ajax.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://www.mediafire.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers" report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]} timing-allow-origin: * content-length: 33845 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 22 Mar 2023 18:05:11 GMT expires: Thu, 21 Mar 2024 18:05:11 GMT cache-control: public, max-age=31536000, stale-while-revalidate=2592000 last-modified: Tue, 03 Mar 2020 19:15:00 GMT content-type: text/javascript; charset=UTF-8 vary: Accept-Encoding age: 481161 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash d2d4415f4eeb34e663d209eeddd8d25d 5d239718d7235d1f62e10d7d381c5a063e94c73a cc35be0a21b7442cc2628ea8cd42023f81eb2deea66e5149a22776228b105213 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 28 Mar 2023 07:44:32 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash d2d4415f4eeb34e663d209eeddd8d25d 5d239718d7235d1f62e10d7d381c5a063e94c73a cc35be0a21b7442cc2628ea8cd42023f81eb2deea66e5149a22776228b105213 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 28 Mar 2023 07:44:32 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	static.mediafire.com/js/master_121901.js	104.16.53.48	200 OK	152 kB
URL HTTP/1.1 static.mediafire.com/js/master_121901.js IP 104.16.53.48:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (64001), with CRLF, LF line terminators Size 152 kB (152079 bytes) Hash dd445ddd5d58751b85b415b680cdf2ed 7337b85e795a2c9d9b1d5af540d8003740e75259 6fa9dcd3424dadb03238505e3a79698ba16ede99bfd21ec678a87ac20e82afb0 HTTP Headers `GET /js/master_121901.js HTTP/1.1 Host: static.mediafire.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.mediafire.com/ Cookie: ukey=lqrtlk8qlvqm3b8ke2dc9x6harvvr700` HTTP/1.1 200 OK Date: Tue, 28 Mar 2023 07:44:32 GMT Content-Type: application/x-javascript Transfer-Encoding: chunked Connection: keep-alive Last-Modified: Thu, 16 Feb 2023 21:36:55 GMT Vary: Accept-Encoding ETag: W/"63eea1f7-8d704" Expires: Thu, 27 Apr 2023 05:05:21 GMT Cache-Control: max-age=2592000 Content-Encoding: gzip Access-Control-Allow-Origin: * CF-Cache-Status: HIT Set-Cookie: __cf_bm=T.uDehx7OahrSGRgwxk94PztqndMu.CeOjMthM6k5w0-1679989472-0-AVFez2Sz3vQH3zEHla43t9zZtzOiRzztQ0Ut198nTri5q1sVBKznEO4kwENptIfZ7nf2NxlB2Z7NSegBSSBGP0Q=; path=/; expires=Tue, 28-Mar-23 08:14:32 GMT; domain=.mediafire.com; HttpOnly; SameSite=None Server: cloudflare CF-RAY: 7aee3f988fb8b4ee-OSL

	push.services.mozilla.com/	54.148.183.113	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 54.148.183.113:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: BwkUmym4gZpcG5cbR1+2vQ== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: Di0Bk73mAERCtf/Nt1ShfroRmKc=`

	static.mediafire.com/images/backgrounds/header/mf_logo_full_color.svg	104.16.53.48	200 OK	1.5 kB
URL HTTP/1.1 static.mediafire.com/images/backgrounds/header/mf_logo_full_color.svg IP 104.16.53.48:0 ASN #13335 CLOUDFLARENET File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (3357), with no line terminators Size 1.5 kB (1549 bytes) Hash cd8619bb27c40ac285ca7ca5cc0e12c6 71a679f2e69914390e27de9b12fbebd6740b420d 348ca0cfaec31819e81ec29c3ea7808a7f9142d8448ba06edfca37e5363f967b HTTP Headers `GET /images/backgrounds/header/mf_logo_full_color.svg HTTP/1.1 Host: static.mediafire.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.mediafire.com/ Cookie: ukey=lqrtlk8qlvqm3b8ke2dc9x6harvvr700` HTTP/1.1 200 OK Date: Tue, 28 Mar 2023 07:44:32 GMT Content-Type: image/svg+xml Transfer-Encoding: chunked Connection: keep-alive Last-Modified: Fri, 28 Oct 2016 22:22:42 GMT ETag: W/"5813cfb2-d1d" Access-Control-Allow-Origin: * CF-Cache-Status: HIT Age: 1773 Set-Cookie: __cf_bm=xNgdp_xbXmS..R8_pbyidMb6N2Q9.3B2BRMKFx6b03s-1679989472-0-AauIIpJcOJbQSqwhVRTLGK4BdkUGoIuHSpElpZu0eyudbd6lbtHyuBPXFbI1f46ZsyvdNmjBElvl/QABmDaSoWQ=; path=/; expires=Tue, 28-Mar-23 08:14:32 GMT; domain=.mediafire.com; HttpOnly; SameSite=None Vary: Accept-Encoding Server: cloudflare CF-RAY: 7aee3f9a7b2a0afa-OSL Content-Encoding: gzip

