45.154.253.151200 OK 3.8 kB URL User Request GET HTTP/1.1 IP 45.154.253.151:443
ASN #41634 Svea Hosting AB
Certificate IssuerLet's Encrypt
Subjectanonfiles.com
Fingerprint72:DF:F0:B8:EA:8E:3D:A4:8D:1E:BF:BA:3A:98:5F:CA:1E:29:D4:F0
ValiditySun, 26 Mar 2023 09:32:34 GMT - Sat, 24 Jun 2023 09:32:33 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (933)
Hash a3720b78b3f39a4478e86ee5f3cad0a3
4f0f64a1248af507d347760b72197af6c8024354
78917523ee0e3e7ce32d37971eafe4530cc3fe5e123ba269e38ee9087ba20694
GET /VdH48cl6y3 HTTP/1.1
Host: anonfiles.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 28 May 2023 17:50:43 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
x-vdc: Yes
cache-control: public, max-age=60
x-oe: Y
x-oh: 1
Content-Encoding: gzip
anonfiles.com/css/anonfiles.css?1685109493
45.154.253.151200 OK 25 kB URL GET HTTP/1.1 anonfiles.com/css/anonfiles.css?1685109493
IP 45.154.253.151:443
ASN #41634 Svea Hosting AB
Requested by https://anonfiles.com/VdH48cl6y3
Certificate IssuerLet's Encrypt
Subjectanonfiles.com
Fingerprint72:DF:F0:B8:EA:8E:3D:A4:8D:1E:BF:BA:3A:98:5F:CA:1E:29:D4:F0
ValiditySun, 26 Mar 2023 09:32:34 GMT - Sat, 24 Jun 2023 09:32:33 GMT
File type ASCII text, with very long lines (65452)
Hash b97cab6e1166955e8eae870b2dc08774
2dd9ce5cabbcf44ab4d39c91c3b6f23ca059fd3b
bfd1d04319976b5c2cbbe73ca7197ed05bd718901d49da2f65cecf751d3efc65
GET /css/anonfiles.css?1685109493 HTTP/1.1
Host: anonfiles.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://anonfiles.com/VdH48cl6y3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 28 May 2023 17:50:44 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
cache-control: public, max-age=3600
x-oe: Y
x-oh: 6988
Content-Encoding: gzip
anonfiles.com/sw_anonfiles.js
45.154.253.151200 OK 16 kB URL GET HTTP/1.1 anonfiles.com/sw_anonfiles.js
IP 45.154.253.151:443
ASN #41634 Svea Hosting AB
Requested by https://anonfiles.com/VdH48cl6y3
Certificate IssuerLet's Encrypt
Subjectanonfiles.com
Fingerprint72:DF:F0:B8:EA:8E:3D:A4:8D:1E:BF:BA:3A:98:5F:CA:1E:29:D4:F0
ValiditySun, 26 Mar 2023 09:32:34 GMT - Sat, 24 Jun 2023 09:32:33 GMT
File type ASCII text, with very long lines (25712)
Hash 3adab942a2ab6c02c549daaf694f58fa
33792c7a0ee33eb3d88af7eab2b86bcb846aeee5
9091b2493e77eac744b42f7634ab2bbd51f693cc036926c9a91efbeef482d167
GET /sw_anonfiles.js HTTP/1.1
Host: anonfiles.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://anonfiles.com/VdH48cl6y3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 28 May 2023 17:50:44 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
x-vdch: Yes
cache-control: public, max-age=14400
x-oe: Y
x-oh: 8384
Content-Encoding: gzip
anonfiles.com/js/app.js?1685109493
45.154.253.151200 OK 58 kB URL GET HTTP/1.1 anonfiles.com/js/app.js?1685109493
IP 45.154.253.151:443
ASN #41634 Svea Hosting AB
Requested by https://anonfiles.com/VdH48cl6y3
Certificate IssuerLet's Encrypt
Subjectanonfiles.com
Fingerprint72:DF:F0:B8:EA:8E:3D:A4:8D:1E:BF:BA:3A:98:5F:CA:1E:29:D4:F0
ValiditySun, 26 Mar 2023 09:32:34 GMT - Sat, 24 Jun 2023 09:32:33 GMT
File type ASCII text, with very long lines (63238)
Hash fe2ca28edff9bbe292e8ad65115dfcfb
8bcf6e44843e1c4b5239ab463deabfc5c7eec8d5
2382ae43e653914c77c691b477cc0e6151d2183cba4cd4f51218fefa121c02be
GET /js/app.js?1685109493 HTTP/1.1
Host: anonfiles.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://anonfiles.com/VdH48cl6y3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 28 May 2023 17:50:44 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
cache-control: public, max-age=3600
x-oe: Y
x-oh: 5933
Content-Encoding: gzip
anonfiles.com/img/flags/24/in.png
45.154.253.151200 OK 593 B URL GET HTTP/1.1 anonfiles.com/img/flags/24/in.png
IP 45.154.253.151:443
ASN #41634 Svea Hosting AB
Requested by https://anonfiles.com/VdH48cl6y3
Certificate IssuerLet's Encrypt
Subjectanonfiles.com
Fingerprint72:DF:F0:B8:EA:8E:3D:A4:8D:1E:BF:BA:3A:98:5F:CA:1E:29:D4:F0
ValiditySun, 26 Mar 2023 09:32:34 GMT - Sat, 24 Jun 2023 09:32:33 GMT
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash ccaf96cfc341dc9a17e24b96bef223ff
8791d6db6628e0fb21b847ab94484f0c615e38ac
728e008d94e2e3bae2679d50a051562f1ccce1fd604196c7880a3d96f3070354
GET /img/flags/24/in.png HTTP/1.1
Host: anonfiles.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://anonfiles.com/VdH48cl6y3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 28 May 2023 17:50:44 GMT
Content-Type: image/png
Content-Length: 593
Connection: keep-alive
cache-control: public, max-age=3600
x-oe: Y
x-oh: 2717
accept-ranges: bytes
anonfiles.com/img/flags/24/br.png
45.154.253.151200 OK 1.1 kB URL GET HTTP/1.1 anonfiles.com/img/flags/24/br.png
IP 45.154.253.151:443
ASN #41634 Svea Hosting AB
Requested by https://anonfiles.com/VdH48cl6y3
Certificate IssuerLet's Encrypt
Subjectanonfiles.com
Fingerprint72:DF:F0:B8:EA:8E:3D:A4:8D:1E:BF:BA:3A:98:5F:CA:1E:29:D4:F0
ValiditySun, 26 Mar 2023 09:32:34 GMT - Sat, 24 Jun 2023 09:32:33 GMT
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash 6a5938d2e7f7d6f4026d6eb1b4b4f2cd
7a038177fe4deec455d61d3e9c90019fa4727d40
0ab6c46e677fa7e49b6344fcde39c06ff6c014d9163571cdb36f8b5fc59c17eb
GET /img/flags/24/br.png HTTP/1.1
Host: anonfiles.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://anonfiles.com/VdH48cl6y3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 28 May 2023 17:50:44 GMT
Content-Type: image/png
Content-Length: 1115
Connection: keep-alive
cache-control: public, max-age=3600
x-oe: Y
x-oh: 1364
accept-ranges: bytes
vjs.zencdn.net/7.3.0/video.min.js
151.101.194.217200 OK 132 kB URL GET HTTP/2 vjs.zencdn.net/7.3.0/video.min.js
IP 151.101.194.217:443
Requested by https://anonfiles.com/VdH48cl6y3
Certificate IssuerGlobalSign nv-sa
Subjectvjs.zencdn.net
FingerprintF1:9D:59:01:F6:51:96:37:CE:E1:24:CD:15:E5:5E:AA:56:F0:05:7E
ValidityTue, 30 Aug 2022 21:42:19 GMT - Sun, 01 Oct 2023 21:42:18 GMT
File type Unicode text, UTF-8 text, with very long lines (65141)
Size 132 kB (132230 bytes)
Hash 057f19acd50fc7e3ad917dd600889ee5
479d8baad992ec24bf4c3ac8365014be01565219
963ccc559571c588baa7f6d61513b26277c7847c250773e3270c51f5038216fb
GET /7.3.0/video.min.js HTTP/1.1
Host: vjs.zencdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://anonfiles.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
last-modified: Fri, 26 Oct 2018 18:06:27 GMT
etag: "057f19acd50fc7e3ad917dd600889ee5"
cache-control: public, max-age=31536000
content-type: application/javascript; charset=utf-8
content-encoding: gzip
date: Sun, 28 May 2023 17:50:44 GMT
x-served-by: cache-bma1637-BMA
x-cache: HIT
x-cache-hits: 2
vary: Accept-Encoding
access-control-allow-origin: *
