GET cdn.safefileku.com/logo.svg
200 OK 6.6 kB URL GET cdn.safefileku.com/logo.svg
IP
Requested by https://safefileku.com/download/VWcs3n0d2Fy2Jh97
Certificate IssuerLet's Encrypt
Subjectsafefileku.com
FingerprintEB:2B:1A:C5:1B:85:13:1D:E2:70:9A:FF:8A:E4:52:74:97:73:FD:F1
ValidityMon, 02 Jun 2025 14:50:39 GMT - Sun, 31 Aug 2025 14:50:38 GMT
File type SVG Scalable Vector Graphics image
Hash 009763effc9314e1bf6002e73cd8ebbc
7a50f75cbc01512896dee2dd187117257ab96131
66d8fd576f7483cc5d5723d3a1c00ee3e1adb2935050b97bed76b2e0285898f9
GET /logo.svg HTTP/1.1
Host: cdn.safefileku.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://safefileku.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 05 Jun 2025 08:42:46 GMT
content-type: image/svg+xml
cf-ray: 94ae60eb1afcb4ff-OSL
server: cloudflare
content-encoding: br
last-modified: Fri, 01 Mar 2024 11:51:13 GMT
etag: W/"65e1c131-1997"
strict-transport-security: max-age=15552000; includeSubDomains; preload
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2338848
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=K1DuOpimnZ9S2j9kc2AUtbsaSk1buogegWRTCrQWR7ZMp77Vk%2BG%2Bq4tQscrK84OJP3YGWQdblwdo945mqD7%2FON7i9oSwY2TzQXlCw7rZGHRwobe%2F9H9DdoCAjg3K4HwaufP8QA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
server-timing: cfL4;desc="?proto=TCP&rtt=659&min_rtt=394&rtt_var=348&sent=42&recv=43&lost=0&retrans=0&sent_bytes=37284&recv_bytes=2760&delivery_rate=23020667&cwnd=257&unsent_bytes=0&cid=5a9b4a78f78fe5aa&ts=1225&x=0"
X-Firefox-Spdy: h2
GET www.blue-daughter.pro/ecc874/a093c305c6eb.js
200 OK 70 kB URL GET www.blue-daughter.pro/ecc874/a093c305c6eb.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://safefileku.com/download/VWcs3n0d2Fy2Jh97
Certificate IssuerLet's Encrypt
Subjectwww.blue-daughter.pro
Fingerprint10:BE:DC:9D:F6:FA:08:08:1E:BD:C6:2E:30:20:A8:FC:80:F2:8A:C3
ValidityFri, 30 May 2025 07:08:06 GMT - Thu, 28 Aug 2025 07:08:05 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Hash fcd0780be2dd35892369877b12ace502
bdbc79d2f597d1e36da2309baa3b3fb8fc448869
e3559955b14445647f62fa1150fc1e4608510d866044406d5224c41cfa954c64
GET /ecc874/a093c305c6eb.js HTTP/1.1
Host: www.blue-daughter.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: text/plain
Origin: https://safefileku.com
DNT: 1
Connection: keep-alive
Referer: https://safefileku.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 05 Jun 2025 08:42:47 GMT
content-type: application/javascript; charset=utf-8
server: nginx
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
cache-control: max-age=172800
content-encoding: gzip
expires: Sat, 07 Jun 2025 08:42:47 GMT
x-cdn-host-id: ah0543
x-proxy-cache: HIT
X-Firefox-Spdy: h2
GET www.blue-daughter.pro/ecc874/a093c305c6eb.js
200 OK 70 kB URL GET www.blue-daughter.pro/ecc874/a093c305c6eb.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://safefileku.com/download/VWcs3n0d2Fy2Jh97
Certificate IssuerLet's Encrypt
Subjectwww.blue-daughter.pro
Fingerprint10:BE:DC:9D:F6:FA:08:08:1E:BD:C6:2E:30:20:A8:FC:80:F2:8A:C3
ValidityFri, 30 May 2025 07:08:06 GMT - Thu, 28 Aug 2025 07:08:05 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Hash fcd0780be2dd35892369877b12ace502
bdbc79d2f597d1e36da2309baa3b3fb8fc448869
e3559955b14445647f62fa1150fc1e4608510d866044406d5224c41cfa954c64
GET /ecc874/a093c305c6eb.js HTTP/1.1
Host: www.blue-daughter.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://safefileku.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 05 Jun 2025 08:42:47 GMT
content-type: application/javascript; charset=utf-8
server: nginx
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
cache-control: max-age=172800
content-encoding: gzip
expires: Sat, 07 Jun 2025 08:42:47 GMT
x-cdn-host-id: ah0543
x-proxy-cache: HIT
X-Firefox-Spdy: h2
GET safefileku.com/download/assets/js/5910a707.js
200 OK 22 kB URL GET safefileku.com/download/assets/js/5910a707.js
IP
Requested by https://safefileku.com/download/VWcs3n0d2Fy2Jh97
Certificate IssuerLet's Encrypt
Subjectsafefileku.com
FingerprintEB:2B:1A:C5:1B:85:13:1D:E2:70:9A:FF:8A:E4:52:74:97:73:FD:F1
ValidityMon, 02 Jun 2025 14:50:39 GMT - Sun, 31 Aug 2025 14:50:38 GMT
File type JavaScript source, ASCII text, with very long lines (22286)
Hash a0bbd6de3b3329066816581bb8ab987f
e71e77ed28140e823901cc4638719f26b956e808
a5c99966c3c66dbc7a882160c47fc6168abf0239a9fe0a49b8875a1bdb68e700
GET /download/assets/js/5910a707.js HTTP/1.1
Host: safefileku.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://safefileku.com/download/VWcs3n0d2Fy2Jh97
Cookie: XSRF-TOKEN=eyJpdiI6IkM5S3hRUHk1clNJUGhTMS9wdnFxZGc9PSIsInZhbHVlIjoiZHZja3dDNG95aTNPQmtmUkVNbEc5amhMVWtyTWF6MHVUak5uNTFWYjlFSTR0TWhwWm4rMlArVkFTMGg3NG8xaVpjMHR1R2p0ZSt2VEVkdDFaL1NjMGlXRlkrT3ZnNUZiUExrNXI5UjlCR0podXNKdHFPQXllakxqRkxxZUhsWjEiLCJtYWMiOiI2MGE2MjZjZWFhZTJkMTRlMWNiNDRjYTcyNjNhYTQzMjNkODk4OWIzNGQzM2RlMDQ0ZmVmYWI4YTQxMDRlYmQzIiwidGFnIjoiIn0%3D; _sid=eyJpdiI6Im1rQzZlVElGY3Z5ek43NSs2YmNyOUE9PSIsInZhbHVlIjoiNVdQSHVxNGxoY2M3RE8zeHA2MGQ2Mk13RmFRTDJSa3FvWTFzbzZZckRIMkJRM0ZsNERaa1NFcFhnaFkzY01Va0IzWjJXL3N2NS9QLzNtTVVhdXU3RVl0dTZTRHYwaGVFL2xwUXBCS1lLdXpQVGFXSXd5UnBhdzRCUlpjQlVRMHAiLCJtYWMiOiJkNjNhNDRjN2Y1M2QzMmZkMDY1NmZhNzlhY2I1NDc0NGIzNDczMzJlMzljYmVhYmM2YTMwNWE5MGQwNjZiZmFlIiwidGFnIjoiIn0%3D; _vt=eyJpdiI6IkFscjZXWVRGZ3pEN3hNVUhUbVdvL1E9PSIsInZhbHVlIjoidDFaL3lQdnlna1lvL2xyN0NCWnlTcTM5dnAzYWxIbkw4RkdPNjY5a0MwMThuNnk5SDJ4dkdaNXNVbkZ4QjhrNjR5dFpVUGx3SlFTRHMva1VJU1VZclE9PSIsIm1hYyI6IjNmNDU1ZGMxOThhOTNkNGEzNWEwOGViMDYzZDYxNWQ4MGE2MTczMDgxZmRhMDRjNDYyMjhlMjYwNDEzOGUzZjgiLCJ0YWciOiIifQ%3D%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 05 Jun 2025 08:42:46 GMT
content-type: application/javascript
cf-ray: 94ae60eaca90b4ff-OSL
server: cloudflare
content-encoding: br
last-modified: Fri, 30 May 2025 13:33:21 GMT
etag: W/"6839b3a1-570f"
strict-transport-security: max-age=15552000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: HIT
age: 4354
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xXSmsaBS91hiOboc2SJcv1J7mQ%2FxvWtMTpV%2BsQhDwRFET74L%2BGX8ej196wjtflH2EuVv3xbeuw3AbqmUwnpJ14I38f4ntSS5HjP6966EHJ0BcEgkyT3bRCnZM7jTn4Lu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
server-timing: cfL4;desc="?proto=TCP&rtt=1104&min_rtt=403&rtt_var=1229&sent=24&recv=29&lost=0&retrans=0&sent_bytes=23010&recv_bytes=2390&delivery_rate=23020667&cwnd=257&unsent_bytes=0&cid=5a9b4a78f78fe5aa&ts=1177&x=0"
X-Firefox-Spdy: h2
GET challenges.cloudflare.com/turnstile/v0/api.js?compat=recaptcha
302 Found 49 kB URL GET challenges.cloudflare.com/turnstile/v0/api.js?compat=recaptcha
IP
Requested by https://safefileku.com/download/VWcs3n0d2Fy2Jh97
Certificate IssuerGoogle Trust Services
Subjectchallenges.cloudflare.com
Fingerprint66:48:DF:B4:8B:9D:6A:8C:3A:B7:0F:CF:92:C7:AF:56:B9:3D:A2:1C
ValidityTue, 29 Apr 2025 17:49:00 GMT - Mon, 28 Jul 2025 18:48:58 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /turnstile/v0/api.js?compat=recaptcha HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://safefileku.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Thu, 05 Jun 2025 08:42:46 GMT
content-length: 0
access-control-allow-origin: *
cache-control: max-age=300, stale-if-error=10800, stale-while-revalidate=300, public
cross-origin-resource-policy: cross-origin
location: /turnstile/v0/b/65b4351086ca/api.js
vary: Accept-Encoding
server: cloudflare
cf-ray: 94ae60eb498d5688-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET www.tyzyphize.pro/152327/316255/584113_04f0f.png
200 OK 14 kB URL GET www.tyzyphize.pro/152327/316255/584113_04f0f.png
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://political-effort.com/asW_ZuyvP.2wQx9-MzTAcB0CO_TEEFxGMHj-kJ2KNLzME_2OMPjQgRx-OTTUYV3WM_SYZZpacb2-1d1ebfHgR_pidjGkFln-PnWoEpyqY_zsVtluYvm-VxmyZzDAN_hCNDDEQFy-MHTINJhKN_WMNNiOMPD-JRiSYTjUI_4WYX2YIZ2-Nb2cFdkeJ_mg1h1ibjH-RlpmdnGoF_nqYrmsFtu-bvmwVxyyP_XARByCdDW-UFmGcHnIJ_pKZLDM1Nh-MPmQMR1SZ_WUJVlWZXm-QZzaYbTcQ_0eMfjgEhz-YjTkVljmY_joApyqYrm-ItyuOvGwN_iyNzjAdBh-ZDCEZF6Gb_2I5JlKaLW-QN9ONPjQE_xSMTTUQVx-NXQY?iframeId=zihlet
Certificate IssuerLet's Encrypt
Subjectwww.tyzyphize.pro
FingerprintCF:14:25:82:6D:8E:06:CD:EB:7F:A2:70:13:02:69:4B:B4:8F:DB:4D
ValiditySun, 01 Jun 2025 08:33:22 GMT - Sat, 30 Aug 2025 08:33:21 GMT
File type PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced
Hash 6b77da056c26ed5bf43dc9d60e6643fe
b63f7ee87d5beb49bf27d29921e19838ca36fbc8
720d7582924d304e87f6b1e9dbca3d2287ba1073c1a2e66cb085a5e0ccdcb66a
GET /152327/316255/584113_04f0f.png HTTP/1.1
Host: www.tyzyphize.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://political-effort.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 05 Jun 2025 08:42:47 GMT
content-type: image/png
content-length: 13953
server: nginx
last-modified: Fri, 21 Jun 2024 12:15:20 GMT
etag: "6b77da056c26ed5bf43dc9d60e6643fe"
x-timestamp: 1718972119.67481
x-trans-id: tx20bec0c6bbf44d7f85f23-006683de70
x-openstack-request-id: tx20bec0c6bbf44d7f85f23-006683de70
expires: Sat, 07 Jun 2025 08:42:47 GMT
cache-control: max-age=172800
x-cdn-host-id: ah0543
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET www.threads.net/
301 Moved Permanently 0 B IP
Requested by https://l.threads.com/?u=https://safefileku.com/download/VWcs3n0d2Fy2Jh97&e=AT37nB0skCKNFNz31Kji0FHGKbnOXBhET5b5GpZk_NYPUqV0mRwqIL8OJZ-0E0f-J-KTt17ATH2PYaiGL74agzJ3DtnSNhQA_rvgfh4RfB22QWYY7HT82UDDn_mgQ0RVYjJCmPk
Certificate IssuerDigiCert Inc
Subject*.threads.net
Fingerprint01:D8:98:09:86:63:06:48:1B:AB:83:5C:8B:90:00:FA:86:17:18:00
ValidityFri, 14 Mar 2025 00:00:00 GMT - Thu, 12 Jun 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: www.threads.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://l.threads.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
location: https://www.threads.com/
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-stack: www
content-type: text/html; charset="utf-8"
x-fb-debug: dJDFtYMEZm3ioy3LnTzvAC4RcWWJoh1d4TowPK4n1K9awHqCZEbV9yz6mTewRxYWTm0u7555NYQBlxSX1dzm3Q==
content-length: 0
date: Thu, 05 Jun 2025 08:42:46 GMT
alt-svc: h3=":443"; ma=86400
x-fb-connection-quality: EXCELLENT; q=0.9, rtt=20, rtx=0, c=17, mss=1380, tbw=4335, tp=-1, tpl=-1, uplat=172, ullat=0
X-Firefox-Spdy: h2
GET cdn.safefileku.com/icons/exe.svg
200 OK 409 B URL GET cdn.safefileku.com/icons/exe.svg
IP
Requested by https://safefileku.com/download/VWcs3n0d2Fy2Jh97
Certificate IssuerLet's Encrypt
Subjectsafefileku.com
FingerprintEB:2B:1A:C5:1B:85:13:1D:E2:70:9A:FF:8A:E4:52:74:97:73:FD:F1
ValidityMon, 02 Jun 2025 14:50:39 GMT - Sun, 31 Aug 2025 14:50:38 GMT
File type SVG Scalable Vector Graphics image
Hash 95650859087d555b8bc76113c6ac08a3
d2baa0fe07f947647d26e259630130b76fa83814
9135fcca57e19dee7cc0781338d27afcf8f54d45418d2353bf566498557323bc
GET /icons/exe.svg HTTP/1.1
Host: cdn.safefileku.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://safefileku.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 05 Jun 2025 08:42:46 GMT
content-type: image/svg+xml
cf-ray: 94ae60eb0af4b4ff-OSL
server: cloudflare
content-encoding: br
last-modified: Mon, 23 Sep 2024 00:38:10 GMT
etag: W/"66f0b872-199"
strict-transport-security: max-age=15552000; includeSubDomains; preload
cache-control: max-age=31536000
cf-cache-status: HIT
age: 4354
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zKg7GL%2B7xpbOpkx1A%2BombxIqKYZjVniqNSYlzjZ3V7yu9IAn2d31IEGfghNIRrbXoQYmTrmmcfp4pIrWhFSuuZtwSff9rVo2m%2FIFfOYqGGLZfNl4WgNcZjR1LPoMyRJUjL1EFw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