	static.mediafire.com/images/backgrounds/home_unicorn/engadget.svg	104.16.53.48	200 OK	757 B
URL HTTP/1.1 static.mediafire.com/images/backgrounds/home_unicorn/engadget.svg IP 104.16.53.48:0 ASN #13335 CLOUDFLARENET File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (1671), with no line terminators Size 757 B (757 bytes) Hash 51841adf8facba58c7617e61fff9652a f04526f7db1390b7042bf048de871a05f3e63407 c74a4750d04631d5d97c428749935de1d82cfc326f7ca50613fbfa9f3e44adee HTTP Headers `GET /images/backgrounds/home_unicorn/engadget.svg HTTP/1.1 Host: static.mediafire.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.mediafire.com/ Cookie: ukey=lqrtlk8qlvqm3b8ke2dc9x6harvvr700` HTTP/1.1 200 OK Date: Tue, 28 Mar 2023 07:44:32 GMT Content-Type: image/svg+xml Transfer-Encoding: chunked Connection: keep-alive Last-Modified: Mon, 25 Jul 2022 18:00:54 GMT ETag: W/"62deda56-687" Access-Control-Allow-Origin: * CF-Cache-Status: HIT Set-Cookie: __cf_bm=tu3ohAd15n9NImDq2ZJlCP642bldCthZ6IWDKV2t5Bo-1679989472-0-AXx9YSYvBIZxgL/D4bCiSFXY43czKgjwbmw+6qf+SoqI4zVf5LUykQ7gGnyuLMIBimpXVxGz2fSzzwpckFXdTP4=; path=/; expires=Tue, 28-Mar-23 08:14:32 GMT; domain=.mediafire.com; HttpOnly; SameSite=None Vary: Accept-Encoding Server: cloudflare CF-RAY: 7aee3f99b942b4ee-OSL Content-Encoding: gzip

	static.mediafire.com/images/backgrounds/home_unicorn/gizmodo.svg	104.16.53.48	200 OK	955 B
URL HTTP/1.1 static.mediafire.com/images/backgrounds/home_unicorn/gizmodo.svg IP 104.16.53.48:0 ASN #13335 CLOUDFLARENET File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (2119), with no line terminators Size 955 B (955 bytes) Hash 4eafe457e8b721ea07cfb83e41a11c12 d67f73060b2e041c3f7335aa1a67be53a7921447 bb412e42862d100e6bb7c5b1a3e5ea7c9f30868bcd2786d166a670f8bcb44076 HTTP Headers `GET /images/backgrounds/home_unicorn/gizmodo.svg HTTP/1.1 Host: static.mediafire.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.mediafire.com/ Cookie: ukey=lqrtlk8qlvqm3b8ke2dc9x6harvvr700` HTTP/1.1 200 OK Date: Tue, 28 Mar 2023 07:44:32 GMT Content-Type: image/svg+xml Transfer-Encoding: chunked Connection: keep-alive Last-Modified: Mon, 25 Jul 2022 18:00:54 GMT ETag: W/"62deda56-847" Access-Control-Allow-Origin: * CF-Cache-Status: HIT Set-Cookie: __cf_bm=fYkZeNkvv8i610LmUk_GTUaucfedkpoWhtojjbpFNsI-1679989472-0-AfhxB3sD5ScZLEdRSFiGJ6KEnYHkRXPNd2p897MW9SYKwDXmdrBOgUNAuQjwRGkA7iCAMaM+A3gZAnk43bV0C30=; path=/; expires=Tue, 28-Mar-23 08:14:32 GMT; domain=.mediafire.com; HttpOnly; SameSite=None Vary: Accept-Encoding Server: cloudflare CF-RAY: 7aee3f99bc3db529-OSL Content-Encoding: gzip

	static.mediafire.com/images/backgrounds/home_unicorn/lifehacker.svg	104.16.53.48	200 OK	1.0 kB
URL HTTP/1.1 static.mediafire.com/images/backgrounds/home_unicorn/lifehacker.svg IP 104.16.53.48:0 ASN #13335 CLOUDFLARENET File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (2393), with no line terminators Size 1.0 kB (1015 bytes) Hash b0be40e43a085738dab7eabed56fb452 005c81cdcf28db004686570825657d7fcd48e01b f3b051e6736ff8aebe87b3a5a7c97dc8d0444dffbc9d8957e6edf224078b0120 HTTP Headers `GET /images/backgrounds/home_unicorn/lifehacker.svg HTTP/1.1 Host: static.mediafire.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.mediafire.com/ Cookie: ukey=lqrtlk8qlvqm3b8ke2dc9x6harvvr700` HTTP/1.1 200 OK Date: Tue, 28 Mar 2023 07:44:32 GMT Content-Type: image/svg+xml Transfer-Encoding: chunked Connection: keep-alive Last-Modified: Mon, 25 Jul 2022 18:00:54 GMT ETag: W/"62deda56-959" Access-Control-Allow-Origin: * CF-Cache-Status: HIT Set-Cookie: __cf_bm=aUytFi5oov_Wkhg1MVc2rtfHkNmO5EAkkkZRnnPaCWE-1679989472-0-AVRxlT7JNKEE/R3KaqbBCo7plZ5wOqOSBNgb1P3Rp1ysRn6e465YNQ6jJtMpmCJu4hzXAJKrnt/FMoeqBb0uSws=; path=/; expires=Tue, 28-Mar-23 08:14:32 GMT; domain=.mediafire.com; HttpOnly; SameSite=None Vary: Accept-Encoding Server: cloudflare CF-RAY: 7aee3f99ba47b515-OSL Content-Encoding: gzip

