Report - depositfiles.com/files/u3tux9lji

Report Overview

URL

depositfiles.com/files/u3tux9lji
IP

91.226.124.78

ASN

#35415 Webzilla B.V.
Submitted

2023-02-01T20:00:47Z

Access
Tags

None
urlquery detections

No alerts detected

Detections

urlquery

0
Network Intrusion Detection

0
Threat Detection Systems

14

Domain Summary

Domain	Rank	First Seen	Last Seen	Sent	Received	IP
dde280e15f.5608bd4f7e.com (2)	unknown	2023-01-29T04:21:22Z	2023-03-11T11:46:54Z	859	78204	45.133.44.25
pagead2.googlesyndication.com (1)	101	2021-02-20T16:52:05Z	2023-03-13T08:39:15Z	424	50735	142.250.74.34
f5523cd9a7.c1249041fb.com (1)	unknown	2023-01-29T04:33:33Z	2023-02-03T00:23:45Z	1236	320	45.133.44.25
cdn.engine.4dsply.com (1)	21418	2012-07-08T02:42:48Z	2023-03-13T04:18:05Z	417	46068	104.16.159.17
sw.wpush.org (2)	78308	2020-02-15T08:54:44Z	2023-03-13T07:47:43Z	738	3620	45.133.44.24
static.depositfiles.com (11)	unknown	2012-05-24T17:07:52Z	2023-03-13T00:32:00Z	4397	612039	91.226.124.79
friendshipmale.com (1)	unknown	2022-10-21T14:15:25Z	2023-03-13T08:33:43Z	354	28130	172.64.203.23
ads.a-static.com (1)	642938	2014-06-15T00:45:46Z	2023-03-13T00:32:02Z	396	10998	46.166.179.115
lbs.eu-1-id5-sync.com (1)	unknown	2022-09-22T16:50:45Z	2023-03-13T08:55:14Z	418	280	141.95.98.65
unseenreport.com (2)	unknown	2022-03-30T16:33:17Z	2023-03-13T05:15:47Z	1416	846	192.243.59.13
fonts.gstatic.com (1)	unknown	2014-09-09T02:40:21Z	2023-03-13T08:44:36Z	473	16577	216.58.207.227
nudgeworry.com (5)	unknown	2023-01-18T05:43:41Z	2023-03-12T01:04:15Z	4631	35752	192.243.61.225
dfiles.eu (2)	434493	2012-12-23T12:05:24Z	2023-03-13T00:32:01Z	1314	9249	91.226.124.80
ocsp.digicert.com (3)	86	2012-05-21T09:02:23Z	2023-03-13T06:00:13Z	1023	1751	93.184.220.29
jsc.mgid.com (2)	7902	2012-09-30T20:50:35Z	2023-03-13T04:50:31Z	752	3113	104.19.134.78
adserver.adreactor.com (4)	268206	2012-05-22T22:55:13Z	2023-03-13T00:32:01Z	1858	90437	46.166.179.121
lb.eu-1-id5-sync.com (1)	unknown	2022-06-06T14:52:22Z	2023-03-13T05:36:40Z	416	371	162.19.138.119
fp.metricswpsh.com (2)	unknown	2022-04-22T13:20:32Z	2023-03-13T06:42:46Z	929	774	157.90.84.242
fonts.googleapis.com (1)	8877	2013-06-10T22:14:26Z	2023-03-13T08:14:31Z	377	630	142.250.74.106
firefox.settings.services.mozilla.com (2)	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782	2374	35.241.9.150
cdn.unblockia.com (1)	20316	2019-12-02T14:45:53Z	2023-03-13T07:30:34Z	351	854	54.230.111.2
sweepfrequencydissolved.com (1)	unknown	2023-01-22T02:45:20Z	2023-02-28T17:55:25Z	450	467	192.243.59.20
cm.steepto.com (2)	36677	2017-01-29T17:18:25Z	2023-03-09T02:09:39Z	742	748	104.19.136.80
cdn.cloudimagesb.com (1)	23099	2021-02-12T17:15:41Z	2023-03-13T05:15:48Z	401	33087	45.133.44.9
js.wpadmngr.com (1)	25762	2021-06-02T16:43:46Z	2023-03-13T09:03:13Z	366	374	45.133.44.25
img-getpocket.cdn.mozilla.net (5)	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	2705	44773	34.120.237.76
cdn.creative-bars1.com (3)	unknown	2022-11-15T17:46:22Z	2023-03-13T05:15:48Z	1330	23197	172.64.166.9
push.services.mozilla.com (1)	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606	127	52.43.158.219
ocsp.sca1b.amazontrust.com (1)	1015	2017-03-03T16:20:51Z	2019-03-27T05:05:54Z	350	944	54.230.245.118
dominantroute.com (1)	unknown	2022-10-19T12:20:59Z	2023-03-13T08:17:18Z	394	140498	193.200.64.20
simplewebanalysis.com (1)	unknown	2022-02-25T05:06:25Z	2023-03-13T08:33:39Z	379	402	35.156.167.37
adsbb.dfiles.eu (13)	unknown	2017-03-18T01:40:30Z	2023-03-13T00:32:01Z	8184	349429	91.226.124.76
s-img.steepto.com (3)	65200	2019-01-18T14:24:06Z	2023-03-09T02:09:39Z	2163	38538	104.19.135.80
www.google.com (1)	7	2015-05-10T13:11:19Z	2023-03-13T06:40:43Z	360	1054	216.58.211.4
content-signature-2.cdn.mozilla.net (1)	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413	5856	34.160.144.191
contile.services.mozilla.com (1)	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333	391	34.117.237.239
ocsp.pki.goog (8)	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	2744	5595	216.58.211.3
e1.o.lencr.org (5)	6159	2021-08-20T09:36:30Z	2023-03-13T05:21:46Z	1690	3643	23.36.76.226
id5-sync.com (1)	504	2017-01-25T22:02:34Z	2023-03-13T05:10:36Z	438	594	141.95.98.65
cdn.barscreative1.com (1)	25648	2021-09-16T13:14:42Z	2023-03-13T08:33:41Z	437	386	45.133.44.3
depositfiles.com (2)	149089	2012-05-21T20:34:46Z	2023-03-13T00:31:59Z	824	537	91.226.124.78
pl16105218.highcpmrevenuenetwork.com (1)	unknown	2022-12-31T00:11:28Z	2023-03-02T18:07:50Z	410	14144	173.233.137.36
www.gstatic.com (1)	unknown	2016-07-26T11:37:06Z	2023-03-13T07:57:11Z	429	164641	142.250.74.35
ads.pubmatic.com (1)	469	2012-05-21T05:56:35Z	2023-03-13T05:36:38Z	386	73836	2.18.172.200
js.wpshsdk.com (3)	12130	2021-06-04T15:50:00Z	2023-03-13T08:00:13Z	1149	1131	45.133.44.24
r3.o.lencr.org (30)	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	10140	29163	23.33.119.27

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-02-01	medium	friendshipmale.com/sfp.js	Malware
2023-02-01	medium	cdn.barscreative1.com/sb/au/df/bd/7a/dfbd7a33d1397e7e7063b1664658e57d/1601889852.html	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-02-01	medium	highcpmrevenuenetwork.com	Sinkholed
2023-02-01	medium	nudgeworry.com	Sinkholed
2023-02-01	medium	5608bd4f7e.com	Sinkholed
2023-02-01	medium	nudgeworry.com	Sinkholed
2023-02-01	medium	sweepfrequencydissolved.com	Sinkholed
2023-02-01	medium	nudgeworry.com	Sinkholed
2023-02-01	medium	c1249041fb.com	Sinkholed
2023-02-01	medium	unseenreport.com	Sinkholed
2023-02-01	medium	unseenreport.com	Sinkholed
2023-02-01	medium	nudgeworry.com	Sinkholed
2023-02-01	medium	nudgeworry.com	Sinkholed
2023-02-01	medium	5608bd4f7e.com	Sinkholed

ThreatFox

No alerts detected

HTTP Transactions (136)

URL IP Response Size

depositfiles.com/files/u3tux9lji

91.226.124.78

302 Moved Temporarily

138

URL HTTP/1.1

depositfiles.com/files/u3tux9lji
IP

91.226.124.78:0
ASN

#35415 Webzilla B.V.

Magic

HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators

Size

138
Hash

aff950cab4c0265e21d401db15f1026d

f03e18461817f7a6546c8bf8fa8d686d7e30aca0

753e0dd54f28c4f7009b9c0b18a68aed175416bd8b7d134858264586eaac56f0

HTTP Headers

                                        GET /files/u3tux9lji HTTP/1.1
Host: depositfiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                        HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Wed, 01 Feb 2023 20:00:35 GMT
Content-Type: text/html
Content-Length: 138
Connection: close
Location: https://depositfiles.com/files/u3tux9lji

r3.o.lencr.org/

23.33.119.27

200 OK

503

URL HTTP/1.1

r3.o.lencr.org/
IP

23.33.119.27:0
ASN

#20940 Akamai International B.V.

Magic

data

Size

503
Hash

7e05c8461bd2dc5a149f71e2c465ea29

705983959c887e243cb55a8a1796757b579ee977

4d9ea085d5dda9dabed11af9847c2b0aa6182358673b356a4e2bd631e22a9922

HTTP Headers

                                        POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D9EA085D5DDA9DABED11AF9847C2B0AA6182358673B356A4E2BD631E22A9922"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15594
Expires: Thu, 02 Feb 2023 00:20:30 GMT
Date: Wed, 01 Feb 2023 20:00:36 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503

URL HTTP/1.1

r3.o.lencr.org/
IP

23.33.119.27:0
ASN

#20940 Akamai International B.V.

Magic

data

Size

503
Hash

62de35a6c8e4efd7633fc5236b5b086f

6a92912a86dfcd0330d040cef06bef36889c76ab

ebb8ca05df5ba73b92174105d54d192a8d9e3e10fba48bf96161b0cb759220ec

HTTP Headers

                                        POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EBB8CA05DF5BA73B92174105D54D192A8D9E3E10FBA48BF96161B0CB759220EC"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14067
Expires: Wed, 01 Feb 2023 23:55:03 GMT
Date: Wed, 01 Feb 2023 20:00:36 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939

URL HTTP/2

firefox.settings.services.mozilla.com/v1/
IP

35.241.9.150:0
ASN

#15169 GOOGLE

Magic

JSON data\012- , ASCII text, with very long lines (939), with no line terminators

Size

939
Hash

30db107dcf4380cef05efea409c2e6a3

96e6a306fbc07299aba64e5c14e2bfca35872fa9

b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e

HTTP Headers

                                        GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                        HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 01 Feb 2023 19:43:26 GMT
content-type: application/json
age: 1030
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503

URL HTTP/1.1

r3.o.lencr.org/
IP

23.33.119.27:0
ASN

#20940 Akamai International B.V.

Magic

data

Size

503
Hash

09ee4b0fe6cf4ca5ed31b24452338d00

7e62b6e20f0d4737f4a8d94f9818a0883027839e

56da08e18a408d7313de4e598984a251a0ecf85bbba98b421be9aebeb98835af

HTTP Headers

                                        POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "56DA08E18A408D7313DE4E598984A251A0ECF85BBBA98B421BE9AEBEB98835AF"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8003
Expires: Wed, 01 Feb 2023 22:13:59 GMT
Date: Wed, 01 Feb 2023 20:00:36 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5348

URL HTTP/2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP

34.160.144.191:0
ASN

#15169 GOOGLE

Magic

PEM certificate\012- , ASCII text

Size

5348
Hash

7b922915ebf1fa3639b333f994c74f24

144a3f80b98fd0652d4614f24cf6cbbee40f8938

adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

                                        GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        HTTP/2 200 OK
x-amz-id-2: 1NePtiUYd2WrPam0zMF6Ri+cA/P710zaJs/jUKU3hvzgPeE3Az2P4nL0lvcmycJ8bpxR0Lqhp+mSaDQkWooWPg==
x-amz-request-id: VM3FDSKZZ6ZB2XGZ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 01 Feb 2023 19:22:47 GMT
age: 2269
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503

URL HTTP/1.1

r3.o.lencr.org/
IP

23.33.119.27:0
ASN

#20940 Akamai International B.V.

Magic

data

Size

503
Hash

840948e57a644c2ac8f1e653a4587ba7

43a1d90bcf03fabb6278c55e348b2842eca87c4c

e12b77f9ac8e2dab43186d6fa83e7fbbed8582432f81fc58e355f5ffdbf80ce5

HTTP Headers

                                        POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E12B77F9AC8E2DAB43186D6FA83E7FBBED8582432F81FC58E355F5FFDBF80CE5"
Last-Modified: Tue, 31 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5527
Expires: Wed, 01 Feb 2023 21:32:43 GMT
Date: Wed, 01 Feb 2023 20:00:36 GMT
Connection: keep-alive

depositfiles.com/files/u3tux9lji

91.226.124.80

302 Found

URL HTTP/1.1

depositfiles.com/files/u3tux9lji
IP

91.226.124.80:0
ASN

#35415 Webzilla B.V.

Magic

Size

0
Hash

d41d8cd98f00b204e9800998ecf8427e

da39a3ee5e6b4b0d3255bfef95601890afd80709

e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

                                        GET /files/u3tux9lji HTTP/1.1
Host: depositfiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                        HTTP/1.1 302 Found
Server: nginx
Date: Wed, 01 Feb 2023 20:00:36 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Location: //dfiles.eu/files/u3tux9lji

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

URL HTTP/2

contile.services.mozilla.com/v1/tiles
IP

34.117.237.239:0
ASN

#15169 GOOGLE

Magic

JSON data\012- , ASCII text, with no line terminators

Size

12
Hash

23e88fb7b99543fb33315b29b1fad9d6

a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce

7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

                                        GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                        HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 20:00:36 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503

URL HTTP/1.1

r3.o.lencr.org/
IP

23.33.119.27:0
ASN

#20940 Akamai International B.V.

Magic

data

Size

503
Hash

caa2cb3e3c72d487237851abef9c4c1b

cc169545795e1766feaf32a02f1c47511809a210

77937d42e5ea6675f02c6ceeefc93f879cf776efdf81d37c0c39d2c1c161078d

HTTP Headers

                                        POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "77937D42E5EA6675F02C6CEEEFC93F879CF776EFDF81D37C0C39D2C1C161078D"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12062
Expires: Wed, 01 Feb 2023 23:21:38 GMT
Date: Wed, 01 Feb 2023 20:00:36 GMT
Connection: keep-alive

dfiles.eu/files/u3tux9lji

91.226.124.80

200 OK

8412

URL HTTP/1.1

dfiles.eu/files/u3tux9lji
IP

91.226.124.80:0
ASN

#35415 Webzilla B.V.

Magic

HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (6441), with CRLF, CR, LF line terminators

Size

8412
Hash

7bc7292bb815a7c70f1ff79ddb75a9c5

9ed6267f62d8e1b002e7e82886f1d1127c18b0cb

0dd20e7b52190df9f57ef2904b680fdf0a675bb3a7f393aad661f649cf6f97e8

HTTP Headers

                                        GET /files/u3tux9lji HTTP/1.1
Host: dfiles.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                        HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 20:00:36 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: uprand=19d13269a515b58b5a38d402403cdce4; path=/; domain=.dfiles.eu
last_file=u3tux9lji; path=/; domain=.dfiles.eu
lang_current=en; expires=Thu, 01-Feb-2024 20:00:36 GMT; Max-Age=31536000; path=/; domain=.dfiles.eu; secure
X-Frame-Options: SAMEORIGIN
Content-Encoding: gzip

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329

URL HTTP/2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP

35.241.9.150:0
ASN

#15169 GOOGLE

Magic

JSON data\012- , ASCII text, with very long lines (329), with no line terminators

Size

329
Hash

0333b0655111aa68de771adfcc4db243

63f295a144ac87a7c8e23417626724eeca68a7eb

60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

                                        GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                        HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 01 Feb 2023 19:41:42 GMT
age: 1134
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

471

URL HTTP/1.1

ocsp.pki.goog/gts1c3
IP

216.58.211.3:0
ASN

#15169 GOOGLE

Magic

data

Size

471
Hash

df4a6d84addba49571d9f6ae44c61a3f

28c8093de27e27645cf6dfd5ae93a62fc77b9be5

cb6623b08b6245ea11bb871729613e453046d427d738a8c6431c5da8347e6e05

HTTP Headers

                                        POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 20:00:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

23.33.119.27

200 OK

503

URL HTTP/1.1

r3.o.lencr.org/
IP

23.33.119.27:0
ASN

#20940 Akamai International B.V.

Magic

data

Size

503
Hash

840948e57a644c2ac8f1e653a4587ba7

43a1d90bcf03fabb6278c55e348b2842eca87c4c

e12b77f9ac8e2dab43186d6fa83e7fbbed8582432f81fc58e355f5ffdbf80ce5

HTTP Headers

                                        POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E12B77F9AC8E2DAB43186D6FA83E7FBBED8582432F81FC58E355F5FFDBF80CE5"
Last-Modified: Tue, 31 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5527
Expires: Wed, 01 Feb 2023 21:32:43 GMT
Date: Wed, 01 Feb 2023 20:00:36 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503

URL HTTP/1.1

r3.o.lencr.org/
IP

23.33.119.27:0
ASN

#20940 Akamai International B.V.

Magic

data

Size

503
Hash

840948e57a644c2ac8f1e653a4587ba7

43a1d90bcf03fabb6278c55e348b2842eca87c4c

e12b77f9ac8e2dab43186d6fa83e7fbbed8582432f81fc58e355f5ffdbf80ce5

HTTP Headers

                                        POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E12B77F9AC8E2DAB43186D6FA83E7FBBED8582432F81FC58E355F5FFDBF80CE5"
Last-Modified: Tue, 31 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5527
Expires: Wed, 01 Feb 2023 21:32:43 GMT
Date: Wed, 01 Feb 2023 20:00:36 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503

URL HTTP/1.1

r3.o.lencr.org/
IP

23.33.119.27:0
ASN

#20940 Akamai International B.V.

Magic

data

Size

503
Hash

840948e57a644c2ac8f1e653a4587ba7

43a1d90bcf03fabb6278c55e348b2842eca87c4c

e12b77f9ac8e2dab43186d6fa83e7fbbed8582432f81fc58e355f5ffdbf80ce5

HTTP Headers

                                        POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E12B77F9AC8E2DAB43186D6FA83E7FBBED8582432F81FC58E355F5FFDBF80CE5"
Last-Modified: Tue, 31 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5527
Expires: Wed, 01 Feb 2023 21:32:43 GMT
Date: Wed, 01 Feb 2023 20:00:36 GMT
Connection: keep-alive

www.google.com/recaptcha/api.js

216.58.211.4

200 OK

556

URL HTTP/2

www.google.com/recaptcha/api.js
IP

216.58.211.4:0
ASN

#15169 GOOGLE

Magic

ASCII text, with very long lines (850), with no line terminators

Size

556
Hash

f678bcfbe98b4039961065c12543bfd0

31a000bba532f910d036c24c795ef3636450e4c3

1dabb56e42c7b0a90264a0e7d8884e4111eed0e1b6321cab5f6e26440d63da8d

HTTP Headers

                                        GET /recaptcha/api.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfiles.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        HTTP/2 200 OK
expires: Wed, 01 Feb 2023 20:00:36 GMT
date: Wed, 01 Feb 2023 20:00:36 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 556
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503

URL HTTP/1.1

r3.o.lencr.org/
IP

23.33.119.27:0
ASN

#20940 Akamai International B.V.

Magic

data

Size

503
Hash

840948e57a644c2ac8f1e653a4587ba7

43a1d90bcf03fabb6278c55e348b2842eca87c4c

e12b77f9ac8e2dab43186d6fa83e7fbbed8582432f81fc58e355f5ffdbf80ce5

HTTP Headers

                                        POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E12B77F9AC8E2DAB43186D6FA83E7FBBED8582432F81FC58E355F5FFDBF80CE5"
Last-Modified: Tue, 31 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5527
Expires: Wed, 01 Feb 2023 21:32:43 GMT
Date: Wed, 01 Feb 2023 20:00:36 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503

URL HTTP/1.1

r3.o.lencr.org/
IP

23.33.119.27:0
ASN

#20940 Akamai International B.V.

Magic

data

Size

503
Hash

8913af0be619500295008bb91f506660

a7b8068ba9aa506205a295b24458c2616997a0d1

6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a

HTTP Headers

                                        POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3989
Expires: Wed, 01 Feb 2023 21:07:05 GMT
Date: Wed, 01 Feb 2023 20:00:36 GMT
Connection: keep-alive

static.depositfiles.com/js/function.js

91.226.124.79

200 OK

34915

URL HTTP/1.1

static.depositfiles.com/js/function.js
IP

91.226.124.79:0
ASN

#35415 Webzilla B.V.

Magic

ASCII text, with very long lines (4240)

Size

34915
Hash

a5779d2f560cd50376dbba372b0fd15b

07b08e35b9254288c1372e37577db8b9e4da01b4

51d26403861d61a7842bc73f518d4a4351a7027c40c9f0347f61421226950b84

HTTP Headers

                                        GET /js/function.js HTTP/1.1
Host: static.depositfiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfiles.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 20:00:36 GMT
Content-Type: application/javascript
Content-Length: 34915
Last-Modified: Thu, 28 Apr 2022 09:39:11 GMT
Connection: keep-alive
ETag: "626a60bf-8863"
Expires: Wed, 01 Feb 2023 20:05:36 GMT
Cache-Control: max-age=300
Accept-Ranges: bytes

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472

URL HTTP/1.1

ocsp.pki.goog/gts1c3
IP

216.58.211.3:0
ASN

#15169 GOOGLE

Magic

data

Size

472
Hash

d06fd066caf4dfa1e21a722a5c468158

acb765577662906ae8e11242bed487ce1051db28

4b45760de269e60345d43ff2da6c5803722f7c052edd0a9f5258ce69b2ffa32f

HTTP Headers

                                        POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 20:00:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

static.depositfiles.com/js/jquery.validate.js

91.226.124.79

200 OK

38269

URL HTTP/1.1

static.depositfiles.com/js/jquery.validate.js
IP

91.226.124.79:0
ASN

#35415 Webzilla B.V.

Magic

Unicode text, UTF-8 text, with very long lines (1238)

Size

38269
Hash

d5231b6378847ebdb55f64c77d5a234f

eed97aa0b2aa9486b6f6831ed8a85dc729ad6b9c

95434a8a2568a6481a1fbcf5808a75dd58e77348ed6d70b4f7aeda8842e8f0c7

HTTP Headers

                                        GET /js/jquery.validate.js HTTP/1.1
Host: static.depositfiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfiles.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 20:00:36 GMT
Content-Type: application/javascript
Content-Length: 38269
Last-Modified: Thu, 28 Apr 2022 09:39:11 GMT
Connection: keep-alive
ETag: "626a60bf-957d"
Expires: Wed, 01 Feb 2023 20:05:36 GMT
Cache-Control: max-age=300
Accept-Ranges: bytes

static.depositfiles.com/css/main.css

91.226.124.79

200 OK

46819

URL HTTP/1.1

static.depositfiles.com/css/main.css
IP

91.226.124.79:0
ASN

#35415 Webzilla B.V.

Magic

ASCII text, with very long lines (332)

Size

46819
Hash

cea03c07a2dcdd9444f5f6de6a3f6c64

89307ec85eb1fa31aa0b0d759e13f78970b0375b

5ecd5842291f787ca0d39182e73ab7992ed55dccce2aaeb7cfc4e10ba3917634

HTTP Headers

                                        GET /css/main.css HTTP/1.1
Host: static.depositfiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfiles.eu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 20:00:36 GMT
Content-Type: text/css
Last-Modified: Thu, 28 Apr 2022 09:39:10 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"626a60be-2f719"
Expires: Wed, 01 Feb 2023 20:05:36 GMT
Cache-Control: max-age=300
Content-Encoding: gzip

static.depositfiles.com/js/base2.js

91.226.124.79

200 OK

398927

URL HTTP/1.1

static.depositfiles.com/js/base2.js
IP

91.226.124.79:0
ASN

#35415 Webzilla B.V.

Magic

Unicode text, UTF-8 text, with very long lines (65481)

Size

398927
Hash

2fcae8126c3fd9a626370a701f0bd887

f3496fb7bbe122a9774d7dcfcd68da03a24dc285

d29ab86f64b4fcfbc45b9ef806c147f1e42e37e37d44a559147232288063badc

HTTP Headers

                                        GET /js/base2.js HTTP/1.1
Host: static.depositfiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfiles.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 20:00:36 GMT
Content-Type: application/javascript
Content-Length: 398927
Last-Modified: Thu, 28 Apr 2022 09:39:11 GMT
Connection: keep-alive
ETag: "626a60bf-6164f"
Expires: Wed, 01 Feb 2023 20:05:36 GMT
Cache-Control: max-age=300
Accept-Ranges: bytes

r3.o.lencr.org/

23.33.119.27

200 OK

503

URL HTTP/1.1

r3.o.lencr.org/
IP

23.33.119.27:0
ASN

#20940 Akamai International B.V.

Magic

data

Size

503
Hash

b01029b94f6a4a1665dfc860aecebcd7

7197e4a488041155dbdec5b4a294cf9637ebeea9

342c4d077c3ad7982a659b1694e0dc9b03e2561c6af32b8c640666358fa71077

HTTP Headers

                                        POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "342C4D077C3AD7982A659B1694E0DC9B03E2561C6AF32B8C640666358FA71077"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5964
Expires: Wed, 01 Feb 2023 21:40:01 GMT
Date: Wed, 01 Feb 2023 20:00:37 GMT
Connection: keep-alive

push.services.mozilla.com/

52.43.158.219

101 Switching Protocols

URL HTTP/1.1

push.services.mozilla.com/
IP

52.43.158.219:0
ASN

#16509 AMAZON-02

Magic

Size

0
Hash

d41d8cd98f00b204e9800998ecf8427e

da39a3ee5e6b4b0d3255bfef95601890afd80709

e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

                                        GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: H0BukYxZC47iYZ2EAK+WVw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                        HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: z77UE8SOs7gIu9fsLT5EQJRQdVk=

pl16105218.highcpmrevenuenetwork.com/22/4a/d4/224ad4a14b4b15c1726ff705ec672ea6.js

173.233.137.36

200 OK

13434

URL HTTP/1.1

pl16105218.highcpmrevenuenetwork.com/22/4a/d4/224ad4a14b4b15c1726ff705ec672ea6.js
IP

173.233.137.36:0
ASN

#7979 SERVERS-COM

Magic

ASCII text, with very long lines (37146), with no line terminators

Size

13434
Hash

cb9bcc1eeb4eff5fb2a1f3ef9a2e0e50

21de270f32fac2a238cedbf7ace9e506cd61704b

413e8d3ef458f9f621745dc9262dcaae47dcc0d71aaf35c517b49c5847b01eec

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

                                        GET /22/4a/d4/224ad4a14b4b15c1726ff705ec672ea6.js HTTP/1.1
Host: pl16105218.highcpmrevenuenetwork.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfiles.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 01 Feb 2023 20:00:37 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 5cba96cf1c6e20fc60af0c2751655247
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

static.depositfiles.com/images/logo.png

91.226.124.79

200 OK

3623

URL HTTP/1.1

static.depositfiles.com/images/logo.png
IP

91.226.124.79:0
ASN

#35415 Webzilla B.V.

Magic

PNG image data, 176 x 43, 8-bit/color RGBA, non-interlaced\012- data

Size

3623
Hash

c41fdd84b04e45a91cb17cfdeccb1b38

fec7fffe104c7e169aeb159032078c4b71ff2cdc

7f89eb8ab03684f4db282ca30eb231b1e254bca10c7b511950df5e0eab0a68a0

HTTP Headers

                                        GET /images/logo.png HTTP/1.1
Host: static.depositfiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.depositfiles.com/css/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                        HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 20:00:37 GMT
Content-Type: image/png
Content-Length: 3623
Last-Modified: Thu, 28 Apr 2022 09:39:11 GMT
Connection: keep-alive
ETag: "626a60bf-e27"
Accept-Ranges: bytes

static.depositfiles.com/images/member_menu_bg.gif

91.226.124.79

200 OK

URL HTTP/1.1

static.depositfiles.com/images/member_menu_bg.gif
IP

91.226.124.79:0
ASN

#35415 Webzilla B.V.

Magic

GIF image data, version 89a, 1 x 48\012- data

Size

78
Hash

20a24b56dcedf6a71a71ebec771e1f7d

d7bed493d5d4eeaed5dbbf7d30d45107840790a0

6f57f29224d8e9e51ed0839e329055426fba7dcd97ef31e93ed495f93a6063df

HTTP Headers

                                        GET /images/member_menu_bg.gif HTTP/1.1
Host: static.depositfiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.depositfiles.com/css/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                        HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 20:00:37 GMT
Content-Type: image/gif
Content-Length: 78
Last-Modified: Thu, 28 Apr 2022 09:39:11 GMT
Connection: keep-alive
ETag: "626a60bf-4e"
Expires: Mon, 06 Feb 2023 20:00:37 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes

static.depositfiles.com/images/timer.gif

91.226.124.79

200 OK

11607

URL HTTP/1.1

static.depositfiles.com/images/timer.gif
IP

91.226.124.79:0
ASN

#35415 Webzilla B.V.

Magic

GIF image data, version 89a, 70 x 70\012- data

Size

11607
Hash

fb170c2ce20d8088b7cee465689c3637

9759429c7de6921580fac900c4c6026c758bb94c

6b5c53dd4d2d07c854e019e55458ff9652a4d9b7bf1fe8848ad00ca16032e294

HTTP Headers

                                        GET /images/timer.gif HTTP/1.1
Host: static.depositfiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.depositfiles.com/css/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                        HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 20:00:37 GMT
Content-Type: image/gif
Content-Length: 11607
Last-Modified: Thu, 28 Apr 2022 09:39:11 GMT
Connection: keep-alive
ETag: "626a60bf-2d57"
Expires: Mon, 06 Feb 2023 20:00:37 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes

static.depositfiles.com/images/flags/lang24.png

91.226.124.79

200 OK

9172

URL HTTP/1.1

static.depositfiles.com/images/flags/lang24.png
IP

91.226.124.79:0
ASN

#35415 Webzilla B.V.

Magic

PNG image data, 24 x 552, 8-bit/color RGBA, non-interlaced\012- data

Size

9172
Hash

efdcd1ca23d564ddd811f41152a2b83c

0b5aa064e7f8f241363c55fa17eb448f42a5f8df

ce23be242e34c5b420f8ba0390aef20fa50ffc69f700091029616eff524e8f9b

HTTP Headers

                                        GET /images/flags/lang24.png HTTP/1.1
Host: static.depositfiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.depositfiles.com/css/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                        HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 20:00:37 GMT
Content-Type: image/png
Content-Length: 9172
Last-Modified: Thu, 28 Apr 2022 09:39:11 GMT
Connection: keep-alive
ETag: "626a60bf-23d4"
Accept-Ranges: bytes

static.depositfiles.com/images/sprite.png

91.226.124.79

200 OK

36802

Report Overview

URL

IP

ASN

Submitted

Access

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (76)

#1 JS:Script (size: 38269)

#2 JS:Script (size: 398927)

#3 JS:Script (size: 107)

#4 JS:Script (size: 5619)

#5 JS:Script (size: 240)

#6 JS:Script (size: 955)

#7 JS:Script (size: 6403)

#8 JS:Script (size: 139)

#9 JS:Script (size: 145)

#10 JS:Script (size: 168401)

#11 JS:Script (size: 58734)

#12 JS:Script (size: 153223)

#13 JS:Script (size: 589)

#14 JS:Script (size: 139)

#15 JS:Script (size: 26)

#16 JS:Script (size: 2651)

#17 JS:Script (size: 85825)

#18 JS:Script (size: 240)

#19 JS:Script (size: 67)

#20 JS:Script (size: 34915)

#21 JS:Script (size: 148)

#22 JS:Script (size: 781)

#23 JS:Script (size: 0)

#24 JS:Script (size: 141)

#25 JS:Script (size: 11195)

#26 JS:Script (size: 850)

#27 JS:Script (size: 365)

#28 JS:Script (size: 256)

#29 JS:Script (size: 240)

#30 JS:Script (size: 27061)

#31 JS:Script (size: 99)

#32 JS:Script (size: 2985)

#33 JS:Script (size: 418)

#34 JS:Script (size: 475)

#35 JS:Script (size: 313)

#36 JS:Script (size: 2651)

#37 JS:Script (size: 268880)

#38 JS:Script (size: 325)

#39 JS:Script (size: 178471)

#40 JS:Script (size: 37146)

#41 JS:Script (size: 85260)

#42 JS:Script (size: 270687)

#43 JS:Script (size: 2603)

#44 JS:Script (size: 5610)

#45 JS:Script (size: 601)

#1 JS:Eval (size: 31)

#2 JS:Eval (size: 35)

#3 JS:Eval (size: 25)

#4 JS:Eval (size: 45)

#5 JS:Eval (size: 46)

#6 JS:Eval (size: 35)

#7 JS:Eval (size: 19)

#8 JS:Eval (size: 32)

#9 JS:Eval (size: 21)

#10 JS:Eval (size: 19)

#11 JS:Eval (size: 28)