server-timing: cfL4;desc="?proto=TCP&rtt=659&min_rtt=394&rtt_var=348&sent=50&recv=43&lost=0&retrans=0&sent_bytes=41597&recv_bytes=2760&delivery_rate=23020667&cwnd=257&unsent_bytes=0&cid=5a9b4a78f78fe5aa&ts=1230&x=0"
X-Firefox-Spdy: h2
GET challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=94ae60ecfe1f56ba&lang=auto
200 OK 112 kB URL GET challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=94ae60ecfe1f56ba&lang=auto
IP
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/yb679/0x4AAAAAAALLuQFUOnh41Bqj/light/fbE/new/flexible/auto/
Certificate IssuerGoogle Trust Services
Subjectchallenges.cloudflare.com
Fingerprint66:48:DF:B4:8B:9D:6A:8C:3A:B7:0F:CF:92:C7:AF:56:B9:3D:A2:1C
ValidityTue, 29 Apr 2025 17:49:00 GMT - Mon, 28 Jul 2025 18:48:58 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size 112 kB (112436 bytes)
Hash 2c4cfa81347287234b0df560285c86b9
a9bcb8d6f3d0aed1971ff45a537f3050c3337569
c37783514e14d998ba78a7cbcb993014a352e533493a416916dd038fa72339ba
GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=94ae60ecfe1f56ba&lang=auto HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/yb679/0x4AAAAAAALLuQFUOnh41Bqj/light/fbE/new/flexible/auto/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 05 Jun 2025 08:42:47 GMT
content-type: application/javascript; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
priority: u=3,i=?0
server: cloudflare
cf-ray: 94ae60ee1f9a56ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/d/94ae60ecfe1f56ba/1749112968179/ig_I-IHz7tog6Zq
200 OK 172 B URL GET challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/d/94ae60ecfe1f56ba/1749112968179/ig_I-IHz7tog6Zq
IP
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/yb679/0x4AAAAAAALLuQFUOnh41Bqj/light/fbE/new/flexible/auto/
Certificate IssuerGoogle Trust Services
Subjectchallenges.cloudflare.com
Fingerprint66:48:DF:B4:8B:9D:6A:8C:3A:B7:0F:CF:92:C7:AF:56:B9:3D:A2:1C
ValidityTue, 29 Apr 2025 17:49:00 GMT - Mon, 28 Jul 2025 18:48:58 GMT
File type PNG image data, 22 x 17, 8-bit/color RGBA, non-interlaced
Hash 36fae71886fc61d43d73b5440976067c
6e15fbe9939733a358d58346a9c8b90cb399eeb1
e0a42de243395b166614b96281d1d859aa668868a80e5f595ef8b02e63e90256
GET /cdn-cgi/challenge-platform/h/b/d/94ae60ecfe1f56ba/1749112968179/ig_I-IHz7tog6Zq HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/yb679/0x4AAAAAAALLuQFUOnh41Bqj/light/fbE/new/flexible/auto/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 05 Jun 2025 08:42:49 GMT
content-type: image/png
content-length: 172
priority: u=4,i=?0
server: cloudflare
cf-ray: 94ae60fd590856ba-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET cdn.safefileku.com/icons/rar.svg
200 OK 956 B URL GET cdn.safefileku.com/icons/rar.svg
IP
Requested by https://safefileku.com/download/VWcs3n0d2Fy2Jh97
Certificate IssuerLet's Encrypt
Subjectsafefileku.com
FingerprintEB:2B:1A:C5:1B:85:13:1D:E2:70:9A:FF:8A:E4:52:74:97:73:FD:F1
ValidityMon, 02 Jun 2025 14:50:39 GMT - Sun, 31 Aug 2025 14:50:38 GMT
File type SVG Scalable Vector Graphics image
Hash 60551b80b33cf5147fad8b08c6969453
a938be3992a082f932960f96a319dd341010bec0
262ef5c935da35b610ed8ad4b17c04fea5f5da2d30117777e8e95ac60c7eae38
GET /icons/rar.svg HTTP/1.1
Host: cdn.safefileku.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://safefileku.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 05 Jun 2025 08:42:46 GMT
content-type: image/svg+xml
cf-ray: 94ae60eb0aefb4ff-OSL
server: cloudflare
content-encoding: br
last-modified: Mon, 23 Sep 2024 00:34:10 GMT
etag: W/"66f0b782-3bc"
strict-transport-security: max-age=15552000; includeSubDomains; preload
cache-control: max-age=31536000
cf-cache-status: HIT
age: 48830
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=j%2F%2BYxijjjbddnVOyG%2FFA%2FJrSzTZevc6CFn4SnG%2FiWYyhGM1Js5z7CIRz6mrClaXT1CWj3aMzdErryAlyFw2DbKr3edpiY%2BROStlrUqDuqId81o%2B0m9UW7q%2BBTnwDW5QmejLqBQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
server-timing: cfL4;desc="?proto=TCP&rtt=659&min_rtt=394&rtt_var=348&sent=39&recv=43&lost=0&retrans=0&sent_bytes=36200&recv_bytes=2760&delivery_rate=23020667&cwnd=257&unsent_bytes=0&cid=5a9b4a78f78fe5aa&ts=1224&x=0"
X-Firefox-Spdy: h2
GET safefileku.com/download/assets/fonts/17fe38ab.woff2
200 OK 227 kB URL GET safefileku.com/download/assets/fonts/17fe38ab.woff2
IP
Requested by https://safefileku.com/download/VWcs3n0d2Fy2Jh97
Certificate IssuerLet's Encrypt
Subjectsafefileku.com
FingerprintEB:2B:1A:C5:1B:85:13:1D:E2:70:9A:FF:8A:E4:52:74:97:73:FD:F1
ValidityMon, 02 Jun 2025 14:50:39 GMT - Sun, 31 Aug 2025 14:50:38 GMT
File type Web Open Font Format (Version 2), TrueType, length 227180, version 1.0
Size 227 kB (227180 bytes)
Hash 66c6e40883646a7ad993108b2ce2da32
7a2602d2ebb08ce895e33addb6fe595f1029431e
17fe38ab302c7e5dbfb5c3d87801092d79be958500db6412ed3bc0f126bd53d3
GET /download/assets/fonts/17fe38ab.woff2 HTTP/1.1
Host: safefileku.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://safefileku.com/download/assets/css/d2429839.css
Cookie: XSRF-TOKEN=eyJpdiI6IkM5S3hRUHk1clNJUGhTMS9wdnFxZGc9PSIsInZhbHVlIjoiZHZja3dDNG95aTNPQmtmUkVNbEc5amhMVWtyTWF6MHVUak5uNTFWYjlFSTR0TWhwWm4rMlArVkFTMGg3NG8xaVpjMHR1R2p0ZSt2VEVkdDFaL1NjMGlXRlkrT3ZnNUZiUExrNXI5UjlCR0podXNKdHFPQXllakxqRkxxZUhsWjEiLCJtYWMiOiI2MGE2MjZjZWFhZTJkMTRlMWNiNDRjYTcyNjNhYTQzMjNkODk4OWIzNGQzM2RlMDQ0ZmVmYWI4YTQxMDRlYmQzIiwidGFnIjoiIn0%3D; _sid=eyJpdiI6Im1rQzZlVElGY3Z5ek43NSs2YmNyOUE9PSIsInZhbHVlIjoiNVdQSHVxNGxoY2M3RE8zeHA2MGQ2Mk13RmFRTDJSa3FvWTFzbzZZckRIMkJRM0ZsNERaa1NFcFhnaFkzY01Va0IzWjJXL3N2NS9QLzNtTVVhdXU3RVl0dTZTRHYwaGVFL2xwUXBCS1lLdXpQVGFXSXd5UnBhdzRCUlpjQlVRMHAiLCJtYWMiOiJkNjNhNDRjN2Y1M2QzMmZkMDY1NmZhNzlhY2I1NDc0NGIzNDczMzJlMzljYmVhYmM2YTMwNWE5MGQwNjZiZmFlIiwidGFnIjoiIn0%3D; _vt=eyJpdiI6IkFscjZXWVRGZ3pEN3hNVUhUbVdvL1E9PSIsInZhbHVlIjoidDFaL3lQdnlna1lvL2xyN0NCWnlTcTM5dnAzYWxIbkw4RkdPNjY5a0MwMThuNnk5SDJ4dkdaNXNVbkZ4QjhrNjR5dFpVUGx3SlFTRHMva1VJU1VZclE9PSIsIm1hYyI6IjNmNDU1ZGMxOThhOTNkNGEzNWEwOGViMDYzZDYxNWQ4MGE2MTczMDgxZmRhMDRjNDYyMjhlMjYwNDEzOGUzZjgiLCJ0YWciOiIifQ%3D%3D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 05 Jun 2025 08:42:47 GMT
content-type: font/woff2
content-length: 227180
server: cloudflare
x-content-type-options: nosniff
cf-ray: 94ae60ebabb9b4ff-OSL
last-modified: Fri, 30 May 2025 13:33:21 GMT
etag: "6839b3a1-3776c"
strict-transport-security: max-age=15552000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: HIT
age: 4354
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8aD39HIIFY0aK%2FdUSf69pGwqJdBTgJlJ6Vinoc1kcHgx7vBpr2kBSUKXd7CsEIp0XQ9aV6RnBGTesoWbQMkpOeo%2FQ5UE4NtYkZ5%2F%2BqGOcMEV5vEuyAGrG9MlOHGRrpfS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server-timing: cfL4;desc="?proto=TCP&rtt=1951&min_rtt=394&rtt_var=2847&sent=55&recv=46&lost=0&retrans=1&sent_bytes=42438&recv_bytes=3055&delivery_rate=23020667&cwnd=257&unsent_bytes=0&cid=5a9b4a78f78fe5aa&ts=1323&x=0"
X-Firefox-Spdy: h2
GET safefileku.com/download/assets/fonts/d1401419.woff2
200 OK 245 kB URL GET safefileku.com/download/assets/fonts/d1401419.woff2
IP
Requested by https://safefileku.com/download/VWcs3n0d2Fy2Jh97
Certificate IssuerLet's Encrypt
Subjectsafefileku.com
FingerprintEB:2B:1A:C5:1B:85:13:1D:E2:70:9A:FF:8A:E4:52:74:97:73:FD:F1
ValidityMon, 02 Jun 2025 14:50:39 GMT - Sun, 31 Aug 2025 14:50:38 GMT
File type Web Open Font Format (Version 2), TrueType, length 245036, version 1.0
Size 245 kB (245036 bytes)
Hash 1f7ca6383ea7c74a7f5ddd76c3d3cef2
6f20a046917bf86d4b6cc29c4e2515bd64d2cb9b
d1401419dc30587008d4d7fe1230ca068442635ef9b46538e515725d68e0791a
GET /download/assets/fonts/d1401419.woff2 HTTP/1.1
Host: safefileku.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://safefileku.com/download/assets/css/d2429839.css
Cookie: XSRF-TOKEN=eyJpdiI6IkM5S3hRUHk1clNJUGhTMS9wdnFxZGc9PSIsInZhbHVlIjoiZHZja3dDNG95aTNPQmtmUkVNbEc5amhMVWtyTWF6MHVUak5uNTFWYjlFSTR0TWhwWm4rMlArVkFTMGg3NG8xaVpjMHR1R2p0ZSt2VEVkdDFaL1NjMGlXRlkrT3ZnNUZiUExrNXI5UjlCR0podXNKdHFPQXllakxqRkxxZUhsWjEiLCJtYWMiOiI2MGE2MjZjZWFhZTJkMTRlMWNiNDRjYTcyNjNhYTQzMjNkODk4OWIzNGQzM2RlMDQ0ZmVmYWI4YTQxMDRlYmQzIiwidGFnIjoiIn0%3D; _sid=eyJpdiI6Im1rQzZlVElGY3Z5ek43NSs2YmNyOUE9PSIsInZhbHVlIjoiNVdQSHVxNGxoY2M3RE8zeHA2MGQ2Mk13RmFRTDJSa3FvWTFzbzZZckRIMkJRM0ZsNERaa1NFcFhnaFkzY01Va0IzWjJXL3N2NS9QLzNtTVVhdXU3RVl0dTZTRHYwaGVFL2xwUXBCS1lLdXpQVGFXSXd5UnBhdzRCUlpjQlVRMHAiLCJtYWMiOiJkNjNhNDRjN2Y1M2QzMmZkMDY1NmZhNzlhY2I1NDc0NGIzNDczMzJlMzljYmVhYmM2YTMwNWE5MGQwNjZiZmFlIiwidGFnIjoiIn0%3D; _vt=eyJpdiI6IkFscjZXWVRGZ3pEN3hNVUhUbVdvL1E9PSIsInZhbHVlIjoidDFaL3lQdnlna1lvL2xyN0NCWnlTcTM5dnAzYWxIbkw4RkdPNjY5a0MwMThuNnk5SDJ4dkdaNXNVbkZ4QjhrNjR5dFpVUGx3SlFTRHMva1VJU1VZclE9PSIsIm1hYyI6IjNmNDU1ZGMxOThhOTNkNGEzNWEwOGViMDYzZDYxNWQ4MGE2MTczMDgxZmRhMDRjNDYyMjhlMjYwNDEzOGUzZjgiLCJ0YWciOiIifQ%3D%3D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 05 Jun 2025 08:42:47 GMT
content-type: font/woff2
content-length: 245036
server: cloudflare
x-content-type-options: nosniff
cf-ray: 94ae60ebabbcb4ff-OSL
last-modified: Fri, 30 May 2025 13:33:21 GMT
etag: "6839b3a1-3bd2c"
strict-transport-security: max-age=15552000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: HIT
age: 4354
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sOr7gYpcYyKHjxnI4KmwQco4b89ppYJ49Z1cVGteKFopjul3IVxQnh540Qelp6DGwugJEKTASHaJlct%2BiAZyoG0YJ6ChJBRvijUInJkswxOrVnJJUpQEQEYlgEA%2BrZq6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server-timing: cfL4;desc="?proto=TCP&rtt=1050&min_rtt=394&rtt_var=259&sent=225&recv=108&lost=0&retrans=1&sent_bytes=271328&recv_bytes=3136&delivery_rate=84226294&cwnd=257&unsent_bytes=0&cid=5a9b4a78f78fe5aa&ts=1346&x=0"
X-Firefox-Spdy: h2
GET safefileku.com/cdn-cgi/challenge-platform/scripts/jsd/main.js
302 Found 8.5 kB URL GET safefileku.com/cdn-cgi/challenge-platform/scripts/jsd/main.js
IP
Requested by https://safefileku.com/download/VWcs3n0d2Fy2Jh97
Certificate IssuerLet's Encrypt
Subjectsafefileku.com
FingerprintEB:2B:1A:C5:1B:85:13:1D:E2:70:9A:FF:8A:E4:52:74:97:73:FD:F1
ValidityMon, 02 Jun 2025 14:50:39 GMT - Sun, 31 Aug 2025 14:50:38 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: safefileku.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IkM5S3hRUHk1clNJUGhTMS9wdnFxZGc9PSIsInZhbHVlIjoiZHZja3dDNG95aTNPQmtmUkVNbEc5amhMVWtyTWF6MHVUak5uNTFWYjlFSTR0TWhwWm4rMlArVkFTMGg3NG8xaVpjMHR1R2p0ZSt2VEVkdDFaL1NjMGlXRlkrT3ZnNUZiUExrNXI5UjlCR0podXNKdHFPQXllakxqRkxxZUhsWjEiLCJtYWMiOiI2MGE2MjZjZWFhZTJkMTRlMWNiNDRjYTcyNjNhYTQzMjNkODk4OWIzNGQzM2RlMDQ0ZmVmYWI4YTQxMDRlYmQzIiwidGFnIjoiIn0%3D; _sid=eyJpdiI6Im1rQzZlVElGY3Z5ek43NSs2YmNyOUE9PSIsInZhbHVlIjoiNVdQSHVxNGxoY2M3RE8zeHA2MGQ2Mk13RmFRTDJSa3FvWTFzbzZZckRIMkJRM0ZsNERaa1NFcFhnaFkzY01Va0IzWjJXL3N2NS9QLzNtTVVhdXU3RVl0dTZTRHYwaGVFL2xwUXBCS1lLdXpQVGFXSXd5UnBhdzRCUlpjQlVRMHAiLCJtYWMiOiJkNjNhNDRjN2Y1M2QzMmZkMDY1NmZhNzlhY2I1NDc0NGIzNDczMzJlMzljYmVhYmM2YTMwNWE5MGQwNjZiZmFlIiwidGFnIjoiIn0%3D; _vt=eyJpdiI6IkFscjZXWVRGZ3pEN3hNVUhUbVdvL1E9PSIsInZhbHVlIjoidDFaL3lQdnlna1lvL2xyN0NCWnlTcTM5dnAzYWxIbkw4RkdPNjY5a0MwMThuNnk5SDJ4dkdaNXNVbkZ4QjhrNjR5dFpVUGx3SlFTRHMva1VJU1VZclE9PSIsIm1hYyI6IjNmNDU1ZGMxOThhOTNkNGEzNWEwOGViMDYzZDYxNWQ4MGE2MTczMDgxZmRhMDRjNDYyMjhlMjYwNDEzOGUzZjgiLCJ0YWciOiIifQ%3D%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Thu, 05 Jun 2025 08:42:47 GMT
content-length: 0
server: cloudflare
x-content-type-options: nosniff
cf-ray: 94ae60ebfc41b4ff-OSL
location: /cdn-cgi/challenge-platform/h/b/scripts/jsd/65b4351086ca/main.js?