	static.mediafire.com/images/backgrounds/home_unicorn/techcrunch.svg	104.16.53.48	200 OK	872 B
URL HTTP/1.1 static.mediafire.com/images/backgrounds/home_unicorn/techcrunch.svg IP 104.16.53.48:0 ASN #13335 CLOUDFLARENET File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (2346), with no line terminators Size 872 B (872 bytes) Hash 4052ff47366d775059606212ebcce597 f1cde6a4d9bc199a4a6d2a60d68db357360b1001 590cfed581f9f3c3e775b21b770176eb4613c9ea7084ab81d04c5df5667d5698 HTTP Headers `GET /images/backgrounds/home_unicorn/techcrunch.svg HTTP/1.1 Host: static.mediafire.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.mediafire.com/ Cookie: ukey=lqrtlk8qlvqm3b8ke2dc9x6harvvr700` HTTP/1.1 200 OK Date: Tue, 28 Mar 2023 07:44:32 GMT Content-Type: image/svg+xml Transfer-Encoding: chunked Connection: keep-alive Last-Modified: Mon, 25 Jul 2022 18:00:54 GMT ETag: W/"62deda56-92a" Access-Control-Allow-Origin: * CF-Cache-Status: HIT Set-Cookie: __cf_bm=dm672Ih75amc1vUyCappsuxrN.ZNEskaKXUrvlzgdCQ-1679989472-0-AZwdr6vWuSCgJ3hfoLhK/7Xs9LbEW4fHmoNh7nSPhCssY33A/mTZ1JqNJtdQ41iCN931Vxmx0BZc0qo48rtgtAM=; path=/; expires=Tue, 28-Mar-23 08:14:32 GMT; domain=.mediafire.com; HttpOnly; SameSite=None Vary: Accept-Encoding Server: cloudflare CF-RAY: 7aee3f99bfdb0b06-OSL Content-Encoding: gzip

	www.mediafire.com/cdn-cgi/challenge-platform/h/b/scripts/alpha/invisible.js?ts=1679976000	104.16.53.48	200 OK	16 kB
URL HTTP/1.1 www.mediafire.com/cdn-cgi/challenge-platform/h/b/scripts/alpha/invisible.js?ts=1679976000 IP 104.16.53.48:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (32148), with no line terminators Size 16 kB (15809 bytes) Hash ff1a99c504c1fbd024b2ab00cd82e933 9238a4ff37c79ca78c4218b0f79a78ee913f06d3 f974487af915acef19f66f69e94e9cb77057388608a328c7dd481c59f29404df HTTP Headers `GET /cdn-cgi/challenge-platform/h/b/scripts/alpha/invisible.js?ts=1679976000 HTTP/1.1 Host: www.mediafire.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Cookie: ukey=lqrtlk8qlvqm3b8ke2dc9x6harvvr700` HTTP/1.1 200 OK Date: Tue, 28 Mar 2023 07:44:32 GMT Content-Type: application/javascript; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive content-encoding: gzip x-control-type-options: nosniff cache-control: max-age=14400, public vary: accept-encoding Set-Cookie: __cf_bm=9sbJPRh_pzHP_38_ymy.P5hr6i4437A_wERNLOU0cts-1679989472-0-ASxxDKnFGUOhggHp21Luhowv+Rl2ozra8PH/k6MBDVX7rDJj0f2Ym7hJaVJei+hpqYtf1e8x+Tknr0d09GumGQA=; path=/; expires=Tue, 28-Mar-23 08:14:32 GMT; domain=.mediafire.com; HttpOnly; SameSite=None Server: cloudflare CF-RAY: 7aee3f9aacc2b503-OSL

	static.mediafire.com/images/backgrounds/home_unicorn/cnet.svg	104.16.53.48	200 OK	804 B
URL HTTP/1.1 static.mediafire.com/images/backgrounds/home_unicorn/cnet.svg IP 104.16.53.48:0 ASN #13335 CLOUDFLARENET File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (1790), with no line terminators Size 804 B (804 bytes) Hash d16df2eab1ea02f95880122c87dbd85b fdbc747ecf774d15e270310f9c301946f007960c b862912bf3fc4bac92ba1604b553be9220671eca593dd4d72569e3bb3c46f00e HTTP Headers `GET /images/backgrounds/home_unicorn/cnet.svg HTTP/1.1 Host: static.mediafire.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.mediafire.com/ Cookie: ukey=lqrtlk8qlvqm3b8ke2dc9x6harvvr700` HTTP/1.1 200 OK Date: Tue, 28 Mar 2023 07:44:32 GMT Content-Type: image/svg+xml Transfer-Encoding: chunked Connection: keep-alive Last-Modified: Mon, 25 Jul 2022 18:00:54 GMT ETag: W/"62deda56-6fe" Access-Control-Allow-Origin: * CF-Cache-Status: HIT Set-Cookie: __cf_bm=U3u1OfCF9CCjUGfEYS5ouLWoEuG7ODMl2lqDXSNrl6g-1679989472-0-AdD/k0ZrrSb9Cn3I9/5EJ4X46DVrW52OrrUCLbPvhgfYqoEcjM97dWzeMyfB2i6MHqaykUQhS15AmiJFVZnovSU=; path=/; expires=Tue, 28-Mar-23 08:14:32 GMT; domain=.mediafire.com; HttpOnly; SameSite=None Vary: Accept-Encoding Server: cloudflare CF-RAY: 7aee3f99bc400b3d-OSL Content-Encoding: gzip

