Report - sakurafile.com/k9prom3m1bfq/Inuyasha

Report Overview

Submitted URL
sakurafile.com/k9prom3m1bfq/Inuyasha_v01-10.zip
IP
89.249.49.147
ASN
#206264 Amarutu Technology Ltd
Submitted
2024-04-17 08:03:00
Access
public
Website Title
Download Inuyasha v01 zip
Final URL
sakurafile.com/k9prom3m1bfq/Inuyasha_v01-10.zip
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
sakurafile.com	213734	2014-04-30	2015-09-18	2024-03-25	5.9 kB	221 kB	89.249.49.147
d2fbvay81k4ji3.cloudfront.net	unknown	2008-04-25	2021-06-25	2024-03-23	2.1 kB	120 kB	18.155.152.96
positioner.info	unknown	2024-03-31	2024-03-31	2024-04-15	1.8 kB	3.7 kB	52.85.243.94
funjoobpolicester.info	unknown	2024-03-31	2024-03-31	2024-04-16	848 B	1.8 kB	52.85.243.48
ncukankingwith.info	unknown	2024-03-31	2024-03-31	2024-04-16	2.5 kB	3.7 kB	188.114.97.1
pogothere.xyz	unknown	2022-08-22	2022-09-04	2024-04-16	1.3 kB	207 kB	188.114.97.1
accounts.google.com	81	1997-09-15	2016-03-20	2024-04-17	3.7 kB	20 kB	64.233.165.84

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-17	medium	funjoobpolicester.info	Sinkholed

ThreatFox

No alerts detected

JavaScript (7)

	URL	Size	First Seen	Last Seen
	sakurafile.com/js/jquery-1.9.1.min.js	93 kB	2023-03-07	2024-04-30
Pretty URL sakurafile.com/js/jquery-1.9.1.min.js IP 89.249.49.147 ASN #206264 Amarutu Technology Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-30 00:14:14 Times Seen23535 Hash 397754ba49e9e0cf4e7c190da78dda05 ae49e56999d82802727455f0ba83b63acd90a22b c12f6098e641aaca96c60215800f18f5671039aecf812217fab3c0d152f6adb4 Loading...

	sakurafile.com/k9prom3m1bfq/Inuyasha_v01-10.zip	261 B	2023-03-07	2024-04-26
Pretty URL sakurafile.com/k9prom3m1bfq/Inuyasha_v01-10.zip IP 89.249.49.147 ASN #206264 Amarutu Technology Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:23:22 Last Seen2024-04-26 20:17:00 Times Seen1311 Hash d04584334d251ef8ea053da53b683194 dc0092f79b3e040a93d5d94951ff9eb326960c99 6f42d96dcea6cd1193084d86f60b8629162023b44cd213d41fc63bedc177fbb8 Loading...

	sakurafile.com/k9prom3m1bfq/Inuyasha_v01-10.zip	666 B	2023-03-07	2024-04-26
Pretty URL sakurafile.com/k9prom3m1bfq/Inuyasha_v01-10.zip IP 89.249.49.147 ASN #206264 Amarutu Technology Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:23:22 Last Seen2024-04-26 20:17:00 Times Seen1310 Hash b43b98ae6d81d1bcc31bf4d398af2770 084014353ba5a80e35a7144b4c4ad8abbcdf6eac 6df937222477e1219205ce19b008280da54e60cdf8c3a5749369a66224a82faa Loading...

	d2fbvay81k4ji3.cloudfront.net/?avbfd=930121	362 kB	2024-04-17	2024-04-17
Pretty URL d2fbvay81k4ji3.cloudfront.net/?avbfd=930121 IP 18.155.152.96 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-17 10:03:01 Last Seen2024-04-17 10:04:40 Times Seen4 Hash e8b9ebfde438b63d54dfcc5e43d60b6f e4c271fe227968162a79baff2a4bbda5e993e333 f3e1d791dc41e586dd4c5867b05e4a6a119cd25b6fb4a01ea78d9909d2a73ebc Loading...

	sakurafile.com/js/jquery.cookie.js	4.0 kB	2023-03-08	2024-04-17
Pretty URL sakurafile.com/js/jquery.cookie.js IP 89.249.49.147 ASN #206264 Amarutu Technology Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:01:08 Last Seen2024-04-17 10:04:40 Times Seen30 Hash 1e16b14dcd3d882ec44ce1dfba605f33 b97d6de860c43539a1f4112fe1ab49a2f50e4688 38d424a116d57910c9d3233b1d6c0108287bd2c15f9784b0cab4f3f830913050 Loading...

	sakurafile.com/js/jquery.paging.js	19 kB	2023-03-07	2024-04-26
Pretty URL sakurafile.com/js/jquery.paging.js IP 89.249.49.147 ASN #206264 Amarutu Technology Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:23:22 Last Seen2024-04-26 20:17:01 Times Seen3015 Hash d7a2c1c7af2a004a6d68e1e55b1cfb46 7fd6daa7076c30381880519ad06ef5639b19ee28 c8ecfe747c979fbd87624913200a9237343679923b495885bced089b80fc84f6 Loading...

	sakurafile.com/js/paging.js	1.7 kB	2023-03-08	2024-04-17
Pretty URL sakurafile.com/js/paging.js IP 89.249.49.147 ASN #206264 Amarutu Technology Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:01:08 Last Seen2024-04-17 10:04:40 Times Seen79 Hash 43e50aa00ad654da80af8f7936afd4c6 fb5921b855cce329191077b7e93563029d703545 e8a4ec002545486fb475c977fc9d53ac48a77cfb3d36ac91042c14dc688d5657 Loading...

HTTP Transactions (37)

URL IP Response Size

sakurafile.com/k9prom3m1bfq/Inuyasha_v01-10.zip

89.249.49.147

200 OK

12 kB

URL User Request GET HTTP/1.1
sakurafile.com/k9prom3m1bfq/Inuyasha_v01-10.zip
IP
89.249.49.147:80
ASN
#206264 Amarutu Technology Ltd

File type
HTML document, Unicode text, UTF-8 text, with CRLF, LF line terminators
Size
12 kB (12195 bytes)
Hash
7e72775b2f0570db832b864cf8dabf3d
d28752d3acd7ac8d46b87d8ab298102982adc014
0e8bcffee219df7422c8e55bb7efd266463330b58e9598324f798f181b093663

HTTP Headers

GET /k9prom3m1bfq/Inuyasha_v01-10.zip HTTP/1.1
Host: sakurafile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 07:59:42 GMT
Server: Apache/2.4.6 (CentOS) mod_fcgid/2.3.9
Strict-Transport-Security: max-age=0;includeSubDomains;
Expires: Tue, 16 Apr 2024 07:59:42 GMT
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html ; charset=UTF-8

sakurafile.com/css/style.css

89.249.49.147

200 OK

48 kB

URL GET HTTP/1.1
sakurafile.com/css/style.css
IP
89.249.49.147:80
ASN
#206264 Amarutu Technology Ltd

Requested by
http://sakurafile.com/k9prom3m1bfq/Inuyasha_v01-10.zip

File type
ASCII text, with CRLF line terminators
Size
48 kB (47641 bytes)
Hash
ebf0d9b705a939be747e80fc5efb933e
e5e9b45ff5ef00ab97e7fb96bdec202cd144e3b7
d6196747f0e1d51259cd8f9b46749c27203bbfe0a453cc9a666ae479122d695f

HTTP Headers

GET /css/style.css HTTP/1.1
Host: sakurafile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://sakurafile.com/k9prom3m1bfq/Inuyasha_v01-10.zip
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 07:59:43 GMT
Server: Apache/2.4.6 (CentOS) mod_fcgid/2.3.9
Last-Modified: Sat, 01 Oct 2022 06:52:51 GMT
ETag: "ba19-5e9f38f1e36c0"
Accept-Ranges: bytes
Content-Length: 47641
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

sakurafile.com/js/jquery.cookie.js

89.249.49.147

200 OK

4.0 kB

URL GET HTTP/1.1
sakurafile.com/js/jquery.cookie.js
IP
89.249.49.147:80
ASN
#206264 Amarutu Technology Ltd

Requested by
http://sakurafile.com/k9prom3m1bfq/Inuyasha_v01-10.zip

File type
JavaScript source, ASCII text, with very long lines (418)
Size
4.0 kB (3989 bytes)
Hash
1e16b14dcd3d882ec44ce1dfba605f33
b97d6de860c43539a1f4112fe1ab49a2f50e4688
38d424a116d57910c9d3233b1d6c0108287bd2c15f9784b0cab4f3f830913050

HTTP Headers

GET /js/jquery.cookie.js HTTP/1.1
Host: sakurafile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://sakurafile.com/k9prom3m1bfq/Inuyasha_v01-10.zip
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 07:59:43 GMT
Server: Apache/2.4.6 (CentOS) mod_fcgid/2.3.9
Accept-Ranges: bytes
Content-Length: 3989
Pragma: no-cache
Cache-Control: max-age=0, no-cache, no-store, must-revalidate
Expires: Thu, 1 Jan 1970 00:00:00 GMT
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript

sakurafile.com/js/paging.js

89.249.49.147

200 OK

1.7 kB

URL GET HTTP/1.1
sakurafile.com/js/paging.js
IP
89.249.49.147:80
ASN
#206264 Amarutu Technology Ltd