timing-allow-origin: *
content-length: 132230
X-Firefox-Spdy: h2
anonfiles.com/img/flags/24/es.png
45.154.253.151200 OK 666 B URL GET HTTP/1.1 anonfiles.com/img/flags/24/es.png
IP 45.154.253.151:443
ASN #41634 Svea Hosting AB
Requested by https://anonfiles.com/VdH48cl6y3
Certificate IssuerLet's Encrypt
Subjectanonfiles.com
Fingerprint72:DF:F0:B8:EA:8E:3D:A4:8D:1E:BF:BA:3A:98:5F:CA:1E:29:D4:F0
ValiditySun, 26 Mar 2023 09:32:34 GMT - Sat, 24 Jun 2023 09:32:33 GMT
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash 5fa381a8eb16d9e673d32980e7fd1710
fc29fbbebe97109ef1d16a0d4a65637d6b725ac8
7b6f223153c8eda1b541326f9cd66aeb53a28801c58c4de751fd2f9f6f1d96ff
GET /img/flags/24/es.png HTTP/1.1
Host: anonfiles.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://anonfiles.com/VdH48cl6y3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 28 May 2023 17:50:44 GMT
Content-Type: image/png
Content-Length: 666
Connection: keep-alive
cache-control: public, max-age=3600
x-oe: Y
x-oh: 1206
accept-ranges: bytes
vjs.zencdn.net/7.3.0/video-js.min.css
151.101.194.217200 OK 9.7 kB URL GET HTTP/2 vjs.zencdn.net/7.3.0/video-js.min.css
IP 151.101.194.217:443
Requested by https://anonfiles.com/VdH48cl6y3
Certificate IssuerGlobalSign nv-sa
Subjectvjs.zencdn.net
FingerprintF1:9D:59:01:F6:51:96:37:CE:E1:24:CD:15:E5:5E:AA:56:F0:05:7E
ValidityTue, 30 Aug 2022 21:42:19 GMT - Sun, 01 Oct 2023 21:42:18 GMT
File type ASCII text, with very long lines (35998), with no line terminators
Hash 895e6b29db41953ef6197815c6be59d3
065ac8dbb45ff81cf4a079f342c4022d5fbcbe7e
9ae8eacf58c6f1d8dc071a099ef7ef4c88d1c73ef2e71369cd8d7cc7c6aee5c9
GET /7.3.0/video-js.min.css HTTP/1.1
Host: vjs.zencdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://anonfiles.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
last-modified: Fri, 26 Oct 2018 18:06:27 GMT
etag: "895e6b29db41953ef6197815c6be59d3"
cache-control: public, max-age=31536000
content-type: text/css; charset=utf-8
content-encoding: gzip
date: Sun, 28 May 2023 17:50:44 GMT
x-served-by: cache-bma1637-BMA
x-cache: HIT
x-cache-hits: 8894
vary: Accept-Encoding
access-control-allow-origin: *
timing-allow-origin: *
content-length: 9673
X-Firefox-Spdy: h2
anonfiles.com/img/flags/24/fr.png
45.154.253.151200 OK 536 B URL GET HTTP/1.1 anonfiles.com/img/flags/24/fr.png
IP 45.154.253.151:443
ASN #41634 Svea Hosting AB
Requested by https://anonfiles.com/VdH48cl6y3
Certificate IssuerLet's Encrypt
Subjectanonfiles.com
Fingerprint72:DF:F0:B8:EA:8E:3D:A4:8D:1E:BF:BA:3A:98:5F:CA:1E:29:D4:F0
ValiditySun, 26 Mar 2023 09:32:34 GMT - Sat, 24 Jun 2023 09:32:33 GMT
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash e81efecf1a1b1d3a17d00a904c5cc3c9
1203894dbfc8363302dc709d852c05a4dd8bf9dc
54df4beda3ad05d5c621511ff15b2882588ff457e36132035d5f21fb29f2a750
GET /img/flags/24/fr.png HTTP/1.1
Host: anonfiles.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://anonfiles.com/VdH48cl6y3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 28 May 2023 17:50:44 GMT
Content-Type: image/png
Content-Length: 536
Connection: keep-alive
cache-control: public, max-age=3600
x-oe: Y
x-oh: 781
accept-ranges: bytes
anonfiles.com/img/flags/24/de.png
45.154.253.151200 OK 483 B URL GET HTTP/1.1 anonfiles.com/img/flags/24/de.png
IP 45.154.253.151:443
ASN #41634 Svea Hosting AB
Requested by https://anonfiles.com/VdH48cl6y3
Certificate IssuerLet's Encrypt
Subjectanonfiles.com
Fingerprint72:DF:F0:B8:EA:8E:3D:A4:8D:1E:BF:BA:3A:98:5F:CA:1E:29:D4:F0
ValiditySun, 26 Mar 2023 09:32:34 GMT - Sat, 24 Jun 2023 09:32:33 GMT
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash 9f8cc07c258bcd2de0c7900861e20ffc
fed97219e44693d4f3918fc4037b325732225d81
07cd5a4cad20604f77dced9c7d8a92ca9ae3321718e5a1935296e4d75f921a19
GET /img/flags/24/de.png HTTP/1.1
Host: anonfiles.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://anonfiles.com/VdH48cl6y3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 28 May 2023 17:50:44 GMT
Content-Type: image/png
Content-Length: 483
Connection: keep-alive
cache-control: public, max-age=3600
x-oe: Y
x-oh: 785
accept-ranges: bytes
anonfiles.com/img/flags/24/no.png
45.154.253.151200 OK 611 B URL GET HTTP/1.1 anonfiles.com/img/flags/24/no.png
IP 45.154.253.151:443
ASN #41634 Svea Hosting AB
Requested by https://anonfiles.com/VdH48cl6y3
Certificate IssuerLet's Encrypt
Subjectanonfiles.com
Fingerprint72:DF:F0:B8:EA:8E:3D:A4:8D:1E:BF:BA:3A:98:5F:CA:1E:29:D4:F0
ValiditySun, 26 Mar 2023 09:32:34 GMT - Sat, 24 Jun 2023 09:32:33 GMT
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash f14ac70aa6dd4d371671c0e6d7cba4e3
1139e3acd6e073bffb59157cbc10af72ed757218
9a4473862ea2b9bd1c5e1543900416e693b33516cae53fde32e1c3a83d3382e4
GET /img/flags/24/no.png HTTP/1.1
Host: anonfiles.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://anonfiles.com/VdH48cl6y3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 28 May 2023 17:50:44 GMT
Content-Type: image/png
Content-Length: 611
Connection: keep-alive
cache-control: public, max-age=3600
x-oe: Y
x-oh: 1147
accept-ranges: bytes
anonfiles.com/img/flags/24/pl.png
45.154.253.151200 OK 347 B URL GET HTTP/1.1 anonfiles.com/img/flags/24/pl.png
IP 45.154.253.151:443
ASN #41634 Svea Hosting AB
Requested by https://anonfiles.com/VdH48cl6y3
Certificate IssuerLet's Encrypt
Subjectanonfiles.com
Fingerprint72:DF:F0:B8:EA:8E:3D:A4:8D:1E:BF:BA:3A:98:5F:CA:1E:29:D4:F0
ValiditySun, 26 Mar 2023 09:32:34 GMT - Sat, 24 Jun 2023 09:32:33 GMT
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash baf3aff7caef0be58f29b41f20a0e4db
11c840dfa1f1bd22a04aa1fa53fcac95f381b9a6
0a3a8803b7a137166a04369522ec2b31513dcd4c07e2120107c55d9a7f7b646f
GET /img/flags/24/pl.png HTTP/1.1
Host: anonfiles.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://anonfiles.com/VdH48cl6y3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 28 May 2023 17:50:44 GMT
Content-Type: image/png
Content-Length: 347
Connection: keep-alive
cache-control: public, max-age=3600
x-oe: Y
x-oh: 1161
accept-ranges: bytes
anonfiles.com/img/flags/24/fi.png
45.154.253.151200 OK 456 B URL GET HTTP/1.1 anonfiles.com/img/flags/24/fi.png
IP 45.154.253.151:443
ASN #41634 Svea Hosting AB
Requested by https://anonfiles.com/VdH48cl6y3
Certificate IssuerLet's Encrypt
Subjectanonfiles.com
Fingerprint72:DF:F0:B8:EA:8E:3D:A4:8D:1E:BF:BA:3A:98:5F:CA:1E:29:D4:F0
ValiditySun, 26 Mar 2023 09:32:34 GMT - Sat, 24 Jun 2023 09:32:33 GMT
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash 0ea9115d18d5210d4f1db520881faa3a
09829c2b7b5e4bae28d62b1dff90220f28c3bdf5
544fee9d1bff8bc83865ab87538924de207ebe4848787496c7308b91b539b6da