	fonts.googleapis.com/css?family=Open+Sans:400,700	142.250.74.74	200 OK	1.1 kB
URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:400,700 IP 142.250.74.74:0 ASN #15169 GOOGLE File type data Size 1.1 kB (1110 bytes) Hash 5c81b9c0105d28f3617a83812c5a74ea d3150ed14588e437131f51ba7538722c76ba384b 349b57a879022fa2db2ab751c56b065154052c6e0d99ae0583916292eef5991d HTTP Headers `GET /css?family=Open+Sans:400,700 HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://www.mediafire.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Tue, 28 Mar 2023 07:44:32 GMT date: Tue, 28 Mar 2023 07:44:32 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 7927fa1bac0e5bcc27ed32b6b5107bd3 68da43f59df9c524940efc35f40e3599b9a1995b f48f276b9dee3b509dd0554b8e660039fe61020bd793cbf9a0381d3e5f76ae59 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 28 Mar 2023 07:44:32 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2	216.58.207.227	200 OK	45 kB
URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP 216.58.207.227:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data Size 45 kB (44856 bytes) Hash 565ce506190ad3af920b40baf1794cec ad3cba5d06100e09449a864d3b5e58403b478b3d 8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db HTTP Headers `GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: http://www.mediafire.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 44856 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Fri, 24 Mar 2023 10:26:42 GMT expires: Sat, 23 Mar 2024 10:26:42 GMT cache-control: public, max-age=31536000 last-modified: Mon, 15 Aug 2022 18:20:18 GMT content-type: font/woff2 age: 335870 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 7927fa1bac0e5bcc27ed32b6b5107bd3 68da43f59df9c524940efc35f40e3599b9a1995b f48f276b9dee3b509dd0554b8e660039fe61020bd793cbf9a0381d3e5f76ae59 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 28 Mar 2023 07:44:32 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.mediafire.com/blank.html	104.16.53.48	200 OK	938 B
URL HTTP/1.1 www.mediafire.com/blank.html IP 104.16.53.48:0 ASN #13335 CLOUDFLARENET File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1696), with no line terminators Size 938 B (938 bytes) Hash d0c6e6a385bc16be3b89a436f4248ba1 1f45c6ec626811face18ab9856a2e120d19d62f8 c155c8d0b5ced9811e88643c2ea7ed6fa0b3d05ebb58d48bafebd801fd225ab3 HTTP Headers `GET /blank.html HTTP/1.1 Host: www.mediafire.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.mediafire.com/error.php?errno=5 Cookie: ukey=lqrtlk8qlvqm3b8ke2dc9x6harvvr700 Upgrade-Insecure-Requests: 1` HTTP/1.1 200 OK Date: Tue, 28 Mar 2023 07:44:32 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive Access-Control-Allow-Origin: * Content-Security-Policy: frame-ancestors * Last-Modified: Thu, 16 Feb 2023 21:36:29 GMT Vary: Accept-Encoding CF-Cache-Status: DYNAMIC Set-Cookie: __cf_bm=4v5y9YnFZTrUDSZa5tSBj8Wd81ghnQl9YUJpGQs0kwI-1679989472-0-ASC4gtsF/SmYOSJ2UmYkqb4VsZ0B8RDtj7ZixqnHCkzfIllYSLnohRmrI5Jr0KaUrJ3RiQ2n2LZihtEplVQVYvo=; path=/; expires=Tue, 28-Mar-23 08:14:32 GMT; domain=.mediafire.com; HttpOnly; SameSite=None Server: cloudflare CF-RAY: 7aee3f9a6e400afe-OSL Content-Encoding: gzip

	static.mediafire.com/images/icons/svg_dark/social_icons_sprite.svg	104.16.53.48	200 OK	2.0 kB
URL HTTP/1.1 static.mediafire.com/images/icons/svg_dark/social_icons_sprite.svg IP 104.16.53.48:0 ASN #13335 CLOUDFLARENET File type SVG Scalable Vector Graphics image\012- exported SGML document, ASCII text, with very long lines (1074) Size 2.0 kB (1950 bytes) Hash dd5914414a88484054cfd2251501f2c9 0645059e8ed90fa09bcd13961bb3e1a56475543c 379b63590c5f885f9ee31f7807eed90abe10cc4b383dcb5b7b82a487ce964984 HTTP Headers `GET /images/icons/svg_dark/social_icons_sprite.svg HTTP/1.1 Host: static.mediafire.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.mediafire.com/ Cookie: ukey=lqrtlk8qlvqm3b8ke2dc9x6harvvr700` HTTP/1.1 200 OK Date: Tue, 28 Mar 2023 07:44:32 GMT Content-Type: image/svg+xml Transfer-Encoding: chunked Connection: keep-alive Last-Modified: Mon, 25 Jul 2022 18:00:54 GMT ETag: W/"62deda56-1300" Access-Control-Allow-Origin: * CF-Cache-Status: HIT Set-Cookie: __cf_bm=lIcu4bP1PSeXOIKcaP6lv3a4jTph8hDxk.DsQaMPE7Q-1679989472-0-AfWtdQ1/NtuLGUwwoLetIJpcvLOxYT9jph7IowWZDGicbtwJ4oHzh24tMaXjXenjwQxRd8liTpu5sTGQQuxa/78=; path=/; expires=Tue, 28-Mar-23 08:14:32 GMT; domain=.mediafire.com; HttpOnly; SameSite=None Vary: Accept-Encoding Server: cloudflare CF-RAY: 7aee3f9aab7b0afa-OSL Content-Encoding: gzip