Requested by
http://sakurafile.com/k9prom3m1bfq/Inuyasha_v01-10.zip

File type
HTML document, ASCII text
Size
1.7 kB (1709 bytes)
Hash
43e50aa00ad654da80af8f7936afd4c6
fb5921b855cce329191077b7e93563029d703545
e8a4ec002545486fb475c977fc9d53ac48a77cfb3d36ac91042c14dc688d5657

HTTP Headers

GET /js/paging.js HTTP/1.1
Host: sakurafile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://sakurafile.com/k9prom3m1bfq/Inuyasha_v01-10.zip
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 07:59:43 GMT
Server: Apache/2.4.6 (CentOS) mod_fcgid/2.3.9
Last-Modified: Sat, 01 Oct 2022 06:52:50 GMT
ETag: "6ad-5e9f38f0ef480"
Accept-Ranges: bytes
Content-Length: 1709
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript

sakurafile.com/js/jquery.paging.js

89.249.49.147

200 OK

19 kB

URL GET HTTP/1.1
sakurafile.com/js/jquery.paging.js
IP
89.249.49.147:80
ASN
#206264 Amarutu Technology Ltd

Requested by
http://sakurafile.com/k9prom3m1bfq/Inuyasha_v01-10.zip

File type
JavaScript source, ASCII text
Size
19 kB (19365 bytes)
Hash
d7a2c1c7af2a004a6d68e1e55b1cfb46
7fd6daa7076c30381880519ad06ef5639b19ee28
c8ecfe747c979fbd87624913200a9237343679923b495885bced089b80fc84f6

HTTP Headers

GET /js/jquery.paging.js HTTP/1.1
Host: sakurafile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://sakurafile.com/k9prom3m1bfq/Inuyasha_v01-10.zip
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 07:59:43 GMT
Server: Apache/2.4.6 (CentOS) mod_fcgid/2.3.9
Last-Modified: Sat, 01 Oct 2022 06:52:50 GMT
ETag: "4ba5-5e9f38f0ef480"
Accept-Ranges: bytes
Content-Length: 19365
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript

sakurafile.com/js/jquery-1.9.1.min.js

89.249.49.147

200 OK

93 kB

URL GET HTTP/1.1
sakurafile.com/js/jquery-1.9.1.min.js
IP
89.249.49.147:80
ASN
#206264 Amarutu Technology Ltd

Requested by
http://sakurafile.com/k9prom3m1bfq/Inuyasha_v01-10.zip

File type
JavaScript source, ASCII text, with very long lines (32089)
Size
93 kB (92629 bytes)
Hash
397754ba49e9e0cf4e7c190da78dda05
ae49e56999d82802727455f0ba83b63acd90a22b
c12f6098e641aaca96c60215800f18f5671039aecf812217fab3c0d152f6adb4

HTTP Headers

GET /js/jquery-1.9.1.min.js HTTP/1.1
Host: sakurafile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://sakurafile.com/k9prom3m1bfq/Inuyasha_v01-10.zip
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 07:59:43 GMT
Server: Apache/2.4.6 (CentOS) mod_fcgid/2.3.9
Last-Modified: Sat, 01 Oct 2022 06:52:50 GMT
ETag: "169d5-5e9f38f0ef480"
Accept-Ranges: bytes
Content-Length: 92629
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript

sakurafile.com/images/icon_yes_w.png

89.249.49.147

200 OK

1.1 kB

URL GET HTTP/1.1
sakurafile.com/images/icon_yes_w.png
IP
89.249.49.147:80
ASN
#206264 Amarutu Technology Ltd

Requested by
http://sakurafile.com/k9prom3m1bfq/Inuyasha_v01-10.zip

File type
PNG image data, 19 x 14, 8-bit/color RGBA, non-interlaced
Size
1.1 kB (1092 bytes)
Hash
53855d04580aedc7fd1e451411cc7013
950fff14513f96ddb27636c26bdddd16485a30ff
96691a470ea69f5f2b421a066045f0ae990867b0837d15666b304cdf68182f0d

HTTP Headers

GET /images/icon_yes_w.png HTTP/1.1
Host: sakurafile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://sakurafile.com/k9prom3m1bfq/Inuyasha_v01-10.zip
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 07:59:43 GMT
Server: Apache/2.4.6 (CentOS) mod_fcgid/2.3.9
Last-Modified: Sat, 01 Oct 2022 06:52:51 GMT
ETag: "444-5e9f38f1e36c0"
Accept-Ranges: bytes
Content-Length: 1092
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png

sakurafile.com/images/icon_no_w.png

89.249.49.147

200 OK

1.1 kB

URL GET HTTP/1.1
sakurafile.com/images/icon_no_w.png
IP
89.249.49.147:80
ASN
#206264 Amarutu Technology Ltd

Requested by
http://sakurafile.com/k9prom3m1bfq/Inuyasha_v01-10.zip

File type
PNG image data, 14 x 14, 8-bit/color RGBA, non-interlaced
Size
1.1 kB (1143 bytes)
Hash
7b0abdbb8af6b17a0679e21c942bbe13
9d438b099e679fec6b3dde696ddcfea106cd389d
97803f020d873288a2062aa9523b7fadfe40ada657480ce6f959e4ad21b9965d

HTTP Headers

GET /images/icon_no_w.png HTTP/1.1
Host: sakurafile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://sakurafile.com/k9prom3m1bfq/Inuyasha_v01-10.zip
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 07:59:43 GMT
Server: Apache/2.4.6 (CentOS) mod_fcgid/2.3.9
Last-Modified: Sat, 01 Oct 2022 06:52:51 GMT
ETag: "477-5e9f38f1e36c0"
Accept-Ranges: bytes
Content-Length: 1143
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png

sakurafile.com/images/icon_yes_g.png

89.249.49.147

200 OK

1.1 kB

URL GET HTTP/1.1
sakurafile.com/images/icon_yes_g.png
IP
89.249.49.147:80
ASN
#206264 Amarutu Technology Ltd

Requested by
http://sakurafile.com/k9prom3m1bfq/Inuyasha_v01-10.zip

File type
PNG image data, 19 x 14, 8-bit/color RGBA, non-interlaced
Size
1.1 kB (1123 bytes)
Hash
18e50440202016e2eb6319b82ac78e60
3d65a77c43f840ed4285d8ba37b24cfca1bf2afc
816be92d18a72a17107eb09979eafaffb4bfdf5e153dfebf7d02ed34a881c60f

HTTP Headers

GET /images/icon_yes_g.png HTTP/1.1
Host: sakurafile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://sakurafile.com/k9prom3m1bfq/Inuyasha_v01-10.zip
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 07:59:43 GMT
Server: Apache/2.4.6 (CentOS) mod_fcgid/2.3.9
Last-Modified: Sat, 01 Oct 2022 06:52:51 GMT
ETag: "463-5e9f38f1e36c0"
Accept-Ranges: bytes
Content-Length: 1123
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png

sakurafile.com/images/icon_no_g.png

89.249.49.147

200 OK

1.2 kB

URL GET HTTP/1.1
sakurafile.com/images/icon_no_g.png
IP
89.249.49.147:80
ASN
#206264 Amarutu Technology Ltd

Requested by
http://sakurafile.com/k9prom3m1bfq/Inuyasha_v01-10.zip

File type
PNG image data, 14 x 14, 8-bit/color RGBA, non-interlaced
Size
1.2 kB (1240 bytes)
Hash
c0cdb13a820322bfe0b6234f9a14a51d
4d84cde8ee4dec7aa3f3079b8c7a2660552cf51a
0a4d1fb78420332147b4bae4592ce9d65aa38f2c0e5de5b8d089028e1599d33c

HTTP Headers

GET /images/icon_no_g.png HTTP/1.1
Host: sakurafile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://sakurafile.com/k9prom3m1bfq/Inuyasha_v01-10.zip
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 07:59:43 GMT
Server: Apache/2.4.6 (CentOS) mod_fcgid/2.3.9
Last-Modified: Sat, 01 Oct 2022 06:52:51 GMT
ETag: "4d8-5e9f38f1e36c0"
Accept-Ranges: bytes
Content-Length: 1240
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png

sakurafile.com/images/homecur.cur

89.249.49.147

200 OK

1.2 kB

URL GET HTTP/1.1
sakurafile.com/images/homecur.cur
IP
89.249.49.147:80
ASN
#206264 Amarutu Technology Ltd

Requested by
http://sakurafile.com/k9prom3m1bfq/Inuyasha_v01-10.zip

File type
MS Windows cursor resource - 1 icon, 16x16, hotspot @0x0
Size
1.2 kB (1150 bytes)
Hash
fcbb13cd43bdf87ad66570bdbf56dea9
5e36d2de4943189afd2e60e7d725f19df7add2c7
a93eee4314f9387b8c3b2c3e10a3b086fd2f8a0e704cc2b76f9495f71801ee4e

HTTP Headers

GET /images/homecur.cur HTTP/1.1
Host: sakurafile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://sakurafile.com/css/style.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 07:59:43 GMT
Server: Apache/2.4.6 (CentOS) mod_fcgid/2.3.9
Last-Modified: Sat, 01 Oct 2022 06:52:51 GMT
ETag: "47e-5e9f38f1e36c0"
Accept-Ranges: bytes
Content-Length: 1150
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive

sakurafile.com/images/logo.png

89.249.49.147

404 Not Found

1.0 kB

URL GET HTTP/1.1
sakurafile.com/images/logo.png
IP
89.249.49.147:80
ASN
#206264 Amarutu Technology Ltd