GET /img/flags/24/fi.png HTTP/1.1
Host: anonfiles.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://anonfiles.com/VdH48cl6y3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 28 May 2023 17:50:44 GMT
Content-Type: image/png
Content-Length: 456
Connection: keep-alive
cache-control: public, max-age=3600
x-oe: Y
x-oh: 884
accept-ranges: bytes
anonfiles.com/img/flags/24/se.png
45.154.253.151200 OK 581 B URL GET HTTP/1.1 anonfiles.com/img/flags/24/se.png
IP 45.154.253.151:443
ASN #41634 Svea Hosting AB
Requested by https://anonfiles.com/VdH48cl6y3
Certificate IssuerLet's Encrypt
Subjectanonfiles.com
Fingerprint72:DF:F0:B8:EA:8E:3D:A4:8D:1E:BF:BA:3A:98:5F:CA:1E:29:D4:F0
ValiditySun, 26 Mar 2023 09:32:34 GMT - Sat, 24 Jun 2023 09:32:33 GMT
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash c9b1e40987c4411b4a7d13c07a8843aa
cfce93be3ba77e4e30033d25e2e5c6a37da1b27d
8c04b3b52d605637bb4c6a26449c45e5320a3f33f14e8c737ce599433bc19f14
GET /img/flags/24/se.png HTTP/1.1
Host: anonfiles.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://anonfiles.com/VdH48cl6y3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 28 May 2023 17:50:44 GMT
Content-Type: image/png
Content-Length: 581
Connection: keep-alive
cache-control: public, max-age=3600
x-oe: Y
x-oh: 1064
accept-ranges: bytes
djv99sxoqpv11.cloudfront.net/?xsvjd=737329
54.230.245.107200 OK 68 kB URL GET HTTP/2 djv99sxoqpv11.cloudfront.net/?xsvjd=737329
IP 54.230.245.107:443
Requested by https://anonfiles.com/VdH48cl6y3
Certificate IssuerAmazon
Subject*.cloudfront.net
FingerprintBA:0F:CD:B3:EA:19:B2:9D:99:9B:51:2D:16:33:6B:D0:3F:31:A2:AB
ValidityThu, 08 Dec 2022 00:00:00 GMT - Thu, 07 Dec 2023 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (15948)
Hash bd5d57108c95423db3e738a81990001f
63aec2211912c1d79b22a89ed751deac514cf6e0
cfee1ee6732c185f9b51b1669d60dff2c644c0491c23daefd4b037719cc28490
GET /?xsvjd=737329 HTTP/1.1
Host: djv99sxoqpv11.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://anonfiles.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-length: 68466
date: Sun, 28 May 2023 17:50:44 GMT
access-control-allow-origin: *
cache-control: no-store, no-cache, proxy-revalidate, must-revalidate, private, no-transform
content-encoding: gzip
pragma: no-cache
x-cache: Miss from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: _LzsAktvMZ7pvQ66Fo_ARZFZ7mdcTDis3nnqptoN9-Hc0Qw09abiQg==
X-Firefox-Spdy: h2
anonfiles.com/static/logo.png
45.154.253.151200 OK 18 kB URL GET HTTP/1.1 anonfiles.com/static/logo.png
IP 45.154.253.151:443
ASN #41634 Svea Hosting AB
Requested by https://anonfiles.com/VdH48cl6y3
Certificate IssuerLet's Encrypt
Subjectanonfiles.com
Fingerprint72:DF:F0:B8:EA:8E:3D:A4:8D:1E:BF:BA:3A:98:5F:CA:1E:29:D4:F0
ValiditySun, 26 Mar 2023 09:32:34 GMT - Sat, 24 Jun 2023 09:32:33 GMT
File type PNG image data, 450 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash f9fd716d30e220aa24bab0e94ebf0aa0
4af32d78655436173f272bb65159a232f1671b8d
5e937c4d8fd33714e43b400f238cf37630e6eaeefa105cca9d77760223a16e94
GET /static/logo.png HTTP/1.1
Host: anonfiles.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://anonfiles.com/VdH48cl6y3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 28 May 2023 17:50:44 GMT
Content-Type: image/png
Content-Length: 18441
Connection: keep-alive
last-modified: Wed, 16 Nov 2022 12:55:21 GMT
etag: "6374ddb9-4809"
anonfiles.com/img/flags/24/dk.png
45.154.253.151200 OK 537 B URL GET HTTP/1.1 anonfiles.com/img/flags/24/dk.png
IP 45.154.253.151:443
ASN #41634 Svea Hosting AB
Requested by https://anonfiles.com/VdH48cl6y3
Certificate IssuerLet's Encrypt
Subjectanonfiles.com
Fingerprint72:DF:F0:B8:EA:8E:3D:A4:8D:1E:BF:BA:3A:98:5F:CA:1E:29:D4:F0
ValiditySun, 26 Mar 2023 09:32:34 GMT - Sat, 24 Jun 2023 09:32:33 GMT
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash b6ebe55a7d176720cd2b1003298187a8
930858408b9af1f79c430bbe15c185db555a7815
07575cf7a8d7d2b8edfbea80f8e8a228ecc56a03a567bc60c0ef4dc6ac0f328a
GET /img/flags/24/dk.png HTTP/1.1
Host: anonfiles.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://anonfiles.com/VdH48cl6y3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 28 May 2023 17:50:45 GMT
Content-Type: image/png
Content-Length: 537
Connection: keep-alive
cache-control: public, max-age=3600
x-oe: Y
x-oh: 2844
accept-ranges: bytes
gforanythingamgl.info/NnZ6N0EZSRlEfGxFFgQXbgYvYxR0HisGB3skFwYObkYCfxsGO1xDKFJLTQR2BUVKETFfEkcGeRAFDlY1QwVHBmdfGBxYfBAARwZvBlhIGXIQA0cGZ0IGG1B8B1AKQzVaS0sBeQNEQwFzAkJMBHY
104.21.93.237204 No Content 0 B URL GET HTTP/2 gforanythingamgl.info/NnZ6N0EZSRlEfGxFFgQXbgYvYxR0HisGB3skFwYObkYCfxsGO1xDKFJLTQR2BUVKETFfEkcGeRAFDlY1QwVHBmdfGBxYfBAARwZvBlhIGXIQA0cGZ0IGG1B8B1AKQzVaS0sBeQNEQwFzAkJMBHY
IP 104.21.93.237:443
Requested by https://anonfiles.com/VdH48cl6y3
Certificate IssuerGoogle Trust Services LLC
Subjectgforanythingamgl.info
Fingerprint5E:50:F4:C2:4F:D9:85:4E:40:F6:9A:2E:AC:04:DE:C2:79:BB:A8:74
ValidityFri, 05 May 2023 13:46:21 GMT - Thu, 03 Aug 2023 13:46:20 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /NnZ6N0EZSRlEfGxFFgQXbgYvYxR0HisGB3skFwYObkYCfxsGO1xDKFJLTQR2BUVKETFfEkcGeRAFDlY1QwVHBmdfGBxYfBAARwZvBlhIGXIQA0cGZ0IGG1B8B1AKQzVaS0sBeQNEQwFzAkJMBHY HTTP/1.1
Host: gforanythingamgl.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://anonfiles.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Sun, 28 May 2023 17:50:45 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8vTdx1wKjAsyae%2BnZoyh5MDfx71pum%2B1vbx67WHVz%2F2iIiD8roGAHZ51Qzaxgrbu17%2FyT9dxPQO3n25fO9XgQS0fBoHS7aRC5R3I0QVHy2hbXDr3%2FkYolkf%2Bj9iHjRa04%2FJwFzF7d0U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ce8577b1c36b523-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
gforanythingamgl.info/aTd4dFFGCBsHbAtZKkI1Lg4gJRQFdiAYNSxjEww3PnI+MANYVF4AOA0KT0dmWgVBUiEAU0VFdxpDGQAkGgpJUjgHURdJdx8KSVpiXRlLRn9bEQ1JYE9DCBU2VAZeBCUdW0VFZ1ECSk1nWwNMQmBQ
104.21.93.237204 No Content 0 B URL GET HTTP/2 gforanythingamgl.info/aTd4dFFGCBsHbAtZKkI1Lg4gJRQFdiAYNSxjEww3PnI+MANYVF4AOA0KT0dmWgVBUiEAU0VFdxpDGQAkGgpJUjgHURdJdx8KSVpiXRlLRn9bEQ1JYE9DCBU2VAZeBCUdW0VFZ1ECSk1nWwNMQmBQ
IP 104.21.93.237:443
Requested by https://anonfiles.com/VdH48cl6y3
Certificate IssuerGoogle Trust Services LLC
Subjectgforanythingamgl.info
Fingerprint5E:50:F4:C2:4F:D9:85:4E:40:F6:9A:2E:AC:04:DE:C2:79:BB:A8:74
ValidityFri, 05 May 2023 13:46:21 GMT - Thu, 03 Aug 2023 13:46:20 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /aTd4dFFGCBsHbAtZKkI1Lg4gJRQFdiAYNSxjEww3PnI+MANYVF4AOA0KT0dmWgVBUiEAU0VFdxpDGQAkGgpJUjgHURdJdx8KSVpiXRlLRn9bEQ1JYE9DCBU2VAZeBCUdW0VFZ1ECSk1nWwNMQmBQ HTTP/1.1