	translate.google.com/translate_a/element.js?cb=googleTranslateElementInit	142.250.74.142	301 Moved Permanently	0 B
URL HTTP/1.1 translate.google.com/translate_a/element.js?cb=googleTranslateElementInit IP 142.250.74.142:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1 Host: translate.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.mediafire.com/` `HTTP/1.1 301 Moved Permanently Content-Type: application/binary Cache-Control: no-cache, no-store, max-age=0, must-revalidate Pragma: no-cache Expires: Mon, 01 Jan 1990 00:00:00 GMT Date: Tue, 28 Mar 2023 07:44:32 GMT Location: https://translate.google.com/translate_a/element.js?cb=googleTranslateElementInit Cross-Origin-Opener-Policy: same-origin-allow-popups Server: ESF Content-Length: 0 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash eb2978f78249fa2030ff84708ab627b5 0003a93bc57234fba10c90bd0bd80c00d5a90884 b76d3066ba863b1aaf4f5f4fced0a48768bc34de818dc3494e89c045f41f5acf HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 28 Mar 2023 07:44:32 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	static.mediafire.com/favicon.ico	104.16.53.48	200 OK	1.5 kB
URL HTTP/1.1 static.mediafire.com/favicon.ico IP 104.16.53.48:0 ASN #13335 CLOUDFLARENET File type MS Windows icon resource - 4 icons, 16x16, 32 bits/pixel, 24x24, 8 bits/pixel\012- data Size 1.5 kB (1459 bytes) Hash 6b472b0c8ab8d2274a51755ff936a0f7 de4c3b0b30ff224d77da7a948920f2f26d1b2f91 9b449aabaaa0d0700a85bcd5ed84bd8a179553495846152d690b81807ba11f8b HTTP Headers `GET /favicon.ico HTTP/1.1 Host: static.mediafire.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.mediafire.com/ Cookie: ukey=lqrtlk8qlvqm3b8ke2dc9x6harvvr700` HTTP/1.1 200 OK Date: Tue, 28 Mar 2023 07:44:32 GMT Content-Type: image/x-icon Transfer-Encoding: chunked Connection: keep-alive Last-Modified: Mon, 25 Jul 2022 18:00:54 GMT ETag: W/"62deda56-2a46" Expires: Thu, 27 Apr 2023 07:11:07 GMT Cache-Control: max-age=2592000 Access-Control-Allow-Origin: * CF-Cache-Status: HIT Set-Cookie: __cf_bm=g8lEFWKCMBtUaPVEg_IYKab8m.kfLqvdWj4ubDnh0U4-1679989472-0-AfSd6LegLzWVlkXko2gpYJChMFzGxWyaK2gsidHJb8HV4VQ3MCT662FD4wBfUjR4LppfmwCceoqC8HfUWlD4rUw=; path=/; expires=Tue, 28-Mar-23 08:14:32 GMT; domain=.mediafire.com; HttpOnly; SameSite=None Vary: Accept-Encoding Server: cloudflare CF-RAY: 7aee3f9b8b79b4ee-OSL Content-Encoding: gzip

	translate.google.com/translate_a/element.js?cb=googleTranslateElementInit	142.250.74.142	200 OK	28 kB
URL HTTP/2 translate.google.com/translate_a/element.js?cb=googleTranslateElementInit IP 142.250.74.142:0 ASN #15169 GOOGLE File type data Size 28 kB (28192 bytes) Hash 2641398a0b85162c8144bf97945814fb a517157b314f091416a82a1b258846cd643deb02 5a19393b57f2d6ce8b6f68443bfa430f8762fa85c5045333f6a0bf69d7275d6a HTTP Headers `GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1 Host: translate.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: http://www.mediafire.com/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: text/javascript; charset=utf-8 cache-control: no-cache, no-store, max-age=0, must-revalidate pragma: no-cache expires: Mon, 01 Jan 1990 00:00:00 GMT date: Tue, 28 Mar 2023 07:44:32 GMT cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff set-cookie: CONSENT=PENDING+431; expires=Thu, 27-Mar-2025 07:44:32 GMT; path=/; domain=.google.com; Secure p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info." alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.vneFu3d_4ck.L.F4.O/d=0/rs=AN8SPfrNa1b9K5rCmaIpu9SqE3A5sBDBfg/m=el_main_css	142.250.74.3	200 OK	4.2 kB
URL HTTP/2 www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.vneFu3d_4ck.L.F4.O/d=0/rs=AN8SPfrNa1b9K5rCmaIpu9SqE3A5sBDBfg/m=el_main_css IP 142.250.74.3:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (23228), with no line terminators Size 4.2 kB (4205 bytes) Hash 8f89ebd6757f0474347497a9545d3cc2 014d050331fcdbcff8cbf854b4c926286e0c104a 015111236a8db21de30b2af7d2d24221a9f358fe83137f4651707f4728043585 HTTP Headers `GET /_/translate_http/_/ss/k=translate_http.tr.vneFu3d_4ck.L.F4.O/d=0/rs=AN8SPfrNa1b9K5rCmaIpu9SqE3A5sBDBfg/m=el_main_css HTTP/1.1 Host: www.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://www.mediafire.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="rosetta" report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]} content-length: 4205 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Sat, 25 Mar 2023 02:39:03 GMT expires: Sun, 24 Mar 2024 02:39:03 GMT cache-control: public, max-age=31536000 last-modified: Sun, 12 Mar 2023 00:11:57 GMT content-type: text/css; charset=UTF-8 vary: Accept-Encoding age: 277529 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.mwq_qkpVBgI.O/d=1/exm=el_conf/ed=1/rs=AN8SPfoKGuXXSeJIVQ4eZb0hoTPOq_41Cg/m=el_main	216.58.211.10	200 OK	77 kB