cache-control: max-age=300, stale-if-error=10800, stale-while-revalidate=10800, public
access-control-allow-origin: *
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cZChk9%2Fhv16OxIyO6r%2BWaIosy2QMctGfIisgFugUefIIMXvQVZtRTdgbSQyDq8XyX3diopDOdO7NKcQ%2F2USNV%2Fj6prBApVhJv4wMBDFbi48TQJ8LL8SV9SzalUFTqNy2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
server-timing: cfL4;desc="?proto=TCP&rtt=1298&min_rtt=394&rtt_var=972&sent=436&recv=189&lost=0&retrans=1&sent_bytes=557256&recv_bytes=3238&delivery_rate=131530546&cwnd=257&unsent_bytes=0&cid=5a9b4a78f78fe5aa&ts=1365&x=0"
X-Firefox-Spdy: h2
POST safefileku.com/cdn-cgi/challenge-platform/h/b/jsd/r/0.8830638459551748:1749111205:432QDQYz8ZtjTj0N-goAP1ynQYeOOzL5rlJgNOjXj_M/94ae60e39880b4ff
200 OK 0 B URL POST safefileku.com/cdn-cgi/challenge-platform/h/b/jsd/r/0.8830638459551748:1749111205:432QDQYz8ZtjTj0N-goAP1ynQYeOOzL5rlJgNOjXj_M/94ae60e39880b4ff
IP
Requested by https://safefileku.com/download/VWcs3n0d2Fy2Jh97
Certificate IssuerLet's Encrypt
Subjectsafefileku.com
FingerprintEB:2B:1A:C5:1B:85:13:1D:E2:70:9A:FF:8A:E4:52:74:97:73:FD:F1
ValidityMon, 02 Jun 2025 14:50:39 GMT - Sun, 31 Aug 2025 14:50:38 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/challenge-platform/h/b/jsd/r/0.8830638459551748:1749111205:432QDQYz8ZtjTj0N-goAP1ynQYeOOzL5rlJgNOjXj_M/94ae60e39880b4ff HTTP/1.1
Host: safefileku.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 12111
Origin: https://safefileku.com
DNT: 1
Connection: keep-alive
Referer: https://safefileku.com/download/VWcs3n0d2Fy2Jh97
Cookie: XSRF-TOKEN=eyJpdiI6IkM5S3hRUHk1clNJUGhTMS9wdnFxZGc9PSIsInZhbHVlIjoiZHZja3dDNG95aTNPQmtmUkVNbEc5amhMVWtyTWF6MHVUak5uNTFWYjlFSTR0TWhwWm4rMlArVkFTMGg3NG8xaVpjMHR1R2p0ZSt2VEVkdDFaL1NjMGlXRlkrT3ZnNUZiUExrNXI5UjlCR0podXNKdHFPQXllakxqRkxxZUhsWjEiLCJtYWMiOiI2MGE2MjZjZWFhZTJkMTRlMWNiNDRjYTcyNjNhYTQzMjNkODk4OWIzNGQzM2RlMDQ0ZmVmYWI4YTQxMDRlYmQzIiwidGFnIjoiIn0%3D; _sid=eyJpdiI6Im1rQzZlVElGY3Z5ek43NSs2YmNyOUE9PSIsInZhbHVlIjoiNVdQSHVxNGxoY2M3RE8zeHA2MGQ2Mk13RmFRTDJSa3FvWTFzbzZZckRIMkJRM0ZsNERaa1NFcFhnaFkzY01Va0IzWjJXL3N2NS9QLzNtTVVhdXU3RVl0dTZTRHYwaGVFL2xwUXBCS1lLdXpQVGFXSXd5UnBhdzRCUlpjQlVRMHAiLCJtYWMiOiJkNjNhNDRjN2Y1M2QzMmZkMDY1NmZhNzlhY2I1NDc0NGIzNDczMzJlMzljYmVhYmM2YTMwNWE5MGQwNjZiZmFlIiwidGFnIjoiIn0%3D; _vt=eyJpdiI6IkFscjZXWVRGZ3pEN3hNVUhUbVdvL1E9PSIsInZhbHVlIjoidDFaL3lQdnlna1lvL2xyN0NCWnlTcTM5dnAzYWxIbkw4RkdPNjY5a0MwMThuNnk5SDJ4dkdaNXNVbkZ4QjhrNjR5dFpVUGx3SlFTRHMva1VJU1VZclE9PSIsIm1hYyI6IjNmNDU1ZGMxOThhOTNkNGEzNWEwOGViMDYzZDYxNWQ4MGE2MTczMDgxZmRhMDRjNDYyMjhlMjYwNDEzOGUzZjgiLCJ0YWciOiIifQ%3D%3D; _ga_PDTF86T1NX=GS2.1.s1749112967$o1$g0$t1749112967$j60$l0$h0; _ga=GA1.1.1458808686.1749112967
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 05 Jun 2025 08:42:47 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
x-content-type-options: nosniff
server: cloudflare
cf-ray: 94ae60eeaf8fb4ff-OSL
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OFmAfLxgubEbPCLwaz81gufhqte9Gk%2FZFPvtS%2BPgmeDoVhRHS8BmxnPTANxDSDX89niaztGhTWEEY2GLei5iru8W%2Fn%2FhAR59jeuF%2FHJh5TqllM%2FKhFihQNqIywi3x7r6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
set-cookie: cf_clearance=BqSsKb21ahKbE6PBiBJDyWViP8HRL8VGEKLyvFeDhJE-1749112967-1.2.1.1-BqU.rZuK2V.KgJ3ALRHEu_n.vhmOoJfBgZBwVurEOLn_8yTzHJotdCHFJmLm6h8eV0Bgn8bzQm.uV0tkFmvv_RvLShMQzT4aLW.ocXpqCbgZUlAQcWykF6FxxWMaS3lW.MQ7OAzMVPuiXqXmgOuGXtLR7myOnzpN.lqg_0mU3fBCsM4vPbvhqS7rX9qfI.EWI4HNRQgW6u9XVEEgJrPjBudgfbNFcCfpIDao0KwZsl2yZXLNMWSZXZSKPQc3IQnU296dyUT_sJ21dr2uVXWFrFVKGWB5hH9SA9dW0AiXfk8nE9uAejX2ZvgC2gJVesZ5MxeCNPqYhKM3Zbv1Lqjx7yub1qz4257jWphOssguqNQ; HttpOnly; SameSite=None; Partitioned; Secure; Path=/; Domain=safefileku.com; Expires=Fri, 05 Jun 2026 08:42:47 GMT
server-timing: cfL4;desc="?proto=TCP&rtt=2734&min_rtt=394&rtt_var=4072&sent=454&recv=212&lost=0&retrans=1&sent_bytes=565763&recv_bytes=15992&delivery_rate=131530546&cwnd=257&unsent_bytes=0&cid=5a9b4a78f78fe5aa&ts=1796&x=0"
X-Firefox-Spdy: h2
POST challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/860632069:1749111391:eHVNiiDQyBCuD2UIUbdU_f38dK3uxn8FdfISGgcCPrg/94ae60ecfe1f56ba/TfU8dM2SR5yR9iyaXWPG.sYDnj7zv.g9mKSqRcaTOmo-1749112967-1.2.1.1-zfTQzQOKxf1NEmMOaY8b0RycRdSYtOmxzPuHRPDRyc3PKjHf5KJ_tqAQomZ3xrYf
200 OK 4.6 kB URL POST challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/860632069:1749111391:eHVNiiDQyBCuD2UIUbdU_f38dK3uxn8FdfISGgcCPrg/94ae60ecfe1f56ba/TfU8dM2SR5yR9iyaXWPG.sYDnj7zv.g9mKSqRcaTOmo-1749112967-1.2.1.1-zfTQzQOKxf1NEmMOaY8b0RycRdSYtOmxzPuHRPDRyc3PKjHf5KJ_tqAQomZ3xrYf
IP
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/yb679/0x4AAAAAAALLuQFUOnh41Bqj/light/fbE/new/flexible/auto/
Certificate IssuerGoogle Trust Services
Subjectchallenges.cloudflare.com
Fingerprint66:48:DF:B4:8B:9D:6A:8C:3A:B7:0F:CF:92:C7:AF:56:B9:3D:A2:1C
ValidityTue, 29 Apr 2025 17:49:00 GMT - Mon, 28 Jul 2025 18:48:58 GMT
File type ASCII text, with very long lines (4648), with no line terminators
Hash 356ecf205a6fe36cbce3eed621b4298a
643e3c065994b744ba9aea617743624a8973b874
6f5768dd527654f75e517737b608bb33af3574fb33bd5bba0b4fb6c9bace5b7e
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/860632069:1749111391:eHVNiiDQyBCuD2UIUbdU_f38dK3uxn8FdfISGgcCPrg/94ae60ecfe1f56ba/TfU8dM2SR5yR9iyaXWPG.sYDnj7zv.g9mKSqRcaTOmo-1749112967-1.2.1.1-zfTQzQOKxf1NEmMOaY8b0RycRdSYtOmxzPuHRPDRyc3PKjHf5KJ_tqAQomZ3xrYf HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/yb679/0x4AAAAAAALLuQFUOnh41Bqj/light/fbE/new/flexible/auto/
cf-chl: TfU8dM2SR5yR9iyaXWPG.sYDnj7zv.g9mKSqRcaTOmo-1749112967-1.2.1.1-zfTQzQOKxf1NEmMOaY8b0RycRdSYtOmxzPuHRPDRyc3PKjHf5KJ_tqAQomZ3xrYf
cf-chl-ra: 0
Content-Type: text/plain;charset=UTF-8
Content-Length: 42346
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 05 Jun 2025 08:43:04 GMT
content-type: text/html; charset=UTF-8
cf-chl-out-s: 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$qjwy7SY7ZlO8FxL2dxiGhA==
cf-chl-out: Gj23nLOCIhxH2+rfw5qteGW3j5UZ4SonoAA3YZReDJ5zeJ5utxuvIOIheoiFI08940+uZRsHc2xHbmjXavzWNA==$fNHmWh8Z1a7KB4+9eDGvrg==
priority: u=3,i=?0
server: cloudflare
cf-ray: 94ae61583f2f56ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET sysoutvariola.com/1clkn/70243
200 OK 6 B URL GET sysoutvariola.com/1clkn/70243
IP
Requested by https://safefileku.com/download/VWcs3n0d2Fy2Jh97
Certificate IssuerLet's Encrypt
Subjectsysoutvariola.com
FingerprintBC:E0:AD:28:17:AB:92:06:37:AC:52:3B:C5:5D:D2:AB:9B:65:7D:24
ValidityTue, 13 May 2025 22:11:35 GMT - Mon, 11 Aug 2025 22:11:34 GMT
File type ASCII text, with no line terminators
Hash 9082dc37e5e8046929da411544ad071a
41e0e3963ed94e59e8a2f115994c382712411537
b7848d86edc8dc3b5bc6a5c666069f9a31e000cee51575d3b6083951607e1550
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /1clkn/70243 HTTP/1.1
Host: sysoutvariola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://safefileku.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 05 Jun 2025 08:42:47 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list
Set-Cookie: GL_UI4=eJw9zV1OhDAcBHC%2B2dUFnYQDeASKlPDqi1fwkRT6B%2BtCuykV9PYSE32bTH6T8TwvKB7gb8kZ4afgeGKsbdqaV21ZD62o%2Br5tGl72vC1ZxceR46zWzol%2BJhfhtC7Cus5tES4TabJq6AYjKcPjof6aqza7jhD3VmiZIV4OMWdIe2v2lWwRItJiIaSvytJovg4hPoxFyJ7rIyt9ZL9EYNYizO%2BQviktj2V%2BQcDKPE883N9m4UZjl07JxEc8WSEJ%2FgtOg3A0GfuNVNJ6deYGmFl2%2F%2F73ONxZiUTSpgZCbNw72R%2B3Z03l; expires=Fri, 06-Jun-2025 08:42:47 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJwVyM0KgkAUhuE5hxiIJPjIC%2FAKTMsWbrNl6MIrMIsYGObIzNjP3WeLd%2FG8SilOE7CZkNRlXhd5dcjLUwV6gtsOPDroVvx7%2BII8uDiCvcOmC1ayRmYXlz9i9TfIYHu25pP1YudoxAXw0roZbvaxv%2FRX0KQJHEUzONxTBXrp3Q9e7R3S; expires=Fri, 06-Jun-2025 08:42:47 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
GET safefileku.com/download/VWcs3n0d2Fy2Jh97
200 OK 56 kB URL User Request GET safefileku.com/download/VWcs3n0d2Fy2Jh97
IP
Certificate IssuerLet's Encrypt
Subjectsafefileku.com
FingerprintEB:2B:1A:C5:1B:85:13:1D:E2:70:9A:FF:8A:E4:52:74:97:73:FD:F1
ValidityMon, 02 Jun 2025 14:50:39 GMT - Sun, 31 Aug 2025 14:50:38 GMT
File type HTML document, Unicode text, UTF-8 text, with very long lines (30872)
Hash 0f2cad14788c723ec9553556cf5d564c
f751aa35ec10002a0d0d72ecda851f1d8112565e
5227f17838c46062fb5842573c4e6dd17c75569a7088f20d2850fd01eaea0179
GET /download/VWcs3n0d2Fy2Jh97 HTTP/1.1
Host: safefileku.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://l.threads.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 05 Jun 2025 08:42:46 GMT
content-type: text/html; charset=UTF-8
server: cloudflare
x-content-type-options: nosniff
cf-ray: 94ae60e39880b4ff-OSL
cache-control: no-cache, private
content-encoding: br
strict-transport-security: max-age=15552000; includeSubDomains; preload
cf-cache-status: DYNAMIC
vary: accept-encoding
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DR3MzpBW4bTu6Cot%2F09%2BlIlOrdrHOb1Q0G5wBLklOIZqGwcSXnU3ZwyIUnseRsZv2mmrNbt5s%2FhtWN%2FSsfWh4ya9D67BOPIWJbG%2BqOYT4e%2B9F2wt61yEi5OlnFCQXpgk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
set-cookie: XSRF-TOKEN=eyJpdiI6IkM5S3hRUHk1clNJUGhTMS9wdnFxZGc9PSIsInZhbHVlIjoiZHZja3dDNG95aTNPQmtmUkVNbEc5amhMVWtyTWF6MHVUak5uNTFWYjlFSTR0TWhwWm4rMlArVkFTMGg3NG8xaVpjMHR1R2p0ZSt2VEVkdDFaL1NjMGlXRlkrT3ZnNUZiUExrNXI5UjlCR0podXNKdHFPQXllakxqRkxxZUhsWjEiLCJtYWMiOiI2MGE2MjZjZWFhZTJkMTRlMWNiNDRjYTcyNjNhYTQzMjNkODk4OWIzNGQzM2RlMDQ0ZmVmYWI4YTQxMDRlYmQzIiwidGFnIjoiIn0%3D; SameSite=Lax; Secure; Path=/; Max-Age=7200; Expires=Thu, 05 Jun 2025 10:42:46 GMT
_sid=eyJpdiI6Im1rQzZlVElGY3Z5ek43NSs2YmNyOUE9PSIsInZhbHVlIjoiNVdQSHVxNGxoY2M3RE8zeHA2MGQ2Mk13RmFRTDJSa3FvWTFzbzZZckRIMkJRM0ZsNERaa1NFcFhnaFkzY01Va0IzWjJXL3N2NS9QLzNtTVVhdXU3RVl0dTZTRHYwaGVFL2xwUXBCS1lLdXpQVGFXSXd5UnBhdzRCUlpjQlVRMHAiLCJtYWMiOiJkNjNhNDRjN2Y1M2QzMmZkMDY1NmZhNzlhY2I1NDc0NGIzNDczMzJlMzljYmVhYmM2YTMwNWE5MGQwNjZiZmFlIiwidGFnIjoiIn0%3D; HttpOnly; SameSite=Lax; Path=/; Max-Age=7200; Expires=Thu, 05 Jun 2025 10:42:46 GMT
_vt=eyJpdiI6IkFscjZXWVRGZ3pEN3hNVUhUbVdvL1E9PSIsInZhbHVlIjoidDFaL3lQdnlna1lvL2xyN0NCWnlTcTM5dnAzYWxIbkw4RkdPNjY5a0MwMThuNnk5SDJ4dkdaNXNVbkZ4QjhrNjR5dFpVUGx3SlFTRHMva1VJU1VZclE9PSIsIm1hYyI6IjNmNDU1ZGMxOThhOTNkNGEzNWEwOGViMDYzZDYxNWQ4MGE2MTczMDgxZmRhMDRjNDYyMjhlMjYwNDEzOGUzZjgiLCJ0YWciOiIifQ%3D%3D; HttpOnly; SameSite=Lax; Secure; Path=/; Max-Age=86400; Expires=Fri, 06 Jun 2025 08:42:46 GMT
_session=eyJpdiI6Im9iM1hrc3NCVWtGcTdOdytVMEN6Zmc9PSIsInZhbHVlIjoicm0zWFNvcGhUdTBPWEpZRVJJMHNnbVlhQXdaaE0rVVFYQXNSd09LMTV0Q1d6TTRLQnBDalMzN1RjUGs2VlgyVCtJUDh2blplVFdNK0FlTjVOUXM4OGIvbWgwU3orZFgyeTYrcjg2SXZSZ0E9IiwibWFjIjoiMTQ4ZjkwNzI3N2E3YWFkNWJkY2U5OTAyYzY5Njg4NTFhZmYwODkyMzIzZDlhZmM0YTM4M2NjNmQxZDgyMjY3ZSIsInRhZyI6IiJ9; HttpOnly; SameSite=Lax; Secure; Path=/download/VWcs3n0d2Fy2Jh97; Max-Age=7200; Expires=Thu, 05 Jun 2025 10:42:46 GMT
server-timing: cfCacheStatus;desc="DYNAMIC", cfL4;desc="?proto=TCP&rtt=6502&min_rtt=538&rtt_var=11890&sent=6&recv=10&lost=0&retrans=0&sent_bytes=2520&recv_bytes=1288&delivery_rate=3022964&cwnd=253&unsent_bytes=0&cid=5a9b4a78f78fe5aa&ts=1044&x=0"
X-Firefox-Spdy: h2
GET safefileku.com/cdn-cgi/challenge-platform/h/b/scripts/jsd/65b4351086ca/main.js?