Requested by
http://sakurafile.com/k9prom3m1bfq/Inuyasha_v01-10.zip

File type
HTML document, ASCII text
Size
1.0 kB (1008 bytes)
Hash
d91136cb1ed8d2bd49eaaf77c893a383
06a4f366867d41b263be3e518c2e50f293606251
93853950068a3f7cf0c3a98f494f00d9aeebb7914858642ad12372f012abde92

HTTP Headers

GET /images/logo.png HTTP/1.1
Host: sakurafile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://sakurafile.com/css/style.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Wed, 17 Apr 2024 07:59:43 GMT
Server: Apache/2.4.6 (CentOS) mod_fcgid/2.3.9
Last-Modified: Sat, 01 Oct 2022 06:52:50 GMT
ETag: "3f0-5e9f38f0ef480"
Accept-Ranges: bytes
Content-Length: 1008
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=utf-8

sakurafile.com/images/linebg.jpg

89.249.49.147

200 OK

1.4 kB

URL GET HTTP/1.1
sakurafile.com/images/linebg.jpg
IP
89.249.49.147:80
ASN
#206264 Amarutu Technology Ltd

Requested by
http://sakurafile.com/k9prom3m1bfq/Inuyasha_v01-10.zip

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 215x2, components 3
Size
1.4 kB (1373 bytes)
Hash
bee1d4cffbe4d4822da3bb47e492eda2
85b91213d6b32bb8e3627903b2b827c4f9dc8cdb
78f55d895106eb2248c48322b6acbefa8fc68c66d9d5fa2f41be27c25c9c9c15

HTTP Headers

GET /images/linebg.jpg HTTP/1.1
Host: sakurafile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://sakurafile.com/css/style.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 07:59:43 GMT
Server: Apache/2.4.6 (CentOS) mod_fcgid/2.3.9
Last-Modified: Sat, 01 Oct 2022 06:52:51 GMT
ETag: "55d-5e9f38f1e36c0"
Accept-Ranges: bytes
Content-Length: 1373
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg

sakurafile.com/images/triangle.png

89.249.49.147

200 OK

6.6 kB

URL GET HTTP/1.1
sakurafile.com/images/triangle.png
IP
89.249.49.147:80
ASN
#206264 Amarutu Technology Ltd

Requested by
http://sakurafile.com/k9prom3m1bfq/Inuyasha_v01-10.zip

File type
PNG image data, 241 x 87, 8-bit/color RGBA, non-interlaced
Size
6.6 kB (6551 bytes)
Hash
d5d338ad79b7b604abe497e68b3df8ea
91998c945fa40471bf0bd1fe61a303fe9140a441
b79052980e65f93bd3b9d5529d20e47ee81e3026c9d2d3eba9e8f50a62566ce1

HTTP Headers

GET /images/triangle.png HTTP/1.1
Host: sakurafile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://sakurafile.com/css/style.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 07:59:43 GMT
Server: Apache/2.4.6 (CentOS) mod_fcgid/2.3.9
Last-Modified: Sat, 01 Oct 2022 06:52:51 GMT
ETag: "1997-5e9f38f1e36c0"
Accept-Ranges: bytes
Content-Length: 6551
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png

sakurafile.com/images/flags.png

89.249.49.147

200 OK

15 kB

URL GET HTTP/1.1
sakurafile.com/images/flags.png
IP
89.249.49.147:80
ASN
#206264 Amarutu Technology Ltd

Requested by
http://sakurafile.com/k9prom3m1bfq/Inuyasha_v01-10.zip

File type
PNG image data, 1248 x 11, 8-bit/color RGBA, non-interlaced
Size
15 kB (15180 bytes)
Hash
0e7e0406e09ea913dc344ca9974ec94a
084fcf2d8e96661354a7e563f64801dfd13bead7
0787e30d6145bc8b8b92ed329f664bcc3012162ccba9ef943d7ada480afb74e9

HTTP Headers

GET /images/flags.png HTTP/1.1
Host: sakurafile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://sakurafile.com/css/style.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 07:59:43 GMT
Server: Apache/2.4.6 (CentOS) mod_fcgid/2.3.9
Last-Modified: Sat, 01 Oct 2022 06:52:51 GMT
ETag: "3b4c-5e9f38f1e36c0"
Accept-Ranges: bytes
Content-Length: 15180
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png

sakurafile.com/k9prom3m1bfq/favicon.ico

89.249.49.147

200 OK

8.9 kB

URL GET HTTP/1.1
sakurafile.com/k9prom3m1bfq/favicon.ico
IP
89.249.49.147:80
ASN
#206264 Amarutu Technology Ltd

Requested by
http://sakurafile.com/k9prom3m1bfq/Inuyasha_v01-10.zip

File type
HTML document, Unicode text, UTF-8 text, with CRLF, LF line terminators
Size
8.9 kB (8914 bytes)
Hash
2c48ce51e695bba76ff5e226a5d096db
53a37cccaf78c33e6dfa08cde4b6d5cc643103b0
32edaf2ec223a7dcc82e95e4374e217340a303ec1500e18c2ecae1b0493f1d3d

HTTP Headers

GET /k9prom3m1bfq/favicon.ico HTTP/1.1
Host: sakurafile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://sakurafile.com/k9prom3m1bfq/Inuyasha_v01-10.zip
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 07:59:43 GMT
Server: Apache/2.4.6 (CentOS) mod_fcgid/2.3.9
Expires: Tue, 16 Apr 2024 07:59:43 GMT
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html ; charset=UTF-8

d2fbvay81k4ji3.cloudfront.net/?avbfd=930121

18.155.152.96

200 OK

117 kB

URL GET HTTP/1.1
d2fbvay81k4ji3.cloudfront.net/?avbfd=930121
IP
18.155.152.96:80
ASN
#16509 AMAZON-02

Requested by
http://sakurafile.com/k9prom3m1bfq/Inuyasha_v01-10.zip

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (15945)
Size
117 kB (116863 bytes)
Hash
e8b9ebfde438b63d54dfcc5e43d60b6f
e4c271fe227968162a79baff2a4bbda5e993e333
f3e1d791dc41e586dd4c5867b05e4a6a119cd25b6fb4a01ea78d9909d2a73ebc

HTTP Headers

GET /?avbfd=930121 HTTP/1.1
Host: d2fbvay81k4ji3.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://sakurafile.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Length: 116863
Connection: keep-alive
Date: Wed, 17 Apr 2024 08:02:35 GMT
access-control-allow-origin: *
Cache-Control: no-store, no-cache, proxy-revalidate, must-revalidate, private, no-transform
Content-Encoding: gzip
Pragma: no-cache
X-Cache: Miss from cloudfront
Via: 1.1 f3968aa5e1a5f92728347bfbfbd22034.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: HAM50-P2
X-Amz-Cf-Id: 48WcuIoMqDHX1W6AmoIK1xgY-AH1g9wnq6fykWfeEaka3FBxxtRe8w==

positioner.info/UklyNDQzKxFZCzN0EBJBICVPEQYUbEByUGAvEEJVK3FDXwA4IEEaVz4mB1BSICYcQBo8LAYRBhQmJWNuHB82fQIRGj9NcAF5In9jOQUTWG5qExV6EWAPNF4MKh81ZWIeDUt8fyUqAGRiZnEhdwBlEUEMeQIjBld/BDo9ZAVmeTNeYRccIVh1HRpHY24UEwB7ch96M2x2Kx8IV3IxDidhexMABFVlCGxAcnE4eUVjYwMKPnBMGQcwDEUdDwVAZRYuQ3BOAwM8TgU3ByNQWwgnIEdnGngKdXM+BjxjYRYvNGFkMRgwRHc7GERmTRQNFAZmGRAkdWcLLigMYgNkS0x1FSInewcXCzVyDWUsFX5DA3pLX2IGPjR+XiERE012d3s0bnUcOSRaTDkIQUxhNB04Vn8lBAB7BCJxJHVAJgs6UGMzMDdkVRNvGEdbPDlPd18+JBZMZDE5

52.85.243.94

200 OK

1.2 kB

URL GET HTTP/1.1
positioner.info/UklyNDQzKxFZCzN0EBJBICVPEQYUbEByUGAvEEJVK3FDXwA4IEEaVz4mB1BSICYcQBo8LAYRBhQmJWNuHB82fQIRGj9NcAF5In9jOQUTWG5qExV6EWAPNF4MKh81ZWIeDUt8fyUqAGRiZnEhdwBlEUEMeQIjBld/BDo9ZAVmeTNeYRccIVh1HRpHY24UEwB7ch96M2x2Kx8IV3IxDidhexMABFVlCGxAcnE4eUVjYwMKPnBMGQcwDEUdDwVAZRYuQ3BOAwM8TgU3ByNQWwgnIEdnGngKdXM+BjxjYRYvNGFkMRgwRHc7GERmTRQNFAZmGRAkdWcLLigMYgNkS0x1FSInewcXCzVyDWUsFX5DA3pLX2IGPjR+XiERE012d3s0bnUcOSRaTDkIQUxhNB04Vn8lBAB7BCJxJHVAJgs6UGMzMDdkVRNvGEdbPDlPd18+JBZMZDE5
IP
52.85.243.94:80
ASN
#16509 AMAZON-02

Requested by
http://sakurafile.com/k9prom3m1bfq/Inuyasha_v01-10.zip

File type
HTML document, ASCII text, with very long lines (3038), with no line terminators
Size
1.2 kB (1195 bytes)
Hash
771ae0ff0757e0f74bd2a60fd2fc523a
7a5ad71651ade39356073a85f343088124b681c0
c38252c6dc2c60bcb088e06942873829659f2158701e9b09c8501ecfecd76408

HTTP Headers

GET /UklyNDQzKxFZCzN0EBJBICVPEQYUbEByUGAvEEJVK3FDXwA4IEEaVz4mB1BSICYcQBo8LAYRBhQmJWNuHB82fQIRGj9NcAF5In9jOQUTWG5qExV6EWAPNF4MKh81ZWIeDUt8fyUqAGRiZnEhdwBlEUEMeQIjBld/BDo9ZAVmeTNeYRccIVh1HRpHY24UEwB7ch96M2x2Kx8IV3IxDidhexMABFVlCGxAcnE4eUVjYwMKPnBMGQcwDEUdDwVAZRYuQ3BOAwM8TgU3ByNQWwgnIEdnGngKdXM+BjxjYRYvNGFkMRgwRHc7GERmTRQNFAZmGRAkdWcLLigMYgNkS0x1FSInewcXCzVyDWUsFX5DA3pLX2IGPjR+XiERE012d3s0bnUcOSRaTDkIQUxhNB04Vn8lBAB7BCJxJHVAJgs6UGMzMDdkVRNvGEdbPDlPd18+JBZMZDE5 HTTP/1.1
Host: positioner.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://sakurafile.com/
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/html
Content-Length: 1195
Connection: keep-alive
Date: Wed, 17 Apr 2024 08:02:35 GMT
Server: openresty/1.17.8.2
cache-control: no-store, no-cache, must-revalidate, no-transform
Pragma: no-cache
P3P: CP="NID DSP ALL COR"
content-encoding: gzip
Accept-CH: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List
X-Cache: Miss from cloudfront
Via: 1.1 3529bf84e9522012233c3dd2a59fdfe8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: ARN1-C1
X-Amz-Cf-Id: mBJNLPA7OC6SLBuK4RWzvyB2fRDNcS1my-DFY2A0jw0g6W5-XgZ9gg==

positioner.info/NEdsWTBVJQ80D1V6Dn9FRitRfAJyYl4fVAYhDi9RTX9dMgReLl93U1goGT1WRigCLR5aIhh8AnI/Pwx+dgpcbUF4BFUPU2B3HRNhAXQKAX5DBiQDRnk9Ig57fBYbEHZTcCMgeVoQBRBDVhQmOnkGfxwUXEMgIwEEBCQ4AH9+Ly4gc3YwIRBxeTYrHmUFFD8pAFd1CD98TSQHP3JhNSYgcgwGAT5ffj4hFlVZf18UZkMrCBpTUxAWAFt7LjY/eXB2ABd2fj0mGkcDEAUQXH0qPRtzfD8YOmJufwkOQwEGAmBDVwYhDlZ8LBoSdgRwIQ5qTgYWA0hQFUFtdlEqFC5xTB1UPGRxdCo3AH0iAjpUUiouNFNDChwVc3U2NB5EAwU0FHRSdAAjU3UJSWt2Vg8qIWZnJFsTWVAkIjRITAUbKQRudCI3YloJWH9aRygCKQ1BBRQeVWUGKgx/VXcICA

52.85.243.94

200 OK

1.2 kB

URL GET HTTP/1.1
positioner.info/NEdsWTBVJQ80D1V6Dn9FRitRfAJyYl4fVAYhDi9RTX9dMgReLl93U1goGT1WRigCLR5aIhh8AnI/Pwx+dgpcbUF4BFUPU2B3HRNhAXQKAX5DBiQDRnk9Ig57fBYbEHZTcCMgeVoQBRBDVhQmOnkGfxwUXEMgIwEEBCQ4AH9+Ly4gc3YwIRBxeTYrHmUFFD8pAFd1CD98TSQHP3JhNSYgcgwGAT5ffj4hFlVZf18UZkMrCBpTUxAWAFt7LjY/eXB2ABd2fj0mGkcDEAUQXH0qPRtzfD8YOmJufwkOQwEGAmBDVwYhDlZ8LBoSdgRwIQ5qTgYWA0hQFUFtdlEqFC5xTB1UPGRxdCo3AH0iAjpUUiouNFNDChwVc3U2NB5EAwU0FHRSdAAjU3UJSWt2Vg8qIWZnJFsTWVAkIjRITAUbKQRudCI3YloJWH9aRygCKQ1BBRQeVWUGKgx/VXcICA
IP
52.85.243.94:80
ASN
#16509 AMAZON-02

Requested by
http://sakurafile.com/k9prom3m1bfq/Inuyasha_v01-10.zip

File type
HTML document, ASCII text, with very long lines (3049), with no line terminators
Size
1.2 kB (1200 bytes)
Hash
018177d5fa3949f9305e1ca2fedc7a77
25cfae71ce860442cbfdfaf95e5f31d0bccac937
02e2f90baf4ec59aafa9114d1911886be776f9f84a64c7d2ee57f78470e7e4f8

HTTP Headers

GET /NEdsWTBVJQ80D1V6Dn9FRitRfAJyYl4fVAYhDi9RTX9dMgReLl93U1goGT1WRigCLR5aIhh8AnI/Pwx+dgpcbUF4BFUPU2B3HRNhAXQKAX5DBiQDRnk9Ig57fBYbEHZTcCMgeVoQBRBDVhQmOnkGfxwUXEMgIwEEBCQ4AH9+Ly4gc3YwIRBxeTYrHmUFFD8pAFd1CD98TSQHP3JhNSYgcgwGAT5ffj4hFlVZf18UZkMrCBpTUxAWAFt7LjY/eXB2ABd2fj0mGkcDEAUQXH0qPRtzfD8YOmJufwkOQwEGAmBDVwYhDlZ8LBoSdgRwIQ5qTgYWA0hQFUFtdlEqFC5xTB1UPGRxdCo3AH0iAjpUUiouNFNDChwVc3U2NB5EAwU0FHRSdAAjU3UJSWt2Vg8qIWZnJFsTWVAkIjRITAUbKQRudCI3YloJWH9aRygCKQ1BBRQeVWUGKgx/VXcICA HTTP/1.1
Host: positioner.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://sakurafile.com/
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/html
Content-Length: 1200
Connection: keep-alive
Date: Wed, 17 Apr 2024 08:02:35 GMT
Server: openresty/1.17.8.2
cache-control: no-store, no-cache, must-revalidate, no-transform
Pragma: no-cache
P3P: CP="NID DSP ALL COR"
content-encoding: gzip
Accept-CH: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List
X-Cache: Miss from cloudfront
Via: 1.1 a62f7ce6b39c676fcfdde0f9a6fcf08e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: ARN1-C1
X-Amz-Cf-Id: bTCS-ZeZEKgM7GKtc6torAcRX7A8q1nRserVznK0jM7l1NyMplFDxg==

funjoobpolicester.info/SWdwNXooBRNYRShaEhMPOwtNEEgPQkJzHnsBEkMbMF9BXk4jDkMbGSUIBVEcOwgeQVQnAgQQSA8NFW0SADEmbBsPHilPGxhXInk9IREjXhZxPjdRHAojH0I3DDY8fi59DTNNETw3NFoZHw4DAzV4XyN6ACZTM2AvCCUZDQMaD0lYKjE9FWU5cR4icBI8KCRWIgFUJk83MQQSUS0bEDd3DTgGN38cDTQcWjUxPjN8LiJRN3NLfyJCeyIaIEFbICUiMVAtGx0jXwo9PUJsLAw0KVI2JR87UDl4EiRMHmxVMmwiByw/WEsnPRdGNSswKW0rDFIdbyJwBCNbVy4ePU0VHS1DdxEZVwABIA49OmYiIQwTBQ4AKxpCEQElRFs2ESk8ZRQPDRVwFiw3J10Ubw0DWhQ5WjhmAwJVJwYTJg

52.85.243.48

200 OK

1.2 kB

URL GET HTTP/1.1
funjoobpolicester.info/SWdwNXooBRNYRShaEhMPOwtNEEgPQkJzHnsBEkMbMF9BXk4jDkMbGSUIBVEcOwgeQVQnAgQQSA8NFW0SADEmbBsPHilPGxhXInk9IREjXhZxPjdRHAojH0I3DDY8fi59DTNNETw3NFoZHw4DAzV4XyN6ACZTM2AvCCUZDQMaD0lYKjE9FWU5cR4icBI8KCRWIgFUJk83MQQSUS0bEDd3DTgGN38cDTQcWjUxPjN8LiJRN3NLfyJCeyIaIEFbICUiMVAtGx0jXwo9PUJsLAw0KVI2JR87UDl4EiRMHmxVMmwiByw/WEsnPRdGNSswKW0rDFIdbyJwBCNbVy4ePU0VHS1DdxEZVwABIA49OmYiIQwTBQ4AKxpCEQElRFs2ESk8ZRQPDRVwFiw3J10Ubw0DWhQ5WjhmAwJVJwYTJg
IP
52.85.243.48:80
ASN
#16509 AMAZON-02

Requested by
http://sakurafile.com/k9prom3m1bfq/Inuyasha_v01-10.zip

File type
HTML document, ASCII text, with very long lines (3016), with no line terminators
Size
1.2 kB (1175 bytes)
Hash
3a04371606a15dc398935697ff6f89e6
d37ebdbd9b539efc56274c4a7752f53f5b47947c
748c0281dee6e739af9e5411e6dbbcb1432edc596a207464063f108bb6c845ee

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /SWdwNXooBRNYRShaEhMPOwtNEEgPQkJzHnsBEkMbMF9BXk4jDkMbGSUIBVEcOwgeQVQnAgQQSA8NFW0SADEmbBsPHilPGxhXInk9IREjXhZxPjdRHAojH0I3DDY8fi59DTNNETw3NFoZHw4DAzV4XyN6ACZTM2AvCCUZDQMaD0lYKjE9FWU5cR4icBI8KCRWIgFUJk83MQQSUS0bEDd3DTgGN38cDTQcWjUxPjN8LiJRN3NLfyJCeyIaIEFbICUiMVAtGx0jXwo9PUJsLAw0KVI2JR87UDl4EiRMHmxVMmwiByw/WEsnPRdGNSswKW0rDFIdbyJwBCNbVy4ePU0VHS1DdxEZVwABIA49OmYiIQwTBQ4AKxpCEQElRFs2ESk8ZRQPDRVwFiw3J10Ubw0DWhQ5WjhmAwJVJwYTJg HTTP/1.1
Host: funjoobpolicester.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://sakurafile.com/
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/html
Content-Length: 1175
Connection: keep-alive
Date: Wed, 17 Apr 2024 08:02:35 GMT
Server: openresty/1.17.8.2
cache-control: no-store, no-cache, must-revalidate, no-transform
Pragma: no-cache
P3P: CP="NID DSP ALL COR"
content-encoding: gzip
Accept-CH: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List
X-Cache: Miss from cloudfront
Via: 1.1 1cc4305a3ce000ca199328864ca1c98e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: ARN1-C1
X-Amz-Cf-Id: dRHQ5Np73zKs0GU5j9Svuv0jcvOqlTr4JFUkUmOqRK45I968boW_YA==

ncukankingwith.info/WjlZMEl1BjpDdA9UKXwYMFUxZwEUCxpdAzxfEWUGAH8xBSoLVn9EID4EYAN5awtoFjkzXWQBbylNOEQ8KQRoFiA0XzYNbywEaB56bhdqBmduHywNeHxNKVEuZwh/QD0uVWQBfmsKagR5YwxsBn1o

188.114.97.1

204 No Content

0 B

URL GET HTTP/2
ncukankingwith.info/WjlZMEl1BjpDdA9UKXwYMFUxZwEUCxpdAzxfEWUGAH8xBSoLVn9EID4EYAN5awtoFjkzXWQBbylNOEQ8KQRoFiA0XzYNbywEaB56bhdqBmduHywNeHxNKVEuZwh/QD0uVWQBfmsKagR5YwxsBn1o
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
http://sakurafile.com/k9prom3m1bfq/Inuyasha_v01-10.zip
Certificate
IssuerGoogle Trust Services LLC
Subjectncukankingwith.info
Fingerprint54:EC:12:00:29:26:97:E9:83:F6:67:14:71:64:5B:7A:CC:8A:D0:08
ValiditySun, 31 Mar 2024 11:25:46 GMT - Sat, 29 Jun 2024 11:25:45 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /WjlZMEl1BjpDdA9UKXwYMFUxZwEUCxpdAzxfEWUGAH8xBSoLVn9EID4EYAN5awtoFjkzXWQBbylNOEQ8KQRoFiA0XzYNbywEaB56bhdqBmduHywNeHxNKVEuZwh/QD0uVWQBfmsKagR5YwxsBn1o HTTP/1.1
Host: ncukankingwith.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://sakurafile.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
date: Wed, 17 Apr 2024 08:02:35 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FYe0WA8Ve5cx6N7wWY%2BxGBV6foMBOo7r71QnCVEJd%2FBYcZgUVP3k%2F4CCrfuPmrzv7USlL1AEu2ST5cSXHQ%2F5zS9RL6OX3M9vFqbG2bebbd7HXr12EYF2J%2Fv4z7797UCbxlXK0%2Bis"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875ae4ce1a3b6de8-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ncukankingwith.info/M2RVeWIcWzYKX34ODyk7XhcSOFFXBg0OAXQAOTc2ciUHTzUCE3MNC1dZbE1SAldtXxJaAGhIREAQNA0XQFlkXwtdAjpEREVZZFdRB0pmT0wHQiBEUxUQJRgFDlVzCRZHCGhIVQJXZk1SClFgT1QH

188.114.97.1

204 No Content

0 B

URL GET HTTP/2
ncukankingwith.info/M2RVeWIcWzYKX34ODyk7XhcSOFFXBg0OAXQAOTc2ciUHTzUCE3MNC1dZbE1SAldtXxJaAGhIREAQNA0XQFlkXwtdAjpEREVZZFdRB0pmT0wHQiBEUxUQJRgFDlVzCRZHCGhIVQJXZk1SClFgT1QH
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
http://sakurafile.com/k9prom3m1bfq/Inuyasha_v01-10.zip
Certificate
IssuerGoogle Trust Services LLC
Subjectncukankingwith.info
Fingerprint54:EC:12:00:29:26:97:E9:83:F6:67:14:71:64:5B:7A:CC:8A:D0:08
ValiditySun, 31 Mar 2024 11:25:46 GMT - Sat, 29 Jun 2024 11:25:45 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /M2RVeWIcWzYKX34ODyk7XhcSOFFXBg0OAXQAOTc2ciUHTzUCE3MNC1dZbE1SAldtXxJaAGhIREAQNA0XQFlkXwtdAjpEREVZZFdRB0pmT0wHQiBEUxUQJRgFDlVzCRZHCGhIVQJXZk1SClFgT1QH HTTP/1.1
Host: ncukankingwith.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://sakurafile.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
date: Wed, 17 Apr 2024 08:02:35 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GWJ9LR76btGBW7nuokQG5y4jmR309fXX%2FLRic891V5GmaVh5t9XI9YsI%2FXwMjsKPSp%2F9b6Emgjo0wrNsjZ5fK7wLItwEL%2FWcH6bTqT8y0RPOMGtFmjgwPGmuLW3Z6qHAA4Fgq0Fs"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875ae4ce1a456de8-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ncukankingwith.info/aHlWQjFHRjUxDDETPjdnWy8HBl0YFwcUXiYuAXdwPTgQIFNYGnA2WAxEb3EAXExnZEEBHWtzCU4KIiNFHQprcxcBFzAtDE4Pa3MfWFdkbARODGtzFxwJNyUMWV8mNkUERGd1AFtKYnIIXUxgegI

188.114.97.1

204 No Content

0 B

URL GET HTTP/2
ncukankingwith.info/aHlWQjFHRjUxDDETPjdnWy8HBl0YFwcUXiYuAXdwPTgQIFNYGnA2WAxEb3EAXExnZEEBHWtzCU4KIiNFHQprcxcBFzAtDE4Pa3MfWFdkbARODGtzFxwJNyUMWV8mNkUERGd1AFtKYnIIXUxgegI
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
http://sakurafile.com/k9prom3m1bfq/Inuyasha_v01-10.zip
Certificate
IssuerGoogle Trust Services LLC
Subjectncukankingwith.info
Fingerprint54:EC:12:00:29:26:97:E9:83:F6:67:14:71:64:5B:7A:CC:8A:D0:08
ValiditySun, 31 Mar 2024 11:25:46 GMT - Sat, 29 Jun 2024 11:25:45 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /aHlWQjFHRjUxDDETPjdnWy8HBl0YFwcUXiYuAXdwPTgQIFNYGnA2WAxEb3EAXExnZEEBHWtzCU4KIiNFHQprcxcBFzAtDE4Pa3MfWFdkbARODGtzFxwJNyUMWV8mNkUERGd1AFtKYnIIXUxgegI HTTP/1.1
Host: ncukankingwith.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://sakurafile.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
date: Wed, 17 Apr 2024 08:02:35 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HE3sKHxfWLNtcN1T%2BLo3LfbFdrE3FGjy%2BVcrn2lWKDipweQv5%2BEqUKvOceijjwG8N6dFzPXLAuuzswf6xfcRRsJcWEhN8u9f0I9aAyv1gKAqNIFLcqnu4DZYEOcgaBbHvDVy3YOg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875ae4ce2a586de8-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ncukankingwith.info/popunder.gif

188.114.97.1

200 OK

167 B

URL GET HTTP/3
ncukankingwith.info/popunder.gif
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
http://sakurafile.com/k9prom3m1bfq/Inuyasha_v01-10.zip
Certificate
IssuerGoogle Trust Services LLC
Subjectncukankingwith.info
Fingerprint54:EC:12:00:29:26:97:E9:83:F6:67:14:71:64:5B:7A:CC:8A:D0:08
ValiditySun, 31 Mar 2024 11:25:46 GMT - Sat, 29 Jun 2024 11:25:45 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
167 B (167 bytes)
Hash
0104c301c5e02bd6148b8703d19b3a73
7436e0b4b1f8c222c38069890b75fa2baf9ca620
446a6087825fa73eadb045e5a2e9e2adf7df241b571228187728191d961dda1f

HTTP Headers

GET /popunder.gif HTTP/1.1
Host: ncukankingwith.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://sakurafile.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Date: Wed, 17 Apr 2024 08:02:36 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Wed, 17 Apr 2024 09:02:36 GMT
Location: https://ncukankingwith.info/popunder.gif
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fM7iIKJFrDOD7UVOW2ACM%2FeqkT6aQN1u%2BM0dYkWt4eNNuwdaAKg01MFc5wODCxKXMGbd8JAW83KIRvYXLa5SkjZA5w6TfhqfTi2xJ22PALU5u95KMZKxda3Aan6YI1n%2F5mCrFKIn"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 875ae4d11adc92e5-CPH
alt-svc: h2=":443"; ma=60

pogothere.xyz/

188.114.97.1

200 OK

28 B

URL GET HTTP/3
pogothere.xyz/
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
http://sakurafile.com/k9prom3m1bfq/Inuyasha_v01-10.zip
Certificate
IssuerGoogle Trust Services LLC
Subjectpogothere.xyz
Fingerprint34:D3:33:F8:49:E2:1E:3E:44:A8:5D:74:68:9C:B8:A0:D5:F8:DD:0B
ValidityWed, 27 Mar 2024 02:15:30 GMT - Tue, 25 Jun 2024 02:15:29 GMT

File type
ASCII text, with no line terminators
Size
28 B (28 bytes)
Hash
3c1c1c01fc94e94d85746ac934d1cc04
b5fd15e98d372dd19912b3832f83994a09f1b8ba
1bd859dc324fe1105cd042d195be874acc85dde9e0fadde0702d9581e9120efc

HTTP Headers

GET / HTTP/1.1
Host: pogothere.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://sakurafile.com/
Origin: http://sakurafile.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 17 Apr 2024 08:02:35 GMT
content-type: text/plain
set-cookie: csu=916108590155468@1@1713340955; Max-Age=31104000; Secure; SameSite=None
access-control-allow-origin: http://sakurafile.com
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bSTFjYN6zxKcZy7tFZOtcoPmpWoGOzOcUH%2F7OhW08gII5K1IQkh1yYdENmpiBMRfytqar9xA6jGSSj7oanP3G9K2DCRH1cXwl%2FCRidfsP%2BdkLM9h6v94hag2cyj1ViJq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875ae4ce2854abd4-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube

64.233.165.84

302 Found

0 B

URL GET HTTP/2
accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube
IP
64.233.165.84:443
ASN
#15169 GOOGLE

Requested by
http://sakurafile.com/k9prom3m1bfq/Inuyasha_v01-10.zip
Certificate
IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
FingerprintCC:CB:DD:14:30:B0:75:6A:EE:1D:20:F1:9E:C5:DD:5F:DD:68:4F:7B
ValidityMon, 18 Mar 2024 20:38:53 GMT - Mon, 10 Jun 2024 20:38:52 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://sakurafile.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
content-type: application/binary
set-cookie: __Host-GAPS=1:59VCPzKtPo3iMmCo9_IVubx9HNW7Dw:YDZrbSQCyOHu_End; Expires=Fri, 17-Apr-2026 08:02:36 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 17 Apr 2024 08:02:36 GMT
location: https://accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=ARZ0qKI4Xy_lxyt69nJm5OZ09O9nsfwTi-9qOuCK_58xtPNbCy94_lo3fpgRm_evChtnQu1H13mXPA
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport, script-src 'nonce-Jltx8rJBMPxLevsR6jAdWA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy: unsafe-none
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

d2fbvay81k4ji3.cloudfront.net/jeXhIVVYaFyYzaQ0RLGhvSkl8YGdfCDowMEQLKT4jCxkuPDocVis6O18SOzo4CUUABi8ySh9mPxZePC8yREhuOTcXH3VzMxcbdWRwGBwqaGJfDSloOxYCITk6GF16E2NXSG1nZlEAeWRzSjptZ2YVESYgLlxKeC1uTyd+YXNKOm1nZgsObWYXQE5mZX9cSn-gyMxoTJ3BkP0p4ZGZJSXhkc0tILjwkHB4nLXNLPnFjeElePWhn

18.155.152.96

196 B

URL
d2fbvay81k4ji3.cloudfront.net/jeXhIVVYaFyYzaQ0RLGhvSkl8YGdfCDowMEQLKT4jCxkuPDocVis6O18SOzo4CUUABi8ySh9mPxZePC8yREhuOTcXH3VzMxcbdWRwGBwqaGJfDSloOxYCITk6GF16E2NXSG1nZlEAeWRzSjptZ2YVESYgLlxKeC1uTyd+YXNKOm1nZgsObWYXQE5mZX9cSn-gyMxoTJ3BkP0p4ZGZJSXhkc0tILjwkHB4nLXNLPnFjeElePWhn
IP
18.155.152.96:0
ASN
#16509 AMAZON-02

File type
ASCII text, with no line terminators
Size
196 B (196 bytes)
Hash
0093656ee7fc009ace1467dd10f315ef
ab2489f1973cad59c06d6914ccfc16755c76df8c
a35c1c2eaa4d55e9bb4d7b196cf421e88f12ac9aa498cf3017f0ac570cd466fb

HTTP Headers

GET /jeXhIVVYaFyYzaQ0RLGhvSkl8YGdfCDowMEQLKT4jCxkuPDocVis6O18SOzo4CUUABi8ySh9mPxZePC8yREhuOTcXH3VzMxcbdWRwGBwqaGJfDSloOxYCITk6GF16E2NXSG1nZlEAeWRzSjptZ2YVESYgLlxKeC1uTyd+YXNKOm1nZgsObWYXQE5mZX9cSn-gyMxoTJ3BkP0p4ZGZJSXhkc0tILjwkHB4nLXNLPnFjeElePWhn HTTP/1.1
Host: d2fbvay81k4ji3.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://funjoobpolicester.info/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Length: 196
Connection: keep-alive
Date: Wed, 17 Apr 2024 08:02:36 GMT
access-control-allow-origin: *
Cache-Control: max-age=31556926
Content-Encoding: gzip
X-Cache: Miss from cloudfront
Via: 1.1 f3968aa5e1a5f92728347bfbfbd22034.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: HAM50-P2
X-Amz-Cf-Id: A2V7O_cG9cppqibs-VljryAXMxhO_bD0Xgh_h7COfQE_i4Uz8b6akA==

ncukankingwith.info/popunder.gif

188.114.97.1

200 OK

466 B

URL GET HTTP/3
ncukankingwith.info/popunder.gif
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
http://sakurafile.com/k9prom3m1bfq/Inuyasha_v01-10.zip
Certificate
IssuerGoogle Trust Services LLC
Subjectncukankingwith.info
Fingerprint54:EC:12:00:29:26:97:E9:83:F6:67:14:71:64:5B:7A:CC:8A:D0:08
ValiditySun, 31 Mar 2024 11:25:46 GMT - Sat, 29 Jun 2024 11:25:45 GMT

File type
GIF image data, version 89a, 1 x 1
Size
466 B (466 bytes)
Hash
ead395fd3ddb9ab4658206127e299e6a
43d55f4f94be6f9bfcd050356ba25984ccd6fd2c
3028a3f7a573709e2e395a7886d7a92f877a9bc69051717745650c12695187cd

HTTP Headers

GET /popunder.gif HTTP/1.1
Host: ncukankingwith.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://sakurafile.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 17 Apr 2024 08:02:36 GMT
content-type: image/gif
access-control-allow-origin: *
pragma: public
cache-control: public, max-age=604800, immutable
cf-cache-status: HIT
age: 160799
last-modified: Mon, 15 Apr 2024 11:22:37 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=q1VxWbDYFwUb0C9%2BoRhomkR9Je%2BL7xOLYUEpAb1db9KwUSvtChpz7S6%2Bdj1vDNrwCeWtAX3dZjl%2FKCmE4IjwoqYA6kWBPnv3Jt9f3s59Ex7%2BaKoUkGaesYuhnw%2FtVBLt7Mo5%2FCJl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875ae4d158de6de8-CPH
alt-svc: h3=":443"; ma=86400

accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=ARZ0qKI4Xy_lxyt69nJm5OZ09O9nsfwTi-9qOuCK_58xtPNbCy94_lo3fpgRm_evChtnQu1H13mXPA

64.233.165.84

302 Found

429 B

URL GET HTTP/2
accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=ARZ0qKI4Xy_lxyt69nJm5OZ09O9nsfwTi-9qOuCK_58xtPNbCy94_lo3fpgRm_evChtnQu1H13mXPA
IP
64.233.165.84:443
ASN
#15169 GOOGLE

Requested by
http://sakurafile.com/k9prom3m1bfq/Inuyasha_v01-10.zip
Certificate
IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
FingerprintCC:CB:DD:14:30:B0:75:6A:EE:1D:20:F1:9E:C5:DD:5F:DD:68:4F:7B
ValidityMon, 18 Mar 2024 20:38:53 GMT - Mon, 10 Jun 2024 20:38:52 GMT

File type
HTML document, ASCII text, with very long lines (406)
Size
429 B (429 bytes)
Hash
27b5289a9cd92bf082816bac0c67c032
0cfb5263ae510ae02160c07ba954dbd8434b5ce1
8327332b01d8df6d23667baf35825853e5fd0d155345e9c01e463930effe4cc2

HTTP Headers

GET /InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=ARZ0qKI4Xy_lxyt69nJm5OZ09O9nsfwTi-9qOuCK_58xtPNbCy94_lo3fpgRm_evChtnQu1H13mXPA HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://sakurafile.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
content-type: text/html; charset=UTF-8
set-cookie: __Host-GAPS=1:WI_CEoD5j7lWT4pcYgzulhsXDPo5hw:-SFmb-A4Fp84IGwL;Path=/;Expires=Fri, 17-Apr-2026 08:02:36 GMT;Secure;HttpOnly;Priority=HIGH
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 17 Apr 2024 08:02:36 GMT
location: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=ARZ0qKLOx9wJdCSZEEWrhnhb01RJkPcyHCq3ngOQXiqNnyH2AZkmbDvLAkPId8t6rJYKdSzmp2Y15Q&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-33439932%3A1713340956454594&theme=mn&ddm=0
strict-transport-security: max-age=31536000; includeSubDomains
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-security-policy: script-src 'nonce-IenjdDjuNIH4RxIsJIy0pA' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport, require-trusted-types-for 'script';report-uri /cspreport
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 429
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

d2fbvay81k4ji3.cloudfront.net/xSUNBM04qLC9VcT0qJQ53fXNwAHZvMzNWKHQwIFg7OyInWiIsbSJcI28pMlwgOX40cTYOJhByCBwMIAMqGGU1SSp0c2dfLyckfBUrJyB8AmgoJyMOem83MVwldCcgWzYkOiZfID1lNFJzJCw7WiIlImQBCHxtcRZ8eWs5An9scAMWfHkvKF07MWZzAzZxdR-4FemxwAxZ8eTE3Fn0IencdfmBmcwMpLCAqXGt7BXMDf3lzcAN/bHFxVSc7JidcNmxxBwp4Z3NnRnN4

18.155.152.96

477 B

URL
d2fbvay81k4ji3.cloudfront.net/xSUNBM04qLC9VcT0qJQ53fXNwAHZvMzNWKHQwIFg7OyInWiIsbSJcI28pMlwgOX40cTYOJhByCBwMIAMqGGU1SSp0c2dfLyckfBUrJyB8AmgoJyMOem83MVwldCcgWzYkOiZfID1lNFJzJCw7WiIlImQBCHxtcRZ8eWs5An9scAMWfHkvKF07MWZzAzZxdR-4FemxwAxZ8eTE3Fn0IencdfmBmcwMpLCAqXGt7BXMDf3lzcAN/bHFxVSc7JidcNmxxBwp4Z3NnRnN4
IP
18.155.152.96:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (682), with no line terminators
Size
477 B (477 bytes)
Hash
1d37619136e3763820b7201a21be26b7
53208f4791e4331f00f9acb922c38487925a83da
36b92ea53f828b3460c9ac767dd079e275f7e6a2783827a1aa3615bb2cd4819d

HTTP Headers

GET /xSUNBM04qLC9VcT0qJQ53fXNwAHZvMzNWKHQwIFg7OyInWiIsbSJcI28pMlwgOX40cTYOJhByCBwMIAMqGGU1SSp0c2dfLyckfBUrJyB8AmgoJyMOem83MVwldCcgWzYkOiZfID1lNFJzJCw7WiIlImQBCHxtcRZ8eWs5An9scAMWfHkvKF07MWZzAzZxdR-4FemxwAxZ8eTE3Fn0IencdfmBmcwMpLCAqXGt7BXMDf3lzcAN/bHFxVSc7JidcNmxxBwp4Z3NnRnN4 HTTP/1.1
Host: d2fbvay81k4ji3.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://positioner.info/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Length: 477
Connection: keep-alive
Date: Wed, 17 Apr 2024 08:02:36 GMT
access-control-allow-origin: *
Cache-Control: max-age=31556926
Content-Encoding: gzip
X-Cache: Miss from cloudfront
Via: 1.1 f3968aa5e1a5f92728347bfbfbd22034.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: HAM50-P2
X-Amz-Cf-Id: SERzaN9OESMziReCf46Hy-LJD4F9d4zA1LL8wAFJgbXTF-DEgXIXzw==

d2fbvay81k4ji3.cloudfront.net/oWWZNVDI6CSMyDS0PKWkLalZ8ZgN/Fj8xVGQVLD9HKwcrPV48SC47X38MPjtcKVsOP140AjUEUSlAOS5WZFZrOFM3AXByVzcFcGUUOAIvaQZ/Ej07WWQCLDxKNB8qOFwtQDg1DzQJNz1eNQdoZnRsSH1xAGlONWUDfFUPcQBpCiQ6RyFDf2RKYVASYgZ8VQ-9xAGkUO3EBGF97egJwQ39kVTwFJjsXayB/ZANpVnxkA3xUfTJbKwMrO0p8VAttBHdWayEPaA

18.155.152.96

479 B

URL
d2fbvay81k4ji3.cloudfront.net/oWWZNVDI6CSMyDS0PKWkLalZ8ZgN/Fj8xVGQVLD9HKwcrPV48SC47X38MPjtcKVsOP140AjUEUSlAOS5WZFZrOFM3AXByVzcFcGUUOAIvaQZ/Ej07WWQCLDxKNB8qOFwtQDg1DzQJNz1eNQdoZnRsSH1xAGlONWUDfFUPcQBpCiQ6RyFDf2RKYVASYgZ8VQ-9xAGkUO3EBGF97egJwQ39kVTwFJjsXayB/ZANpVnxkA3xUfTJbKwMrO0p8VAttBHdWayEPaA
IP
18.155.152.96:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (677), with no line terminators
Size
479 B (479 bytes)
Hash
1305a3a1e77413db4b480208da034cde
64e2697797daf0a908372c44a3eb0cf7bd176f25
d8b30c780a26f1e28b78068a633ff282e2c9146e851240f4df96ac1d0d066b92

HTTP Headers

GET /oWWZNVDI6CSMyDS0PKWkLalZ8ZgN/Fj8xVGQVLD9HKwcrPV48SC47X38MPjtcKVsOP140AjUEUSlAOS5WZFZrOFM3AXByVzcFcGUUOAIvaQZ/Ej07WWQCLDxKNB8qOFwtQDg1DzQJNz1eNQdoZnRsSH1xAGlONWUDfFUPcQBpCiQ6RyFDf2RKYVASYgZ8VQ-9xAGkUO3EBGF97egJwQ39kVTwFJjsXayB/ZANpVnxkA3xUfTJbKwMrO0p8VAttBHdWayEPaA HTTP/1.1
Host: d2fbvay81k4ji3.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://positioner.info/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Length: 479
Connection: keep-alive
Date: Wed, 17 Apr 2024 08:02:36 GMT
access-control-allow-origin: *
Cache-Control: max-age=31556926
Content-Encoding: gzip
X-Cache: Miss from cloudfront
Via: 1.1 78fbb205d6a3896467f7e69057356150.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: HAM50-P2
X-Amz-Cf-Id: pWBOd0fgeQeSRN0QPg9LZYwppBV5WQOLt0xcVdKpWAU1w5ynymUQFg==

accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=ARZ0qKLOx9wJdCSZEEWrhnhb01RJkPcyHCq3ngOQXiqNnyH2AZkmbDvLAkPId8t6rJYKdSzmp2Y15Q&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-33439932%3A1713340956454594&theme=mn&ddm=0

64.233.165.84

403 Forbidden

1.3 kB

URL GET HTTP/2
accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=ARZ0qKLOx9wJdCSZEEWrhnhb01RJkPcyHCq3ngOQXiqNnyH2AZkmbDvLAkPId8t6rJYKdSzmp2Y15Q&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-33439932%3A1713340956454594&theme=mn&ddm=0
IP
64.233.165.84:443
ASN
#15169 GOOGLE

Requested by
http://sakurafile.com/k9prom3m1bfq/Inuyasha_v01-10.zip
Certificate
IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
FingerprintCC:CB:DD:14:30:B0:75:6A:EE:1D:20:F1:9E:C5:DD:5F:DD:68:4F:7B
ValidityMon, 18 Mar 2024 20:38:53 GMT - Mon, 10 Jun 2024 20:38:52 GMT

File type
gzip compressed data, max compression
Size
1.3 kB (1311 bytes)
Hash
82e3e7923b1fdb39484fed7e612ab9ff
67dc09a1175c1b82012cba6b6bceb53fd6e5682d
8471d79ab124e34db289e5a8638ac546d0640ddd6be272af0cd234e5f2b01ab1

HTTP Headers

GET /v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=ARZ0qKLOx9wJdCSZEEWrhnhb01RJkPcyHCq3ngOQXiqNnyH2AZkmbDvLAkPId8t6rJYKdSzmp2Y15Q&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-33439932%3A1713340956454594&theme=mn&ddm=0 HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://sakurafile.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 17 Apr 2024 08:02:36 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-opener-policy-report-only: same-origin; report-to="AccountsSignInUi"
report-to: {"group":"AccountsSignInUi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi"}]}
content-security-policy: script-src 'nonce-USP1ThSSpg1ZYmqY50AiRQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist, require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=ARZ0qKKPlCSu4CU5riWU9q6IwF4-OTZ-CAVxzmdkQPsvYRY4_mxvGJbQjL_HhuPITR_jHTZFC37Z7w&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1962140390%3A1713340956447740&theme=mn&ddm=0

64.233.165.84

403 Forbidden

8.3 kB

URL GET HTTP/2
accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=ARZ0qKKPlCSu4CU5riWU9q6IwF4-OTZ-CAVxzmdkQPsvYRY4_mxvGJbQjL_HhuPITR_jHTZFC37Z7w&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1962140390%3A1713340956447740&theme=mn&ddm=0
IP
64.233.165.84:443
ASN
#15169 GOOGLE

Requested by
http://sakurafile.com/k9prom3m1bfq/Inuyasha_v01-10.zip
Certificate
IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
FingerprintCC:CB:DD:14:30:B0:75:6A:EE:1D:20:F1:9E:C5:DD:5F:DD:68:4F:7B
ValidityMon, 18 Mar 2024 20:38:53 GMT - Mon, 10 Jun 2024 20:38:52 GMT

File type
gzip compressed data, max compression
Size
8.3 kB (8318 bytes)
Hash
937ef331c51b386f115e4170974d2043
02199d7062395669b1cbaf7cba400d27d795ea6e
f499f973b66eeaed88299239821f6f48f1aa43b46aa6ad784c46072f187a2393

HTTP Headers

GET /v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=ARZ0qKKPlCSu4CU5riWU9q6IwF4-OTZ-CAVxzmdkQPsvYRY4_mxvGJbQjL_HhuPITR_jHTZFC37Z7w&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1962140390%3A1713340956447740&theme=mn&ddm=0 HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://sakurafile.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 17 Apr 2024 08:02:36 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000; includeSubDomains
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy-report-only: same-origin; report-to="AccountsSignInUi"
content-security-policy: require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport, script-src 'nonce-zefe4oooDPjzWfRnUPpBSQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
report-to: {"group":"AccountsSignInUi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi"}]}
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

pogothere.xyz/asd100.bin

188.114.97.1

200 OK

102 kB

URL GET HTTP/2
pogothere.xyz/asd100.bin
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
http://sakurafile.com/k9prom3m1bfq/Inuyasha_v01-10.zip
Certificate
IssuerGoogle Trust Services LLC
Subjectpogothere.xyz
Fingerprint34:D3:33:F8:49:E2:1E:3E:44:A8:5D:74:68:9C:B8:A0:D5:F8:DD:0B
ValidityWed, 27 Mar 2024 02:15:30 GMT - Tue, 25 Jun 2024 02:15:29 GMT

File type
data
Size
102 kB (102400 bytes)
Hash
4c6426ac7ef186464ecbb0d81cbfcb1e
5a6918eebd9d635e8f632e3ef34e3792b1b5ec13
f627ca4c2c322f15db26152df306bd4f983f0146409b81a4341b9b340c365a16

HTTP Headers

GET /asd100.bin HTTP/1.1
Host: pogothere.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://sakurafile.com/
Origin: http://sakurafile.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 17 Apr 2024 08:02:35 GMT
content-type: binary/octet-stream
access-control-allow-origin: http://sakurafile.com
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
cache-control: max-age=14400
cf-cache-status: HIT
age: 4296
last-modified: Wed, 17 Apr 2024 06:50:59 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5P%2B5XkhtZE%2BILkJpeVscr4INkYEedTOZxwuvsr8dZ2efasJlbl6gT6TZUXUWlavgfAZRQCbNAXQfUeIZvHG6YJ3aqWxHX9x0U1hGDtmh4FJU%2Fd33GqhkZrXQ1P%2BdkMmg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875ae4ce1848abd4-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

pogothere.xyz/asd100.bin

188.114.97.1

200 OK

102 kB

URL GET HTTP/3
pogothere.xyz/asd100.bin
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
http://sakurafile.com/k9prom3m1bfq/Inuyasha_v01-10.zip
Certificate
IssuerGoogle Trust Services LLC
Subjectpogothere.xyz
Fingerprint34:D3:33:F8:49:E2:1E:3E:44:A8:5D:74:68:9C:B8:A0:D5:F8:DD:0B
ValidityWed, 27 Mar 2024 02:15:30 GMT - Tue, 25 Jun 2024 02:15:29 GMT

File type
data
Size
102 kB (102400 bytes)
Hash
4c6426ac7ef186464ecbb0d81cbfcb1e
5a6918eebd9d635e8f632e3ef34e3792b1b5ec13
f627ca4c2c322f15db26152df306bd4f983f0146409b81a4341b9b340c365a16

HTTP Headers

GET /asd100.bin HTTP/1.1
Host: pogothere.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://sakurafile.com/
Origin: http://sakurafile.com
DNT: 1
Connection: keep-alive
Cookie: csu=916108590155468@1@1713340955
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 08:02:36 GMT
content-type: binary/octet-stream
access-control-allow-origin: http://sakurafile.com
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
cache-control: max-age=14400
cf-cache-status: HIT
age: 4297
last-modified: Wed, 17 Apr 2024 06:50:59 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MWqT0fGsVaVRI%2BGmHfK87VxIv3IuCSPTtx1fbcxsLw8XiOR8y5dKzTwJQWPR2U99GoZmAjAKN%2FdsOb7ngF7kPMdR9BGTwsHzmG8n0vadPVhQLzQRpNoJ38HIsUJH1A3z"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875ae4d00ee98f59-CPH
alt-svc: h3=":443"; ma=86400

accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=ARZ0qKJnIxdoV9GM92DZqhrFS8ihg7nvFB36iU_elOpoqBkEg8zQcbR3h_ygyTxVS7oRVMs9jP5A9Q

64.233.165.84

302 Found

0 B

URL GET HTTP/2
accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=ARZ0qKJnIxdoV9GM92DZqhrFS8ihg7nvFB36iU_elOpoqBkEg8zQcbR3h_ygyTxVS7oRVMs9jP5A9Q
IP
64.233.165.84:443
ASN
#15169 GOOGLE

Requested by
http://sakurafile.com/k9prom3m1bfq/Inuyasha_v01-10.zip
Certificate
IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
FingerprintCC:CB:DD:14:30:B0:75:6A:EE:1D:20:F1:9E:C5:DD:5F:DD:68:4F:7B
ValidityMon, 18 Mar 2024 20:38:53 GMT - Mon, 10 Jun 2024 20:38:52 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=ARZ0qKJnIxdoV9GM92DZqhrFS8ihg7nvFB36iU_elOpoqBkEg8zQcbR3h_ygyTxVS7oRVMs9jP5A9Q HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://sakurafile.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
content-type: text/html; charset=UTF-8
set-cookie: __Host-GAPS=1:0kh1BcNUK1wBfTwxVJTOij1IgfxMaA:Wcsmob3xgVe9gjpE;Path=/;Expires=Fri, 17-Apr-2026 08:02:36 GMT;Secure;HttpOnly;Priority=HIGH
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 17 Apr 2024 08:02:36 GMT
location: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=ARZ0qKKPlCSu4CU5riWU9q6IwF4-OTZ-CAVxzmdkQPsvYRY4_mxvGJbQjL_HhuPITR_jHTZFC37Z7w&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1962140390%3A1713340956447740&theme=mn&ddm=0
strict-transport-security: max-age=31536000; includeSubDomains
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-security-policy: script-src 'nonce-3h572-BprOgx7t73lM5XYQ' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport, require-trusted-types-for 'script';report-uri /cspreport
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 431
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail

64.233.165.84

302 Found

0 B

URL GET HTTP/2
accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail
IP
64.233.165.84:443
ASN
#15169 GOOGLE

Requested by
http://sakurafile.com/k9prom3m1bfq/Inuyasha_v01-10.zip
Certificate
IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
FingerprintCC:CB:DD:14:30:B0:75:6A:EE:1D:20:F1:9E:C5:DD:5F:DD:68:4F:7B
ValidityMon, 18 Mar 2024 20:38:53 GMT - Mon, 10 Jun 2024 20:38:52 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://sakurafile.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
content-type: application/binary
set-cookie: __Host-GAPS=1:3uncQyYgZ3ikEPcZVJLWc5tMQVPZXQ:ekvhP5phR7SUlXU5; Expires=Fri, 17-Apr-2026 08:02:36 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 17 Apr 2024 08:02:36 GMT
location: https://accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=ARZ0qKJnIxdoV9GM92DZqhrFS8ihg7nvFB36iU_elOpoqBkEg8zQcbR3h_ygyTxVS7oRVMs9jP5A9Q
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: script-src 'nonce-juaMaMmSS_Y81soSWUQEQg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: unsafe-none
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (7)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (37)

URL User Request GET HTTP/1.1

IP

ASN

File type