URL HTTP/2 translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.mwq_qkpVBgI.O/d=1/exm=el_conf/ed=1/rs=AN8SPfoKGuXXSeJIVQ4eZb0hoTPOq_41Cg/m=el_main IP 216.58.211.10:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (1665) Size 77 kB (76707 bytes) Hash 5c0fac20e5118032e7d3afbc88b38a55 9c76945838d501ec2d5ef2d48044ec7f91d08ed6 4d8fae9a1f24253d30e2bdbf99e38e88712371ae58657d3c819f126ac5f59c38 HTTP Headers `GET /_/translate_http/_/js/k=translate_http.tr.no.mwq_qkpVBgI.O/d=1/exm=el_conf/ed=1/rs=AN8SPfoKGuXXSeJIVQ4eZb0hoTPOq_41Cg/m=el_main HTTP/1.1 Host: translate.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://www.mediafire.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="rosetta" report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]} content-length: 76707 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Mon, 27 Mar 2023 19:27:57 GMT expires: Tue, 26 Mar 2024 19:27:57 GMT cache-control: public, max-age=31536000 last-modified: Sat, 25 Mar 2023 05:10:40 GMT content-type: text/javascript; charset=UTF-8 vary: Accept-Encoding age: 44195 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	translate.google.com/gen204?sl=en&nca=te_ap&client=te&logld=vTE_20230326	142.250.74.142	204 No Content	0 B
URL HTTP/1.1 translate.google.com/gen204?sl=en&nca=te_ap&client=te&logld=vTE_20230326 IP 142.250.74.142:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /gen204?sl=en&nca=te_ap&client=te&logld=vTE_20230326 HTTP/1.1 Host: translate.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.mediafire.com/` HTTP/1.1 204 No Content Content-Type: image/gif; charset=us-ascii Cache-Control: no-cache, no-store, max-age=0, must-revalidate Pragma: no-cache Expires: Mon, 01 Jan 1990 00:00:00 GMT Date: Tue, 28 Mar 2023 07:44:33 GMT Cross-Origin-Resource-Policy: cross-origin Content-Security-Policy: script-src 'nonce-mbpBTukoZ6sqBdwpuKpbig' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/TranslateApiHttp/cspreport;worker-src 'self', require-trusted-types-for 'script';report-uri /_/TranslateApiHttp/cspreport Cross-Origin-Opener-Policy: same-origin Permissions-Policy: ch-ua-arch=, ch-ua-bitness=, ch-ua-full-version=, ch-ua-full-version-list=, ch-ua-model=, ch-ua-wow64=, ch-ua-platform=, ch-ua-platform-version= Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version Server: ESF Content-Length: 0 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash ba50d379b2776214995c207b42c083a4 0f1b48c6d01ace326c49acf5bcac222f772e9f6a 6692886530b311f94ac3855df31c774feed6d5135dad4ac24921b6030fcbb8d4 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 28 Mar 2023 07:44:33 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.mediafire.com/blank.html	104.16.53.48	200 OK	943 B
URL HTTP/1.1 www.mediafire.com/blank.html IP 104.16.53.48:0 ASN #13335 CLOUDFLARENET File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1696), with no line terminators Size 943 B (943 bytes) Hash db74ee50f509c4b8d5fa14ecc0241346 d2c2328ebfe7ecfd55de9d9d7c738533bfa5919b f9a495bcb6af55353ffb812ae33446fb74300ddd5f033fba0a7d3109de22dc17 HTTP Headers `GET /blank.html HTTP/1.1 Host: www.mediafire.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.mediafire.com/error.php?errno=5 Cookie: ukey=lqrtlk8qlvqm3b8ke2dc9x6harvvr700 Upgrade-Insecure-Requests: 1` HTTP/1.1 200 OK Date: Tue, 28 Mar 2023 07:44:33 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive Access-Control-Allow-Origin: * Content-Security-Policy: frame-ancestors * Last-Modified: Thu, 16 Feb 2023 21:36:29 GMT Vary: Accept-Encoding CF-Cache-Status: DYNAMIC Set-Cookie: __cf_bm=7wAMawDG1URh3Xg9YdtKAzJ5GfAeqI2leQzv7Ite26M-1679989473-0-AdK50sC2eo6spmkQfcENhb7s9QPvE1FLyN5l5nM8NfcJmuw5jZ/1lx1BOrYvc8k2ewJimRN1DT7VK116GKiAuSg=; path=/; expires=Tue, 28-Mar-23 08:14:33 GMT; domain=.mediafire.com; HttpOnly; SameSite=None Server: cloudflare CF-RAY: 7aee3f9b7e22b503-OSL Content-Encoding: gzip