200 OK 8.5 kB URL GET safefileku.com/cdn-cgi/challenge-platform/h/b/scripts/jsd/65b4351086ca/main.js?
IP
Requested by https://safefileku.com/download/VWcs3n0d2Fy2Jh97
Certificate IssuerLet's Encrypt
Subjectsafefileku.com
FingerprintEB:2B:1A:C5:1B:85:13:1D:E2:70:9A:FF:8A:E4:52:74:97:73:FD:F1
ValidityMon, 02 Jun 2025 14:50:39 GMT - Sun, 31 Aug 2025 14:50:38 GMT
File type JavaScript source, ASCII text, with very long lines (8453), with no line terminators
Hash 04b21cac055bc5cab6184a7d43e9b4bd
d39e3e3f414e6515e1d922bf2ac9e7949a07a609
a3f778085250d7db3cb62387a21845b5fc67cc4a9793bc6713a5577aa3eddd4c
GET /cdn-cgi/challenge-platform/h/b/scripts/jsd/65b4351086ca/main.js? HTTP/1.1
Host: safefileku.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IkM5S3hRUHk1clNJUGhTMS9wdnFxZGc9PSIsInZhbHVlIjoiZHZja3dDNG95aTNPQmtmUkVNbEc5amhMVWtyTWF6MHVUak5uNTFWYjlFSTR0TWhwWm4rMlArVkFTMGg3NG8xaVpjMHR1R2p0ZSt2VEVkdDFaL1NjMGlXRlkrT3ZnNUZiUExrNXI5UjlCR0podXNKdHFPQXllakxqRkxxZUhsWjEiLCJtYWMiOiI2MGE2MjZjZWFhZTJkMTRlMWNiNDRjYTcyNjNhYTQzMjNkODk4OWIzNGQzM2RlMDQ0ZmVmYWI4YTQxMDRlYmQzIiwidGFnIjoiIn0%3D; _sid=eyJpdiI6Im1rQzZlVElGY3Z5ek43NSs2YmNyOUE9PSIsInZhbHVlIjoiNVdQSHVxNGxoY2M3RE8zeHA2MGQ2Mk13RmFRTDJSa3FvWTFzbzZZckRIMkJRM0ZsNERaa1NFcFhnaFkzY01Va0IzWjJXL3N2NS9QLzNtTVVhdXU3RVl0dTZTRHYwaGVFL2xwUXBCS1lLdXpQVGFXSXd5UnBhdzRCUlpjQlVRMHAiLCJtYWMiOiJkNjNhNDRjN2Y1M2QzMmZkMDY1NmZhNzlhY2I1NDc0NGIzNDczMzJlMzljYmVhYmM2YTMwNWE5MGQwNjZiZmFlIiwidGFnIjoiIn0%3D; _vt=eyJpdiI6IkFscjZXWVRGZ3pEN3hNVUhUbVdvL1E9PSIsInZhbHVlIjoidDFaL3lQdnlna1lvL2xyN0NCWnlTcTM5dnAzYWxIbkw4RkdPNjY5a0MwMThuNnk5SDJ4dkdaNXNVbkZ4QjhrNjR5dFpVUGx3SlFTRHMva1VJU1VZclE9PSIsIm1hYyI6IjNmNDU1ZGMxOThhOTNkNGEzNWEwOGViMDYzZDYxNWQ4MGE2MTczMDgxZmRhMDRjNDYyMjhlMjYwNDEzOGUzZjgiLCJ0YWciOiIifQ%3D%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 05 Jun 2025 08:42:47 GMT
content-type: application/javascript; charset=UTF-8
cf-ray: 94ae60ed0d8ab4ff-OSL
server: cloudflare
content-encoding: br
cache-control: max-age=14400, stale-if-error=10800, stale-while-revalidate=10800, public
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WLq1O%2BHALIyAEf%2FhD%2BIDMeeOVW%2BtQgJQ3VExQMyGM60bNZ0FbTakADd9TkZLtcymDATtIC8pNILelE5ZHsbYGFIAVRy343C3umDLZ6SHwEDXF6ADjud57vfWzD20vSPj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
server-timing: cfL4;desc="?proto=TCP&rtt=6683&min_rtt=394&rtt_var=11500&sent=437&recv=191&lost=0&retrans=1&sent_bytes=557800&recv_bytes=3353&delivery_rate=131530546&cwnd=257&unsent_bytes=0&cid=5a9b4a78f78fe5aa&ts=1530&x=0"
X-Firefox-Spdy: h2
POST safefileku.com/cdn-cgi/rum?
204 No Content 0 B URL POST safefileku.com/cdn-cgi/rum?
IP
Requested by https://safefileku.com/download/VWcs3n0d2Fy2Jh97
Certificate IssuerLet's Encrypt
Subjectsafefileku.com
FingerprintEB:2B:1A:C5:1B:85:13:1D:E2:70:9A:FF:8A:E4:52:74:97:73:FD:F1
ValidityMon, 02 Jun 2025 14:50:39 GMT - Sun, 31 Aug 2025 14:50:38 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/rum? HTTP/1.1
Host: safefileku.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 1381
Origin: https://safefileku.com
DNT: 1
Connection: keep-alive
Referer: https://safefileku.com/download/VWcs3n0d2Fy2Jh97
Cookie: XSRF-TOKEN=eyJpdiI6IkM5S3hRUHk1clNJUGhTMS9wdnFxZGc9PSIsInZhbHVlIjoiZHZja3dDNG95aTNPQmtmUkVNbEc5amhMVWtyTWF6MHVUak5uNTFWYjlFSTR0TWhwWm4rMlArVkFTMGg3NG8xaVpjMHR1R2p0ZSt2VEVkdDFaL1NjMGlXRlkrT3ZnNUZiUExrNXI5UjlCR0podXNKdHFPQXllakxqRkxxZUhsWjEiLCJtYWMiOiI2MGE2MjZjZWFhZTJkMTRlMWNiNDRjYTcyNjNhYTQzMjNkODk4OWIzNGQzM2RlMDQ0ZmVmYWI4YTQxMDRlYmQzIiwidGFnIjoiIn0%3D; _sid=eyJpdiI6Im1rQzZlVElGY3Z5ek43NSs2YmNyOUE9PSIsInZhbHVlIjoiNVdQSHVxNGxoY2M3RE8zeHA2MGQ2Mk13RmFRTDJSa3FvWTFzbzZZckRIMkJRM0ZsNERaa1NFcFhnaFkzY01Va0IzWjJXL3N2NS9QLzNtTVVhdXU3RVl0dTZTRHYwaGVFL2xwUXBCS1lLdXpQVGFXSXd5UnBhdzRCUlpjQlVRMHAiLCJtYWMiOiJkNjNhNDRjN2Y1M2QzMmZkMDY1NmZhNzlhY2I1NDc0NGIzNDczMzJlMzljYmVhYmM2YTMwNWE5MGQwNjZiZmFlIiwidGFnIjoiIn0%3D; _vt=eyJpdiI6IkFscjZXWVRGZ3pEN3hNVUhUbVdvL1E9PSIsInZhbHVlIjoidDFaL3lQdnlna1lvL2xyN0NCWnlTcTM5dnAzYWxIbkw4RkdPNjY5a0MwMThuNnk5SDJ4dkdaNXNVbkZ4QjhrNjR5dFpVUGx3SlFTRHMva1VJU1VZclE9PSIsIm1hYyI6IjNmNDU1ZGMxOThhOTNkNGEzNWEwOGViMDYzZDYxNWQ4MGE2MTczMDgxZmRhMDRjNDYyMjhlMjYwNDEzOGUzZjgiLCJ0YWciOiIifQ%3D%3D; _ga_PDTF86T1NX=GS2.1.s1749112967$o1$g0$t1749112967$j60$l0$h0; _ga=GA1.1.1458808686.1749112967; cf_clearance=BqSsKb21ahKbE6PBiBJDyWViP8HRL8VGEKLyvFeDhJE-1749112967-1.2.1.1-BqU.rZuK2V.KgJ3ALRHEu_n.vhmOoJfBgZBwVurEOLn_8yTzHJotdCHFJmLm6h8eV0Bgn8bzQm.uV0tkFmvv_RvLShMQzT4aLW.ocXpqCbgZUlAQcWykF6FxxWMaS3lW.MQ7OAzMVPuiXqXmgOuGXtLR7myOnzpN.lqg_0mU3fBCsM4vPbvhqS7rX9qfI.EWI4HNRQgW6u9XVEEgJrPjBudgfbNFcCfpIDao0KwZsl2yZXLNMWSZXZSKPQc3IQnU296dyUT_sJ21dr2uVXWFrFVKGWB5hH9SA9dW0AiXfk8nE9uAejX2ZvgC2gJVesZ5MxeCNPqYhKM3Zbv1Lqjx7yub1qz4257jWphOssguqNQ
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Thu, 05 Jun 2025 08:42:48 GMT
x-content-type-options: nosniff
access-control-allow-origin: https://safefileku.com
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 94ae60f24bfdb4ff-OSL
x-frame-options: DENY
X-Firefox-Spdy: h2
GET political-effort.com/afW.1gwhcim_Vkzlcm2nl-vpbqjr9sh_ZuGvlwkxP-TzUA4BNCD_EEyFMGCHZ-iJdKGL4M9_QO2PdQKRT-1TRU4VSWU_pYZZbakbp-2dWeVfdgS_aiVjlkXlN-WntoNpSqW_Vs4tauGvN-JxRy0z9AM_bCUDxEBFZ-yH0ItJJKm_QM9NMOTPc-0ROSTTEUx_MWjXkY2ZN-zbEc2dMej_ggxhOiTjY-3lMmSnZop_ZqnrJshtb-WvVwpxZyD_1A6BaCWDh-sFZGXHQIm_aKXLNMtNd-WPxQ0RaSX_RUhVZWzX1-hZMambMc1_ZeWfJglhZ-mjQkzlYmT_Qo0pMqjrE-ztYuTvVwj_YyjzAAyBY-mDIEyFOGG_NIiJNKjLd-hNZOCPZQt_dSWTxU0Va-XXRYhZZa2_Jchdbemf5-lhcijj1k0_cmnnVolpJ-nrJsytauW_Qw9xYyTzJ-jBNCWDVEi_ZGWHZIkJM-2LEM0NNOD_IQxRMS2TE-1VYW2XIYw_MambJcidM-jfhgjhYij_Yk3lYmWnQ-mpeqmr9su_ZuWvlwkxP-TzYAxBMCT_EE0FMGTHU-
200 OK 0 B URL GET political-effort.com/afW.1gwhcim_Vkzlcm2nl-vpbqjr9sh_ZuGvlwkxP-TzUA4BNCD_EEyFMGCHZ-iJdKGL4M9_QO2PdQKRT-1TRU4VSWU_pYZZbakbp-2dWeVfdgS_aiVjlkXlN-WntoNpSqW_Vs4tauGvN-JxRy0z9AM_bCUDxEBFZ-yH0ItJJKm_QM9NMOTPc-0ROSTTEUx_MWjXkY2ZN-zbEc2dMej_ggxhOiTjY-3lMmSnZop_ZqnrJshtb-WvVwpxZyD_1A6BaCWDh-sFZGXHQIm_aKXLNMtNd-WPxQ0RaSX_RUhVZWzX1-hZMambMc1_ZeWfJglhZ-mjQkzlYmT_Qo0pMqjrE-ztYuTvVwj_YyjzAAyBY-mDIEyFOGG_NIiJNKjLd-hNZOCPZQt_dSWTxU0Va-XXRYhZZa2_Jchdbemf5-lhcijj1k0_cmnnVolpJ-nrJsytauW_Qw9xYyTzJ-jBNCWDVEi_ZGWHZIkJM-2LEM0NNOD_IQxRMS2TE-1VYW2XIYw_MambJcidM-jfhgjhYij_Yk3lYmWnQ-mpeqmr9su_ZuWvlwkxP-TzYAxBMCT_EE0FMGTHU-
IP
Requested by https://safefileku.com/download/VWcs3n0d2Fy2Jh97
Certificate IssuerLet's Encrypt
Subjectpolitical-effort.com
Fingerprint07:3A:BE:20:6B:F4:23:7A:C4:7B:B9:72:E1:5B:5C:30:58:CE:1C:09
ValidityFri, 11 Apr 2025 22:48:11 GMT - Thu, 10 Jul 2025 22:48:10 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /afW.1gwhcim_Vkzlcm2nl-vpbqjr9sh_ZuGvlwkxP-TzUA4BNCD_EEyFMGCHZ-iJdKGL4M9_QO2PdQKRT-1TRU4VSWU_pYZZbakbp-2dWeVfdgS_aiVjlkXlN-WntoNpSqW_Vs4tauGvN-JxRy0z9AM_bCUDxEBFZ-yH0ItJJKm_QM9NMOTPc-0ROSTTEUx_MWjXkY2ZN-zbEc2dMej_ggxhOiTjY-3lMmSnZop_ZqnrJshtb-WvVwpxZyD_1A6BaCWDh-sFZGXHQIm_aKXLNMtNd-WPxQ0RaSX_RUhVZWzX1-hZMambMc1_ZeWfJglhZ-mjQkzlYmT_Qo0pMqjrE-ztYuTvVwj_YyjzAAyBY-mDIEyFOGG_NIiJNKjLd-hNZOCPZQt_dSWTxU0Va-XXRYhZZa2_Jchdbemf5-lhcijj1k0_cmnnVolpJ-nrJsytauW_Qw9xYyTzJ-jBNCWDVEi_ZGWHZIkJM-2LEM0NNOD_IQxRMS2TE-1VYW2XIYw_MambJcidM-jfhgjhYij_Yk3lYmWnQ-mpeqmr9su_ZuWvlwkxP-TzYAxBMCT_EE0FMGTHU- HTTP/1.1
Host: political-effort.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://safefileku.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 05 Jun 2025 08:42:48 GMT
content-type: application/javascript
content-length: 0
expires: Mon, 26 Jul 2011 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-WoW64
last-modified: Thu, 05 Jun 2025 08:42:48 GMT
p3p: CP="CUR ADM OUR NOR STA NID"
set-cookie: uniqCookie=8c440e5bb6af60571405c1937154c919; max-age=1751704968; path=/
kadCCap=304575:1:1749108836; max-age=1780648968; path=/
kadACap=629981:1:1749077896;534731:1:1749108613; max-age=1780648968; path=/
kadCSCap=304575:1:1749108836; path=/
kadASCap=629981:1:1749077896;534731:1:1749108613; path=/
kadRPixJ=bnVsbA==; max-age=1780648968; path=/
kadUnP3=CAYQk4eDwgYaDQiLvIMDEAEY5JCFwgYaDQj2iP8BEAIYk4eDwgYaDQi6ksgCEAEYiJ+DwgYaDQi3gfUCEAIYhY+FwgYiCggDEAQYk4eDwgYiCggBEAIYhY+FwgYqDAihyDIQARjkkIXCBioMCLiOJRACGJOHg8IGKgwIoY4lEAEYiJ+DwgYqDAiJwTEQAhiFj4XCBg==; max-age=1780648968; path=/
x-content-type-options: nosniff
X-Firefox-Spdy: h2
GET challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/94ae60ecfe1f56ba/1749112968181/416765c597ce5c96f6766279360eef6572cbee85e2dd7d11ae87edde261a8850/1gwPCdXKYs0_zRv
401 Unauthorized 1 B URL GET challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/94ae60ecfe1f56ba/1749112968181/416765c597ce5c96f6766279360eef6572cbee85e2dd7d11ae87edde261a8850/1gwPCdXKYs0_zRv
IP
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/yb679/0x4AAAAAAALLuQFUOnh41Bqj/light/fbE/new/flexible/auto/
Certificate IssuerGoogle Trust Services
Subjectchallenges.cloudflare.com
Fingerprint66:48:DF:B4:8B:9D:6A:8C:3A:B7:0F:CF:92:C7:AF:56:B9:3D:A2:1C
ValidityTue, 29 Apr 2025 17:49:00 GMT - Mon, 28 Jul 2025 18:48:58 GMT
File type very short file (no magic)
Hash ff44570aca8241914870afbc310cdb85
58668e7669fd564d99db5d581fcdb6a5618440b5
6da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5
GET /cdn-cgi/challenge-platform/h/b/pat/94ae60ecfe1f56ba/1749112968181/416765c597ce5c96f6766279360eef6572cbee85e2dd7d11ae87edde261a8850/1gwPCdXKYs0_zRv HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/yb679/0x4AAAAAAALLuQFUOnh41Bqj/light/fbE/new/flexible/auto/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 401 Unauthorized
date: Thu, 05 Jun 2025 08:42:49 GMT
content-type: text/plain; charset=utf-8
content-length: 1
www-authenticate: PrivateToken challenge="AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20gQWdlxZfOXJb2dmJ5Ng7vZXLL7oXi3X0Rroft3iYaiFAAGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAscjm_UO_k901rNdCKgLw5bvI4i6M_jDNCIXpfs2LRbtxwLOrUyplqVvML_hVlB5tIDMuj0ihhaOFHose-Y0_UjQnNUGE_vol46VvGgscTMtTjU4xINriap8AMTIygvljEBt6my-nBwkUGhY3U9v5iKC-eWR5bTfvrqFsuIVxafkSfhHqDXB4KLGNjvOOV71GGJ9x4yxA-C2OcULZ1uDDKuvAaMhuiWdF6OzSTXruP9yPg1vmuteavOW1re0YDbCbtK16PhHdSzWym7v_FrvId-2zf26j50FlTd_vl_DcKNDVCgWDoU0uX3cU6V3rSQoVXREEqPr-2ywSGru8ZuXRoQIDAQAB", max-age=20, PrivateToken challenge="AAIAHXNhdC5wYXQtaXNzdWVyLmNsb3VkZmxhcmUuY29tIEFnZcWXzlyW9nZieTYO72Vyy-6F4t19Ea6H7d4mGohQABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAsLS4HBnLGydwK-bLQGRCaoyMsrXBRrDgQVmxS06j3UF0nYSd6GdTGCKIu1WV60eg-tJtTttfEVq7wHVQf4vzjYBidmCh88ebzxKv2GB6PESSodf5MsEup9xd5dxpkYScgL1CCJq89kRrOQ_CS61bvkL_oGyZf4ffqG5THgaOsopqj8dFLH6_SMy9yf8EgMYqpyjxfKsD-1_qb1m1DRjJEKPWKIGwmHXIKQJUqsxZFm4_Inwkxx7QMpVP4GyqlTxFVz7stWwJRSkMLHjEM_IWLUYfPhuwIUVqmRjGsY1n8flA1bRfxaWHNDxoi25-M2BKTP9NkNNJBbTKErhrZ9LGywIDAQAB", max-age=20, PrivateToken challenge="AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tIEFnZcWXzlyW9nZieTYO72Vyy-6F4t19Ea6H7d4mGohQABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEApfbVKW9jv_cm7VCxn62oVAVC5hFmu-kZjUyoHVY59NkyKyHKMDjFTQQtwRz5WaCrisTztPUBe5IEqngHq_K6n0LVGgP-vP5_EV8Q63SdqECb9NxgQT_jnGDYKP38YIvPHP47CMaQOOm6F4tfy50OTdVLxmir-nwtG4EsjQpjbWt5h0uKnWtYHo0z3T2TGAaak3xueW6uC1Y9XvXRyQ4VLq2YT2Pj5nG5iT9qz95HGc0b9CcuEADcgyRRUmYpFDKa4E7gznEbKSul9XcN8oNCkL49spyNT1stpPVhL9fnQZz0zdIsTIdKR-iKQoy9HKyPEeNpcQhrSF7DgSPJTnR6xwIDAQAB", max-age=20
priority: u=4,i=?0
server: cloudflare
cf-ray: 94ae60fe6a8656ba-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET l.threads.com/?u=https://safefileku.com/download/VWcs3n0d2Fy2Jh97&e=AT37nB0skCKNFNz31Kji0FHGKbnOXBhET5b5GpZk_NYPUqV0mRwqIL8OJZ-0E0f-J-KTt17ATH2PYaiGL74agzJ3DtnSNhQA_rvgfh4RfB22QWYY7HT82UDDn_mgQ0RVYjJCmPk
200 OK 243 B URL User Request GET l.threads.com/?u=https://safefileku.com/download/VWcs3n0d2Fy2Jh97&e=AT37nB0skCKNFNz31Kji0FHGKbnOXBhET5b5GpZk_NYPUqV0mRwqIL8OJZ-0E0f-J-KTt17ATH2PYaiGL74agzJ3DtnSNhQA_rvgfh4RfB22QWYY7HT82UDDn_mgQ0RVYjJCmPk
IP
Certificate IssuerDigiCert Inc
Subject*.threads.com
FingerprintF3:E8:63:C1:C9:ED:97:BA:AA:C3:5D:33:A7:9F:59:3F:1B:B7:27:D7
ValidityFri, 14 Mar 2025 00:00:00 GMT - Thu, 12 Jun 2025 23:59:59 GMT
File type HTML document, ASCII text, with no line terminators
Hash d672062f73a8036d444b32120dfdb724
ff6b3ce012b0bf029d7110b67307cb80a2c91db5
dee9989db591907560d7760642fe165f0fdd034780ca4ba10c35c58bba28c5d0
GET /?u=https://safefileku.com/download/VWcs3n0d2Fy2Jh97&e=AT37nB0skCKNFNz31Kji0FHGKbnOXBhET5b5GpZk_NYPUqV0mRwqIL8OJZ-0E0f-J-KTt17ATH2PYaiGL74agzJ3DtnSNhQA_rvgfh4RfB22QWYY7HT82UDDn_mgQ0RVYjJCmPk HTTP/1.1
Host: l.threads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
refresh: 1;URL=https://safefileku.com/download/VWcs3n0d2Fy2Jh97
referrer-policy: origin
x-robots-tag: noindex, nofollow
reporting-endpoints: coop_report="https://www.facebook.com/browser_reporting/coop/?minimize=0", default="https://www.threads.com/ajax/barcelona_error_reports/?device_level=unknown&brsid=7512382983420385374&cpp=C3&cv=1023521818&st=1749112965311", permissions_policy="https://www.threads.com/ajax/barcelona_error_reports/"
report-to: {"max_age":2592000,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/coop\/?minimize=0"}],"group":"coop_report","include_subdomains":true}, {"max_age":259200,"endpoints":[{"url":"https:\/\/www.threads.com\/ajax\/barcelona_error_reports\/?device_level=unknown&brsid=7512382983420385374&cpp=C3&cv=1023521818&st=1749112965311"}]}, {"max_age":21600,"endpoints":[{"url":"https:\/\/www.threads.com\/ajax\/barcelona_error_reports\/"}],"group":"permissions_policy"}
content-security-policy: default-src *.threads.com *.threads.net *.instagram.com *.facebook.com *.fbcdn.net blob:;script-src *.facebook.com *.fbcdn.net *.facebook.net 127.0.0.1:* 'nonce-kPfXKsmO' blob: 'self' static.cdninstagram.com 'wasm-unsafe-eval';style-src data: blob: 'unsafe-inline' *.fbcdn.net *.threads.com *.threads.net *.facebook.com *.instagram.com static.cdninstagram.com;connect-src *.threads.com *.threads.net wss://*.threads.com:* wss://*.threads.net:* *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* ws://localhost:* blob: *.instagram.com *.cdninstagram.com wss://*.instagram.com:* 'self';font-src data: static.cdninstagram.com;img-src *.threads.com *.threads.net *.instagram.com *.facebook.com *.fbcdn.net *.cdninstagram.com data: blob: about.fb.com engineering.fb.com *.fbsbx.com android-webview-video-poster: *.oculuscdn.com;media-src *.threads.com *.threads.net *.instagram.com *.facebook.com *.fbcdn.net *.cdninstagram.com data: blob: *.fbsbx.com android-webview-video-poster:;child-src *.threads.com *.threads.net *.instagram.com *.facebook.com *.fbcdn.net data: blob:;frame-src *.fbsbx.com 'self';manifest-src *.threads.com *.threads.net *.instagram.com *.facebook.com *.fbcdn.net data: blob:;object-src *.threads.com *.threads.net *.instagram.com *.facebook.com *.fbcdn.net data: blob:;worker-src *.threads.com *.threads.net *.instagram.com *.facebook.com *.fbcdn.net data: blob:;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;require-trusted-types-for 'script';
document-policy: force-load-at-top, include-js-call-stacks-in-crash-reports
permissions-policy: accelerometer=(), attribution-reporting=(), autoplay=(), bluetooth=(), camera=(), ch-device-memory=(), ch-downlink=(), ch-dpr=(), ch-ect=(), ch-rtt=(), ch-save-data=(), ch-ua-arch=(), ch-ua-bitness=(), ch-viewport-height=(), ch-viewport-width=(), ch-width=(), clipboard-read=(), clipboard-write=(), compute-pressure=(), display-capture=(), encrypted-media=(), fullscreen=(self), gamepad=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), interest-cohort=(), keyboard-map=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), otp-credentials=(), payment=(), picture-in-picture=(), private-state-token-issuance=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), shared-storage=(), shared-storage-select-url=(), private-state-token-redemption=(), usb=(), unload=(self), window-management=(), xr-spatial-tracking=();report-to="permissions_policy"
cross-origin-resource-policy: same-origin
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin-allow-popups
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
origin-agent-cluster: ?1
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-stack: www
content-type: text/html; charset="utf-8"
x-fb-debug: SN6AyzOxY19HuZkRmzR9Z7CNFyvCMefnjFhpSLjhbjuhMvPkVYPF0ohvJxga4KPLG1hWZdAjAEe+nqEX4aAkgg==
date: Thu, 05 Jun 2025 08:42:45 GMT
alt-svc: h3=":443"; ma=86400
x-fb-connection-quality: EXCELLENT; q=0.9, rtt=12, rtx=0, c=15, mss=1380, tbw=3605, tp=-1, tpl=-1, uplat=199, ullat=0
X-Firefox-Spdy: h2
GET rqaq.rmervvomrowwy.top/keljmyveemelq/qaqoyb?d=0
200 OK 5 B URL GET rqaq.rmervvomrowwy.top/keljmyveemelq/qaqoyb?d=0
IP
Requested by https://safefileku.com/download/VWcs3n0d2Fy2Jh97
Certificate IssuerZeroSSL
Subjectrqaq.rmervvomrowwy.top
FingerprintEF:5A:19:85:31:BD:DF:A7:A3:67:1B:D1:3A:2B:9B:BF:D1:42:2E:FE
ValiditySat, 24 May 2025 00:00:00 GMT - Fri, 22 Aug 2025 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 848667c49f5d3aef59cd65ed276cd7ae
bd12c0ca2dfaa249586f1b9b8d48b02a1b9e3763
cc5a5851251dd8052292557ba0231c51363ff1474f60b7a4af3be144cb1327c8
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /keljmyveemelq/qaqoyb?d=0 HTTP/1.1
Host: rqaq.rmervvomrowwy.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://safefileku.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 05 Jun 2025 08:42:47 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://safefileku.com
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for, x-requested-with, cache-control, pragma, expires
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
Set-Cookie: GL_UI4=eJw9zV1OhDAcBHC%2B2dUFnYQDeASKlPDqi1fwkRT6B%2BtCuykV9PYSE32bTH6T8TwvKB7gb8kZ4afgeGKsbdqaV21ZD62o%2Br5tGl72vC1ZxceR46zWzol%2BJhfhtC7Cus5tES4TabJq6AYjKcPjof6aqza7jhD3VmiZIV4OMWdIe2v2lWwRItJiIaSvytJovg4hPoxFyJ7rIyt9ZL9EYNYizO%2BQviktj2V%2BQcDKPE883N9m4UZjl07JxEc8WSEJ%2FgtOg3A0GfuNVNJ6deYGmFl2%2F%2F73ONxZiUTSpgZCbNw72R%2B3Z03l; expires=Fri, 06-Jun-2025 08:42:47 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJwVyM0KgkAUhuE5hxiIJPjIC%2FAKTMsWbrNl6MIrMIsYGObIzNjP3WeLd%2FG8SilOE7CZkNRlXhd5dcjLUwV6gtsOPDroVvx7%2BII8uDiCvcOmC1ayRmYXlz9i9TfIYHu25pP1YudoxAXw0roZbvaxv%2FRX0KQJHEUzONxTBXrp3Q9e7R3S; expires=Fri, 06-Jun-2025 08:42:47 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
GET cdn.safefileku.com/download-section.png
200 OK 39 kB URL GET cdn.safefileku.com/download-section.png
IP
Requested by https://safefileku.com/download/VWcs3n0d2Fy2Jh97
Certificate IssuerLet's Encrypt
Subjectsafefileku.com
FingerprintEB:2B:1A:C5:1B:85:13:1D:E2:70:9A:FF:8A:E4:52:74:97:73:FD:F1
ValidityMon, 02 Jun 2025 14:50:39 GMT - Sun, 31 Aug 2025 14:50:38 GMT
File type RIFF (little-endian) data, Web/P image
Hash cab5faa6a82d5e5f5a68d159acdc5b00
ae73420057137bb95cc29c5f5eb5444a0fff3a05
dcce4c03f03c23bfb1efb3c9144fc5d9022a5a15cc70271767c38b07988823a7
GET /download-section.png HTTP/1.1
Host: cdn.safefileku.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://safefileku.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 05 Jun 2025 08:42:47 GMT
content-type: image/webp
content-length: 38726
server: cloudflare
x-content-type-options: nosniff
cf-ray: 94ae60ebec17b4ff-OSL
cf-bgj: imgq:100,h2pri,csam-hash
cf-polished: origFmt=png, origSize=96865
content-disposition: inline; filename="download-section.webp"
vary: Accept
etag: "67bfe368-17a61"
last-modified: Thu, 27 Feb 2025 04:00:40 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1126073
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ujwd%2FcTCumdbN7553gvpd%2F8js7X9MV2aMB08KY9rt3dfiP%2F1ng94CDrO2HzqMZS6PqsxCafnymHRgukRFiUOloXutPDicGexz%2BtAUk%2BMoT9jEGYvX0iLKTJCsf1s2Ql5Vse0YA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server-timing: cfL4;desc="?proto=TCP&rtt=2076&min_rtt=394&rtt_var=1016&sent=403&recv=181&lost=0&retrans=1&sent_bytes=517734&recv_bytes=3238&delivery_rate=131530546&cwnd=257&unsent_bytes=0&cid=5a9b4a78f78fe5aa&ts=1358&x=0"
X-Firefox-Spdy: h2
GET challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/yb679/0x4AAAAAAALLuQFUOnh41Bqj/light/fbE/new/flexible/auto/
200 OK 28 kB URL GET challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/yb679/0x4AAAAAAALLuQFUOnh41Bqj/light/fbE/new/flexible/auto/
IP
Requested by https://safefileku.com/download/VWcs3n0d2Fy2Jh97
Certificate IssuerGoogle Trust Services
Subjectchallenges.cloudflare.com
Fingerprint66:48:DF:B4:8B:9D:6A:8C:3A:B7:0F:CF:92:C7:AF:56:B9:3D:A2:1C
ValidityTue, 29 Apr 2025 17:49:00 GMT - Mon, 28 Jul 2025 18:48:58 GMT
File type HTML document, ASCII text, with very long lines (22243)
Hash 20176fdc9930d35c4f6e61d27f8e3056
e23c24b1e258e7a103b14fd4284d75f24dd87b34
8123bcac9003e226675553249a4785d157503905de60be2e40c6bb87d5889ae8
GET /cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/yb679/0x4AAAAAAALLuQFUOnh41Bqj/light/fbE/new/flexible/auto/ HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://safefileku.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 05 Jun 2025 08:42:47 GMT
content-type: text/html; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
content-security-policy: default-src 'none'; script-src 'nonce-pSYEscit7MOPJliP' 'unsafe-eval'; script-src-attr 'none'; worker-src blob:; style-src 'unsafe-inline'; img-src 'self'; connect-src 'self'; frame-src 'self' blob:; child-src 'self' blob:; form-action 'none'; base-uri 'self'; sandbox allow-same-origin allow-scripts allow-popups allow-forms
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: cross-origin
origin-agent-cluster: ?1
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
referrer-policy: same-origin
document-policy: js-profiling
priority: u=4,i=?0
server: cloudflare
cf-ray: 94ae60ecfe1f56ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET safefileku.com/apple-touch-icon.png
200 OK 1.5 kB URL GET safefileku.com/apple-touch-icon.png
IP
Requested by https://safefileku.com/download/VWcs3n0d2Fy2Jh97
Certificate IssuerLet's Encrypt
Subjectsafefileku.com
FingerprintEB:2B:1A:C5:1B:85:13:1D:E2:70:9A:FF:8A:E4:52:74:97:73:FD:F1
ValidityMon, 02 Jun 2025 14:50:39 GMT - Sun, 31 Aug 2025 14:50:38 GMT
File type RIFF (little-endian) data, Web/P image
Hash fc0b1857caf74d828b6042208a1e7209
a4f0ea9775edf35016015014b452839132f0fa59
eb306cf5a9930796db5a35f803eae00fed14caf71d028afe66cac22e1d87649f
GET /apple-touch-icon.png HTTP/1.1
Host: safefileku.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://safefileku.com/download/VWcs3n0d2Fy2Jh97
Cookie: XSRF-TOKEN=eyJpdiI6IkM5S3hRUHk1clNJUGhTMS9wdnFxZGc9PSIsInZhbHVlIjoiZHZja3dDNG95aTNPQmtmUkVNbEc5amhMVWtyTWF6MHVUak5uNTFWYjlFSTR0TWhwWm4rMlArVkFTMGg3NG8xaVpjMHR1R2p0ZSt2VEVkdDFaL1NjMGlXRlkrT3ZnNUZiUExrNXI5UjlCR0podXNKdHFPQXllakxqRkxxZUhsWjEiLCJtYWMiOiI2MGE2MjZjZWFhZTJkMTRlMWNiNDRjYTcyNjNhYTQzMjNkODk4OWIzNGQzM2RlMDQ0ZmVmYWI4YTQxMDRlYmQzIiwidGFnIjoiIn0%3D; _sid=eyJpdiI6Im1rQzZlVElGY3Z5ek43NSs2YmNyOUE9PSIsInZhbHVlIjoiNVdQSHVxNGxoY2M3RE8zeHA2MGQ2Mk13RmFRTDJSa3FvWTFzbzZZckRIMkJRM0ZsNERaa1NFcFhnaFkzY01Va0IzWjJXL3N2NS9QLzNtTVVhdXU3RVl0dTZTRHYwaGVFL2xwUXBCS1lLdXpQVGFXSXd5UnBhdzRCUlpjQlVRMHAiLCJtYWMiOiJkNjNhNDRjN2Y1M2QzMmZkMDY1NmZhNzlhY2I1NDc0NGIzNDczMzJlMzljYmVhYmM2YTMwNWE5MGQwNjZiZmFlIiwidGFnIjoiIn0%3D; _vt=eyJpdiI6IkFscjZXWVRGZ3pEN3hNVUhUbVdvL1E9PSIsInZhbHVlIjoidDFaL3lQdnlna1lvL2xyN0NCWnlTcTM5dnAzYWxIbkw4RkdPNjY5a0MwMThuNnk5SDJ4dkdaNXNVbkZ4QjhrNjR5dFpVUGx3SlFTRHMva1VJU1VZclE9PSIsIm1hYyI6IjNmNDU1ZGMxOThhOTNkNGEzNWEwOGViMDYzZDYxNWQ4MGE2MTczMDgxZmRhMDRjNDYyMjhlMjYwNDEzOGUzZjgiLCJ0YWciOiIifQ%3D%3D; _ga_PDTF86T1NX=GS2.1.s1749112967$o1$g0$t1749112967$j60$l0$h0; _ga=GA1.1.1458808686.1749112967
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 05 Jun 2025 08:42:47 GMT
content-type: image/webp
content-length: 1502
server: cloudflare
x-content-type-options: nosniff
cf-ray: 94ae60edbe8ab4ff-OSL
cf-bgj: imgq:100,h2pri,csam-hash
cf-polished: origFmt=png, origSize=1782
content-disposition: inline; filename="apple-touch-icon.webp"
vary: Accept
etag: "65ec200a-6f6"
last-modified: Sat, 09 Mar 2024 08:38:34 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: HIT
age: 4353
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mn5TZ%2BpvV3RpTsHmU6GLauidZDZ9RSmdHWXVJu2wVcTuh7pTblO3M65snnBn6N4q%2BRdTx4LOsQZyIUSnXAq8ip6N8DmNrP5C%2BV%2FvaZ9MyQLEbE1%2FLhiihNi2p6V7syUT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server-timing: cfL4;desc="?proto=TCP&rtt=3406&min_rtt=394&rtt_var=5166&sent=446&recv=199&lost=0&retrans=1&sent_bytes=563610&recv_bytes=3596&delivery_rate=131530546&cwnd=257&unsent_bytes=0&cid=5a9b4a78f78fe5aa&ts=1660&x=0"
X-Firefox-Spdy: h2
GET political-effort.com/bxXQVEs/d.GxlN0GYqWKdUiSYkWc5JujZ/X/IY/keDmR9_u/ZrUQlWkYPkTiYCx/MTT/Em0RMuDAcCt/NajMEMxvMMTvQbwyOJAT
200 OK 58 kB URL GET political-effort.com/bxXQVEs/d.GxlN0GYqWKdUiSYkWc5JujZ/X/IY/keDmR9_u/ZrUQlWkYPkTiYCx/MTT/Em0RMuDAcCt/NajMEMxvMMTvQbwyOJAT
IP
Requested by https://safefileku.com/download/VWcs3n0d2Fy2Jh97
Certificate IssuerLet's Encrypt
Subjectpolitical-effort.com
Fingerprint07:3A:BE:20:6B:F4:23:7A:C4:7B:B9:72:E1:5B:5C:30:58:CE:1C:09
ValidityFri, 11 Apr 2025 22:48:11 GMT - Thu, 10 Jul 2025 22:48:10 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (22055)
Hash 00f662f69687d9b59ad4e48aac79a2f7
5dd2c4f4379ce3069c884310275f3327c7afd2c9
00dfe0fcf8b9fe162983ea89cf32bd1ebb2c77124d5dd4c292b815395698df3c
GET /bxXQVEs/d.GxlN0GYqWKdUiSYkWc5JujZ/X/IY/keDmR9_u/ZrUQlWkYPkTiYCx/MTT/Em0RMuDAcCt/NajMEMxvMMTvQbwyOJAT HTTP/1.1
Host: political-effort.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://safefileku.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 05 Jun 2025 08:42:47 GMT
content-type: application/javascript
expires: Mon, 26 Jul 2011 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-WoW64
access-control-allow-origin: https://safefileku.com
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
vary: Accept-Encoding, Origin
access-control-allow-methods: GET
last-modified: Thu, 05 Jun 2025 08:42:47 GMT
set-cookie: kadSlcJ=eyJ0aW1lU3RhbXAiOjE3NDkwODU3NjAsInpvbmVzIjp7IjYxMTEzOTgiOls2MTExMzk4LDEsMTc0OTEwODYxMl0sIjYxMTE0MDciOls2MTExNDA3LDIsMTc0OTEwODYxMl0sIjYyMzE4MTYiOls2MjMxODE2LDIsMTc0OTA4NTc2MF0sIjYyMzM4NDIiOls2MjMzODQyLDIsMTc0OTA4NTc2MF0sIjYyNTk5MTYiOls2MjU5OTE2LDEsMTc0OTExMDk1Ml19fQ==; max-age=1780648967; path=/
uniqCookie=3a469a65466b11c04b68820e71c507ca; max-age=1751704967; path=/
x-content-type-options: nosniff
content-encoding: br
X-Firefox-Spdy: h2
GET cdn.safefileku.com/icons/zip.svg
200 OK 956 B URL GET cdn.safefileku.com/icons/zip.svg
IP
Requested by https://safefileku.com/download/VWcs3n0d2Fy2Jh97
Certificate IssuerLet's Encrypt
Subjectsafefileku.com
FingerprintEB:2B:1A:C5:1B:85:13:1D:E2:70:9A:FF:8A:E4:52:74:97:73:FD:F1
ValidityMon, 02 Jun 2025 14:50:39 GMT - Sun, 31 Aug 2025 14:50:38 GMT
File type SVG Scalable Vector Graphics image
Hash 60551b80b33cf5147fad8b08c6969453
a938be3992a082f932960f96a319dd341010bec0
262ef5c935da35b610ed8ad4b17c04fea5f5da2d30117777e8e95ac60c7eae38
GET /icons/zip.svg HTTP/1.1
Host: cdn.safefileku.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://safefileku.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 05 Jun 2025 08:42:46 GMT
content-type: image/svg+xml
cf-ray: 94ae60eb0af6b4ff-OSL
server: cloudflare
content-encoding: br
last-modified: Mon, 23 Sep 2024 00:34:10 GMT
etag: W/"66f0b782-3bc"
strict-transport-security: max-age=15552000; includeSubDomains; preload
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2338848
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BIcLjpz3j%2FNu9u%2B%2F43plkKf0txBfq07huQYrexd6sDjwHqtYG649cM%2FKRV4euVhEptDcNfFsk0YqLB88hbikWB8%2BfVQHrWLsOwypVuplJU3TnHXzTc5F4QCmjHN642SFzNWxVw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
server-timing: cfL4;desc="?proto=TCP&rtt=659&min_rtt=394&rtt_var=348&sent=47&recv=43&lost=0&retrans=0&sent_bytes=40673&recv_bytes=2760&delivery_rate=23020667&cwnd=257&unsent_bytes=0&cid=5a9b4a78f78fe5aa&ts=1227&x=0"
X-Firefox-Spdy: h2
GET static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015
200 OK 20 kB URL GET static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015
IP
Requested by https://safefileku.com/download/VWcs3n0d2Fy2Jh97
Certificate IssuerGoogle Trust Services
Subjectcloudflareinsights.com
FingerprintEA:C7:0D:68:3A:45:CB:AD:C5:33:41:B6:DF:F1:60:64:E1:0F:52:6A
ValiditySun, 27 Apr 2025 18:18:02 GMT - Sat, 26 Jul 2025 19:17:55 GMT
File type JavaScript source, ASCII text, with very long lines (19948), with no line terminators
Hash ec18af6d41f6f278b6aed3bdabffa7bc
62c9e2cab76b888829f3c5335e91c320b22329ae
8a18d13015336bc184819a5a768447462202ef3105ec511bf42ed8304a7ed94f
GET /beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://safefileku.com
DNT: 1
Connection: keep-alive
Referer: https://safefileku.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 05 Jun 2025 08:42:46 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/"2024.6.1"
last-modified: Thu, 06 Jun 2024 15:52:56 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 94ae60eae80fb4fa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
GET safefileku.com/favicon.ico
200 OK 4.3 kB URL GET safefileku.com/favicon.ico
IP
Requested by https://safefileku.com/download/VWcs3n0d2Fy2Jh97
Certificate IssuerLet's Encrypt
Subjectsafefileku.com
FingerprintEB:2B:1A:C5:1B:85:13:1D:E2:70:9A:FF:8A:E4:52:74:97:73:FD:F1
ValidityMon, 02 Jun 2025 14:50:39 GMT - Sun, 31 Aug 2025 14:50:38 GMT
File type MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel
Hash 01b0ee83da86042e99a8e21353ef66ea
230135418d3d4ecc25e82379c085e183b31003a9
9d2f3210878ca78c068cc4f50bbc32aed7cdb4c8ce760f41aec641dfc8a3f3fb
GET /favicon.ico HTTP/1.1
Host: safefileku.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://safefileku.com/download/VWcs3n0d2Fy2Jh97
Cookie: XSRF-TOKEN=eyJpdiI6IkM5S3hRUHk1clNJUGhTMS9wdnFxZGc9PSIsInZhbHVlIjoiZHZja3dDNG95aTNPQmtmUkVNbEc5amhMVWtyTWF6MHVUak5uNTFWYjlFSTR0TWhwWm4rMlArVkFTMGg3NG8xaVpjMHR1R2p0ZSt2VEVkdDFaL1NjMGlXRlkrT3ZnNUZiUExrNXI5UjlCR0podXNKdHFPQXllakxqRkxxZUhsWjEiLCJtYWMiOiI2MGE2MjZjZWFhZTJkMTRlMWNiNDRjYTcyNjNhYTQzMjNkODk4OWIzNGQzM2RlMDQ0ZmVmYWI4YTQxMDRlYmQzIiwidGFnIjoiIn0%3D; _sid=eyJpdiI6Im1rQzZlVElGY3Z5ek43NSs2YmNyOUE9PSIsInZhbHVlIjoiNVdQSHVxNGxoY2M3RE8zeHA2MGQ2Mk13RmFRTDJSa3FvWTFzbzZZckRIMkJRM0ZsNERaa1NFcFhnaFkzY01Va0IzWjJXL3N2NS9QLzNtTVVhdXU3RVl0dTZTRHYwaGVFL2xwUXBCS1lLdXpQVGFXSXd5UnBhdzRCUlpjQlVRMHAiLCJtYWMiOiJkNjNhNDRjN2Y1M2QzMmZkMDY1NmZhNzlhY2I1NDc0NGIzNDczMzJlMzljYmVhYmM2YTMwNWE5MGQwNjZiZmFlIiwidGFnIjoiIn0%3D; _vt=eyJpdiI6IkFscjZXWVRGZ3pEN3hNVUhUbVdvL1E9PSIsInZhbHVlIjoidDFaL3lQdnlna1lvL2xyN0NCWnlTcTM5dnAzYWxIbkw4RkdPNjY5a0MwMThuNnk5SDJ4dkdaNXNVbkZ4QjhrNjR5dFpVUGx3SlFTRHMva1VJU1VZclE9PSIsIm1hYyI6IjNmNDU1ZGMxOThhOTNkNGEzNWEwOGViMDYzZDYxNWQ4MGE2MTczMDgxZmRhMDRjNDYyMjhlMjYwNDEzOGUzZjgiLCJ0YWciOiIifQ%3D%3D; _ga_PDTF86T1NX=GS2.1.s1749112967$o1$g0$t1749112967$j60$l0$h0; _ga=GA1.1.1458808686.1749112967
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 05 Jun 2025 08:42:47 GMT
content-type: image/x-icon
cf-ray: 94ae60edce8cb4ff-OSL
server: cloudflare
content-encoding: br
last-modified: Sat, 09 Mar 2024 08:38:34 GMT
etag: W/"65ec200a-10be"
strict-transport-security: max-age=15552000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: HIT
age: 4353
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FmbHU8N1lBppX9mhzDdCq7bZbdtpDAd337cbYgPSmmZGzruMKLveHZaQEYXtrulcEH1%2BF6hkcUWKKfRsECJ94a3jt5xSV23g9lQ6phAH078MmNAsoeC8t1E%2FwGDAuq2E"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
server-timing: cfL4;desc="?proto=TCP&rtt=4162&min_rtt=394&rtt_var=6895&sent=443&recv=197&lost=0&retrans=1&sent_bytes=562289&recv_bytes=3596&delivery_rate=131530546&cwnd=257&unsent_bytes=0&cid=5a9b4a78f78fe5aa&ts=1655&x=0"
X-Firefox-Spdy: h2
POST political-effort.com/YW2Xx.pYZ_Wa5b0cZdG-Ff0gYhTi9_ykclmmlnk-PpWqErysY_zuVvlwYxm-VzmAZBDCN_hENFDGQHy-MJTKNLhMN_WONPiQMRD-JTiUYVjWI_4YYZ2aIb2-Nd2eFfkg
200 OK 0 B URL POST political-effort.com/YW2Xx.pYZ_Wa5b0cZdG-Ff0gYhTi9_ykclmmlnk-PpWqErysY_zuVvlwYxm-VzmAZBDCN_hENFDGQHy-MJTKNLhMN_WONPiQMRD-JTiUYVjWI_4YYZ2aIb2-Nd2eFfkg
IP
Requested by https://safefileku.com/download/VWcs3n0d2Fy2Jh97
Certificate IssuerLet's Encrypt
Subjectpolitical-effort.com
Fingerprint07:3A:BE:20:6B:F4:23:7A:C4:7B:B9:72:E1:5B:5C:30:58:CE:1C:09
ValidityFri, 11 Apr 2025 22:48:11 GMT - Thu, 10 Jul 2025 22:48:10 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /YW2Xx.pYZ_Wa5b0cZdG-Ff0gYhTi9_ykclmmlnk-PpWqErysY_zuVvlwYxm-VzmAZBDCN_hENFDGQHy-MJTKNLhMN_WONPiQMRD-JTiUYVjWI_4YYZ2aIb2-Nd2eFfkg HTTP/1.1
Host: political-effort.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 101
Origin: https://safefileku.com
DNT: 1
Connection: keep-alive
Referer: https://safefileku.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 05 Jun 2025 08:42:47 GMT
content-length: 0
expires: Mon, 26 Jul 2011 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-WoW64
x-content-type-options: nosniff
X-Firefox-Spdy: h2
POST challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/860632069:1749111391:eHVNiiDQyBCuD2UIUbdU_f38dK3uxn8FdfISGgcCPrg/94ae60ecfe1f56ba/TfU8dM2SR5yR9iyaXWPG.sYDnj7zv.g9mKSqRcaTOmo-1749112967-1.2.1.1-zfTQzQOKxf1NEmMOaY8b0RycRdSYtOmxzPuHRPDRyc3PKjHf5KJ_tqAQomZ3xrYf
200 OK 227 kB URL POST challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/860632069:1749111391:eHVNiiDQyBCuD2UIUbdU_f38dK3uxn8FdfISGgcCPrg/94ae60ecfe1f56ba/TfU8dM2SR5yR9iyaXWPG.sYDnj7zv.g9mKSqRcaTOmo-1749112967-1.2.1.1-zfTQzQOKxf1NEmMOaY8b0RycRdSYtOmxzPuHRPDRyc3PKjHf5KJ_tqAQomZ3xrYf
IP
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/yb679/0x4AAAAAAALLuQFUOnh41Bqj/light/fbE/new/flexible/auto/
Certificate IssuerGoogle Trust Services
Subjectchallenges.cloudflare.com
Fingerprint66:48:DF:B4:8B:9D:6A:8C:3A:B7:0F:CF:92:C7:AF:56:B9:3D:A2:1C
ValidityTue, 29 Apr 2025 17:49:00 GMT - Mon, 28 Jul 2025 18:48:58 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 227 kB (227372 bytes)
Hash e478f2fcca5b6fd47e1fb231f6cb5c9e
9f1b388edd624d9ae8e50dc281f2561049ebed61
2506f75e962eae8f98549ed97a04362949870093356cac3427874ec0de73e6e2
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/860632069:1749111391:eHVNiiDQyBCuD2UIUbdU_f38dK3uxn8FdfISGgcCPrg/94ae60ecfe1f56ba/TfU8dM2SR5yR9iyaXWPG.sYDnj7zv.g9mKSqRcaTOmo-1749112967-1.2.1.1-zfTQzQOKxf1NEmMOaY8b0RycRdSYtOmxzPuHRPDRyc3PKjHf5KJ_tqAQomZ3xrYf HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/yb679/0x4AAAAAAALLuQFUOnh41Bqj/light/fbE/new/flexible/auto/
cf-chl: TfU8dM2SR5yR9iyaXWPG.sYDnj7zv.g9mKSqRcaTOmo-1749112967-1.2.1.1-zfTQzQOKxf1NEmMOaY8b0RycRdSYtOmxzPuHRPDRyc3PKjHf5KJ_tqAQomZ3xrYf
cf-chl-ra: 0
Content-Type: text/plain;charset=UTF-8
Content-Length: 3356
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 05 Jun 2025 08:42:48 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: wr8RiyZXcAPDnaslIw/LHCAgRy8E0FH2MV5kJcuzDv2QrBEri2ncb/aMU1nf8opn2w+6P52uja2a6DPI4Mre90uhMZbaA5e/ta85skvwlkw0eGGMCGfQAblDnn1nZkRBglmLZXOlylD0PtGxfr4rYe2/3WapDglKoAkDiqN8cZ3aCd5jHXMknGwwm58MCzjadZiyc4pN7rIWkQdsHWiZGQ8AhUVfiZlk34TIGLSEocbXYjqBCzC6GSDJmh80tTa4KamGhpUpWpPRG/Ey/uicvZYBXn4iaQ9TUfGVLMicLNc2P+Jp5mVjR8igHYXzdaoNBoGZrc9xrx17p7zcyFwYSZrT1moRW61bvPnWSxL2cBLrNfQV6Tlx8g+cC3HwHuuLIZCOfWGntv5DOrkYrStqFyfK2BUvf4GFUVRm0l5Apu80yEMwQxECZvMT6+dRfyoMFdXJzW4/bLQMZdePxQed7RDW0BMonEmEcyVl7n1Of1mSBtuN9Kd6gSNDzytLObv6q+Lr733PsJZzmWuvWRhD8oB787MhPTqwrjrkCHSd+CAFHN/1cqxZLHKJq78QJLHq/dK5s6/qJHjzu+PfYdm+cnciyIz/y8J6Mr1Z9u/g01LYLjjIZoYWD6hWD3B38paXUwZ49KZNa/gQNZcWhq8UEf0I+azvNg3VA01/I5qpeJ2171MK2USewKG1ewFAHAzd7J+lgSgoe8kYU/lLRzYK977r4G7d5wc/4aNAcFYvPgExhJghYuxCYvz+OJ3r/Gd/fZUraag2HM0w/K5l0GH3YQ==$6ZmCd9lZDalUBzpc60D+eg==
priority: u=3,i=?0
server: cloudflare
cf-ray: 94ae60f2fdca56ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
POST challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/860632069:1749111391:eHVNiiDQyBCuD2UIUbdU_f38dK3uxn8FdfISGgcCPrg/94ae60ecfe1f56ba/TfU8dM2SR5yR9iyaXWPG.sYDnj7zv.g9mKSqRcaTOmo-1749112967-1.2.1.1-zfTQzQOKxf1NEmMOaY8b0RycRdSYtOmxzPuHRPDRyc3PKjHf5KJ_tqAQomZ3xrYf
200 OK 28 kB URL POST challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/860632069:1749111391:eHVNiiDQyBCuD2UIUbdU_f38dK3uxn8FdfISGgcCPrg/94ae60ecfe1f56ba/TfU8dM2SR5yR9iyaXWPG.sYDnj7zv.g9mKSqRcaTOmo-1749112967-1.2.1.1-zfTQzQOKxf1NEmMOaY8b0RycRdSYtOmxzPuHRPDRyc3PKjHf5KJ_tqAQomZ3xrYf
IP
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/yb679/0x4AAAAAAALLuQFUOnh41Bqj/light/fbE/new/flexible/auto/
Certificate IssuerGoogle Trust Services
Subjectchallenges.cloudflare.com
Fingerprint66:48:DF:B4:8B:9D:6A:8C:3A:B7:0F:CF:92:C7:AF:56:B9:3D:A2:1C
ValidityTue, 29 Apr 2025 17:49:00 GMT - Mon, 28 Jul 2025 18:48:58 GMT
File type ASCII text, with very long lines (28188), with no line terminators
Hash aa4a76496c2ec3e5f0a7149e209b0bba
b76219a03e6418f5e6e601592f26c9a5fb9c42a8
765a0a25c6fde7094329c28365f6892aed4ce8b6399d028321b78c4679b1646e
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/860632069:1749111391:eHVNiiDQyBCuD2UIUbdU_f38dK3uxn8FdfISGgcCPrg/94ae60ecfe1f56ba/TfU8dM2SR5yR9iyaXWPG.sYDnj7zv.g9mKSqRcaTOmo-1749112967-1.2.1.1-zfTQzQOKxf1NEmMOaY8b0RycRdSYtOmxzPuHRPDRyc3PKjHf5KJ_tqAQomZ3xrYf HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/yb679/0x4AAAAAAALLuQFUOnh41Bqj/light/fbE/new/flexible/auto/
cf-chl: TfU8dM2SR5yR9iyaXWPG.sYDnj7zv.g9mKSqRcaTOmo-1749112967-1.2.1.1-zfTQzQOKxf1NEmMOaY8b0RycRdSYtOmxzPuHRPDRyc3PKjHf5KJ_tqAQomZ3xrYf
cf-chl-ra: 0
Content-Type: text/plain;charset=UTF-8
Content-Length: 34075
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 05 Jun 2025 08:42:54 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: GwE2xHW17VaKvjyFnh8kg+AMVvWK5i9MO7VqI3C+OiTDiylsCOG52vMEzROrwY+I$yzB+NdJQqLuEHGg1okTUeQ==
priority: u=3,i=?0
server: cloudflare
cf-ray: 94ae611878cf56ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET safefileku.com/download/assets/css/d2429839.css
200 OK 13 kB URL GET safefileku.com/download/assets/css/d2429839.css
IP
Requested by https://safefileku.com/download/VWcs3n0d2Fy2Jh97
Certificate IssuerLet's Encrypt
Subjectsafefileku.com
FingerprintEB:2B:1A:C5:1B:85:13:1D:E2:70:9A:FF:8A:E4:52:74:97:73:FD:F1
ValidityMon, 02 Jun 2025 14:50:39 GMT - Sun, 31 Aug 2025 14:50:38 GMT
File type ASCII text, with very long lines (12896)
Hash 567075eb55f32244ad7eee3346374dc1
b9d0f71c19ef762e83fc8a8e8d7d44f439dafe35
d24298391121f0a4cc9ee1fb29ac7220db01679399c76d6e620fdde7e298702e
GET /download/assets/css/d2429839.css HTTP/1.1
Host: safefileku.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://safefileku.com/download/VWcs3n0d2Fy2Jh97
Cookie: XSRF-TOKEN=eyJpdiI6IkM5S3hRUHk1clNJUGhTMS9wdnFxZGc9PSIsInZhbHVlIjoiZHZja3dDNG95aTNPQmtmUkVNbEc5amhMVWtyTWF6MHVUak5uNTFWYjlFSTR0TWhwWm4rMlArVkFTMGg3NG8xaVpjMHR1R2p0ZSt2VEVkdDFaL1NjMGlXRlkrT3ZnNUZiUExrNXI5UjlCR0podXNKdHFPQXllakxqRkxxZUhsWjEiLCJtYWMiOiI2MGE2MjZjZWFhZTJkMTRlMWNiNDRjYTcyNjNhYTQzMjNkODk4OWIzNGQzM2RlMDQ0ZmVmYWI4YTQxMDRlYmQzIiwidGFnIjoiIn0%3D; _sid=eyJpdiI6Im1rQzZlVElGY3Z5ek43NSs2YmNyOUE9PSIsInZhbHVlIjoiNVdQSHVxNGxoY2M3RE8zeHA2MGQ2Mk13RmFRTDJSa3FvWTFzbzZZckRIMkJRM0ZsNERaa1NFcFhnaFkzY01Va0IzWjJXL3N2NS9QLzNtTVVhdXU3RVl0dTZTRHYwaGVFL2xwUXBCS1lLdXpQVGFXSXd5UnBhdzRCUlpjQlVRMHAiLCJtYWMiOiJkNjNhNDRjN2Y1M2QzMmZkMDY1NmZhNzlhY2I1NDc0NGIzNDczMzJlMzljYmVhYmM2YTMwNWE5MGQwNjZiZmFlIiwidGFnIjoiIn0%3D; _vt=eyJpdiI6IkFscjZXWVRGZ3pEN3hNVUhUbVdvL1E9PSIsInZhbHVlIjoidDFaL3lQdnlna1lvL2xyN0NCWnlTcTM5dnAzYWxIbkw4RkdPNjY5a0MwMThuNnk5SDJ4dkdaNXNVbkZ4QjhrNjR5dFpVUGx3SlFTRHMva1VJU1VZclE9PSIsIm1hYyI6IjNmNDU1ZGMxOThhOTNkNGEzNWEwOGViMDYzZDYxNWQ4MGE2MTczMDgxZmRhMDRjNDYyMjhlMjYwNDEzOGUzZjgiLCJ0YWciOiIifQ%3D%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 05 Jun 2025 08:42:46 GMT
content-type: text/css
cf-ray: 94ae60eaca8cb4ff-OSL
server: cloudflare
content-encoding: br
last-modified: Fri, 30 May 2025 13:33:21 GMT
etag: W/"6839b3a1-3261"
strict-transport-security: max-age=15552000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: HIT
age: 4354
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NpCvV3IcK8rxZmy3QW0%2Fbgj8GlxzHvSUVS4DKXzSzOL9qHaxDG6gWRHzGhHbLQo47bESxhKeGT4c3Y1AOKsiI3TwWGqCq3rWErq5FZIEhbSJ4sB39TXOkyF0E2f8Ioui"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
server-timing: cfL4;desc="?proto=TCP&rtt=795&min_rtt=403&rtt_var=507&sent=33&recv=35&lost=0&retrans=0&sent_bytes=32244&recv_bytes=2390&delivery_rate=23020667&cwnd=257&unsent_bytes=0&cid=5a9b4a78f78fe5aa&ts=1181&x=0"
X-Firefox-Spdy: h2
GET www.googletagmanager.com/gtag/js?id=G-PDTF86T1NX
200 OK 366 kB URL GET www.googletagmanager.com/gtag/js?id=G-PDTF86T1NX
IP
Requested by https://safefileku.com/download/VWcs3n0d2Fy2Jh97
Certificate IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint10:76:57:2F:C3:21:F2:5F:71:E4:85:A5:DB:F7:65:3F:51:03:55:07
ValidityMon, 12 May 2025 08:42:57 GMT - Mon, 04 Aug 2025 08:42:56 GMT
File type JavaScript source, ASCII text, with very long lines (6989)
Size 366 kB (366230 bytes)
Hash 65c8f516eac8adb700008e51d2a4e0e2
a0ddb18a5c45139d129638d8d52cdadfb0be6896
bcb04b4bfc9b009655ccfdd1bd49c1c805eefd8682e0162ca31e2a3f9d073dd0
GET /gtag/js?id=G-PDTF86T1NX HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://safefileku.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 05 Jun 2025 08:42:47 GMT
expires: Thu, 05 Jun 2025 08:42:47 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1077:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1077:0
report-to: {"group":"ascgcycc:1077:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1077:0"}],}
server: Google Tag Manager
content-length: 125141
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET political-effort.com/b.XjVCsydaGllM0/YUWedAinYvWN5AuGZSXzIu/de/m-9EuSZyUklMkTPMTCYHxrMDTfEpz/OoTlgktGNujBE/x/MhTYMr5YOdQb
200 OK 43 kB URL GET political-effort.com/b.XjVCsydaGllM0/YUWedAinYvWN5AuGZSXzIu/de/m-9EuSZyUklMkTPMTCYHxrMDTfEpz/OoTlgktGNujBE/x/MhTYMr5YOdQb
IP
Requested by https://safefileku.com/download/VWcs3n0d2Fy2Jh97
Certificate IssuerLet's Encrypt
Subjectpolitical-effort.com
Fingerprint07:3A:BE:20:6B:F4:23:7A:C4:7B:B9:72:E1:5B:5C:30:58:CE:1C:09
ValidityFri, 11 Apr 2025 22:48:11 GMT - Thu, 10 Jul 2025 22:48:10 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (22055)
Hash 97c962b7a41263e1f9dac0b566053a86
fcda014fd13be71c81e6c93b98feb9adec98e402
46df1842c58ae93c92ae1fee151f27dc84a30ffcf371329b9b1ec416a97ea135
GET /b.XjVCsydaGllM0/YUWedAinYvWN5AuGZSXzIu/de/m-9EuSZyUklMkTPMTCYHxrMDTfEpz/OoTlgktGNujBE/x/MhTYMr5YOdQb HTTP/1.1
Host: political-effort.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://safefileku.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 05 Jun 2025 08:42:47 GMT
content-type: application/javascript
expires: Mon, 26 Jul 2011 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-WoW64
access-control-allow-origin: https://safefileku.com
access-control-allow-methods: GET
vary: Accept-Encoding, Origin
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
last-modified: Thu, 05 Jun 2025 08:42:47 GMT
set-cookie: kadSlcJ=eyJ0aW1lU3RhbXAiOjE3NDkwODU3NjAsInpvbmVzIjp7IjYxMTEzOTgiOls2MTExMzk4LDIsMTc0OTEwODYxMl0sIjYxMTE0MDciOls2MTExNDA3LDEsMTc0OTEwODYxMl0sIjYyMzE4MTYiOls2MjMxODE2LDIsMTc0OTA4NTc2MF0sIjYyMzM4NDIiOls2MjMzODQyLDIsMTc0OTA4NTc2MF0sIjYyNTk5MTYiOls2MjU5OTE2LDEsMTc0OTExMDk1Ml19fQ==; max-age=1780648967; path=/
uniqCookie=0e3699f3ff8e58d5ac6c1b3a79fe1234; max-age=1751704967; path=/
x-content-type-options: nosniff
content-encoding: br
X-Firefox-Spdy: h2
GET challenges.cloudflare.com/turnstile/v0/b/65b4351086ca/api.js
200 OK 49 kB URL GET challenges.cloudflare.com/turnstile/v0/b/65b4351086ca/api.js
IP
Requested by https://safefileku.com/download/VWcs3n0d2Fy2Jh97
Certificate IssuerGoogle Trust Services
Subjectchallenges.cloudflare.com
Fingerprint66:48:DF:B4:8B:9D:6A:8C:3A:B7:0F:CF:92:C7:AF:56:B9:3D:A2:1C
ValidityTue, 29 Apr 2025 17:49:00 GMT - Mon, 28 Jul 2025 18:48:58 GMT
File type JavaScript source, ASCII text, with very long lines (48865)
Hash 28f0b425a88f4d4b022c3a8a1ffb9dca
8efe5b5f3dd25fea437338515978c2fe74c009ad
9821825ee09b693d639254f3b03533464c19748dd03cab160eb96ea0f40ec926
GET /turnstile/v0/b/65b4351086ca/api.js HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://safefileku.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 05 Jun 2025 08:42:47 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Wed, 28 May 2025 10:40:55 GMT
cache-control: max-age=31536000, stale-if-error=10800, stale-while-revalidate=31536000, public
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
priority: u=3,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 94ae60ec0d0756ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1
200 OK 86 B URL GET challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1
IP
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/yb679/0x4AAAAAAALLuQFUOnh41Bqj/light/fbE/new/flexible/auto/
Certificate IssuerGoogle Trust Services
Subjectchallenges.cloudflare.com
Fingerprint66:48:DF:B4:8B:9D:6A:8C:3A:B7:0F:CF:92:C7:AF:56:B9:3D:A2:1C
ValidityTue, 29 Apr 2025 17:49:00 GMT - Mon, 28 Jul 2025 18:48:58 GMT
File type PNG image data, 2 x 2, 8-bit/color RGBA, non-interlaced
Hash 70c202196187ab3c11b4e094c20c6de1
9c52b959e74aee9d79cbc9f35d1f9f65a3b8c863
6255b9231d09ebe6aa1ac19ba46bdd81f3df58989c9ef2e11d6cd6e2e7b21643
GET /cdn-cgi/challenge-platform/h/b/cmg/1 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/yb679/0x4AAAAAAALLuQFUOnh41Bqj/light/fbE/new/flexible/auto/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 05 Jun 2025 08:42:47 GMT
content-type: image/png
content-length: 86
priority: u=4,i=?0
server: cloudflare
cf-ray: 94ae60edff8356ba-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
POST political-effort.com/Y.2_xOpPZQWR5-0TZUGVFW0_YYTZ9aybc-mdlekfPgW_ZihjMk2lI-znNoDpIqx_MsztlulvY-zxAy3zZAT_YC0DMEmFF-kHNIzJVKm_YMjNhOmPM-jRESyTZUm_NWhX
200 OK 0 B URL POST political-effort.com/Y.2_xOpPZQWR5-0TZUGVFW0_YYTZ9aybc-mdlekfPgW_ZihjMk2lI-znNoDpIqx_MsztlulvY-zxAy3zZAT_YC0DMEmFF-kHNIzJVKm_YMjNhOmPM-jRESyTZUm_NWhX
IP
Requested by https://safefileku.com/download/VWcs3n0d2Fy2Jh97
Certificate IssuerLet's Encrypt
Subjectpolitical-effort.com
Fingerprint07:3A:BE:20:6B:F4:23:7A:C4:7B:B9:72:E1:5B:5C:30:58:CE:1C:09
ValidityFri, 11 Apr 2025 22:48:11 GMT - Thu, 10 Jul 2025 22:48:10 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /Y.2_xOpPZQWR5-0TZUGVFW0_YYTZ9aybc-mdlekfPgW_ZihjMk2lI-znNoDpIqx_MsztlulvY-zxAy3zZAT_YC0DMEmFF-kHNIzJVKm_YMjNhOmPM-jRESyTZUm_NWhX HTTP/1.1
Host: political-effort.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 101
Origin: https://safefileku.com
DNT: 1
Connection: keep-alive
Referer: https://safefileku.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 05 Jun 2025 08:42:47 GMT
content-length: 0
expires: Mon, 26 Jul 2011 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-WoW64
x-content-type-options: nosniff
X-Firefox-Spdy: h2
GET political-effort.com/asW_ZuyvP.2wQx9-MzTAcB0CO_TEEFxGMHj-kJ2KNLzME_2OMPjQgRx-OTTUYV3WM_SYZZpacb2-1d1ebfHgR_pidjGkFln-PnWoEpyqY_zsVtluYvm-VxmyZzDAN_hCNDDEQFy-MHTINJhKN_WMNNiOMPD-JRiSYTjUI_4WYX2YIZ2-Nb2cFdkeJ_mg1h1ibjH-RlpmdnGoF_nqYrmsFtu-bvmwVxyyP_XARByCdDW-UFmGcHnIJ_pKZLDM1Nh-MPmQMR1SZ_WUJVlWZXm-QZzaYbTcQ_0eMfjgEhz-YjTkVljmY_joApyqYrm-ItyuOvGwN_iyNzjAdBh-ZDCEZF6Gb_2I5JlKaLW-QN9ONPjQE_xSMTTUQVx-NXQY?iframeId=zihlet
200 OK 2.9 kB URL GET political-effort.com/asW_ZuyvP.2wQx9-MzTAcB0CO_TEEFxGMHj-kJ2KNLzME_2OMPjQgRx-OTTUYV3WM_SYZZpacb2-1d1ebfHgR_pidjGkFln-PnWoEpyqY_zsVtluYvm-VxmyZzDAN_hCNDDEQFy-MHTINJhKN_WMNNiOMPD-JRiSYTjUI_4WYX2YIZ2-Nb2cFdkeJ_mg1h1ibjH-RlpmdnGoF_nqYrmsFtu-bvmwVxyyP_XARByCdDW-UFmGcHnIJ_pKZLDM1Nh-MPmQMR1SZ_WUJVlWZXm-QZzaYbTcQ_0eMfjgEhz-YjTkVljmY_joApyqYrm-ItyuOvGwN_iyNzjAdBh-ZDCEZF6Gb_2I5JlKaLW-QN9ONPjQE_xSMTTUQVx-NXQY?iframeId=zihlet
IP
Requested by https://safefileku.com/download/VWcs3n0d2Fy2Jh97
Certificate IssuerLet's Encrypt
Subjectpolitical-effort.com
Fingerprint07:3A:BE:20:6B:F4:23:7A:C4:7B:B9:72:E1:5B:5C:30:58:CE:1C:09
ValidityFri, 11 Apr 2025 22:48:11 GMT - Thu, 10 Jul 2025 22:48:10 GMT
File type HTML document, ASCII text, with very long lines (1423)
Hash 19b0ceea93e40c4b39916da4af2d363f
6919ad5b8a2ab3ecc7fe500a30188d5f22758549
ba692efda46edd76f2189970f3e415119738ef71f35365bbf54c5ac98ec525ad
GET /asW_ZuyvP.2wQx9-MzTAcB0CO_TEEFxGMHj-kJ2KNLzME_2OMPjQgRx-OTTUYV3WM_SYZZpacb2-1d1ebfHgR_pidjGkFln-PnWoEpyqY_zsVtluYvm-VxmyZzDAN_hCNDDEQFy-MHTINJhKN_WMNNiOMPD-JRiSYTjUI_4WYX2YIZ2-Nb2cFdkeJ_mg1h1ibjH-RlpmdnGoF_nqYrmsFtu-bvmwVxyyP_XARByCdDW-UFmGcHnIJ_pKZLDM1Nh-MPmQMR1SZ_WUJVlWZXm-QZzaYbTcQ_0eMfjgEhz-YjTkVljmY_joApyqYrm-ItyuOvGwN_iyNzjAdBh-ZDCEZF6Gb_2I5JlKaLW-QN9ONPjQE_xSMTTUQVx-NXQY?iframeId=zihlet HTTP/1.1
Host: political-effort.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://safefileku.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 05 Jun 2025 08:42:47 GMT
content-type: text/html;charset=UTF-8
vary: Accept-Encoding
expires: Mon, 26 Jul 2011 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-WoW64
p3p: CP="CUR ADM OUR NOR STA NID"
last-modified: Thu, 05 Jun 2025 08:42:47 GMT
set-cookie: uniqCookie=5c1de308ff913876f69d1e6e673746a0; max-age=1751704967; path=/
kadCCap=304575:1:1749108836; max-age=1780648967; path=/
kadACap=629981:1:1749077896;534731:1:1749108613; max-age=1780648967; path=/
kadCSCap=304575:1:1749108836; path=/
kadASCap=629981:1:1749077896;534731:1:1749108613; path=/
kadRPixJ=bnVsbA==; max-age=1780648967; path=/
kadUnP3=CAUQk4eDwgYaDQiLvIMDEAEY5JCFwgYaDQj2iP8BEAIYk4eDwgYaDQi6ksgCEAEYiJ+DwgYaDQi3gfUCEAEYhY+FwgYiCggDEAQYk4eDwgYiCggBEAEYhY+FwgYqDAi4jiUQAhiTh4PCBioMCKGOJRABGIifg8IGKgwIicExEAEYhY+FwgYqDAihyDIQARjkkIXCBg==; max-age=1780648967; path=/
x-content-type-options: nosniff
content-encoding: br
X-Firefox-Spdy: h2
GET l.threads.com/favicon.ico
302 Found 0 B URL GET l.threads.com/favicon.ico
IP
Requested by https://l.threads.com/?u=https://safefileku.com/download/VWcs3n0d2Fy2Jh97&e=AT37nB0skCKNFNz31Kji0FHGKbnOXBhET5b5GpZk_NYPUqV0mRwqIL8OJZ-0E0f-J-KTt17ATH2PYaiGL74agzJ3DtnSNhQA_rvgfh4RfB22QWYY7HT82UDDn_mgQ0RVYjJCmPk
Certificate IssuerDigiCert Inc
Subject*.threads.com
FingerprintF3:E8:63:C1:C9:ED:97:BA:AA:C3:5D:33:A7:9F:59:3F:1B:B7:27:D7
ValidityFri, 14 Mar 2025 00:00:00 GMT - Thu, 12 Jun 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: l.threads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://l.threads.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 302 Found
location: https://www.threads.net/
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-stack: www
content-type: text/html; charset="utf-8"
x-fb-debug: IzaAx5MI9oDyP0Z5wHIAAL5XajX+t9jkEIp+WDbzWT6WjyH809iCLT48bECoz2VxIIEB+ju/sNme6Nt5v690qw==
content-length: 0
date: Thu, 05 Jun 2025 08:42:45 GMT
alt-svc: h3=":443"; ma=86400
x-fb-connection-quality: EXCELLENT; q=0.9, rtt=13, rtx=0, c=34, mss=1232, tbw=5445, tp=11, tpl=0, uplat=167, ullat=0
priority: u=6
31.13.72.53
23.109.170.209
142.250.74.168
104.18.94.41
0.0.0.0