Host: gforanythingamgl.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://anonfiles.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Sun, 28 May 2023 17:50:45 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PB7OO%2FYXm4MdhKmDNW1denC3W3Du34i%2BWuGv9KgdCmEzeStsq17MT%2FPlFICfTdXzZ0pLCClcWs92TJGab2ydPQGj5Hq%2BPjDmhn2eCbFNTAq8nDtW4XbCRdvzfR%2BAm47OROsRBeGG7Kg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ce8577b1c31b523-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
adthereissome.info/eDhxUHAZWhI9TxkFE3YFClRMdUI+HUMWFBJOSGkDAFcAIAZJCV8zHBdNFTYCF1YFfh4dTFRiNhxdNmE1Ggo0MjERVzsIFw99OBY6L2tAIEMgbhk1MgJbMBQHEGkwN0A/cDBoQTtrQQU6PAxJFwlMVCg4AxpwNxJAK2lBCjEBdiICCEh8O2E6KWAWJxc8bgkdIwJ5FxQYNmk8EQMxfQYjHDtpGgA0SnEQETUteTooJTF+MBUcK1Q8dUI6bzYgFip9ATQSOlwgAyUQCz0FIjNgIjc3PE9BBikuCSMRNi5BPBYUNWs5MwQqfQE0PhBUNAMJAAkpYRgvYCZ9QTNtQTc7MWkGGzZIUEMbJjZxKRgiHm00OBMhbkACOB9pQxMXG2A3BzYcckE8ExxtNwIoEFBECBdeUgI/HggFNzIXHFoANjwUcQsDCi5w
65.9.55.48200 OK 1.2 kB URL GET HTTP/2 adthereissome.info/eDhxUHAZWhI9TxkFE3YFClRMdUI+HUMWFBJOSGkDAFcAIAZJCV8zHBdNFTYCF1YFfh4dTFRiNhxdNmE1Ggo0MjERVzsIFw99OBY6L2tAIEMgbhk1MgJbMBQHEGkwN0A/cDBoQTtrQQU6PAxJFwlMVCg4AxpwNxJAK2lBCjEBdiICCEh8O2E6KWAWJxc8bgkdIwJ5FxQYNmk8EQMxfQYjHDtpGgA0SnEQETUteTooJTF+MBUcK1Q8dUI6bzYgFip9ATQSOlwgAyUQCz0FIjNgIjc3PE9BBikuCSMRNi5BPBYUNWs5MwQqfQE0PhBUNAMJAAkpYRgvYCZ9QTNtQTc7MWkGGzZIUEMbJjZxKRgiHm00OBMhbkACOB9pQxMXG2A3BzYcckE8ExxtNwIoEFBECBdeUgI/HggFNzIXHFoANjwUcQsDCi5w
IP 65.9.55.48:443
Requested by https://anonfiles.com/VdH48cl6y3
Certificate IssuerAmazon
Subjectadthereissome.info
Fingerprint21:40:7C:A8:E9:22:33:8E:6F:E6:0A:C2:79:2F:18:FD:76:73:C9:7E
ValidityFri, 05 May 2023 00:00:00 GMT - Sun, 02 Jun 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3027), with no line terminators
Hash 4aa815c70fb60ead458f3da9b2c18f25
d6923e3062733489572836657322d99550025ed9
61b7dbbfab91bed1b3e7f9380a8ec6bfb27c00a25396c3e1bcd88a7d33a0cfff
GET /eDhxUHAZWhI9TxkFE3YFClRMdUI+HUMWFBJOSGkDAFcAIAZJCV8zHBdNFTYCF1YFfh4dTFRiNhxdNmE1Ggo0MjERVzsIFw99OBY6L2tAIEMgbhk1MgJbMBQHEGkwN0A/cDBoQTtrQQU6PAxJFwlMVCg4AxpwNxJAK2lBCjEBdiICCEh8O2E6KWAWJxc8bgkdIwJ5FxQYNmk8EQMxfQYjHDtpGgA0SnEQETUteTooJTF+MBUcK1Q8dUI6bzYgFip9ATQSOlwgAyUQCz0FIjNgIjc3PE9BBikuCSMRNi5BPBYUNWs5MwQqfQE0PhBUNAMJAAkpYRgvYCZ9QTNtQTc7MWkGGzZIUEMbJjZxKRgiHm00OBMhbkACOB9pQxMXG2A3BzYcckE8ExxtNwIoEFBECBdeUgI/HggFNzIXHFoANjwUcQsDCi5w HTTP/1.1
Host: adthereissome.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://anonfiles.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html
content-length: 1178
date: Sun, 28 May 2023 17:50:45 GMT
server: openresty/1.17.8.2
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
content-encoding: gzip
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List
x-cache: Miss from cloudfront
via: 1.1 0edd9f6bc061f9d64e77285b1cac290c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN54-C1
x-amz-cf-id: 7PKOPMc7_C1pA5KQ1XJAiaZZNNzGYler8vqHABhmU8sM_E7DV5n72A==
X-Firefox-Spdy: h2
adthereissome.info/OFJnaFlZMAQFZllvBU4sSj5aTWt+d1UuPVIkXlEqQD0WGC8JY0kLNVcnAw4rVzwTRjddJkJaH1cwMDIcWQcEJxprPTcNG1MCLi4LTwoLLmpvPAMkHXwxICMLCTAlOipcHFYlLm0RLiUbQBMhMQtTMS4uCwsBEAc1eislOQh7Fy8iH3oKPg8+UhZWHC5sKC4lDkE5IDgIaRksKTFRCh4qIWphAyEPcAAlOGhACj4+Nn4BITppegFTLBxCKioMDwg3AS5hYQVWIjFvNTEhD3ADBSUMUAQlPjELBCIAaWkVLQ4PUR8qIhhhGD4+KnoKVjJobwoDCw9WfzElPW5iJiQLSzskHzIABi89K25hMTE4bmMmJQ9qYEECKlc8F1UYSgg9XS0BNwYJDVQ
65.9.55.48200 OK 1.2 kB URL GET HTTP/2 adthereissome.info/OFJnaFlZMAQFZllvBU4sSj5aTWt+d1UuPVIkXlEqQD0WGC8JY0kLNVcnAw4rVzwTRjddJkJaH1cwMDIcWQcEJxprPTcNG1MCLi4LTwoLLmpvPAMkHXwxICMLCTAlOipcHFYlLm0RLiUbQBMhMQtTMS4uCwsBEAc1eislOQh7Fy8iH3oKPg8+UhZWHC5sKC4lDkE5IDgIaRksKTFRCh4qIWphAyEPcAAlOGhACj4+Nn4BITppegFTLBxCKioMDwg3AS5hYQVWIjFvNTEhD3ADBSUMUAQlPjELBCIAaWkVLQ4PUR8qIhhhGD4+KnoKVjJobwoDCw9WfzElPW5iJiQLSzskHzIABi89K25hMTE4bmMmJQ9qYEECKlc8F1UYSgg9XS0BNwYJDVQ
IP 65.9.55.48:443
Requested by https://anonfiles.com/VdH48cl6y3
Certificate IssuerAmazon
Subjectadthereissome.info
Fingerprint21:40:7C:A8:E9:22:33:8E:6F:E6:0A:C2:79:2F:18:FD:76:73:C9:7E
ValidityFri, 05 May 2023 00:00:00 GMT - Sun, 02 Jun 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2998), with no line terminators
Hash f9d71b22021716120bf28861ca887545
a43b7cd4fbb790fd8ffcd83a57d9c65506dc693e
0ebf99a8ac2e90949e3b558489706a26f8ac54ca7403760d7e53fb607f648a55
GET /OFJnaFlZMAQFZllvBU4sSj5aTWt+d1UuPVIkXlEqQD0WGC8JY0kLNVcnAw4rVzwTRjddJkJaH1cwMDIcWQcEJxprPTcNG1MCLi4LTwoLLmpvPAMkHXwxICMLCTAlOipcHFYlLm0RLiUbQBMhMQtTMS4uCwsBEAc1eislOQh7Fy8iH3oKPg8+UhZWHC5sKC4lDkE5IDgIaRksKTFRCh4qIWphAyEPcAAlOGhACj4+Nn4BITppegFTLBxCKioMDwg3AS5hYQVWIjFvNTEhD3ADBSUMUAQlPjELBCIAaWkVLQ4PUR8qIhhhGD4+KnoKVjJobwoDCw9WfzElPW5iJiQLSzskHzIABi89K25hMTE4bmMmJQ9qYEECKlc8F1UYSgg9XS0BNwYJDVQ HTTP/1.1
Host: adthereissome.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://anonfiles.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html
content-length: 1154
date: Sun, 28 May 2023 17:50:45 GMT
server: openresty/1.17.8.2
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
content-encoding: gzip
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List
x-cache: Miss from cloudfront
via: 1.1 0edd9f6bc061f9d64e77285b1cac290c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN54-C1
x-amz-cf-id: kv20VLNGPKz0UUo9rdmyg6Ey_mchhYZv3pEaTg_oNaT69qoXS85hUg==
X-Firefox-Spdy: h2
anonfiles.com/img/flags/24/us.png
45.154.253.151200 OK 656 B URL GET HTTP/1.1 anonfiles.com/img/flags/24/us.png
IP 45.154.253.151:443
ASN #41634 Svea Hosting AB
Requested by https://anonfiles.com/VdH48cl6y3
Certificate IssuerLet's Encrypt
Subjectanonfiles.com
Fingerprint72:DF:F0:B8:EA:8E:3D:A4:8D:1E:BF:BA:3A:98:5F:CA:1E:29:D4:F0
ValiditySun, 26 Mar 2023 09:32:34 GMT - Sat, 24 Jun 2023 09:32:33 GMT
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash ae506a6c014bfeb8d8cbfdfbe94c14c9
f4e74440c4e79e71959b9b8f799f2e8a7e15b7ee
bc6dd978e70894c8a0148e6806f4fde9566ee59349adb03c02a61a3b2e25b6f1
GET /img/flags/24/us.png HTTP/1.1
Host: anonfiles.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://anonfiles.com/VdH48cl6y3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 28 May 2023 17:50:45 GMT
Content-Type: image/png
Content-Length: 656
Connection: keep-alive
cache-control: public, max-age=3600
x-oe: Y
x-oh: 1008
accept-ranges: bytes
adthereissome.info/utx?tid=737323&top=anonfiles.com&cb=BJN1AX6AdMwu
65.9.55.48204 No Content 0 B URL GET HTTP/2 adthereissome.info/utx?tid=737323&top=anonfiles.com&cb=BJN1AX6AdMwu
IP 65.9.55.48:443
Requested by https://anonfiles.com/VdH48cl6y3
Certificate IssuerAmazon
Subjectadthereissome.info
Fingerprint21:40:7C:A8:E9:22:33:8E:6F:E6:0A:C2:79:2F:18:FD:76:73:C9:7E
ValidityFri, 05 May 2023 00:00:00 GMT - Sun, 02 Jun 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /utx?tid=737323&top=anonfiles.com&cb=BJN1AX6AdMwu HTTP/1.1
Host: adthereissome.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://anonfiles.com
DNT: 1
Connection: keep-alive
Referer: https://anonfiles.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Sun, 28 May 2023 17:50:45 GMT
server: openresty/1.17.8.2
access-control-allow-credentials: true
access-control-allow-origin: https://anonfiles.com
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
set-cookie: ut=x; Expires=Sun, 28 May 2023 17:51:45 GMT; Max-Age=60
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List
x-cache: Miss from cloudfront
via: 1.1 0edd9f6bc061f9d64e77285b1cac290c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN54-C1
x-amz-cf-id: HoYhkBq1_eiUOXOgzIWkNF4nx8_7nYEjXGosDG80ZDLVsTXKUtY3ow==
X-Firefox-Spdy: h2
anonfiles.com/img/flags/24/ru.png
45.154.253.151200 OK 403 B URL GET HTTP/1.1 anonfiles.com/img/flags/24/ru.png
IP 45.154.253.151:443
ASN #41634 Svea Hosting AB
Requested by https://anonfiles.com/VdH48cl6y3
Certificate IssuerLet's Encrypt
Subjectanonfiles.com
Fingerprint72:DF:F0:B8:EA:8E:3D:A4:8D:1E:BF:BA:3A:98:5F:CA:1E:29:D4:F0
ValiditySun, 26 Mar 2023 09:32:34 GMT - Sat, 24 Jun 2023 09:32:33 GMT
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash d8df89b036e6afb48f72d2440831bad0
04abb4b29dae9c6f1ac0f1d8a507aabe26a3be35
2db4b55326c0ef7cd3caf53e835ae1f38629da1d1c2f5a127e0785165b16078c
GET /img/flags/24/ru.png HTTP/1.1
Host: anonfiles.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://anonfiles.com/VdH48cl6y3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 28 May 2023 17:50:45 GMT
Content-Type: image/png
Content-Length: 403
Connection: keep-alive
cache-control: public, max-age=3600
x-oe: Y
x-oh: 1280
accept-ranges: bytes
anonfiles.com/img/flags/24/jp.png
45.154.253.151200 OK 599 B URL GET HTTP/1.1 anonfiles.com/img/flags/24/jp.png
IP 45.154.253.151:443
ASN #41634 Svea Hosting AB
Requested by https://anonfiles.com/VdH48cl6y3
Certificate IssuerLet's Encrypt
Subjectanonfiles.com
Fingerprint72:DF:F0:B8:EA:8E:3D:A4:8D:1E:BF:BA:3A:98:5F:CA:1E:29:D4:F0
ValiditySun, 26 Mar 2023 09:32:34 GMT - Sat, 24 Jun 2023 09:32:33 GMT
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash 857f6f0e0886a3729b758b7241e42e61
a7be973a93c6ad51cf07a9f21a5dd72cc3e15680
8e7b1cd46120293756d1f21bac4de809d2895c7c26dc7586e3e2a09a0f7c1d64
GET /img/flags/24/jp.png HTTP/1.1
Host: anonfiles.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://anonfiles.com/VdH48cl6y3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 28 May 2023 17:50:45 GMT
Content-Type: image/png
Content-Length: 599
Connection: keep-alive
cache-control: public, max-age=3600
x-oe: Y
x-oh: 2774
accept-ranges: bytes
anonfiles.com/img/flags/24/kr.png
45.154.253.151200 OK 988 B URL GET HTTP/1.1 anonfiles.com/img/flags/24/kr.png
IP 45.154.253.151:443
ASN #41634 Svea Hosting AB
Requested by https://anonfiles.com/VdH48cl6y3
Certificate IssuerLet's Encrypt
Subjectanonfiles.com
Fingerprint72:DF:F0:B8:EA:8E:3D:A4:8D:1E:BF:BA:3A:98:5F:CA:1E:29:D4:F0
ValiditySun, 26 Mar 2023 09:32:34 GMT - Sat, 24 Jun 2023 09:32:33 GMT
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash cb22f00511d088a71e84f8c1c864caed
6599812ed106bda6017487287e12bc836570649f
09a03e08c73db3d8fb50241f004b69d673ec8ea90a6ca7252d66ce821d0b6db1
GET /img/flags/24/kr.png HTTP/1.1
Host: anonfiles.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://anonfiles.com/VdH48cl6y3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 28 May 2023 17:50:45 GMT
Content-Type: image/png
Content-Length: 988
Connection: keep-alive
cache-control: public, max-age=3600
x-oe: Y
x-oh: 1110
accept-ranges: bytes
djv99sxoqpv11.cloudfront.net/deG1Eb2EbAioJXgwEIFJWS1p3XVheBzcADwhQAg0GHA81CS0UJD48Gy4lYhsbHFB0SQ0ZAyNSRx0DJ1JQXgwgDVxMSzAfDhNQMAsIEwslCQkPD2IaAEUAKxUIFAElSlM+WGpfREpdbBdQSUh3LURKXSgGDw0VYV1RAFVyMFdMSHctREpdNhlESyx1X1hWXW-1KU0gKIQwKF0h2KVNIXHRfUEhcYV1RHgQ2CgcXFWFdJ0lcdUFRXhh5Xg
54.230.245.107 571 B URL djv99sxoqpv11.cloudfront.net/deG1Eb2EbAioJXgwEIFJWS1p3XVheBzcADwhQAg0GHA81CS0UJD48Gy4lYhsbHFB0SQ0ZAyNSRx0DJ1JQXgwgDVxMSzAfDhNQMAsIEwslCQkPD2IaAEUAKxUIFAElSlM+WGpfREpdbBdQSUh3LURKXSgGDw0VYV1RAFVyMFdMSHctREpdNhlESyx1X1hWXW-1KU0gKIQwKF0h2KVNIXHRfUEhcYV1RHgQ2CgcXFWFdJ0lcdUFRXhh5Xg
IP 54.230.245.107:0
Certificate IssuerAmazon
Subject*.cloudfront.net
FingerprintBA:0F:CD:B3:EA:19:B2:9D:99:9B:51:2D:16:33:6B:D0:3F:31:A2:AB
ValidityThu, 08 Dec 2022 00:00:00 GMT - Thu, 07 Dec 2023 23:59:59 GMT
File type ASCII text, with very long lines (803), with no line terminators
Hash e7494097f54a1302cd89e83641663d4c
0676ce4eacd26135368ebbe64a070c6950f83483
bbffbb230d7c7a5a7b24e9cd35c336fef3031cdafd4a3199d97594db6034f715
GET /deG1Eb2EbAioJXgwEIFJWS1p3XVheBzcADwhQAg0GHA81CS0UJD48Gy4lYhsbHFB0SQ0ZAyNSRx0DJ1JQXgwgDVxMSzAfDhNQMAsIEwslCQkPD2IaAEUAKxUIFAElSlM+WGpfREpdbBdQSUh3LURKXSgGDw0VYV1RAFVyMFdMSHctREpdNhlESyx1X1hWXW-1KU0gKIQwKF0h2KVNIXHRfUEhcYV1RHgQ2CgcXFWFdJ0lcdUFRXhh5Xg HTTP/1.1
Host: djv99sxoqpv11.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://adthereissome.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 571
date: Sun, 28 May 2023 17:50:45 GMT
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ypiriw9AXwskRGF4W9iVKRwxiNVd11So9ng1Z-ZnPWh70OPsDCiSEA==
X-Firefox-Spdy: h2
djv99sxoqpv11.cloudfront.net/obWZEaUcOCSoPeBkPIFRwXlF3WndLDDcGKR1bBRsdN1MwUCIMBxAFYRkcIFR3SwolByBQQCEHJFBXYggjD1twTzIMWykGPQQKKAhiXyBxR3dIVHRBP1xXYVoFSFR0BS4DEzxMdV0efF8YW1JhWgVIVHQbMUhVBVh3VEh0QGJfViMMJAYJYVsBX1Z1WXdcVn-VMdV0ALRsiCwk8THUrV3VYaV1AMVR2
54.230.245.107 256 B URL djv99sxoqpv11.cloudfront.net/obWZEaUcOCSoPeBkPIFRwXlF3WndLDDcGKR1bBRsdN1MwUCIMBxAFYRkcIFR3SwolByBQQCEHJFBXYggjD1twTzIMWykGPQQKKAhiXyBxR3dIVHRBP1xXYVoFSFR0BS4DEzxMdV0efF8YW1JhWgVIVHQbMUhVBVh3VEh0QGJfViMMJAYJYVsBX1Z1WXdcVn-VMdV0ALRsiCwk8THUrV3VYaV1AMVR2
IP 54.230.245.107:0
Certificate IssuerAmazon
Subject*.cloudfront.net
FingerprintBA:0F:CD:B3:EA:19:B2:9D:99:9B:51:2D:16:33:6B:D0:3F:31:A2:AB
ValidityThu, 08 Dec 2022 00:00:00 GMT - Thu, 07 Dec 2023 23:59:59 GMT
File type ASCII text, with very long lines (304), with no line terminators
Hash 9076736010ec894d24be69a64c8b71b5
afddf6013a3dc2f2c146763656f9227ca4a9b552
5f5801506089092c103fc7ff8a20907f7842f3052762913283d7b8e81da5dbd0
GET /obWZEaUcOCSoPeBkPIFRwXlF3WndLDDcGKR1bBRsdN1MwUCIMBxAFYRkcIFR3SwolByBQQCEHJFBXYggjD1twTzIMWykGPQQKKAhiXyBxR3dIVHRBP1xXYVoFSFR0BS4DEzxMdV0efF8YW1JhWgVIVHQbMUhVBVh3VEh0QGJfViMMJAYJYVsBX1Z1WXdcVn-VMdV0ALRsiCwk8THUrV3VYaV1AMVR2 HTTP/1.1
Host: djv99sxoqpv11.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://adthereissome.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 256
date: Sun, 28 May 2023 17:50:45 GMT
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -9-OCUIBb7TV7f6GQXDziisjLAcmqbQNeLGWlriYVs0_XeU-ABkEjw==
X-Firefox-Spdy: h2
anonfiles.com/img/file/filetypes/mime/video_unknown.png?1668605455
45.154.253.151200 OK 740 B URL GET HTTP/1.1 anonfiles.com/img/file/filetypes/mime/video_unknown.png?1668605455
IP 45.154.253.151:443
ASN #41634 Svea Hosting AB
Requested by https://anonfiles.com/VdH48cl6y3
Certificate IssuerLet's Encrypt
Subjectanonfiles.com
Fingerprint72:DF:F0:B8:EA:8E:3D:A4:8D:1E:BF:BA:3A:98:5F:CA:1E:29:D4:F0
ValiditySun, 26 Mar 2023 09:32:34 GMT - Sat, 24 Jun 2023 09:32:33 GMT
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash 68e96b27b7c8d98a064340cc741e7da2
33ea7f27f2e83ea1386662892f3a84b21066da3d
dbe6854b8f88f2644cb2032ee15bb4bc91bfba1d7b8a72c0c6f0443496af8c0d
GET /img/file/filetypes/mime/video_unknown.png?1668605455 HTTP/1.1
Host: anonfiles.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://anonfiles.com/VdH48cl6y3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 28 May 2023 17:50:45 GMT
Content-Type: image/png
Content-Length: 740
Connection: keep-alive
cache-control: public, max-age=3600
x-oe: Y
x-oh: 133
accept-ranges: bytes
anonfiles.com/img/favicon/favicon-32x32-anonfiles.png?1668605455
45.154.253.151200 OK 1.3 kB URL GET HTTP/1.1 anonfiles.com/img/favicon/favicon-32x32-anonfiles.png?1668605455
IP 45.154.253.151:443
ASN #41634 Svea Hosting AB
Requested by https://anonfiles.com/VdH48cl6y3
Certificate IssuerLet's Encrypt
Subjectanonfiles.com
Fingerprint72:DF:F0:B8:EA:8E:3D:A4:8D:1E:BF:BA:3A:98:5F:CA:1E:29:D4:F0
ValiditySun, 26 Mar 2023 09:32:34 GMT - Sat, 24 Jun 2023 09:32:33 GMT
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash ee0e6dd4ef643128a1b7bd4ab32b8a79
8136c70aac1e50f8356c83f91fb77ea4b6596cbc
51f305558b4ed6fcf3a31b4f9e404fc2ea426cb5e785ac46ce827de0c5cabb4c
GET /img/favicon/favicon-32x32-anonfiles.png?1668605455 HTTP/1.1
Host: anonfiles.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://anonfiles.com/VdH48cl6y3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 28 May 2023 17:50:45 GMT
Content-Type: image/png
Content-Length: 1309
Connection: keep-alive
cache-control: public, max-age=3600
x-oe: Y
x-oh: 3197
accept-ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 870874c65469898c8f735d9b6897fe6d
989c74395339abdcfe7d93489cb81ea5be80d885
9a29505a8768ed4f7ca03b062896dd03dec8329d9aab38e5f92c2b0174dc28bb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 28 May 2023 17:50:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 5dc16ffcd2737c07a2fed1aae7d713a3
990c258d150409aa1010b46c301be5660cd31009
33c0d260e97b9231369e91fa7b40656ebe29a83692d3bc94f4dbcb41339b86f4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 28 May 2023 17:50:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adthereissome.info/utx?cb=c7agkHhUyOwU&top=anonfiles.com&tid=737329
65.9.55.48204 No Content 0 B URL GET HTTP/2 adthereissome.info/utx?cb=c7agkHhUyOwU&top=anonfiles.com&tid=737329
IP 65.9.55.48:443
Requested by https://anonfiles.com/VdH48cl6y3
Certificate IssuerAmazon
Subjectadthereissome.info
Fingerprint21:40:7C:A8:E9:22:33:8E:6F:E6:0A:C2:79:2F:18:FD:76:73:C9:7E
ValidityFri, 05 May 2023 00:00:00 GMT - Sun, 02 Jun 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /utx?cb=c7agkHhUyOwU&top=anonfiles.com&tid=737329 HTTP/1.1
Host: adthereissome.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://anonfiles.com
DNT: 1
Connection: keep-alive
Referer: https://anonfiles.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Sun, 28 May 2023 17:50:45 GMT
server: openresty/1.17.8.2
access-control-allow-credentials: true
access-control-allow-origin: https://anonfiles.com
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
set-cookie: ut=x; Expires=Sun, 28 May 2023 17:51:45 GMT; Max-Age=60
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List
x-cache: Miss from cloudfront
via: 1.1 0edd9f6bc061f9d64e77285b1cac290c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN54-C1
x-amz-cf-id: taX174xcYwDW9uVBICNi1CNHYYGfY7-ZhzgSFFid--7-nJJwb_JemQ==
X-Firefox-Spdy: h2
accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=Af_xneHs-PrJMP4aTAG_tkdbtSPfK6MkdogqS2mn1fnWZDjCuMlEwSchbLFJDBW0KLDTlVtk2i9mwA
142.250.74.109302 Found 396 B URL GET HTTP/2 accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=Af_xneHs-PrJMP4aTAG_tkdbtSPfK6MkdogqS2mn1fnWZDjCuMlEwSchbLFJDBW0KLDTlVtk2i9mwA
IP 142.250.74.109:443
Requested by https://anonfiles.com/VdH48cl6y3
Certificate IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
Fingerprint6C:C9:34:01:32:00:11:F3:7A:E2:AA:FC:7C:E3:13:17:3D:17:71:8A
ValidityMon, 08 May 2023 08:25:19 GMT - Mon, 31 Jul 2023 08:25:18 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (382)
Hash d89d97168baf20de54daa588b85606d7
47802b6e51c503fcc7818d566534f9e1e336cf1b
e00f99a05a3ca240b8896f273f9d025bd84104130e43411ddf1ef2a8ea7879c2
GET /InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=Af_xneHs-PrJMP4aTAG_tkdbtSPfK6MkdogqS2mn1fnWZDjCuMlEwSchbLFJDBW0KLDTlVtk2i9mwA HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://anonfiles.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
set-cookie: __Host-GAPS=1:eKvMye41viMK8DRdfzjDYzvt9gciOQ:m7JGtJVOOwc652xU;Path=/;Expires=Tue, 27-May-2025 17:50:45 GMT;Secure;HttpOnly;Priority=HIGH
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 28 May 2023 17:50:46 GMT
location: https://accounts.google.com/v3/signin/identifier?dsh=S-200504271%3A1685296246010284&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=Af_xneExhdxg3bZZSdLsAtpZmB3J8zGgncPlpTmJw-CPMV-VBlQq_h4Elwa0nSHc0xknsA8FYwUR&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce-j_pqOArs3e9wMVgmKXKwqg' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 396
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube
142.250.74.109302 Found 471 B URL GET HTTP/2 accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube
IP 142.250.74.109:443
Requested by https://anonfiles.com/VdH48cl6y3
Certificate IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
Fingerprint6C:C9:34:01:32:00:11:F3:7A:E2:AA:FC:7C:E3:13:17:3D:17:71:8A
ValidityMon, 08 May 2023 08:25:19 GMT - Mon, 31 Jul 2023 08:25:18 GMT
Hash dfd5ad02f4f42dfda06a983cde156afc
22aa6b74534fcf3dea8b9baf4578d94e7d668e18
885fcb0b62d31ffaccbc95a3ff7a2478fe67a28f62917c980555911e11717d36
GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://anonfiles.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
set-cookie: __Host-GAPS=1:nSmKooVk4vLe8R_2fCzStAKhadtsBg:rO-16SB1JMwm3-uC; Expires=Tue, 27-May-2025 17:50:45 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 28 May 2023 17:50:45 GMT
location: https://accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=Af_xneHs-PrJMP4aTAG_tkdbtSPfK6MkdogqS2mn1fnWZDjCuMlEwSchbLFJDBW0KLDTlVtk2i9mwA
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport, script-src 'nonce-7a-Vs2mEAcRiOKbYX8WQig' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist, require-trusted-types-for 'script';report-uri /cspreport
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: unsafe-none
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
content-type: application/binary
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail
142.250.74.109302 Found 393 B URL GET HTTP/2 accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail
IP 142.250.74.109:443
Requested by https://anonfiles.com/VdH48cl6y3
Certificate IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
Fingerprint6C:C9:34:01:32:00:11:F3:7A:E2:AA:FC:7C:E3:13:17:3D:17:71:8A
ValidityMon, 08 May 2023 08:25:19 GMT - Mon, 31 Jul 2023 08:25:18 GMT
File type gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)\012- data
Hash fb859c31a8aeb898882587689f35b483
2a3d0884d29a1faace81386ab1b8fcd6a782e7b1
4f59c1525e27563fdeb770e6a4dd8534e1393025fdea5277e3b839cc97430e69
GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://anonfiles.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
set-cookie: __Host-GAPS=1:TmtPbEW0MFD-zn99O-42Q-RhOMFv3w:o6X9O-VNmEbbWBzC; Expires=Tue, 27-May-2025 17:50:45 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 28 May 2023 17:50:45 GMT
location: https://accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=Af_xneH-v98bopcfVimTbtUzKCsQueTgvUkX0--6KVNSlwAl0xNkLEohmyV3yPQKSWr_0H9gMWWESA
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: script-src 'nonce-nQeA2xQ2zGhF3YfIoKIofA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport, require-trusted-types-for 'script';report-uri /cspreport
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-opener-policy: unsafe-none
content-type: application/binary
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn-149.anonfiles.com/Q1kdF2ofz1/50148334-1685296839/Detective.Conan.Movie.24.The.Scarlet+Bullet.2021.WEB-DL.1080p.Dubbed.Ar.mp4-h264_720p.mp4
0.0.0.0 0 B URL GET cdn-149.anonfiles.com/Q1kdF2ofz1/50148334-1685296839/Detective.Conan.Movie.24.The.Scarlet+Bullet.2021.WEB-DL.1080p.Dubbed.Ar.mp4-h264_720p.mp4
IP 0.0.0.0:0
Requested by https://anonfiles.com/VdH48cl6y3
Certificate IssuerLet's Encrypt
Subjectcdn-149.anonfiles.com
Fingerprint2D:8C:67:AB:43:C3:68:AE:94:F7:24:AF:1C:FD:CC:2D:7D:AD:1B:0F
ValiditySun, 02 Apr 2023 23:36:36 GMT - Sat, 01 Jul 2023 23:36:35 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Q1kdF2ofz1/50148334-1685296839/Detective.Conan.Movie.24.The.Scarlet+Bullet.2021.WEB-DL.1080p.Dubbed.Ar.mp4-h264_720p.mp4 HTTP/1.1
Host: cdn-149.anonfiles.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://anonfiles.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 206 Partial Content
server: nginx
date: Sun, 28 May 2023 17:50:44 GMT
content-type: video/mp4
content-length: 1057332343
content-disposition: attachment; filename="Detective.Conan.Movie.24.The.Scarlet Bullet.2021.WEB-DL.1080p.Dubbed.Ar.mp4-h264_720p.mp4"
content-transfer-encoding: binary
x-cache-status: HIT
x-cache-host: filecache-02
x-cache-disk: nvme-01
accept-ranges: bytes
content-range: bytes 0-1057332342/1057332343
X-Firefox-Spdy: h2
accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=Af_xneH-v98bopcfVimTbtUzKCsQueTgvUkX0--6KVNSlwAl0xNkLEohmyV3yPQKSWr_0H9gMWWESA
142.250.74.109302 Found 0 B URL GET HTTP/2 accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=Af_xneH-v98bopcfVimTbtUzKCsQueTgvUkX0--6KVNSlwAl0xNkLEohmyV3yPQKSWr_0H9gMWWESA
IP 142.250.74.109:443
Requested by https://anonfiles.com/VdH48cl6y3
Certificate IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
Fingerprint6C:C9:34:01:32:00:11:F3:7A:E2:AA:FC:7C:E3:13:17:3D:17:71:8A
ValidityMon, 08 May 2023 08:25:19 GMT - Mon, 31 Jul 2023 08:25:18 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=Af_xneH-v98bopcfVimTbtUzKCsQueTgvUkX0--6KVNSlwAl0xNkLEohmyV3yPQKSWr_0H9gMWWESA HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://anonfiles.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
set-cookie: __Host-GAPS=1:wFsyGtfj7Zv2wrqz4L_J5TY_QSSZnQ:j7-cHzG02JsRrubW;Path=/;Expires=Tue, 27-May-2025 17:50:46 GMT;Secure;HttpOnly;Priority=HIGH
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 28 May 2023 17:50:46 GMT
location: https://accounts.google.com/v3/signin/identifier?dsh=S-720507807%3A1685296246013066&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=Af_xneFyUTWDkwZgjJpkWi2mPD9NuYuxkIXl8ahUgWoxaDQ3mn7NMgtLsOjwrpoPq20f_7HqaeNa&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce-3TpY8J62LnsTfkswNVlzRA' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 393
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
accounts.google.com/v3/signin/identifier?dsh=S-200504271%3A1685296246010284&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=Af_xneExhdxg3bZZSdLsAtpZmB3J8zGgncPlpTmJw-CPMV-VBlQq_h4Elwa0nSHc0xknsA8FYwUR&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin
142.250.74.109403 Forbidden 0 B URL GET HTTP/3 accounts.google.com/v3/signin/identifier?dsh=S-200504271%3A1685296246010284&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=Af_xneExhdxg3bZZSdLsAtpZmB3J8zGgncPlpTmJw-CPMV-VBlQq_h4Elwa0nSHc0xknsA8FYwUR&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin
IP 142.250.74.109:443
Requested by https://anonfiles.com/VdH48cl6y3
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5D:BA:19:A5:81:25:05:32:72:13:A7:18:CF:67:8C:D6:6F:13:B3:EF
ValidityMon, 08 May 2023 08:20:09 GMT - Mon, 31 Jul 2023 08:20:08 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v3/signin/identifier?dsh=S-200504271%3A1685296246010284&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=Af_xneExhdxg3bZZSdLsAtpZmB3J8zGgncPlpTmJw-CPMV-VBlQq_h4Elwa0nSHc0xknsA8FYwUR&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://anonfiles.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 28 May 2023 17:50:46 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000; includeSubDomains
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"AccountsSignInUi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi"}]}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-security-policy: script-src 'nonce-w5kA-L0qspKD1PaKWieKQg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist, require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport
cross-origin-opener-policy-report-only: same-origin; report-to="AccountsSignInUi"
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
accounts.google.com/v3/signin/identifier?dsh=S-720507807%3A1685296246013066&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=Af_xneFyUTWDkwZgjJpkWi2mPD9NuYuxkIXl8ahUgWoxaDQ3mn7NMgtLsOjwrpoPq20f_7HqaeNa&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin
142.250.74.109403 Forbidden 0 B URL GET HTTP/3 accounts.google.com/v3/signin/identifier?dsh=S-720507807%3A1685296246013066&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=Af_xneFyUTWDkwZgjJpkWi2mPD9NuYuxkIXl8ahUgWoxaDQ3mn7NMgtLsOjwrpoPq20f_7HqaeNa&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin
IP 142.250.74.109:443
Requested by https://anonfiles.com/VdH48cl6y3
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5D:BA:19:A5:81:25:05:32:72:13:A7:18:CF:67:8C:D6:6F:13:B3:EF
ValidityMon, 08 May 2023 08:20:09 GMT - Mon, 31 Jul 2023 08:20:08 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v3/signin/identifier?dsh=S-720507807%3A1685296246013066&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=Af_xneFyUTWDkwZgjJpkWi2mPD9NuYuxkIXl8ahUgWoxaDQ3mn7NMgtLsOjwrpoPq20f_7HqaeNa&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://anonfiles.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 28 May 2023 17:50:46 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-opener-policy-report-only: same-origin; report-to="AccountsSignInUi"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
content-security-policy: require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport, script-src 'nonce-iONBXrpwCWOSFeWLfydh1Q' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
report-to: {"group":"AccountsSignInUi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi"}]}
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
gforanythingamgl.info/popunder.gif
104.21.93.237200 OK 35 B URL GET HTTP/3 gforanythingamgl.info/popunder.gif
IP 104.21.93.237:443
Requested by https://anonfiles.com/VdH48cl6y3
Certificate IssuerGoogle Trust Services LLC
Subjectgforanythingamgl.info
Fingerprint5E:50:F4:C2:4F:D9:85:4E:40:F6:9A:2E:AC:04:DE:C2:79:BB:A8:74
ValidityFri, 05 May 2023 13:46:21 GMT - Thu, 03 Aug 2023 13:46:20 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
Analyzer Verdict Alert quad9 Sinkholed
GET /popunder.gif HTTP/1.1
Host: gforanythingamgl.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://anonfiles.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 28 May 2023 17:50:45 GMT
content-type: image/gif
access-control-allow-origin: *
pragma: public
cache-control: public, max-age=604800, immutable
cf-cache-status: HIT
age: 582383
last-modified: Mon, 22 May 2023 00:04:22 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EU79cIUTOnq%2FDMKHgQzZuz5tYOuFQ4W7tAQj7eX2eKBtmkOLrq56EbL5yxgSM9cuOGdfdCWWmCnVUBIC0X8IDHue%2Fc9tA1iE4AqU04QTrIORpImEjfLh2aspCIaKGembHffbv450LMQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce8577f5caf0b31-OSL
alt-svc: h3=":443"; ma=86400
pogothere.xyz/
172.64.133.29200 OK 27 B IP 172.64.133.29:443
Requested by https://anonfiles.com/VdH48cl6y3
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint17:F9:2D:6F:B5:5E:5F:37:A6:FB:BE:61:4F:97:64:33:85:5C:3A:FB
ValidityTue, 28 Feb 2023 00:00:00 GMT - Tue, 27 Feb 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 734ea1065d3e331dfabf1fc1cd51a55d
64e78d12c03c2eebfc2f600acae3e6a914530eff
fc1d8a014f0bdfb0d65be86e2fdcb73e26375d8617b0fbb3212f2ce7342736fa
GET / HTTP/1.1
Host: pogothere.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://anonfiles.com/
Origin: https://anonfiles.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 28 May 2023 17:50:45 GMT
content-type: text/plain
set-cookie: csu=1537285878098175@1@1685296245; Max-Age=31104000; Secure; SameSite=None
access-control-allow-origin: https://anonfiles.com
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3AmomjvSudAzQ46CZMKiiu64HRVHEgDDfguLE45M3BobnCuGfLd30hfl3w6exuDfjfLi9WVoBuW4cJXgs7PlICa6N5%2B3si0zCHB3gFsDAq4O38Nk%2BTNmtf7ULxlYaNcp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ce85780de267729-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
baconaces.pro/?tag_id=737323&sub_id2=6cb1f80d-a027-4b0d-9589-587d59904df9&sw_url=https%3A%2F%2Fanonfiles.com%2Fsw_anonfiles.js&smf=1
54.162.51.18200 OK 58 kB URL GET HTTP/2 baconaces.pro/?tag_id=737323&sub_id2=6cb1f80d-a027-4b0d-9589-587d59904df9&sw_url=https%3A%2F%2Fanonfiles.com%2Fsw_anonfiles.js&smf=1
IP 54.162.51.18:443
Requested by https://anonfiles.com/VdH48cl6y3
Certificate IssuerLet's Encrypt
Subjectbaconaces.pro
Fingerprint3B:5D:38:C5:42:CD:AA:FE:F1:1C:6B:E6:47:2C:DB:A6:BA:C9:FC:B7
ValidityWed, 03 May 2023 10:01:33 GMT - Tue, 01 Aug 2023 10:01:32 GMT
File type ASCII text, with very long lines (57609), with no line terminators
Hash d0208f4ff85df4a346f6b494fc11de69
854137bf029665d915be8373ace6e11ddbcf64e1
c7d73b5dea365a738d51ab420c80e2b1ddcc2835e60820524e1c543095217e5d
GET /?tag_id=737323&sub_id2=6cb1f80d-a027-4b0d-9589-587d59904df9&sw_url=https%3A%2F%2Fanonfiles.com%2Fsw_anonfiles.js&smf=1 HTTP/1.1
Host: baconaces.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://anonfiles.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-methods: GET, POST
access-control-allow-headers: X-Requested-With,content-type
etag: W/"e109-hUE3vwKWZdkVvoNzrObhHdvPZOE"
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-credentials: true
X-Firefox-Spdy: h2
pogothere.xyz/asd100.bin
172.64.133.29200 OK 102 kB IP 172.64.133.29:443
Requested by https://anonfiles.com/VdH48cl6y3
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint17:F9:2D:6F:B5:5E:5F:37:A6:FB:BE:61:4F:97:64:33:85:5C:3A:FB
ValidityTue, 28 Feb 2023 00:00:00 GMT - Tue, 27 Feb 2024 23:59:59 GMT
Size 102 kB (102400 bytes)
Hash 4c6426ac7ef186464ecbb0d81cbfcb1e
5a6918eebd9d635e8f632e3ef34e3792b1b5ec13
f627ca4c2c322f15db26152df306bd4f983f0146409b81a4341b9b340c365a16
GET /asd100.bin HTTP/1.1
Host: pogothere.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://anonfiles.com/
Origin: https://anonfiles.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 28 May 2023 17:50:45 GMT
content-type: binary/octet-stream
access-control-allow-origin: https://anonfiles.com
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
cache-control: max-age=14400
cf-cache-status: HIT
age: 4244
last-modified: Sun, 28 May 2023 16:40:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mGGQVUscsDD2l7qT68HQumTcS8PThV%2B1JZn19fayR47i466FT5H1vc6V2VRTy9JGXnpure3DAlg6JS8Ga0oLD827Nw6QL4o7gVNUR0Ualr2vfhOcIx0V4k7%2FnHLZS0z8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce85780de217729-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2