	www.google.com/images/cleardot.gif	142.250.74.164	200 OK	43 B
URL HTTP/2 www.google.com/images/cleardot.gif IP 142.250.74.164:0 ASN #15169 GOOGLE File type GIF image data, version 89a, 1 x 1\012- data Size 43 B (43 bytes) Hash fc94fb0c3ed8a8f909dbc7630a0987ff 56d45f8a17f5078a20af9962c992ca4678450765 2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363 HTTP Headers `GET /images/cleardot.gif HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://www.mediafire.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes content-type: image/gif cross-origin-resource-policy: cross-origin cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable" report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]} content-length: 43 date: Tue, 28 Mar 2023 07:44:33 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate last-modified: Tue, 22 Oct 2019 18:30:00 GMT x-content-type-options: nosniff server: sffe x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	www.mediafire.com/cdn-cgi/rum?	104.16.53.48	204 No Content	0 B
URL HTTP/1.1 www.mediafire.com/cdn-cgi/rum? IP 104.16.53.48:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /cdn-cgi/rum? HTTP/1.1 Host: www.mediafire.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate content-type: application/json Content-Length: 6456 Origin: http://www.mediafire.com Connection: keep-alive Referer: http://www.mediafire.com/error.php?errno=5 Cookie: ukey=lqrtlk8qlvqm3b8ke2dc9x6harvvr700` `HTTP/1.1 204 No Content Date: Tue, 28 Mar 2023 07:44:33 GMT Connection: keep-alive access-control-allow-origin: http://www.mediafire.com access-control-allow-methods: POST,OPTIONS access-control-max-age: 86400 vary: Origin access-control-allow-credentials: true Server: cloudflare CF-RAY: 7aee3f9f6cf3b503-OSL X-Frame-Options: DENY X-Content-Type-Options: nosniff`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash be1cd1cf8e462ca6f6acb2f132e614d5 037f3bc7ab850fa2c69f2584bb24340b25bb6f3c e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA" Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=4529 Expires: Tue, 28 Mar 2023 09:00:02 GMT Date: Tue, 28 Mar 2023 07:44:33 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash be1cd1cf8e462ca6f6acb2f132e614d5 037f3bc7ab850fa2c69f2584bb24340b25bb6f3c e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA" Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=4529 Expires: Tue, 28 Mar 2023 09:00:02 GMT Date: Tue, 28 Mar 2023 07:44:33 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash be1cd1cf8e462ca6f6acb2f132e614d5 037f3bc7ab850fa2c69f2584bb24340b25bb6f3c e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA" Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=4529 Expires: Tue, 28 Mar 2023 09:00:02 GMT Date: Tue, 28 Mar 2023 07:44:33 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg	34.120.237.76	200 OK	9.9 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 9.9 kB (9859 bytes) Hash da174e6ccc9451c5071ba10eeb97f6f6 c38827a9ac1218768839877263e1f2984fbdc454 76da406c8ae8cd6ca8471928f3aec3876aed2c21bc10edc0fbdaef5c100c1030 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 9859 x-amzn-requestid: c00efe5b-7fdb-445a-a924-75ddd461b72b x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: COQPtHizoAMF7-Q= x-content-type-options: nosniff x-amzn-trace-id: Root=1-641bfa64-3eb90ae703b78e8a06130540;Sampled=0 x-amzn-remapped-date: Thu, 23 Mar 2023 07:06:12 GMT x-amz-cf-pop: HIO52-P1, SEA19-C1 x-cache: Hit from cloudfront x-amz-cf-id: wlc65ytdELa_faMSddEDHZNsbtF1_CgMOho3W3BvkaOSrFyAkKUagg== via: 1.1 02f1a759e4ec9fab6fc17c080dd851dc.cloudfront.net (CloudFront), 1.1 60b744e5b364d04abea9fa6686121242.cloudfront.net (CloudFront), 1.1 google date: Mon, 27 Mar 2023 21:43:57 GMT age: 36036 etag: "c38827a9ac1218768839877263e1f2984fbdc454" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6469f625-03ad-45a7-a918-5f220169711a.png	34.120.237.76	200 OK	8.6 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6469f625-03ad-45a7-a918-5f220169711a.png IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 8.6 kB (8553 bytes) Hash e828b7227de7aa7a7b7c54c96e0cef9a 9a717142ab25dabf9123485ef51ed586662d2a71 0390f8771432de010cc11e11be2e2dfa7c303664858a5b066e66a628a1f3dd66 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6469f625-03ad-45a7-a918-5f220169711a.png HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 8553 x-amzn-requestid: 05cb5115-a27b-485a-89fd-670bdb5bb06f x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CdbofHHPIAMFkQA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-64220c9c-774bb5d725336b35088e2527;Sampled=0 x-amzn-remapped-date: Mon, 27 Mar 2023 21:37:32 GMT x-amz-cf-pop: HIO52-P1, SEA19-C1 x-cache: Miss from cloudfront x-amz-cf-id: OUJZjN0YFRbVlZWNMbOXCvz9Ttj5bYtGwAOuGXR_T-GtUyWkXQAxhQ== via: 1.1 22ea0ab0881473261b786ecbb5e00f54.cloudfront.net (CloudFront), 1.1 42ef990e439ae115ff739f04e3945234.cloudfront.net (CloudFront), 1.1 google date: Mon, 27 Mar 2023 21:53:24 GMT etag: "9a717142ab25dabf9123485ef51ed586662d2a71" content-type: image/jpeg age: 35469 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa16d29e1-ef79-4edc-b710-c5c9d84af51a.jpeg	34.120.237.76	200 OK	12 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa16d29e1-ef79-4edc-b710-c5c9d84af51a.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 12 kB (11674 bytes) Hash 11e0f4bc8f80c5009c099d6a371950e0 60b1df4be988d5e60b7834e39a12e3524fe0a767 c3149c1d902c6889bdab0287f69771a247ab21c6a5ad50cba0f200db561445b4 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa16d29e1-ef79-4edc-b710-c5c9d84af51a.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 11674 x-amzn-requestid: b3fa7a9c-bf5c-44df-96ed-546f4da8f794 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: Cb5i3GN7oAMF1LQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-64216fab-2f380b4972056b6c64703e55;Sampled=0 x-amzn-remapped-date: Mon, 27 Mar 2023 10:27:55 GMT x-amz-cf-pop: HIO52-P1, SEA19-C1 x-cache: Miss from cloudfront x-amz-cf-id: GN5sLhd8yUOi_odvkY8SIx0DDtXfUQ1HxLRrdOqFHjcqjIuM1KXDyA== via: 1.1 50cc3f0b039433daebdf343a3f4489ae.cloudfront.net (CloudFront), 1.1 8ae6af4d17aae7471e5fe2792eb6abcc.cloudfront.net (CloudFront), 1.1 google date: Mon, 27 Mar 2023 10:27:55 GMT age: 76598 etag: "60b1df4be988d5e60b7834e39a12e3524fe0a767" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72713d4b-dac7-4d4c-bfff-c16bd305c5b1.jpeg	34.120.237.76	200 OK	6.5 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72713d4b-dac7-4d4c-bfff-c16bd305c5b1.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 6.5 kB (6542 bytes) Hash 15e37de1dba62187e1e5f012145813f3 cfe8cd953330252e15594f403e2f38ec56acdfd7 89bf7dbcf5a7fca006545f001b47de0ab6f94014de4bd4c519f6050e6daa5aa0 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72713d4b-dac7-4d4c-bfff-c16bd305c5b1.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 6542 x-amzn-requestid: 1106a670-cf68-4e3d-b5af-3013407acc5c x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CdbsjGAaoAMF5GQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-64220cb6-726c7ba02ddb31182834d82d;Sampled=0 x-amzn-remapped-date: Mon, 27 Mar 2023 21:37:58 GMT x-amz-cf-pop: HIO52-P1, SEA19-C1 x-cache: Hit from cloudfront x-amz-cf-id: hWI0gKHs2830OtWE9Or5YEsE4aQSNLzf85--OGAQEqPEN-6bgWBbFw== via: 1.1 8ead054384c1626556ee4410cad35692.cloudfront.net (CloudFront), 1.1 1570d93226c1bbca2ebaad510cff3e0c.cloudfront.net (CloudFront), 1.1 google date: Mon, 27 Mar 2023 22:05:26 GMT age: 34747 etag: "cfe8cd953330252e15594f403e2f38ec56acdfd7" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F53327ce0-8541-4bc8-bd51-59cee099b396.jpeg	34.120.237.76	200 OK	7.4 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F53327ce0-8541-4bc8-bd51-59cee099b396.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 7.4 kB (7426 bytes) Hash 1da68df9d96e2758e37b9f15daab027b 5ff19ed6dc5752aa4b15fb88da972b736fd55783 ad924425946dbdf309c764e7097e676185516301feb7722b30d95ffd50b4353f HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F53327ce0-8541-4bc8-bd51-59cee099b396.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 7426 x-amzn-requestid: 85a30298-4613-4a96-bdba-0899fe9f9475 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CdcsgGZsoAMFQkw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-64220e4f-10db431e7632048d7b15e0ec;Sampled=0 x-amzn-remapped-date: Mon, 27 Mar 2023 21:44:47 GMT x-amz-cf-pop: HIO52-P1, SEA19-C1 x-cache: Miss from cloudfront x-amz-cf-id: JDa9YUJ9xo5mo8tb7poZC8XJDp6USTidZjWEwTZCrioJxR7vur6uJw== via: 1.1 f193acd25f2604e189bfbfaf539aaa06.cloudfront.net (CloudFront), 1.1 7514e5e25722778fd4b1744d4ecc67e0.cloudfront.net (CloudFront), 1.1 google date: Mon, 27 Mar 2023 22:00:12 GMT age: 35061 etag: "5ff19ed6dc5752aa4b15fb88da972b736fd55783" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F008df6b4-92c5-423a-a32e-4ab5016464ba.jpeg	34.120.237.76	200 OK	7.0 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F008df6b4-92c5-423a-a32e-4ab5016464ba.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 7.0 kB (6970 bytes) Hash e5d955ec5d3a9f655e4ca0523acfd039 e8b2cd28a02a2cee1b4e57c57570f2598721ff57 e7753ef91d6f04dce00f83cb1ba3ea4f1abb52140993fbee375e506597cee529 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F008df6b4-92c5-423a-a32e-4ab5016464ba.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 6970 x-amzn-requestid: 9f7a82d7-dbba-4c67-a330-6a7f2b68177d x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: Cdn3zGn7oAMFwNQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-64222031-1d97c16f7a9c163c02fe72ac;Sampled=0 x-amzn-remapped-date: Mon, 27 Mar 2023 23:01:05 GMT x-amz-cf-pop: HIO52-P1, SEA19-C1 x-cache: Hit from cloudfront x-amz-cf-id: tFYFwzjyNtfiOJ3pLPC126YgOclndkmPYWrFTdLcWP9LgP9xjj_snQ== via: 1.1 185f4b03b711932fc7e735c08fdc5abe.cloudfront.net (CloudFront), 1.1 d042f60a962591f741406f28a8170c5a.cloudfront.net (CloudFront), 1.1 google date: Mon, 27 Mar 2023 23:10:22 GMT age: 30851 etag: "e8b2cd28a02a2cee1b4e57c57570f2598721ff57" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	www.mediafire.com/cdn-cgi/rum?	104.16.53.48	204 No Content	0 B
URL HTTP/1.1 www.mediafire.com/cdn-cgi/rum? IP 104.16.53.48:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /cdn-cgi/rum? HTTP/1.1 Host: www.mediafire.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/json Content-Length: 608 Origin: http://www.mediafire.com Connection: keep-alive Referer: http://www.mediafire.com/error.php?errno=5 Cookie: ukey=lqrtlk8qlvqm3b8ke2dc9x6harvvr700` `HTTP/1.1 204 No Content Date: Tue, 28 Mar 2023 07:44:40 GMT Connection: keep-alive access-control-allow-origin: http://www.mediafire.com access-control-allow-methods: POST,OPTIONS access-control-max-age: 86400 vary: Origin access-control-allow-credentials: true Server: cloudflare CF-RAY: 7aee3fcb8c59b503-OSL X-Frame-Options: DENY X-Content-Type-Options: nosniff`

	static.cloudflareinsights.com/beacon.min.js/vb26e4fa9e5134444860be286fd8771851679335129114	104.16.56.101	200 OK	0 B
URL HTTP/2 static.cloudflareinsights.com/beacon.min.js/vb26e4fa9e5134444860be286fd8771851679335129114 IP 104.16.56.101:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /beacon.min.js/vb26e4fa9e5134444860be286fd8771851679335129114 HTTP/1.1 Host: static.cloudflareinsights.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: http://www.mediafire.com Connection: keep-alive Referer: http://www.mediafire.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK date: Tue, 28 Mar 2023 07:44:32 GMT content-type: text/javascript;charset=UTF-8 access-control-allow-origin: * cache-control: public, max-age=86400 etag: W/2023.3.0 last-modified: Mon, 20 Mar 2023 17:58:49 GMT cross-origin-resource-policy: cross-origin vary: Accept-Encoding server: cloudflare cf-ray: 7aee3f98bff2b4ee-OSL content-encoding: gzip X-Firefox-Spdy: h2`

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (23)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML