Report - www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html

Report Overview

Visited public
2024-09-19 04:43:30
Tags
URL
www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Finishing URL
www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
IP / ASN
172.67.69.252
#13335 CLOUDFLARENET
Title
(1) New Message!

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.google.com	7	1997-09-15	2015-05-10 13:11:19	2024-09-15 18:22:04	4.6 kB	110 kB	142.250.74.164
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2024-09-19 04:48:40	3.2 kB	104 kB	216.58.207.227
o.pki.goog	unknown	2016-06-13	2024-04-24 13:44:57	2024-09-18 18:12:43	1.6 kB	3.5 kB	142.250.74.131
proftrafficcounter.com	unknown	2023-11-16	2023-11-21 09:55:14	2024-09-18 18:11:32	878 B	852 B	18.197.55.43
recordedthereby.com	unknown	2024-05-08	2024-05-14 07:24:53	2024-09-18 18:10:38	404 B	28 kB	188.114.96.1
r10.o.lencr.org	unknown	2020-06-29	2024-06-06 21:45:11	2024-09-18 18:12:18	2.6 kB	7.1 kB	23.36.77.32
ocsp.r2m03.amazontrust.com	unknown	2007-05-11	2023-02-21 01:06:24	2024-09-19 03:34:49	676 B	1.9 kB	54.230.218.11
capaciousdrewreligion.com	unknown	2023-11-07	2023-11-27 13:27:45	2024-09-18 18:10:38	420 B	377 B	185.196.197.72
cdn.creative-stat1.com	unknown	2024-08-20	2024-08-27 20:37:01	2024-09-18 15:49:23	2.3 kB	103 kB	188.114.96.1
cdn.storageimagedisplay.com	unknown	2024-09-13	2024-09-17 16:43:04	2024-09-18 15:31:08	922 B	191 kB	45.133.44.2
unseenreport.com	unknown	2022-03-30	2022-03-30 16:33:17	2024-09-18 17:03:24	1.5 kB	942 B	192.243.59.20
r11.o.lencr.org	unknown	2020-06-29	2024-06-07 07:43:57	2024-09-18 18:12:05	2.3 kB	6.2 kB	23.36.76.226
christmascalled.com	unknown	2024-02-05	2024-02-06 22:49:45	2024-02-10 16:35:11	916 B	52 kB	192.243.59.13
www.gstatic.com	unknown	2008-02-11	2016-07-26 11:37:06	2024-09-18 18:12:02	4.9 kB	930 kB	142.250.74.35
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2024-09-19 04:49:51	418 B	7.6 kB	216.58.207.234
www.file-upload.net	unknown	2005-01-01	2013-07-11 11:53:14	2024-04-17 11:44:10	12 kB	168 kB	172.67.69.252
examplesclasp.com	unknown	2024-08-12	2024-08-12 15:18:01	2024-09-18 18:11:36	8.0 kB	13 kB	172.240.253.132
cdn.show-sb.com	unknown	2024-08-20	2024-09-02 11:58:44	2024-09-18 16:05:39	490 B	1.2 kB	104.21.95.140

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-09-18	medium	examplesclasp.com	Sinkholed
2024-09-18	medium	examplesclasp.com	Sinkholed
2024-09-18	medium	examplesclasp.com	Sinkholed
2024-09-18	medium	examplesclasp.com	Sinkholed
2024-09-18	medium	unseenreport.com	Sinkholed
2024-09-18	medium	unseenreport.com	Sinkholed
2024-09-18	medium	examplesclasp.com	Sinkholed
2024-09-18	medium	examplesclasp.com	Sinkholed
2024-09-18	medium	examplesclasp.com	Sinkholed
2024-09-18	medium	examplesclasp.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (27)

	URL	From	Size	First Seen	Last Seen
	www.file-upload.net/byteflex/bf.js	ScriptElement	22 kB	2023-03-07	2025-03-16
Pretty URL www.file-upload.net/byteflex/bf.js IP 172.67.69.252 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:39 Last Seen2025-03-16 18:17 Times Seen38 Hash ca8069c7fc1f480d1d1e7c145b8766ad 3668be82e619922af9827390a9cf1964c268701f cf7bcef3da9b76eb9ce2747e411068faa92f43e3b69b257c7bc84eeffa749f64 Loading...

	www.file-upload.net/include/cookie-consent.js	ScriptElement	110 kB	2023-03-07	2025-03-16
Pretty URL www.file-upload.net/include/cookie-consent.js IP 172.67.69.252 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:39 Last Seen2025-03-16 18:17 Times Seen39 Hash c5ed86b8862d3254bc8c9383efd54552 561793df221bb3a3425e14d804fe0c3623b6d5fd 9ba915311d044df920a3cf05259659f562ba103cf516f72a2ff842e7fee89522 Loading...

	capaciousdrewreligion.com/advertisers.js	ScriptElement	0 B	0001-01-01	2025-05-07
Pretty URL capaciousdrewreligion.com/advertisers.js IP 185.196.197.72 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen0001-01-01 00:00 Last Seen2025-05-07 03:59 Times Seen4622525 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	cdn.creative-stat1.com/sb/ssp/interstitial/center_banner/2/js/jquery.min.js	ScriptElement	84 kB	2023-03-07	2025-05-06
Pretty URL cdn.creative-stat1.com/sb/ssp/interstitial/center_banner/2/js/jquery.min.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10 Last Seen2025-05-06 13:06 Times Seen1294 Hash 6326c600df01e3bfb9b40e1aa08176f8 6b4fb754d29b297b539bf62ba9b4eaf0f33f314a df34524351c5fabc921a89183b5da5667aebd7b9e9a1c52255c76ff722935ea3 Loading...

	www.google.com/js/bg/iEboSLOEGWLfUwE4vWMJoC4GcDs_D5t26QLNgGwKBCM.js	ScriptElement	19 kB	2024-09-11	2024-09-21
Pretty URL www.google.com/js/bg/iEboSLOEGWLfUwE4vWMJoC4GcDs_D5t26QLNgGwKBCM.js IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-09-11 09:53 Last Seen2024-09-21 08:06 Times Seen416 Hash c2fcaccd99acd8a3d0dc176c28d75b7b 776c98d8426568cb054fce26bc8d520c84eac24a 8846e848b3841962df530138bd6309a02e06703b3f0f9b76e902cd806c0a0423 Loading...

	unknown	ScriptElement	1.3 kB	2024-08-17	2024-10-17
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-17 20:37 Last Seen2024-10-17 14:42 Times Seen5 Hash 2a01751b2d9ed974d496828a8c952380 43380cb0102ee602e7b4df5fdd4055bf91642453 6597c8fe9b75cb61d6c1a06b8ea670eec08d2c9c75826fed6ff03181376abc92 Loading...

	www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html	ScriptElement	310 B	2023-03-07	2025-03-16
Pretty URL www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html IP 172.67.69.252 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:39 Last Seen2025-03-16 18:17 Times Seen36 Hash 5dc88cf7e217c8a9f4a118e1c333bf12 b69700d1e111cc14e424d39b1d689427f1f13372 0ef03d8461de3d0133b28b168608ba25783396bbd3f91c3e856080f61538ed7c Loading...

	recordedthereby.com/sfp.js	ScriptElement	85 kB	2024-05-17	2025-01-21
Pretty URL recordedthereby.com/sfp.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-17 16:43 Last Seen2025-01-21 11:22 Times Seen13574 Hash 7e3e44049654b6e244c1777e68ffb8e7 8f2a8298666d607afd92a0baa362ef4dc9ccd039 4acac8b8ff23671d365150818f3c39bbbfa08b1a1842d73de5933e0fea26454b Loading...

	christmascalled.com/api/posts?token=Lzg0LzRhLzcxLzg0NGE3MWZkZjBlMzBjMWI4MTM5NWRiNTU0NzNhNzM3Lmpz	ScriptElement	96 kB	2024-09-19	2024-10-06
Pretty URL christmascalled.com/api/posts?token=Lzg0LzRhLzcxLzg0NGE3MWZkZjBlMzBjMWI4MTM5NWRiNTU0NzNhNzM3Lmpz IP 192.243.59.13 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-09-19 06:43 Last Seen2024-10-06 09:18 Times Seen2 Hash afb12cc320eff6b24f899efa0aec02c5 2f0d19a4aa530507c4369d62b3ba055a79148a66 830a8852bb32d1cfc13e210d2cb6625c309db48ef006ad48fcc44f386ed97eb7 Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LesER4UAAAAAGw1oVKPrLk_AuxiRz548wcKan1w&co=aHR0cHM6Ly93d3cuZmlsZS11cGxvYWQubmV0OjQ0Mw..&hl=en&v=EGbODne6buzpTnWrrBprcfAY&size=invisible&cb=nshwxyykwpxp	ScriptElement	69 B	2023-03-07	2025-05-07
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LesER4UAAAAAGw1oVKPrLk_AuxiRz548wcKan1w&co=aHR0cHM6Ly93d3cuZmlsZS11cGxvYWQubmV0OjQ0Mw..&hl=en&v=EGbODne6buzpTnWrrBprcfAY&size=invisible&cb=nshwxyykwpxp IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-05-07 03:55 Times Seen115880 Hash 45ecf7458f42da80ac248ad42d610372 a5b3edf8328769bc754e6e616a957ceed4fdadd7 75867e75b209895995014b43c3d711476e3437481e5fbec91a4da674302558bf Loading...

	www.gstatic.com/recaptcha/releases/EGbODne6buzpTnWrrBprcfAY/recaptcha__en.js	ScriptElement	551 kB	2024-09-05	2024-11-18
Pretty URL www.gstatic.com/recaptcha/releases/EGbODne6buzpTnWrrBprcfAY/recaptcha__en.js IP 142.250.74.35 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-09-05 17:46 Last Seen2024-11-18 06:57 Times Seen4595 Hash c7be68088b0a823f1a4c1f77c702d1b4 05d42d754afd21681c0e815799b88fbe1fbabf4e 4943e91f7f53318d481ca07297395abbc52541c2be55d7276ecda152cd7ad9c3 Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LesER4UAAAAAGw1oVKPrLk_AuxiRz548wcKan1w&co=aHR0cHM6Ly93d3cuZmlsZS11cGxvYWQubmV0OjQ0Mw..&hl=en&v=EGbODne6buzpTnWrrBprcfAY&size=invisible&cb=nshwxyykwpxp	ScriptElement	42 kB	2024-09-19	2024-09-19
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LesER4UAAAAAGw1oVKPrLk_AuxiRz548wcKan1w&co=aHR0cHM6Ly93d3cuZmlsZS11cGxvYWQubmV0OjQ0Mw..&hl=en&v=EGbODne6buzpTnWrrBprcfAY&size=invisible&cb=nshwxyykwpxp IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-09-19 19:40 Last Seen2024-09-19 19:40 Times Seen1 Hash 507a91ed0327042e06ebf882635ef175 dfb827860236a36704ecfe8024a8bffaf28828cf 5bd5ac89df52e7568d90fd43359fe631d8970408d47f265fcae236969ff824d7 Loading...

	www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html	ScriptElement	57 B	2023-03-07	2025-05-07
Pretty URL www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html IP 172.67.69.252 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:06 Last Seen2025-05-07 01:12 Times Seen9594 Hash 2a2781f9bb6302c2f96df0d1e96ef524 796bb90146495848c0c479533c367edadb94f1a9 1b60af0ce49d65e8b1006457c16883d60e53a0054bb157c57c3b03a82ee9964d Loading...

	www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html	ScriptElement	708 B	2024-09-19	2024-09-19
Pretty URL www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html IP 172.67.69.252 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-09-19 19:40 Last Seen2024-09-19 19:40 Times Seen1 Hash 5acc20659bb54b7397d231998922d9de 52b6b1d92f8011b6de61bac75719fa716a6b6a30 4c641fcce9410f4f0e1c73a2b27331d2001c3e7fa8e8ba4fea93478ad28899bd Loading...

	www.file-upload.net/js/jquery-1.7.2.min.js	ScriptElement	95 kB	2023-03-07	2025-05-07
Pretty URL www.file-upload.net/js/jquery-1.7.2.min.js IP 172.67.69.252 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-05-07 03:43 Times Seen7978 Hash b8d64d0bc142b3f670cc0611b0aebcae abcd2ba13348f178b17141b445bc99f1917d47af 47b68dce8cb6805ad5b3ea4d27af92a241f4e29a5c12a274c852e4346a0500b4 Loading...

	www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html	ScriptElement	296 B	2023-03-07	2025-03-16
Pretty URL www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html IP 172.67.69.252 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:39 Last Seen2025-03-16 18:17 Times Seen37 Hash 3424e78249e71733a5c57dd9ceca1b15 6b7f854b9a922916413f12a4ce1025402ce4e5b5 6fae4ee14b7c7ad1b6d78dd2c3fa62cfcf9cb3c4b1ef5a8f88815dcd0ba701ca Loading...

	christmascalled.com/f5/29/02/f5290245e2d0af25a9b4828613ce8328.js	ScriptElement	44 kB	2024-09-19	2024-09-19
Pretty URL christmascalled.com/f5/29/02/f5290245e2d0af25a9b4828613ce8328.js IP 192.243.59.13 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-09-19 19:40 Last Seen2024-09-19 19:40 Times Seen1 Hash 3e6b430c219b581a0bb29c61332461aa ca6e71b06b5228304bc9bf1e453e11ac7455a952 781fdf84ab5033c3e676afc18bf427a643caca7b75d8930b860170d8b16d730f Loading...

	www.file-upload.net/js/custom.js	ScriptElement	266 B	2023-03-07	2025-03-16
Pretty URL www.file-upload.net/js/custom.js IP 172.67.69.252 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:39 Last Seen2025-03-16 18:17 Times Seen38 Hash 6cba1104979a33c88429c6e9d9889d97 a80c2fe7e66df58eb1c40a85eb9e0e0f63e4e1f3 7f30f44c78b17c1a261b4d52c719406ef9f8df4569dce452e22dcf5198a2c6ab Loading...

	www.google.com/recaptcha/api2/bframe?hl=en&v=EGbODne6buzpTnWrrBprcfAY&k=6LesER4UAAAAAGw1oVKPrLk_AuxiRz548wcKan1w	ScriptElement	0 B	0001-01-01	2025-05-07
Pretty URL www.google.com/recaptcha/api2/bframe?hl=en&v=EGbODne6buzpTnWrrBprcfAY&k=6LesER4UAAAAAGw1oVKPrLk_AuxiRz548wcKan1w IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-05-07 03:59 Times Seen4622525 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.file-upload.net/include/werbebanner-ad.js	ScriptElement	25 B	2023-03-07	2025-03-16
Pretty URL www.file-upload.net/include/werbebanner-ad.js IP 172.67.69.252 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:39 Last Seen2025-03-16 18:17 Times Seen38 Hash 7c6bd0b89a8dc214296b7dbcea7d1a66 65e461ce823a6bb0597c361d65dc994f4eb3dbe7 2bcd607d4aa3c03220e7e0ccfd77f57bd8f2717627e933061f8dbe5b9d47dd71 Loading...

	www.google.com/recaptcha/api.js	ScriptElement	870 B	2024-09-06	2024-10-04
Pretty URL www.google.com/recaptcha/api.js IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-09-06 03:02 Last Seen2024-10-04 11:27 Times Seen1211 Hash db3f5a748364d84b2b5f75e3d4e851d0 17b34ff20d429abee726b4b74530e5af2819f7bc 343ed5ecd144d781de67aa8638b1ca4fce5772faedbb72720daacb250884f4e1 Loading...

	www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html	ScriptElement	205 B	2023-05-12	2025-03-16
Pretty URL www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html IP 172.67.69.252 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-12 18:13 Last Seen2025-03-16 18:17 Times Seen34 Hash 0a28fe441c05728c63fe54e3df4dc8f8 3a1531b77b5a1d6994c10c37283942a11980b94a a7c4437986454729b115756a34e2b7a112098f4cc624cdb8da717e35f35c1052 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 3429b8143ada0521beeb524097ba5644	21 kB	2024-09-18 20:04	2024-09-19 19:46
Pretty Observations First Seen2024-09-18 20:04 Last Seen2024-09-19 19:46 Times Seen2 Hash 3429b8143ada0521beeb524097ba5644 9a094a8f5d981a32b0d4a91df7ea4c795a1821ec 2aa722a2d8a28d231110bc220d9a84d36911527d966edc48c7738b7c4a778d0c Loading...

	#2 Eval - 99d96e68a6c10d90515cb0690ead6894	64 B	2024-09-11 09:53	2024-09-21 08:06
Pretty Observations First Seen2024-09-11 09:53 Last Seen2024-09-21 08:06 Times Seen411 Hash 99d96e68a6c10d90515cb0690ead6894 ef51a42dd8f4ee49c9580e0f39a66cbb4fa790f3 1a043cd45fbdd249144f8eb224cba4364261f2f69451f85832a1d146160cbd04 Loading...

	#3 Eval - 0cbbd148837d2ebeeda7d789b2ae7646	22 B	2024-09-11 09:53	2024-09-21 08:06
Pretty Observations First Seen2024-09-11 09:53 Last Seen2024-09-21 08:06 Times Seen413 Hash 0cbbd148837d2ebeeda7d789b2ae7646 b7006a7edc1cb78962852f5de02046266e4fa45d 406301b8fa0aa403145b86e6875790245c5d5e98cae1d665c55d0e9c866601c0 Loading...

	#4 Eval - 059c2688632a4b0f5250cc911bc77e33	23 kB	2024-09-19 19:40	2024-09-19 19:40
Pretty Observations First Seen2024-09-19 19:40 Last Seen2024-09-19 19:40 Times Seen1 Hash 059c2688632a4b0f5250cc911bc77e33 339562a28e88f0dc9d02e267d3c9e6912894fd12 5da7b8966bde7cc434789d3e1c07e5ffcb94355bbbcb88e2ecd0c0c5b4618ef0 Loading...

	#5 Eval - 596b8b59cf029fbedb0c74773d273c51	22 B	2024-09-11 09:53	2024-09-21 08:06
Pretty Observations First Seen2024-09-11 09:53 Last Seen2024-09-21 08:06 Times Seen411 Hash 596b8b59cf029fbedb0c74773d273c51 e2d77fde49752c922d777141a3bfc5ac554f7af1 42c5c68ff3a6e03f5919f9c9a52bc7a3309243c6a26d0adc0008ec36c1d61e1b Loading...

HTTP Transactions (91)

URL IP Response Size

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
a4e61c096fb8a0f28561b209588076fe
84634c409a230cba663826d593379499fce545a8
17f85499c27b8bafbc202dc51cd5e7fa80be0988a0d820dbf8a4c81344f26da9

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "17F85499C27B8BAFBC202DC51CD5E7FA80BE0988A0D820DBF8A4C81344F26DA9"
Last-Modified: Tue, 17 Sep 2024 12:20:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2919
Expires: Thu, 19 Sep 2024 05:31:39 GMT
Date: Thu, 19 Sep 2024 04:43:00 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
7f94384c88afd251a59fa1bd27d01a3d
4702ce94766111cd58b4a6e0a642ee2380a51013
48ddf84345fb7c618dd7e3ab12b5f393cc02d5854e392b617ea7d751c8c957b0

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "48DDF84345FB7C618DD7E3AB12B5F393CC02D5854E392B617EA7D751C8C957B0"
Last-Modified: Wed, 18 Sep 2024 09:19:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3013
Expires: Thu, 19 Sep 2024 05:33:13 GMT
Date: Thu, 19 Sep 2024 04:43:00 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
062d67704f118f4c5b0b8821c4819e2b
01aa11357aa48d1e7be8cb7d58c31c981efb8857
a1028cb2362af80a927789dee7d84700d6113ef88d802d8662123f349dfc0e65

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "A1028CB2362AF80A927789DEE7D84700D6113EF88D802D8662123F349DFC0E65"
Last-Modified: Thu, 19 Sep 2024 00:15:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13137
Expires: Thu, 19 Sep 2024 08:21:57 GMT
Date: Thu, 19 Sep 2024 04:43:00 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
01dd2ed81ace2da1f35a1168f05c1a14
2bbb9554f114bc82c6c6d76652f68804596134e3
095994704e8d5a748194ff92bc91a60bf45b69218cdcbcbc6a46c6fbda9b8e46

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "095994704E8D5A748194FF92BC91A60BF45B69218CDCBCBC6A46C6FBDA9B8E46"
Last-Modified: Tue, 17 Sep 2024 14:33:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11247
Expires: Thu, 19 Sep 2024 07:50:28 GMT
Date: Thu, 19 Sep 2024 04:43:01 GMT
Connection: keep-alive

www.file-upload.net/styles/styles.css

172.67.69.252

200 OK

5.3 kB

URL GET HTTP/2
www.file-upload.net/styles/styles.css
IP
172.67.69.252:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Certificate
IssuerGoogle Trust Services
Subjectfile-upload.net
Fingerprint63:F7:CF:98:C0:B7:39:66:0D:CE:82:DB:7A:B7:0C:9C:14:19:E9:B8
ValidityThu, 12 Sep 2024 03:57:43 GMT - Wed, 11 Dec 2024 03:57:42 GMT

File type
assembler source, ASCII text, with very long lines (407), with CRLF line terminators
Size
5.3 kB (5272 bytes)
Hash
8b6481f5dd5eabe733c715be67e20fd7
04858e9ee054e29f6c206ac36651a070eb97262c
0fb8929c04e20ea8542b2bdc367bb13842acc3487e9c7c34523fad893c2a6ad6

HTTP Headers

GET /styles/styles.css HTTP/1.1
Host: www.file-upload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Cookie: PHPSESSID=oa14ceo84po6f3snqh62k6lagn
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 19 Sep 2024 04:43:01 GMT
content-type: text/css
content-length: 5272
last-modified: Mon, 04 Jan 2021 23:04:16 GMT
etag: "690a-5b81b1bf34d63-gzip"
cache-control: max-age=2678400
expires: Thu, 19 Sep 2024 19:49:49 GMT
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
age: 31992
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JLYXThNwRwx4BlXpnBNSyMvzJRmZrrhMK5YGKE4%2B9Zcxjvo9MK3kCuZyfns8bohl4LbzPG7Z2aI6Ao6HcZF1nWaL9UBj9o0qBKI3ToSxp9YHfJtwW5tZpF7mHh1XuFzVY5n2qKA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8c56e9961d850b31-OSL
X-Firefox-Spdy: h2

www.file-upload.net/images/file-upload.png

172.67.69.252

200 OK

9.9 kB

URL GET HTTP/2
www.file-upload.net/images/file-upload.png
IP
172.67.69.252:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Certificate
IssuerGoogle Trust Services
Subjectfile-upload.net
Fingerprint63:F7:CF:98:C0:B7:39:66:0D:CE:82:DB:7A:B7:0C:9C:14:19:E9:B8
ValidityThu, 12 Sep 2024 03:57:43 GMT - Wed, 11 Dec 2024 03:57:42 GMT

File type
PNG image data, 309 x 46, 8-bit/color RGBA, non-interlaced
Size
9.9 kB (9880 bytes)
Hash
f03db94b751b6b480090dac48d8d9b26
28fbbd69d759d02aa6b99119de4c31aad5e29e9e
75fbe717629d2aa1a45ba6b3da35090acd83d378479dd92aa0f144ffb9527514

HTTP Headers

GET /images/file-upload.png HTTP/1.1
Host: www.file-upload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Cookie: PHPSESSID=oa14ceo84po6f3snqh62k6lagn
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 19 Sep 2024 04:43:01 GMT
content-type: image/png
content-length: 9880
last-modified: Mon, 09 Sep 2013 20:40:20 GMT
etag: "2698-4e5f96595a509"
cache-control: max-age=2678400
expires: Sat, 19 Oct 2024 19:49:49 GMT
cf-cache-status: HIT
age: 31992
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=b9bOfLGyXeJR0Q4fiDfirkUSHHL%2BjUVYWImMerBaQsMZY9TBU2p6gdYqkGuKQO0dcbaG176PZYEqqmUizUYizWmYE8wRl0sLwiN4ZVpz%2BmxMG6%2BrHhl2IGHVrV1LgtMRn%2FUwX00%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8c56e9961d8c0b31-OSL
X-Firefox-Spdy: h2

www.file-upload.net/images/us.png

172.67.69.252

200 OK

609 B

URL GET HTTP/2
www.file-upload.net/images/us.png
IP
172.67.69.252:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Certificate
IssuerGoogle Trust Services
Subjectfile-upload.net
Fingerprint63:F7:CF:98:C0:B7:39:66:0D:CE:82:DB:7A:B7:0C:9C:14:19:E9:B8
ValidityThu, 12 Sep 2024 03:57:43 GMT - Wed, 11 Dec 2024 03:57:42 GMT

File type
PNG image data, 16 x 11, 8-bit/color RGB, non-interlaced
Size
609 B (609 bytes)
Hash
968591e0050981be9fa94bd2597afb48
dd9e149e2b5ad59dd8b4b262f5fdeb5cc10ecf43
36cce5cae3d2e0045b2b2b6cbffdad7a0aba3e99919cc219bbf0578efdc45585

HTTP Headers

GET /images/us.png HTTP/1.1
Host: www.file-upload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Cookie: PHPSESSID=oa14ceo84po6f3snqh62k6lagn
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 19 Sep 2024 04:43:01 GMT
content-type: image/png
content-length: 609
last-modified: Mon, 09 Sep 2013 20:40:54 GMT
etag: "261-4e5f967958fa6"
cache-control: max-age=2678400
expires: Tue, 15 Oct 2024 15:02:17 GMT
cf-cache-status: HIT
age: 394844
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=z4VNSncS%2FM1VHiazprm1yy0f15VeYb2tth4Ps35XcQdDQ0AJ9NQFaTp%2BaMAVZWxgusKdi96pyLeud77mEzjBne2Ng7hguQKsO%2Fq75s8UltzmxZiBeFmp%2F6zRLAqulkgfOuLkAE4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8c56e9961d910b31-OSL
X-Firefox-Spdy: h2

www.file-upload.net/js/jquery-1.7.2.min.js

172.67.69.252

200 OK

34 kB

URL GET HTTP/2
www.file-upload.net/js/jquery-1.7.2.min.js
IP
172.67.69.252:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Certificate
IssuerGoogle Trust Services
Subjectfile-upload.net
Fingerprint63:F7:CF:98:C0:B7:39:66:0D:CE:82:DB:7A:B7:0C:9C:14:19:E9:B8
ValidityThu, 12 Sep 2024 03:57:43 GMT - Wed, 11 Dec 2024 03:57:42 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (32769)
Size
34 kB (33622 bytes)
Hash
b8d64d0bc142b3f670cc0611b0aebcae
abcd2ba13348f178b17141b445bc99f1917d47af
47b68dce8cb6805ad5b3ea4d27af92a241f4e29a5c12a274c852e4346a0500b4

HTTP Headers

GET /js/jquery-1.7.2.min.js HTTP/1.1
Host: www.file-upload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Cookie: PHPSESSID=oa14ceo84po6f3snqh62k6lagn
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 19 Sep 2024 04:43:01 GMT
content-type: application/javascript
content-length: 33622
last-modified: Mon, 09 Sep 2013 20:41:22 GMT
etag: "17278-4e5f969448aeb-gzip"
cache-control: max-age=2678400
expires: Sun, 06 Oct 2024 11:57:34 GMT
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
age: 1183527
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=crSRIq4t1Ojse388Kiv7KgSRJeJb27A3MtU5yPRJfbOIJaXx9QbMIF03%2FdliGWWwt3IeWCrAc2O4al%2FjzFRSPeJZi70%2B2NwYMHhvA5kPnJ%2FbBQY%2Fe42BsJxzb0dbDrdJU6tkiCk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8c56e9961d930b31-OSL
X-Firefox-Spdy: h2

www.file-upload.net/include/werbebanner-ad.js

172.67.69.252

200 OK

25 B

URL GET HTTP/2
www.file-upload.net/include/werbebanner-ad.js
IP
172.67.69.252:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Certificate
IssuerGoogle Trust Services
Subjectfile-upload.net
Fingerprint63:F7:CF:98:C0:B7:39:66:0D:CE:82:DB:7A:B7:0C:9C:14:19:E9:B8
ValidityThu, 12 Sep 2024 03:57:43 GMT - Wed, 11 Dec 2024 03:57:42 GMT

File type
ASCII text, with no line terminators
Size
25 B (25 bytes)
Hash
7c6bd0b89a8dc214296b7dbcea7d1a66
65e461ce823a6bb0597c361d65dc994f4eb3dbe7
2bcd607d4aa3c03220e7e0ccfd77f57bd8f2717627e933061f8dbe5b9d47dd71

HTTP Headers

GET /include/werbebanner-ad.js HTTP/1.1
Host: www.file-upload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Cookie: PHPSESSID=oa14ceo84po6f3snqh62k6lagn
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 19 Sep 2024 04:43:01 GMT
content-type: application/javascript
content-length: 25
last-modified: Mon, 15 Aug 2016 13:54:01 GMT
etag: "19-53a1c90862ada"
cache-control: max-age=2678400
expires: Sun, 06 Oct 2024 11:57:34 GMT
cf-cache-status: HIT
age: 1183527
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MrTkjXhTP2aLe%2BQjbzcTJks0CFXeQKhvFtMD1FqByHE3WEmlngcNLuL4FISlwrWr%2Fls33TVvkot0VuH9qLg%2BC5MnqoWmd%2Fd4KW7x5OPlvTGFmijVM9QuBauSraD5sqfdFMp75Jw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8c56e9961d8f0b31-OSL
X-Firefox-Spdy: h2

www.file-upload.net/js/custom.js

172.67.69.252

200 OK

191 B

URL GET HTTP/2
www.file-upload.net/js/custom.js
IP
172.67.69.252:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Certificate
IssuerGoogle Trust Services
Subjectfile-upload.net
Fingerprint63:F7:CF:98:C0:B7:39:66:0D:CE:82:DB:7A:B7:0C:9C:14:19:E9:B8
ValidityThu, 12 Sep 2024 03:57:43 GMT - Wed, 11 Dec 2024 03:57:42 GMT

File type
JavaScript source, ASCII text, with CRLF line terminators
Size
191 B (191 bytes)
Hash
6cba1104979a33c88429c6e9d9889d97
a80c2fe7e66df58eb1c40a85eb9e0e0f63e4e1f3
7f30f44c78b17c1a261b4d52c719406ef9f8df4569dce452e22dcf5198a2c6ab

HTTP Headers

GET /js/custom.js HTTP/1.1
Host: www.file-upload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Cookie: PHPSESSID=oa14ceo84po6f3snqh62k6lagn
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 19 Sep 2024 04:43:01 GMT
content-type: application/javascript
content-length: 191
last-modified: Mon, 02 Jan 2017 12:52:24 GMT
etag: "10a-5451c05f3dc5a-gzip"
cache-control: max-age=2678400
expires: Tue, 15 Oct 2024 15:02:17 GMT
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
age: 394844
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1xMWzwgb4clh00WWqt9dlrfkj%2BzaQ3JiGNE9hYuHZvEuIR2xZlVtRJHpgIKyzCy0rEsIswcyhOgEp63FGABmQtaUE2t1NnO00kCE4OHakdCVPYfAELAu8ZZC7OJqUgY6S0kZZ5U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8c56e9962d970b31-OSL
X-Firefox-Spdy: h2

www.file-upload.net/byteflex/bf.js

172.67.69.252

200 OK

5.7 kB

URL GET HTTP/2
www.file-upload.net/byteflex/bf.js
IP
172.67.69.252:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Certificate
IssuerGoogle Trust Services
Subjectfile-upload.net
Fingerprint63:F7:CF:98:C0:B7:39:66:0D:CE:82:DB:7A:B7:0C:9C:14:19:E9:B8
ValidityThu, 12 Sep 2024 03:57:43 GMT - Wed, 11 Dec 2024 03:57:42 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with CRLF line terminators
Size
5.7 kB (5676 bytes)
Hash
ca8069c7fc1f480d1d1e7c145b8766ad
3668be82e619922af9827390a9cf1964c268701f
cf7bcef3da9b76eb9ce2747e411068faa92f43e3b69b257c7bc84eeffa749f64

HTTP Headers

GET /byteflex/bf.js HTTP/1.1
Host: www.file-upload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Cookie: PHPSESSID=oa14ceo84po6f3snqh62k6lagn
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 19 Sep 2024 04:43:01 GMT
content-type: application/javascript
content-length: 5676
last-modified: Fri, 13 Jan 2017 10:06:59 GMT
etag: "5790-545f6fe9efa6a-gzip"
cache-control: max-age=2678400
expires: Sun, 06 Oct 2024 11:57:36 GMT
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
age: 1183525
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2HhdMdrIt57fWbeo%2BBRlWJKjZ4NK1Pw5Fmvdifv50BFvAxh5IBWMtPaPUhWCAAruGo9%2BtX7Hx%2FUJ0YqVThTLUAOB69T2z%2FjWZA9nKHASmH%2FRdmoyGLoGGznU6A0QeSJBWMAYIU0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8c56e9962d960b31-OSL
X-Firefox-Spdy: h2

www.file-upload.net/include/cookie-consent.js

172.67.69.252

200 OK

28 kB

URL GET HTTP/2
www.file-upload.net/include/cookie-consent.js
IP
172.67.69.252:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Certificate
IssuerGoogle Trust Services
Subjectfile-upload.net
Fingerprint63:F7:CF:98:C0:B7:39:66:0D:CE:82:DB:7A:B7:0C:9C:14:19:E9:B8
ValidityThu, 12 Sep 2024 03:57:43 GMT - Wed, 11 Dec 2024 03:57:42 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (64407), with no line terminators
Size
28 kB (28400 bytes)
Hash
c5ed86b8862d3254bc8c9383efd54552
561793df221bb3a3425e14d804fe0c3623b6d5fd
9ba915311d044df920a3cf05259659f562ba103cf516f72a2ff842e7fee89522

HTTP Headers

GET /include/cookie-consent.js HTTP/1.1
Host: www.file-upload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Cookie: PHPSESSID=oa14ceo84po6f3snqh62k6lagn
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 19 Sep 2024 04:43:01 GMT
content-type: application/javascript
content-length: 28400
last-modified: Wed, 02 Jun 2021 10:11:59 GMT
etag: "1afbb-5c3c5b06d5495-gzip"
cache-control: max-age=2678400
expires: Tue, 15 Oct 2024 15:02:17 GMT
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
age: 394844
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=O7%2FjhNORNuMKz2t81BaR83DzqsCKRWzWTU32pTq8iAAwzV7fkyeShiiCYFYt2aGg3m%2BZqVKQ6cJESOGEfQMLuHh9tFYByqiC5C%2FrFkZYGP%2F83ypfdvdm3sbqx2kQyLQzPg2l57s%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8c56e9964db70b31-OSL
X-Firefox-Spdy: h2

www.file-upload.net/images/button_login.png

172.67.69.252

200 OK

1.8 kB

URL GET HTTP/2
www.file-upload.net/images/button_login.png
IP
172.67.69.252:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Certificate
IssuerGoogle Trust Services
Subjectfile-upload.net
Fingerprint63:F7:CF:98:C0:B7:39:66:0D:CE:82:DB:7A:B7:0C:9C:14:19:E9:B8
ValidityThu, 12 Sep 2024 03:57:43 GMT - Wed, 11 Dec 2024 03:57:42 GMT

File type
PNG image data, 46 x 22, 8-bit/color RGBA, non-interlaced
Size
1.8 kB (1775 bytes)
Hash
1bac747a20923426c99e91438bdf6878
237147e47a3c941035352f498aa187b38f3086d2
899d6f3d52d1df7e85d4936f3b8f41a2e94349be68d03018be46939cc559da4d

HTTP Headers

GET /images/button_login.png HTTP/1.1
Host: www.file-upload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Cookie: PHPSESSID=oa14ceo84po6f3snqh62k6lagn
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 19 Sep 2024 04:43:01 GMT
content-type: image/png
content-length: 1775
last-modified: Mon, 09 Sep 2013 20:39:49 GMT
etag: "6ef-4e5f963baf5f2"
cache-control: max-age=2678400
expires: Sun, 06 Oct 2024 11:57:34 GMT
cf-cache-status: HIT
age: 1183527
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ioLqQvaao5C6lrXa8V9bO9wFz9x%2FRXrialupKEYsXTz4U5vA%2F0gfB%2BTbRl2zHGTCPEFbpbvoxNAy2J6CSFH9Fj1xM4kkH1VpQyOY97TBC4C3qhmbrwjK3HrxKGcoJoNgrrTmUwk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8c56e9964db90b31-OSL
X-Firefox-Spdy: h2

o.pki.goog/wr2

142.250.74.131

471 B

URL
o.pki.goog/wr2
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
6da37ce619d40a46f3bc49697195018b
ecf09ce82aa185996b1f41373d6b56b938fc5bcc
ac1b64c11af583445b37703bb2e84cd8e989782e2ae498e0f5e457bc496b4bc8

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 19 Sep 2024 04:43:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.file-upload.net/images/body.png

172.67.69.252

200 OK

34 kB

URL GET HTTP/2
www.file-upload.net/images/body.png
IP
172.67.69.252:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Certificate
IssuerGoogle Trust Services
Subjectfile-upload.net
Fingerprint63:F7:CF:98:C0:B7:39:66:0D:CE:82:DB:7A:B7:0C:9C:14:19:E9:B8
ValidityThu, 12 Sep 2024 03:57:43 GMT - Wed, 11 Dec 2024 03:57:42 GMT

File type
PNG image data, 1360 x 699, 8-bit/color RGBA, non-interlaced
Size
34 kB (34539 bytes)
Hash
4aeb3f368f4a9a3665c801b58a2f3dd1
0d0b4c01314f734a227939eea72bbbf664647dfd
8827748e04ca7c60276057a79c72f569631a6e314b6c30d3bccd4f4fd3e9226a

HTTP Headers

GET /images/body.png HTTP/1.1
Host: www.file-upload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.file-upload.net/styles/styles.css
Cookie: PHPSESSID=oa14ceo84po6f3snqh62k6lagn
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 19 Sep 2024 04:43:01 GMT
content-type: image/png
content-length: 34539
last-modified: Mon, 09 Sep 2013 20:39:45 GMT
etag: "86eb-4e5f963760cd1"
cache-control: max-age=2678400
expires: Wed, 16 Oct 2024 23:18:00 GMT
cf-cache-status: HIT
age: 278701
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9ODUuigGsZMaukntgeZbEE6ayiAlwJ84iWFAoZ7hlH7FUSia%2FT0dXKQiMZDqK26e1pNBsKllKKLK5i1KqiWUusP7IAsCofcDfydLQI1qeix42oypw842xnqmK4fAdV3el6clEIE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8c56e9972e7e0b31-OSL
X-Firefox-Spdy: h2

www.file-upload.net/images/mod_login_input.png

172.67.69.252

200 OK

2.3 kB

URL GET HTTP/2
www.file-upload.net/images/mod_login_input.png
IP
172.67.69.252:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Certificate
IssuerGoogle Trust Services
Subjectfile-upload.net
Fingerprint63:F7:CF:98:C0:B7:39:66:0D:CE:82:DB:7A:B7:0C:9C:14:19:E9:B8
ValidityThu, 12 Sep 2024 03:57:43 GMT - Wed, 11 Dec 2024 03:57:42 GMT

File type
PNG image data, 122 x 69, 8-bit/color RGBA, non-interlaced
Size
2.3 kB (2310 bytes)
Hash
25d2191f8455a1b039fe08ecdfda33b3
6b3b130ee5ded3823035d13035255a32120e459e
70f68aaece59db92ea7933d27c8c8f3551a5801c63399e64ae69d22c69e6a82e

HTTP Headers

GET /images/mod_login_input.png HTTP/1.1
Host: www.file-upload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.file-upload.net/styles/styles.css
Cookie: PHPSESSID=oa14ceo84po6f3snqh62k6lagn
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 19 Sep 2024 04:43:01 GMT
content-type: image/png
content-length: 2310
last-modified: Mon, 09 Sep 2013 20:40:35 GMT
etag: "906-4e5f9667d573a"
cache-control: max-age=2678400
expires: Tue, 15 Oct 2024 15:02:17 GMT
cf-cache-status: HIT
age: 394844
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zqmpQPdbGUNI1iP7dlYXKbOa6zNo046tztqt8temWmyTT5vgbe00oANTFWCX4mP%2FNwmEpze5gkdP7ALGPiedFrDjnP0Yq%2BhV2dWE3b33OLNhRbIS1XQNQ5Mn7BKFcVfuS97Hi80%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8c56e9972e840b31-OSL
X-Firefox-Spdy: h2

www.file-upload.net/images/header_menu.png

172.67.69.252

200 OK

1.1 kB

URL GET HTTP/2
www.file-upload.net/images/header_menu.png
IP
172.67.69.252:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Certificate
IssuerGoogle Trust Services
Subjectfile-upload.net
Fingerprint63:F7:CF:98:C0:B7:39:66:0D:CE:82:DB:7A:B7:0C:9C:14:19:E9:B8
ValidityThu, 12 Sep 2024 03:57:43 GMT - Wed, 11 Dec 2024 03:57:42 GMT

File type
PNG image data, 250 x 32, 8-bit/color RGB, non-interlaced
Size
1.1 kB (1100 bytes)
Hash
4825188aca0fbfab7fb8657740eca06b
4a2c1130fd24dd40196c39c7b88e6e96d7ceedc9
39c1ac4a52c526b6bdcf137d12954bbfbf68907ad4d76d89ecff7390b3d4ebae

HTTP Headers

GET /images/header_menu.png HTTP/1.1
Host: www.file-upload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.file-upload.net/styles/styles.css
Cookie: PHPSESSID=oa14ceo84po6f3snqh62k6lagn
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 19 Sep 2024 04:43:01 GMT
content-type: image/png
content-length: 1100
last-modified: Mon, 09 Sep 2013 20:40:28 GMT
etag: "44c-4e5f9660a58e3"
cache-control: max-age=2678400
expires: Tue, 15 Oct 2024 15:02:17 GMT
cf-cache-status: HIT
age: 394844
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Q05ygUHSjDo9NvgtvOQosSQyGQRNZno9Tl4B0N4njF6V1PGnkCzWIuXEnTHc7rAw4AlBN56ZjuIy81tourHQQIWYrJn68Od47pGHt5770qnmM0W6D6vHdxgXVCAlYa5PgnEJliQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8c56e9972e860b31-OSL
X-Firefox-Spdy: h2

www.file-upload.net/images/header.png

172.67.69.252

200 OK

1.1 kB

URL GET HTTP/2
www.file-upload.net/images/header.png
IP
172.67.69.252:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Certificate
IssuerGoogle Trust Services
Subjectfile-upload.net
Fingerprint63:F7:CF:98:C0:B7:39:66:0D:CE:82:DB:7A:B7:0C:9C:14:19:E9:B8
ValidityThu, 12 Sep 2024 03:57:43 GMT - Wed, 11 Dec 2024 03:57:42 GMT

File type
PNG image data, 1 x 79, 8-bit/color RGB, non-interlaced
Size
1.1 kB (1068 bytes)
Hash
5886109990549d5bf7890081223264c1
413e69bcadd91d94332384baa2296f3c0006c824
550fc83ff49ecb7977aede8b196f72234e7e6c65c7d520b08add5b64c7d63198

HTTP Headers

GET /images/header.png HTTP/1.1
Host: www.file-upload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.file-upload.net/styles/styles.css
Cookie: PHPSESSID=oa14ceo84po6f3snqh62k6lagn
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 19 Sep 2024 04:43:01 GMT
content-type: image/png
content-length: 1068
last-modified: Mon, 09 Sep 2013 20:40:26 GMT
etag: "42c-4e5f965f34678"
cache-control: max-age=2678400
expires: Tue, 15 Oct 2024 15:02:17 GMT
cf-cache-status: HIT
age: 394844
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BvXb7fpVt62IAP%2FK96iBvVl1XuvLYR2ckJCY3NAibwHKNR6F0l3rhPF5dC4PeWi9ggQ9ai0VBPHBbLNvbchd5svrh1QtcU6km8gjWhLNzMA%2Bc24SyhUbaIl0D8ZueyC8Gqis4Bk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8c56e9972e810b31-OSL
X-Firefox-Spdy: h2

o.pki.goog/wr2

142.250.74.131

471 B

URL
o.pki.goog/wr2
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
6cb7ef0ae5fcd44c82cb5370339113fc
8372f0f7f5ab76982b18edffe93a181d253d5b09
fca2fe88dd48105e28e1b897559898aaa8cbbf6680470649f7d0bf5bcbd2f5cf

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 19 Sep 2024 04:43:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.file-upload.net/images/container_top.png

172.67.69.252

200 OK

1.1 kB

URL GET HTTP/2
www.file-upload.net/images/container_top.png
IP
172.67.69.252:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Certificate
IssuerGoogle Trust Services
Subjectfile-upload.net
Fingerprint63:F7:CF:98:C0:B7:39:66:0D:CE:82:DB:7A:B7:0C:9C:14:19:E9:B8
ValidityThu, 12 Sep 2024 03:57:43 GMT - Wed, 11 Dec 2024 03:57:42 GMT

File type
PNG image data, 960 x 9, 8-bit/color RGBA, non-interlaced
Size
1.1 kB (1137 bytes)
Hash
26efa62d85a335ccaa936aa28687a0e0
7cdcbf45d7ede62f87ac93bc9bfedbebd4ccd585
fdc872081d748e91b69a70d5f76fa0335ec895d9fc5979259d8e5242160da341

HTTP Headers

GET /images/container_top.png HTTP/1.1
Host: www.file-upload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.file-upload.net/styles/styles.css
Cookie: PHPSESSID=oa14ceo84po6f3snqh62k6lagn
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 19 Sep 2024 04:43:01 GMT
content-type: image/png
content-length: 1137
last-modified: Mon, 09 Sep 2013 20:39:58 GMT
etag: "471-4e5f96444b893"
cache-control: max-age=2678400
expires: Tue, 15 Oct 2024 15:02:17 GMT
cf-cache-status: HIT
age: 394844
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0yJR8V4VStL99c%2B5JjElxfxk%2FxZamzsoZAyRVSd5UfzUpOvH78tu9lmJEKkldkHmz8e%2Fz9X3SkQOTq1n%2Bmg3QbHbaox9ZzPC8jEV3p2Xq1yhkJVhsJNQGEmnWJWN3oUubqYWHH4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8c56e9988fdd0b31-OSL
X-Firefox-Spdy: h2

www.file-upload.net/images/container.png

172.67.69.252

200 OK

1.0 kB

URL GET HTTP/2
www.file-upload.net/images/container.png
IP
172.67.69.252:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Certificate
IssuerGoogle Trust Services
Subjectfile-upload.net
Fingerprint63:F7:CF:98:C0:B7:39:66:0D:CE:82:DB:7A:B7:0C:9C:14:19:E9:B8
ValidityThu, 12 Sep 2024 03:57:43 GMT - Wed, 11 Dec 2024 03:57:42 GMT

File type
PNG image data, 960 x 1, 8-bit/color RGBA, non-interlaced
Size
1.0 kB (1041 bytes)
Hash
39217f2392a12f33822402e24c562474
6474a76df1f7c959b23b4587ffdb17fc6b907a80
a689740126d53eb144e9be8714e3989de4f0d0fe32e7d64596b799d674889029

HTTP Headers

GET /images/container.png HTTP/1.1
Host: www.file-upload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.file-upload.net/styles/styles.css
Cookie: PHPSESSID=oa14ceo84po6f3snqh62k6lagn
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 19 Sep 2024 04:43:01 GMT
content-type: image/png
content-length: 1041
last-modified: Mon, 09 Sep 2013 20:39:55 GMT
etag: "411-4e5f96416c29d"
cache-control: max-age=2678400
expires: Tue, 15 Oct 2024 15:02:17 GMT
cf-cache-status: HIT
age: 394844
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=an%2BDyLccTxqMmGBsld6n5yPZg0uBbujgd7GaKeAmdxeCwUEVXwd5tTl2GAGPTiTDl9ENzmvCceBeP%2B0Tbcr%2F7yKOjroo1n6v9fWuv2iMsZxOkKs4p5myOTiRij%2Fc2eS5ZX8fsZE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8c56e9988fe30b31-OSL
X-Firefox-Spdy: h2

www.file-upload.net/images/klammer.png

172.67.69.252

200 OK

1.4 kB

URL GET HTTP/2
www.file-upload.net/images/klammer.png
IP
172.67.69.252:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Certificate
IssuerGoogle Trust Services
Subjectfile-upload.net
Fingerprint63:F7:CF:98:C0:B7:39:66:0D:CE:82:DB:7A:B7:0C:9C:14:19:E9:B8
ValidityThu, 12 Sep 2024 03:57:43 GMT - Wed, 11 Dec 2024 03:57:42 GMT

File type
PNG image data, 25 x 45, 8-bit/color RGBA, non-interlaced
Size
1.4 kB (1406 bytes)
Hash
8bef927ffef9f77ecbc971aaa983d03f
938288cc044d8707e3555f83c8071d5384270470
18f1858ca6a48d6146dd0e09d83728345f061f37413f4ea307f5ea5aae6aa361

HTTP Headers

GET /images/klammer.png HTTP/1.1
Host: www.file-upload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.file-upload.net/styles/styles.css
Cookie: PHPSESSID=oa14ceo84po6f3snqh62k6lagn
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 19 Sep 2024 04:43:01 GMT
content-type: image/png
content-length: 1406
last-modified: Mon, 09 Sep 2013 20:40:32 GMT
etag: "57e-4e5f9664f51a4"
cache-control: max-age=2678400
expires: Sat, 19 Oct 2024 19:49:49 GMT
cf-cache-status: HIT
age: 31992
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QNaz7Hb%2FYD0j%2F1xNDQ2Wq26eoAmb12y3pSmMbpLoQwd4hdMR7XyEC5hILjvGmeitSg3F43KrRv3ws2PTXvVjtxe%2BfVEGF053ev9I4tx0xXHy2X8JeinENXmhJqQ0UbPixPKjNn4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8c56e9989fe50b31-OSL
X-Firefox-Spdy: h2

www.file-upload.net/images/dateiname.png

172.67.69.252

200 OK

2.1 kB

URL GET HTTP/2
www.file-upload.net/images/dateiname.png
IP
172.67.69.252:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Certificate
IssuerGoogle Trust Services
Subjectfile-upload.net
Fingerprint63:F7:CF:98:C0:B7:39:66:0D:CE:82:DB:7A:B7:0C:9C:14:19:E9:B8
ValidityThu, 12 Sep 2024 03:57:43 GMT - Wed, 11 Dec 2024 03:57:42 GMT

File type
PNG image data, 845 x 52, 8-bit/color RGBA, non-interlaced
Size
2.1 kB (2130 bytes)
Hash
6255b329e01dacc5ea1f0bf705ae0047
55b5644b51bba39a0b3b8445dcb6e613ef67def2
05d165cc1de12f1d4537d9a3d21cce447e6ce8590b1e503d8fd3766ef352b34a

HTTP Headers

GET /images/dateiname.png HTTP/1.1
Host: www.file-upload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.file-upload.net/styles/styles.css
Cookie: PHPSESSID=oa14ceo84po6f3snqh62k6lagn
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 19 Sep 2024 04:43:01 GMT
content-type: image/png
content-length: 2130
last-modified: Sun, 03 Dec 2017 19:58:56 GMT
etag: "852-55f75082f5558"
cache-control: max-age=2678400
expires: Fri, 18 Oct 2024 10:28:43 GMT
cf-cache-status: HIT
age: 152058
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=A%2F5jMiNtTseZrFDSCvJgSOb7yiSRzHllH079nDwjCiVQ3F3dcQ5YClCzirq9tOeYQGZPT3gJxOAgkAlG9cXLBO8%2FhweDAXw1%2BAzhc0Bw3AMq2UGAw45md9NQNte6QIP937yXYWE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8c56e9989ff60b31-OSL
X-Firefox-Spdy: h2

r11.o.lencr.org/

23.36.76.226

504 B

URL
r11.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
e146bb99d3104d99ebaa10462be7ffae
23719cf1c5c061038d12f17a14a351cfa3e32640
fca9aadc93b51cb6a31adbec891b43371a2fd9044172cb80738cda46d2ec207e

HTTP Headers

POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "FCA9AADC93B51CB6A31ADBEC891B43371A2FD9044172CB80738CDA46D2EC207E"
Last-Modified: Tue, 17 Sep 2024 20:06:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Thu, 19 Sep 2024 10:43:01 GMT
Date: Thu, 19 Sep 2024 04:43:01 GMT
Connection: keep-alive

r11.o.lencr.org/

23.36.77.32

504 B

URL
r11.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
e146bb99d3104d99ebaa10462be7ffae
23719cf1c5c061038d12f17a14a351cfa3e32640
fca9aadc93b51cb6a31adbec891b43371a2fd9044172cb80738cda46d2ec207e

HTTP Headers

POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "FCA9AADC93B51CB6A31ADBEC891B43371A2FD9044172CB80738CDA46D2EC207E"
Last-Modified: Tue, 17 Sep 2024 20:06:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21552
Expires: Thu, 19 Sep 2024 10:42:13 GMT
Date: Thu, 19 Sep 2024 04:43:01 GMT
Connection: keep-alive

christmascalled.com/api/posts?token=Lzg0LzRhLzcxLzg0NGE3MWZkZjBlMzBjMWI4MTM5NWRiNTU0NzNhNzM3Lmpz

192.243.59.13

200 OK

34 kB

URL GET HTTP/1.1
christmascalled.com/api/posts?token=Lzg0LzRhLzcxLzg0NGE3MWZkZjBlMzBjMWI4MTM5NWRiNTU0NzNhNzM3Lmpz
IP
192.243.59.13:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Certificate
IssuerLet's Encrypt
Subjectchristmascalled.com
Fingerprint8A:AD:8E:F5:7D:82:82:99:B3:BB:E3:A1:30:BB:B6:E2:22:F1:E7:D9
ValiditySun, 04 Aug 2024 08:38:55 GMT - Sat, 02 Nov 2024 08:38:54 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
34 kB (34225 bytes)
Hash
afb12cc320eff6b24f899efa0aec02c5
2f0d19a4aa530507c4369d62b3ba055a79148a66
830a8852bb32d1cfc13e210d2cb6625c309db48ef006ad48fcc44f386ed97eb7

HTTP Headers

GET /api/posts?token=Lzg0LzRhLzcxLzg0NGE3MWZkZjBlMzBjMWI4MTM5NWRiNTU0NzNhNzM3Lmpz HTTP/1.1
Host: christmascalled.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.file-upload.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 19 Sep 2024 04:43:02 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 90e802fb225bfed7eaeeaa90f68f82ff
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

christmascalled.com/f5/29/02/f5290245e2d0af25a9b4828613ce8328.js

192.243.59.13

200 OK

16 kB

URL GET HTTP/1.1
christmascalled.com/f5/29/02/f5290245e2d0af25a9b4828613ce8328.js
IP
192.243.59.13:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Certificate
IssuerLet's Encrypt
Subjectchristmascalled.com
Fingerprint8A:AD:8E:F5:7D:82:82:99:B3:BB:E3:A1:30:BB:B6:E2:22:F1:E7:D9
ValiditySun, 04 Aug 2024 08:38:55 GMT - Sat, 02 Nov 2024 08:38:54 GMT

File type
JavaScript source, ASCII text, with very long lines (44265), with no line terminators
Size
16 kB (16003 bytes)
Hash
3e6b430c219b581a0bb29c61332461aa
ca6e71b06b5228304bc9bf1e453e11ac7455a952
781fdf84ab5033c3e676afc18bf427a643caca7b75d8930b860170d8b16d730f

HTTP Headers

GET /f5/29/02/f5290245e2d0af25a9b4828613ce8328.js HTTP/1.1
Host: christmascalled.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.file-upload.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 19 Sep 2024 04:43:02 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: 4b4e7ab587d59b22ad7bcd2439afc363_BS-125-11=1; expires=Thu, 19 Sep 2024 04:43:02 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 31cc1b5a0a1109e7ce9a5fccdeea4845
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

www.file-upload.net/images/container_bottom.png

172.67.69.252

200 OK

1.3 kB

URL GET HTTP/2
www.file-upload.net/images/container_bottom.png
IP
172.67.69.252:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Certificate
IssuerGoogle Trust Services
Subjectfile-upload.net
Fingerprint63:F7:CF:98:C0:B7:39:66:0D:CE:82:DB:7A:B7:0C:9C:14:19:E9:B8
ValidityThu, 12 Sep 2024 03:57:43 GMT - Wed, 11 Dec 2024 03:57:42 GMT

File type
PNG image data, 960 x 19, 8-bit/color RGBA, non-interlaced
Size
1.3 kB (1339 bytes)
Hash
6ceda3386ff7467d4902b5e3032e80a2
24269149a40909870a579251b85740ba3ed0ac95
f025b6e422066c3b6e4facc0a92f353c60c59760a6823d08d0da5f3e5589cbdc

HTTP Headers

GET /images/container_bottom.png HTTP/1.1
Host: www.file-upload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.file-upload.net/styles/styles.css
Cookie: PHPSESSID=oa14ceo84po6f3snqh62k6lagn
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 19 Sep 2024 04:43:02 GMT
content-type: image/png
content-length: 1339
last-modified: Mon, 09 Sep 2013 20:39:57 GMT
etag: "53b-4e5f9642dc568"
cache-control: max-age=2678400
expires: Tue, 15 Oct 2024 15:02:18 GMT
cf-cache-status: HIT
age: 394844
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Oa7Ntpn0WlgINbbqY%2B8F6lCZM1M64G9NhHzZOj2pOMmkPpeBVTXpsMgXcfVII1m%2FCr5gVfxcvvOlnGPbAjcy2V0xeLKmqwjZA3%2BYbVv8fA68bvjqnJV1aamHB6Vxp3uOniSiuBI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8c56e99b4a870b31-OSL
X-Firefox-Spdy: h2

ocsp.r2m03.amazontrust.com/

54.230.218.11

471 B

URL
ocsp.r2m03.amazontrust.com/
IP
54.230.218.11:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
610b42080f29dd8b17bd5992b24c8ca9
a0e8e66ab7931ad81820b0753234e59601e8c360
c82f1b201c7095d3c4bfcfdb7dd10f2234a550f327b31cd8ca1c39a123656fab

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Thu, 19 Sep 2024 04:43:02 GMT
Last-Modified: Thu, 19 Sep 2024 03:51:13 GMT
Server: ECAcc (ska/F775)
X-Cache: Miss from cloudfront
Via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: dCDrkb52fqXF5mBZXsAEaRS4i8XptxwUi99SmU7jeIV3DFLNhddB9A==
Age: 3109

ocsp.r2m03.amazontrust.com/

54.230.218.11

471 B

URL
ocsp.r2m03.amazontrust.com/
IP
54.230.218.11:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
610b42080f29dd8b17bd5992b24c8ca9
a0e8e66ab7931ad81820b0753234e59601e8c360
c82f1b201c7095d3c4bfcfdb7dd10f2234a550f327b31cd8ca1c39a123656fab

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Thu, 19 Sep 2024 04:43:02 GMT
Last-Modified: Thu, 19 Sep 2024 03:53:02 GMT
Server: ECAcc (ska/F73C)
X-Cache: Miss from cloudfront
Via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: dgsBwwGPANfO7prOTHs8AeqnvUYxYX5TZhc179E3qZSa24XAYSq3rA==
Age: 3000

proftrafficcounter.com/stats

18.197.55.43

200 OK

40 B

URL GET HTTP/2
proftrafficcounter.com/stats
IP
18.197.55.43:443
ASN
#16509 AMAZON-02

Requested by
https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Certificate
IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
97bde960dc8680ddf9184c8849ecf9c3
b6778cdb355f61301be2d74577213b4d3d6ceb28
de909d8a5d6884b065a596b3d78016bf3b77cf0038a58a0d076316198dd6e781

HTTP Headers

GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.file-upload.net
DNT: 1
Connection: keep-alive
Referer: https://www.file-upload.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 19 Sep 2024 04:43:02 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.file-upload.net
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=879f1679-5516-4c55-b96b-51c1671cb752:3:1; expires=Sun, 17 Sep 2034 04:43:02 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

proftrafficcounter.com/stats

18.197.55.43

200 OK

40 B

URL GET HTTP/2
proftrafficcounter.com/stats
IP
18.197.55.43:443
ASN
#16509 AMAZON-02

Requested by
https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Certificate
IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
c4c47a8d5b02a13048a643cad580cdb8
028fb658cad9e257642c52bf5e9488fb82c1c09e
74f0c2770785e736bea49982dd889fad9790a099f40549dae1682fed579b7ed7

HTTP Headers

GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.file-upload.net
DNT: 1
Connection: keep-alive
Referer: https://www.file-upload.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 19 Sep 2024 04:43:02 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.file-upload.net
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=e20258b7-8358-417a-b559-2dbd16799908:1:1; expires=Sun, 17 Sep 2034 04:43:02 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
1b4a1c8bf414ddf69b46a0f3d783ed7c
12bda5afc3cce29c3f25c472358dc12ec5396001
5f282be49ea939889ba0d8a4901acb21b8d17fca1ef9bfb4b1548a66f4b9517b

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "5F282BE49EA939889BA0D8A4901ACB21B8D17FCA1EF9BFB4B1548A66F4B9517B"
Last-Modified: Wed, 18 Sep 2024 23:11:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9839
Expires: Thu, 19 Sep 2024 07:27:01 GMT
Date: Thu, 19 Sep 2024 04:43:02 GMT
Connection: keep-alive

recordedthereby.com/sfp.js

188.114.96.1

200 OK

28 kB

URL GET HTTP/2
recordedthereby.com/sfp.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Certificate
IssuerGoogle Trust Services
Subjectrecordedthereby.com
Fingerprint76:BA:7B:D2:DF:8D:D1:44:66:52:F9:0D:A1:78:12:89:6C:3F:0F:03
ValidityTue, 03 Sep 2024 16:10:32 GMT - Mon, 02 Dec 2024 16:10:31 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Size
28 kB (27486 bytes)
Hash
7e3e44049654b6e244c1777e68ffb8e7
8f2a8298666d607afd92a0baa362ef4dc9ccd039
4acac8b8ff23671d365150818f3c39bbbfa08b1a1842d73de5933e0fea26454b

HTTP Headers

GET /sfp.js HTTP/1.1
Host: recordedthereby.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.file-upload.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 19 Sep 2024 04:43:02 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache, max-age=0, private, no-cache
x-request-id: 04168c6f4eb367ddb45d7092c7153535
pragma: no-cache
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LzOZrP6x3%2FE%2FKes%2Fwtyndsj6I9So4B%2FbuUNK10Qd7vz65PSSqR16R7QFAEz8wpdXg98nOg8uvgcOHDxZG%2FpXVDBrbwzhIWEsUiDvnt2L9%2Fk7h2M8a%2FWyYzNqYSZi0dW5%2FkfBApt%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8c56e99b5cca56a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

o.pki.goog/wr2

142.250.74.131

472 B

URL
o.pki.goog/wr2
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4a9ed3b9f9d74da3ac337b4b689cc0bc
312ed241b053798c133a7068e0b6a2ef024ad7a5
0b3b873bfda51493475680b5a91122d989434c10bba92a91da8a09172cf4ec9d

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 19 Sep 2024 04:43:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.gstatic.com/recaptcha/releases/EGbODne6buzpTnWrrBprcfAY/recaptcha__en.js

142.250.74.35

200 OK

217 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/EGbODne6buzpTnWrrBprcfAY/recaptcha__en.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/webworker.js?hl=en&v=EGbODne6buzpTnWrrBprcfAY
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintA8:8E:91:B3:04:E9:C9:F3:CD:3D:27:83:B0:53:22:C0:21:23:9A:92
ValidityMon, 12 Aug 2024 07:17:58 GMT - Mon, 04 Nov 2024 07:17:57 GMT

File type
data
Size
217 kB (217247 bytes)
Hash
c7be68088b0a823f1a4c1f77c702d1b4
05d42d754afd21681c0e815799b88fbe1fbabf4e
4943e91f7f53318d481ca07297395abbc52541c2be55d7276ecda152cd7ad9c3

HTTP Headers

GET /recaptcha/releases/EGbODne6buzpTnWrrBprcfAY/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.file-upload.net
DNT: 1
Connection: keep-alive
Referer: https://www.file-upload.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 217247
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 19 Sep 2024 04:17:26 GMT
expires: Fri, 19 Sep 2025 04:17:26 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 03 Sep 2024 02:00:38 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 1536
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

o.pki.goog/wr2

142.250.74.131

472 B

URL
o.pki.goog/wr2
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4a9ed3b9f9d74da3ac337b4b689cc0bc
312ed241b053798c133a7068e0b6a2ef024ad7a5
0b3b873bfda51493475680b5a91122d989434c10bba92a91da8a09172cf4ec9d

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 19 Sep 2024 04:43:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
b0657457bb9345b0582238595cf3b7e0
fa42a1a75d08908e3ed24ad47b2fa525ecc1d2c9
641afb1a72eceac9a003fae32a5d13729156f11897569e2299565ff716ece4e5

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "641AFB1A72ECEAC9A003FAE32A5D13729156F11897569E2299565FF716ECE4E5"
Last-Modified: Wed, 18 Sep 2024 08:12:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6094
Expires: Thu, 19 Sep 2024 06:24:36 GMT
Date: Thu, 19 Sep 2024 04:43:02 GMT
Connection: keep-alive

www.file-upload.net/images/downbutton2.gif

172.67.69.252

200 OK

5.4 kB

URL GET HTTP/2
www.file-upload.net/images/downbutton2.gif
IP
172.67.69.252:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Certificate
IssuerGoogle Trust Services
Subjectfile-upload.net
Fingerprint63:F7:CF:98:C0:B7:39:66:0D:CE:82:DB:7A:B7:0C:9C:14:19:E9:B8
ValidityThu, 12 Sep 2024 03:57:43 GMT - Wed, 11 Dec 2024 03:57:42 GMT

File type
GIF image data, version 87a, 190 x 58
Size
5.4 kB (5351 bytes)
Hash
d8d1c655831f6d65cda388ec1b5443ce
a040cbf6a35559471b4661052848ffb381225e88
4343a7a085c36c557f2dcb85f5c3c80294269a1e9d190240ec48ed1ac15d2c04

HTTP Headers

GET /images/downbutton2.gif HTTP/1.1
Host: www.file-upload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Cookie: PHPSESSID=oa14ceo84po6f3snqh62k6lagn; cookie_consent_level=%7B%22strictly-necessary%22%3Atrue%2C%22functionality%22%3Afalse%2C%22tracking%22%3Afalse%2C%22targeting%22%3Afalse%7D; dom3ic8zudi28v8lr6fgphwffqoz0j6c=e20258b7-8358-417a-b559-2dbd16799908%3A1%3A1; sb_main_f5290245e2d0af25a9b4828613ce8328=1; sb_count_f5290245e2d0af25a9b4828613ce8328=1; pp_main_844a71fdf0e30c1b81395db55473a737=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 19 Sep 2024 04:43:03 GMT
content-type: image/gif
content-length: 5351
last-modified: Sat, 05 Apr 2014 19:43:40 GMT
etag: "14e7-4f650d9e289db"
cache-control: max-age=2678400
expires: Tue, 15 Oct 2024 15:02:18 GMT
cf-cache-status: HIT
age: 394845
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3Sayw2S8Gxe4mQcdkvSYLgnE2OFjmfed%2B%2B8YHrMPwHe9lUtS3wRoFx4F2DiwwBAkyFCPMYlFZzITXM1K2o5PKNd%2FyUDfP1Avh25vFbu3kl%2Flr%2FNpjJtA%2FpS351c0e5spBbKjvm8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8c56e9a00ea00b31-OSL
X-Firefox-Spdy: h2

examplesclasp.com/sbar.json?key=f5290245e2d0af25a9b4828613ce8328&psid=BS-125-11_1&uuid=e20258b7-8358-417a-b559-2dbd16799908%3A1%3A1

172.240.253.132

200 OK

7.2 kB

URL GET HTTP/1.1
examplesclasp.com/sbar.json?key=f5290245e2d0af25a9b4828613ce8328&psid=BS-125-11_1&uuid=e20258b7-8358-417a-b559-2dbd16799908%3A1%3A1
IP
172.240.253.132:443
ASN
#7979 SERVERS-COM

Requested by
https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Certificate
IssuerLet's Encrypt
Subjectexamplesclasp.com
FingerprintA0:42:9C:62:D4:04:9A:5B:B5:DE:46:80:1B:DB:46:18:79:CC:7F:DC
ValidityMon, 12 Aug 2024 09:52:03 GMT - Sun, 10 Nov 2024 09:52:02 GMT

File type
JSON text data
Size
7.2 kB (7218 bytes)
Hash
1102970aecd7e9c57eb705a81f953ef9
6f4766d373d945ffe90bd284a77cf4b2d7300130
843a066d34676c2aacd6e82c41b514ee40ea0f667c3dca2f0082e4f58435c87b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /sbar.json?key=f5290245e2d0af25a9b4828613ce8328&psid=BS-125-11_1&uuid=e20258b7-8358-417a-b559-2dbd16799908%3A1%3A1 HTTP/1.1
Host: examplesclasp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.file-upload.net
DNT: 1
Connection: keep-alive
Referer: https://www.file-upload.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 19 Sep 2024 04:43:03 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.file-upload.net
Access-Control-Allow-Origin: https://www.file-upload.net
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=16026741; expires=Fri, 20 Sep 2024 04:43:03 GMT; path=/; secure; SameSite=None
uid_id2=e20258b7-8358-417a-b559-2dbd16799908:1:1; expires=Thu, 26 Sep 2024 04:43:03 GMT; path=/; secure; SameSite=None
pdhtkv=true; expires=Fri, 20 Sep 2024 04:43:03 GMT; path=/; secure; SameSite=None
uncs=1; expires=Fri, 20 Sep 2024 04:43:03 GMT; path=/; secure; SameSite=None
pdhtkv29=true; expires=Fri, 20 Sep 2024 04:43:03 GMT; path=/; secure; SameSite=None
uncs29=1; expires=Fri, 20 Sep 2024 04:43:03 GMT; path=/; secure; SameSite=None
slecf5290245e2d0af25a9b4828613ce8328=[5462415]; expires=Thu, 19 Sep 2024 04:43:08 GMT; path=/; secure; SameSite=None
Host: examplesclasp.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 7f026900d0ea4d150329c036b2b7ced4
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

www.gstatic.com/recaptcha/releases/EGbODne6buzpTnWrrBprcfAY/styles__ltr.css

142.250.74.35

200 OK

25 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/EGbODne6buzpTnWrrBprcfAY/styles__ltr.css
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LesER4UAAAAAGw1oVKPrLk_AuxiRz548wcKan1w&co=aHR0cHM6Ly93d3cuZmlsZS11cGxvYWQubmV0OjQ0Mw..&hl=en&v=EGbODne6buzpTnWrrBprcfAY&size=invisible&cb=nshwxyykwpxp
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintA8:8E:91:B3:04:E9:C9:F3:CD:3D:27:83:B0:53:22:C0:21:23:9A:92
ValidityMon, 12 Aug 2024 07:17:58 GMT - Mon, 04 Nov 2024 07:17:57 GMT

File type
ASCII text, with very long lines (56359), with no line terminators
Size
25 kB (24613 bytes)
Hash
4adccf70587477c74e2fcd636e4ec895
af63034901c98e2d93faa7737f9c8f52e302d88b
0e04cd9eec042868e190cbdabf2f8f0c7172dcc54ab87eb616eca14258307b4d

HTTP Headers

GET /recaptcha/releases/EGbODne6buzpTnWrrBprcfAY/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24613
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 19 Sep 2024 04:17:25 GMT
expires: Fri, 19 Sep 2025 04:17:25 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 03 Sep 2024 02:00:38 GMT
content-type: text/css
vary: Accept-Encoding
age: 1538
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.google.com/recaptcha/api2/anchor?ar=1&k=6LesER4UAAAAAGw1oVKPrLk_AuxiRz548wcKan1w&co=aHR0cHM6Ly93d3cuZmlsZS11cGxvYWQubmV0OjQ0Mw..&hl=en&v=EGbODne6buzpTnWrrBprcfAY&size=invisible&cb=nshwxyykwpxp

142.250.74.164

200 OK

32 kB

URL GET HTTP/3
www.google.com/recaptcha/api2/anchor?ar=1&k=6LesER4UAAAAAGw1oVKPrLk_AuxiRz548wcKan1w&co=aHR0cHM6Ly93d3cuZmlsZS11cGxvYWQubmV0OjQ0Mw..&hl=en&v=EGbODne6buzpTnWrrBprcfAY&size=invisible&cb=nshwxyykwpxp
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Certificate
IssuerGoogle Trust Services
Subject*.google.com
Fingerprint97:72:B0:50:D3:11:5A:F7:A4:3E:14:43:9B:9B:DA:05:44:40:58:1C
ValidityMon, 12 Aug 2024 06:33:49 GMT - Mon, 04 Nov 2024 06:33:48 GMT

File type
gzip compressed data, max compression
Size
32 kB (31688 bytes)
Hash
e5201381bd0691caf1a039178774ae50
f0ebaf9356c4b15cdf3f780a234735b0df847382
78d60c6a94c955e738fd49efe2f0a42fef8346f72f6b17f695794dd9fac015dc

HTTP Headers

GET /recaptcha/api2/anchor?ar=1&k=6LesER4UAAAAAGw1oVKPrLk_AuxiRz548wcKan1w&co=aHR0cHM6Ly93d3cuZmlsZS11cGxvYWQubmV0OjQ0Mw..&hl=en&v=EGbODne6buzpTnWrrBprcfAY&size=invisible&cb=nshwxyykwpxp HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.file-upload.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}, {"group":"coop_38fac9d5b82543fc4729580d18ff2d3d","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/38fac9d5b82543fc4729580d18ff2d3d"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 19 Sep 2024 04:43:03 GMT
content-security-policy: script-src 'nonce-_u2c1-qn2MUvUy0MgRLVRg' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
cross-origin-opener-policy-report-only: same-origin; report-to="coop_38fac9d5b82543fc4729580d18ff2d3d"
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/releases/EGbODne6buzpTnWrrBprcfAY/recaptcha__en.js

142.250.74.35

200 OK

217 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/EGbODne6buzpTnWrrBprcfAY/recaptcha__en.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/webworker.js?hl=en&v=EGbODne6buzpTnWrrBprcfAY
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintA8:8E:91:B3:04:E9:C9:F3:CD:3D:27:83:B0:53:22:C0:21:23:9A:92
ValidityMon, 12 Aug 2024 07:17:58 GMT - Mon, 04 Nov 2024 07:17:57 GMT

File type
data
Size
217 kB (217247 bytes)
Hash
c7be68088b0a823f1a4c1f77c702d1b4
05d42d754afd21681c0e815799b88fbe1fbabf4e
4943e91f7f53318d481ca07297395abbc52541c2be55d7276ecda152cd7ad9c3

HTTP Headers

GET /recaptcha/releases/EGbODne6buzpTnWrrBprcfAY/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 217247
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 19 Sep 2024 04:17:26 GMT
expires: Fri, 19 Sep 2025 04:17:26 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 03 Sep 2024 02:00:38 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 1537
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

r11.o.lencr.org/

23.36.77.32

504 B

URL
r11.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
bdbfec92a6dfe1ae7eb50b81499db3ef
17c2ddbd585945f641337f53a51e276a8f6fd0cf
5adae3b06c20c5a307d0d48c7b569636d95b88285d3c3ab411629d4fc4015cef

HTTP Headers

POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "5ADAE3B06C20C5A307D0D48C7B569636D95B88285D3C3AB411629D4FC4015CEF"
Last-Modified: Tue, 17 Sep 2024 14:34:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11867
Expires: Thu, 19 Sep 2024 08:00:50 GMT
Date: Thu, 19 Sep 2024 04:43:03 GMT
Connection: keep-alive

r11.o.lencr.org/

23.36.76.226

504 B

URL
r11.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
bdbfec92a6dfe1ae7eb50b81499db3ef
17c2ddbd585945f641337f53a51e276a8f6fd0cf
5adae3b06c20c5a307d0d48c7b569636d95b88285d3c3ab411629d4fc4015cef

HTTP Headers

POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "5ADAE3B06C20C5A307D0D48C7B569636D95B88285D3C3AB411629D4FC4015CEF"
Last-Modified: Tue, 17 Sep 2024 14:34:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11818
Expires: Thu, 19 Sep 2024 08:00:01 GMT
Date: Thu, 19 Sep 2024 04:43:03 GMT
Connection: keep-alive

r11.o.lencr.org/

23.36.77.32

504 B

URL
r11.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
bdbfec92a6dfe1ae7eb50b81499db3ef
17c2ddbd585945f641337f53a51e276a8f6fd0cf
5adae3b06c20c5a307d0d48c7b569636d95b88285d3c3ab411629d4fc4015cef

HTTP Headers

POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "5ADAE3B06C20C5A307D0D48C7B569636D95B88285D3C3AB411629D4FC4015CEF"
Last-Modified: Tue, 17 Sep 2024 14:34:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11867
Expires: Thu, 19 Sep 2024 08:00:50 GMT
Date: Thu, 19 Sep 2024 04:43:03 GMT
Connection: keep-alive

r11.o.lencr.org/

23.36.76.226

504 B

URL
r11.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
bdbfec92a6dfe1ae7eb50b81499db3ef
17c2ddbd585945f641337f53a51e276a8f6fd0cf
5adae3b06c20c5a307d0d48c7b569636d95b88285d3c3ab411629d4fc4015cef

HTTP Headers

POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "5ADAE3B06C20C5A307D0D48C7B569636D95B88285D3C3AB411629D4FC4015CEF"
Last-Modified: Tue, 17 Sep 2024 14:34:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11818
Expires: Thu, 19 Sep 2024 08:00:01 GMT
Date: Thu, 19 Sep 2024 04:43:03 GMT
Connection: keep-alive

cdn.show-sb.com/sb/au/bb/09/20/bb0920e920b04fdebd2119739150c93c/1698574651.html

104.21.95.140

200 OK

435 B

URL GET HTTP/2
cdn.show-sb.com/sb/au/bb/09/20/bb0920e920b04fdebd2119739150c93c/1698574651.html
IP
104.21.95.140:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Certificate
IssuerGoogle Trust Services
Subjectshow-sb.com
Fingerprint5C:AC:AB:52:E9:2A:90:AC:2F:C2:14:81:74:2F:99:FA:09:9C:99:2B
ValidityTue, 20 Aug 2024 17:52:01 GMT - Mon, 18 Nov 2024 17:52:00 GMT

File type
HTML document, ASCII text
Size
435 B (435 bytes)
Hash
072e8db4074dbdb5f907708ecde5b3cd
9cff59558d4a4b945754478a04738e744b7ffc2a
5b5f0e9d8303aec59181cdf6f6b9de9c2e0001007349840246b9f8ab286b82a0

HTTP Headers

GET /sb/au/bb/09/20/bb0920e920b04fdebd2119739150c93c/1698574651.html HTTP/1.1
Host: cdn.show-sb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.file-upload.net
DNT: 1
Connection: keep-alive
Referer: https://www.file-upload.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 19 Sep 2024 04:43:03 GMT
content-type: text/html
last-modified: Sun, 29 Oct 2023 10:17:36 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZlnYNK21dqSYLr5lloM4IeIEFPYET%2FAflJWBLU1SMiChI4VMiQL2DKDwCHb%2FNAvM0N%2BtWOfTEJYbC4kekURR7ji3WrS7dtl7XqNEbvhTKNnE1kkLvj40eO0yTtbXFEDdZTo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
speculation-rules: "/cdn-cgi/speculation"
server: cloudflare
cf-ray: 8c56e9a1fd6b1bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/3
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/bframe?hl=en&v=EGbODne6buzpTnWrrBprcfAY&k=6LesER4UAAAAAGw1oVKPrLk_AuxiRz548wcKan1w
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintA8:8E:91:B3:04:E9:C9:F3:CD:3D:27:83:B0:53:22:C0:21:23:9A:92
ValidityMon, 12 Aug 2024 07:17:58 GMT - Mon, 04 Nov 2024 07:17:57 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15552, version 1.0
Size
16 kB (15552 bytes)
Hash
285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7

HTTP Headers

GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 12 Sep 2024 15:03:54 GMT
expires: Fri, 12 Sep 2025 15:03:54 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
age: 567549
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

15 kB

URL GET HTTP/3
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/bframe?hl=en&v=EGbODne6buzpTnWrrBprcfAY&k=6LesER4UAAAAAGw1oVKPrLk_AuxiRz548wcKan1w
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintA8:8E:91:B3:04:E9:C9:F3:CD:3D:27:83:B0:53:22:C0:21:23:9A:92
ValidityMon, 12 Aug 2024 07:17:58 GMT - Mon, 04 Nov 2024 07:17:57 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15344, version 1.0
Size
15 kB (15344 bytes)
Hash
5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc

HTTP Headers

GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 12 Sep 2024 15:30:50 GMT
expires: Fri, 12 Sep 2025 15:30:50 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 565933
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.gstatic.com/recaptcha/releases/EGbODne6buzpTnWrrBprcfAY/recaptcha__en.js

142.250.74.35

200 OK

217 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/EGbODne6buzpTnWrrBprcfAY/recaptcha__en.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/webworker.js?hl=en&v=EGbODne6buzpTnWrrBprcfAY
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintA8:8E:91:B3:04:E9:C9:F3:CD:3D:27:83:B0:53:22:C0:21:23:9A:92
ValidityMon, 12 Aug 2024 07:17:58 GMT - Mon, 04 Nov 2024 07:17:57 GMT

File type
data
Size
217 kB (217247 bytes)
Hash
c7be68088b0a823f1a4c1f77c702d1b4
05d42d754afd21681c0e815799b88fbe1fbabf4e
4943e91f7f53318d481ca07297395abbc52541c2be55d7276ecda152cd7ad9c3

HTTP Headers

GET /recaptcha/releases/EGbODne6buzpTnWrrBprcfAY/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 217247
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 19 Sep 2024 04:17:26 GMT
expires: Fri, 19 Sep 2025 04:17:26 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 03 Sep 2024 02:00:38 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 1537
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.google.com/js/bg/iEboSLOEGWLfUwE4vWMJoC4GcDs_D5t26QLNgGwKBCM.js

142.250.74.164

200 OK

7.6 kB

URL GET HTTP/3
www.google.com/js/bg/iEboSLOEGWLfUwE4vWMJoC4GcDs_D5t26QLNgGwKBCM.js
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/bframe?hl=en&v=EGbODne6buzpTnWrrBprcfAY&k=6LesER4UAAAAAGw1oVKPrLk_AuxiRz548wcKan1w
Certificate
IssuerGoogle Trust Services
Subject*.google.com
Fingerprint97:72:B0:50:D3:11:5A:F7:A4:3E:14:43:9B:9B:DA:05:44:40:58:1C
ValidityMon, 12 Aug 2024 06:33:49 GMT - Mon, 04 Nov 2024 06:33:48 GMT

File type
JavaScript source, ASCII text, with very long lines (18041)
Size
7.6 kB (7645 bytes)
Hash
c2fcaccd99acd8a3d0dc176c28d75b7b
776c98d8426568cb054fce26bc8d520c84eac24a
8846e848b3841962df530138bd6309a02e06703b3f0f9b76e902cd806c0a0423

HTTP Headers

GET /js/bg/iEboSLOEGWLfUwE4vWMJoC4GcDs_D5t26QLNgGwKBCM.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LesER4UAAAAAGw1oVKPrLk_AuxiRz548wcKan1w&co=aHR0cHM6Ly93d3cuZmlsZS11cGxvYWQubmV0OjQ0Mw..&hl=en&v=EGbODne6buzpTnWrrBprcfAY&size=invisible&cb=nshwxyykwpxp
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 7645
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 18 Sep 2024 04:12:57 GMT
expires: Thu, 18 Sep 2025 04:12:57 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 09 Sep 2024 09:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 88206
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

cdn.creative-stat1.com/sb/ssp/interstitial/center_banner/2/css/animate.css

188.114.96.1

200 OK

7.1 kB

URL GET HTTP/2
cdn.creative-stat1.com/sb/ssp/interstitial/center_banner/2/css/animate.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html

File type
gzip compressed data, from Unix
Size
7.1 kB (7086 bytes)
Hash
fb8d702cacb99dc76a3776263799ec24
808ee30ee558517d9b99eeb1b9a9d1e28fa5a2a1
cc7989836751c7c61966e94a2e4f9f1dfff96f588174f093035212ea1c514d0f

HTTP Headers

GET /sb/ssp/interstitial/center_banner/2/css/animate.css HTTP/1.1
Host: cdn.creative-stat1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.file-upload.net
DNT: 1
Connection: keep-alive
Referer: https://www.file-upload.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 19 Sep 2024 04:43:03 GMT
content-type: text/css
last-modified: Fri, 19 Jan 2024 14:19:45 GMT
etag: W/"65aa8501-13365"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
cf-cache-status: HIT
age: 836638
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1vOkSA5A3CJ1xBf%2FVJF2cT%2FMXNol8rOzEgumn06qG20CsrzWcreHvANlQZtiddKP6cRjRVkHD1ebjb8AKbb9XsBnNWOAQuHxVX2hrQ8PEYVUpl82wf5GludFp%2BBoA%2FBNDu9wjaEM6LGn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8c56e9a38f1f56c6-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.google.com/recaptcha/api2/webworker.js?hl=en&v=EGbODne6buzpTnWrrBprcfAY

142.250.74.164

200 OK

590 B

URL GET HTTP/3
www.google.com/recaptcha/api2/webworker.js?hl=en&v=EGbODne6buzpTnWrrBprcfAY
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LesER4UAAAAAGw1oVKPrLk_AuxiRz548wcKan1w&co=aHR0cHM6Ly93d3cuZmlsZS11cGxvYWQubmV0OjQ0Mw..&hl=en&v=EGbODne6buzpTnWrrBprcfAY&size=invisible&cb=nshwxyykwpxp
Certificate
IssuerGoogle Trust Services
Subject*.google.com
Fingerprint97:72:B0:50:D3:11:5A:F7:A4:3E:14:43:9B:9B:DA:05:44:40:58:1C
ValidityMon, 12 Aug 2024 06:33:49 GMT - Mon, 04 Nov 2024 06:33:48 GMT

File type
gzip compressed data, max compression
Size
590 B (590 bytes)
Hash
e312e9e219e45099290feeaf7576e08a
704e635d20c659fc8d89c75573b265d80d10abb9
a328b99a9c57141248e51e58a686dc282467b2915c65d2458f4b01bd6bacc696

HTTP Headers

GET /recaptcha/api2/webworker.js?hl=en&v=EGbODne6buzpTnWrrBprcfAY HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LesER4UAAAAAGw1oVKPrLk_AuxiRz548wcKan1w&co=aHR0cHM6Ly93d3cuZmlsZS11cGxvYWQubmV0OjQ0Mw..&hl=en&v=EGbODne6buzpTnWrrBprcfAY&size=invisible&cb=nshwxyykwpxp
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/javascript; charset=utf-8
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}, {"group":"coop_38fac9d5b82543fc4729580d18ff2d3d","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/38fac9d5b82543fc4729580d18ff2d3d"}]}
expires: Thu, 19 Sep 2024 04:43:03 GMT
date: Thu, 19 Sep 2024 04:43:03 GMT
cache-control: private, max-age=300
cross-origin-opener-policy-report-only: same-origin; report-to="coop_38fac9d5b82543fc4729580d18ff2d3d"
cross-origin-resource-policy: same-site
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
c280dc7093d6a1a894055068af1eec41
3365b00c314984b02c9a9c52f7525fb11cd532cc
8916e9df476d021ca68fd458e84ea798b43d88eaae0341b3a36f3e4098def66f

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "8916E9DF476D021CA68FD458E84EA798B43D88EAAE0341B3A36F3E4098DEF66F"
Last-Modified: Tue, 17 Sep 2024 12:42:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8486
Expires: Thu, 19 Sep 2024 07:04:29 GMT
Date: Thu, 19 Sep 2024 04:43:03 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
c280dc7093d6a1a894055068af1eec41
3365b00c314984b02c9a9c52f7525fb11cd532cc
8916e9df476d021ca68fd458e84ea798b43d88eaae0341b3a36f3e4098def66f

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "8916E9DF476D021CA68FD458E84EA798B43D88EAAE0341B3A36F3E4098DEF66F"
Last-Modified: Tue, 17 Sep 2024 12:42:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8486
Expires: Thu, 19 Sep 2024 07:04:29 GMT
Date: Thu, 19 Sep 2024 04:43:03 GMT
Connection: keep-alive

examplesclasp.com/pixel/sbls?bv=24.38.5572&tmpl=482&u=https%3A%2F%2Fcdn.creative-stat1.com%2Fsb%2Fssp%2Finterstitial%2Fcenter_banner%2F2%2Fcss%2Fanimate.css&l=78693&fd=102

172.240.253.132

200 OK

0 B

URL GET HTTP/1.1
examplesclasp.com/pixel/sbls?bv=24.38.5572&tmpl=482&u=https%3A%2F%2Fcdn.creative-stat1.com%2Fsb%2Fssp%2Finterstitial%2Fcenter_banner%2F2%2Fcss%2Fanimate.css&l=78693&fd=102
IP
172.240.253.132:443
ASN
#7979 SERVERS-COM

Requested by
https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Certificate
IssuerLet's Encrypt
Subjectexamplesclasp.com
FingerprintA0:42:9C:62:D4:04:9A:5B:B5:DE:46:80:1B:DB:46:18:79:CC:7F:DC
ValidityMon, 12 Aug 2024 09:52:03 GMT - Sun, 10 Nov 2024 09:52:02 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=24.38.5572&tmpl=482&u=https%3A%2F%2Fcdn.creative-stat1.com%2Fsb%2Fssp%2Finterstitial%2Fcenter_banner%2F2%2Fcss%2Fanimate.css&l=78693&fd=102 HTTP/1.1
Host: examplesclasp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.file-upload.net/
Cookie: u_pl=16026741; uid_id2=e20258b7-8358-417a-b559-2dbd16799908:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecf5290245e2d0af25a9b4828613ce8328=[5462415]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 19 Sep 2024 04:43:03 GMT
Content-Length: 0
Connection: keep-alive
Host: examplesclasp.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

cdn.storageimagedisplay.com/si/c6/08/7b/c6087bf3b05c67d5e11e5faf05148333/1713844167.png

45.133.44.2

200 OK

48 kB

URL GET HTTP/2
cdn.storageimagedisplay.com/si/c6/08/7b/c6087bf3b05c67d5e11e5faf05148333/1713844167.png
IP
45.133.44.2:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Certificate
IssuerLet's Encrypt
Subjectcdn.storageimagedisplay.com
Fingerprint35:34:7E:96:D3:74:A9:D9:1F:BE:9D:7C:A7:EF:B0:88:78:CB:82:36
ValidityFri, 13 Sep 2024 11:57:48 GMT - Thu, 12 Dec 2024 11:57:47 GMT

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced
Size
48 kB (48047 bytes)
Hash
1a95e1fc2d23e62c8b93c5b85a911baa
1049ebf48072e004c22b0603ed4ee423ee581d40
e096d61774c5cedd801d3b1872f7fa951c26c06b38379e0a03ca1d7c00f430c1

HTTP Headers

GET /si/c6/08/7b/c6087bf3b05c67d5e11e5faf05148333/1713844167.png HTTP/1.1
Host: cdn.storageimagedisplay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 19 Sep 2024 04:43:03 GMT
content-type: image/png
content-length: 48047
server: nginx/1.21.6
last-modified: Tue, 23 Apr 2024 03:49:36 GMT
etag: "66272fd0-bbaf"
expires: Sat, 21 Sep 2024 04:43:03 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
x-cdn-host-id: ah0543
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn.storageimagedisplay.com/si/06/cf/26/06cf26cc1affc426a3f7e07f3817ff3b/1713844190.png

45.133.44.2

200 OK

142 kB

URL GET HTTP/2
cdn.storageimagedisplay.com/si/06/cf/26/06cf26cc1affc426a3f7e07f3817ff3b/1713844190.png
IP
45.133.44.2:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Certificate
IssuerLet's Encrypt
Subjectcdn.storageimagedisplay.com
Fingerprint35:34:7E:96:D3:74:A9:D9:1F:BE:9D:7C:A7:EF:B0:88:78:CB:82:36
ValidityFri, 13 Sep 2024 11:57:48 GMT - Thu, 12 Dec 2024 11:57:47 GMT

File type
PNG image data, 360 x 240, 8-bit/color RGBA, non-interlaced
Size
142 kB (142461 bytes)
Hash
c769d182f2b92410604c7934e42e331d
4efdbf17f800fbd9829fa7134551ba9baaa5d517
a2be1f7ffbe9c4d8a82ede849ac96c3f741aa2e092e32619508d7d27abf4691c

HTTP Headers

GET /si/06/cf/26/06cf26cc1affc426a3f7e07f3817ff3b/1713844190.png HTTP/1.1
Host: cdn.storageimagedisplay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 19 Sep 2024 04:43:03 GMT
content-type: image/png
content-length: 142461
server: nginx/1.21.6
last-modified: Tue, 23 Apr 2024 03:49:58 GMT
etag: "66272fe6-22c7d"
expires: Sat, 21 Sep 2024 04:43:03 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
x-cdn-host-id: ah0543
accept-ranges: bytes
X-Firefox-Spdy: h2

o.pki.goog/wr2

142.250.74.131

471 B

URL
o.pki.goog/wr2
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
3d1db9898477545448d55686c3bbeeb7
5b919eeb3129f21766541edb032f851a5d1698d0
df12a766aa10fef44f2fb9d0cb059edb71868c19156f3717cd8937c00b6b2d0e

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 19 Sep 2024 04:43:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdn.creative-stat1.com/sb/ssp/interstitial/center_banner/2/js/script.js

188.114.96.1

200 OK

343 B

URL GET HTTP/3
cdn.creative-stat1.com/sb/ssp/interstitial/center_banner/2/js/script.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Certificate
IssuerGoogle Trust Services
Subjectcreative-stat1.com
FingerprintF8:81:29:04:51:9E:EB:84:A7:36:0A:98:7D:E7:09:9D:A2:5D:A7:79
ValidityTue, 20 Aug 2024 16:31:08 GMT - Mon, 18 Nov 2024 16:31:07 GMT

File type
ASCII text
Size
343 B (343 bytes)
Hash
bfd47b5dfff6e6feac7624980fe9f680
b437c81b3addc9d7154b96f495b2eb82148e5101
b53d941e5ec9ce3482ce722008c8dfdae35f630aa4a7cb7c4bdd0e7342fc63fb

HTTP Headers

GET /sb/ssp/interstitial/center_banner/2/js/script.js HTTP/1.1
Host: cdn.creative-stat1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.file-upload.net
DNT: 1
Connection: keep-alive
Referer: https://www.file-upload.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 19 Sep 2024 04:43:03 GMT
content-type: application/javascript
last-modified: Fri, 19 Jan 2024 14:19:45 GMT
etag: W/"65aa8501-3cf"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 836638
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vl%2BXDRftMfz6HL%2FfRq31z5R4j69fg6X8kOqLeB5DEvcmNV9AAee7ypki6JIcxSFeBldMYDK75U243rdRdgK3nZK%2Be0At8P57IMx5vUTrXGk1kQDNqIYbccxB52CDaln35ca5oPUrnXhJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8c56e9a5599256ab-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

examplesclasp.com/pixel/sbls?bv=24.38.5572&tmpl=482&u=https%3A%2F%2Fcdn.creative-stat1.com%2Fsb%2Fssp%2Finterstitial%2Fcenter_banner%2F2%2Fcss%2Fstyle.css&l=4256&fd=630

172.240.253.132

200 OK

0 B

URL GET HTTP/1.1
examplesclasp.com/pixel/sbls?bv=24.38.5572&tmpl=482&u=https%3A%2F%2Fcdn.creative-stat1.com%2Fsb%2Fssp%2Finterstitial%2Fcenter_banner%2F2%2Fcss%2Fstyle.css&l=4256&fd=630
IP
172.240.253.132:443
ASN
#7979 SERVERS-COM

Requested by
https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Certificate
IssuerLet's Encrypt
Subjectexamplesclasp.com
FingerprintA0:42:9C:62:D4:04:9A:5B:B5:DE:46:80:1B:DB:46:18:79:CC:7F:DC
ValidityMon, 12 Aug 2024 09:52:03 GMT - Sun, 10 Nov 2024 09:52:02 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=24.38.5572&tmpl=482&u=https%3A%2F%2Fcdn.creative-stat1.com%2Fsb%2Fssp%2Finterstitial%2Fcenter_banner%2F2%2Fcss%2Fstyle.css&l=4256&fd=630 HTTP/1.1
Host: examplesclasp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.file-upload.net/
Cookie: u_pl=16026741; uid_id2=e20258b7-8358-417a-b559-2dbd16799908:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecf5290245e2d0af25a9b4828613ce8328=[5462415]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 19 Sep 2024 04:43:04 GMT
Content-Length: 0
Connection: keep-alive
Host: examplesclasp.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

www.gstatic.com/recaptcha/releases/EGbODne6buzpTnWrrBprcfAY/styles__ltr.css

142.250.74.35

200 OK

25 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/EGbODne6buzpTnWrrBprcfAY/styles__ltr.css
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LesER4UAAAAAGw1oVKPrLk_AuxiRz548wcKan1w&co=aHR0cHM6Ly93d3cuZmlsZS11cGxvYWQubmV0OjQ0Mw..&hl=en&v=EGbODne6buzpTnWrrBprcfAY&size=invisible&cb=nshwxyykwpxp
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintA8:8E:91:B3:04:E9:C9:F3:CD:3D:27:83:B0:53:22:C0:21:23:9A:92
ValidityMon, 12 Aug 2024 07:17:58 GMT - Mon, 04 Nov 2024 07:17:57 GMT

File type
ASCII text, with very long lines (56359), with no line terminators
Size
25 kB (24613 bytes)
Hash
4adccf70587477c74e2fcd636e4ec895
af63034901c98e2d93faa7737f9c8f52e302d88b
0e04cd9eec042868e190cbdabf2f8f0c7172dcc54ab87eb616eca14258307b4d

HTTP Headers

GET /recaptcha/releases/EGbODne6buzpTnWrrBprcfAY/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24613
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 19 Sep 2024 04:17:25 GMT
expires: Fri, 19 Sep 2025 04:17:25 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 03 Sep 2024 02:00:38 GMT
content-type: text/css
vary: Accept-Encoding
age: 1539
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/releases/EGbODne6buzpTnWrrBprcfAY/recaptcha__en.js

142.250.74.35

200 OK

217 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/EGbODne6buzpTnWrrBprcfAY/recaptcha__en.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/webworker.js?hl=en&v=EGbODne6buzpTnWrrBprcfAY
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintA8:8E:91:B3:04:E9:C9:F3:CD:3D:27:83:B0:53:22:C0:21:23:9A:92
ValidityMon, 12 Aug 2024 07:17:58 GMT - Mon, 04 Nov 2024 07:17:57 GMT

File type
data
Size
217 kB (217247 bytes)
Hash
c7be68088b0a823f1a4c1f77c702d1b4
05d42d754afd21681c0e815799b88fbe1fbabf4e
4943e91f7f53318d481ca07297395abbc52541c2be55d7276ecda152cd7ad9c3

HTTP Headers

GET /recaptcha/releases/EGbODne6buzpTnWrrBprcfAY/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 217247
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 19 Sep 2024 04:17:26 GMT
expires: Fri, 19 Sep 2025 04:17:26 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 03 Sep 2024 02:00:38 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 1538
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.google.com/recaptcha/api2/bframe?hl=en&v=EGbODne6buzpTnWrrBprcfAY&k=6LesER4UAAAAAGw1oVKPrLk_AuxiRz548wcKan1w

142.250.74.164

200 OK

1.2 kB

URL GET HTTP/3
www.google.com/recaptcha/api2/bframe?hl=en&v=EGbODne6buzpTnWrrBprcfAY&k=6LesER4UAAAAAGw1oVKPrLk_AuxiRz548wcKan1w
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Certificate
IssuerGoogle Trust Services
Subject*.google.com
Fingerprint97:72:B0:50:D3:11:5A:F7:A4:3E:14:43:9B:9B:DA:05:44:40:58:1C
ValidityMon, 12 Aug 2024 06:33:49 GMT - Mon, 04 Nov 2024 06:33:48 GMT

File type
gzip compressed data, max compression
Size
1.2 kB (1217 bytes)
Hash
174d45e36cee254e09929ead7d285835
ff9dbae6a582ea8d98db1d344c2796ca35496b07
b59935f1ec5f171a78a05be8c3a14edfc0b2e6e08710a500c90d7e7a5d00bc57

HTTP Headers

GET /recaptcha/api2/bframe?hl=en&v=EGbODne6buzpTnWrrBprcfAY&k=6LesER4UAAAAAGw1oVKPrLk_AuxiRz548wcKan1w HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.file-upload.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}, {"group":"coop_38fac9d5b82543fc4729580d18ff2d3d","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/38fac9d5b82543fc4729580d18ff2d3d"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 19 Sep 2024 04:43:04 GMT
content-security-policy: script-src 'nonce-vjTT-2GmC9HTytMiN0ZeYA' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
cross-origin-opener-policy-report-only: same-origin; report-to="coop_38fac9d5b82543fc4729580d18ff2d3d"
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

examplesclasp.com/pixel/sbs?c=1

172.240.108.68

200 OK

0 B

URL GET HTTP/1.1
examplesclasp.com/pixel/sbs?c=1
IP
172.240.108.68:443
ASN
#7979 SERVERS-COM

Requested by
https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Certificate
IssuerLet's Encrypt
Subjectexamplesclasp.com
FingerprintA0:42:9C:62:D4:04:9A:5B:B5:DE:46:80:1B:DB:46:18:79:CC:7F:DC
ValidityMon, 12 Aug 2024 09:52:03 GMT - Sun, 10 Nov 2024 09:52:02 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/sbs?c=1 HTTP/1.1
Host: examplesclasp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.file-upload.net/
Cookie: u_pl=16026741; uid_id2=e20258b7-8358-417a-b559-2dbd16799908:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecf5290245e2d0af25a9b4828613ce8328=[5462415]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 19 Sep 2024 04:43:04 GMT
Content-Length: 0
Connection: keep-alive
Host: examplesclasp.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

18 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintA8:8E:91:B3:04:E9:C9:F3:CD:3D:27:83:B0:53:22:C0:21:23:9A:92
ValidityMon, 12 Aug 2024 07:17:58 GMT - Mon, 04 Nov 2024 07:17:57 GMT

File type
Web Open Font Format (Version 2), TrueType, length 18536, version 1.0
Size
18 kB (18536 bytes)
Hash
8eff0b8045fd1959e117f85654ae7770
227fee13ceb7c410b5c0bb8000258b6643cb6255
89978e658e840b927dddb5cb3a835c7d8526ece79933bd9f3096b301fe1a8571

HTTP Headers

GET /s/roboto/v32/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.file-upload.net
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18536
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 12 Sep 2024 15:24:20 GMT
expires: Fri, 12 Sep 2025 15:24:20 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 01 Aug 2024 20:41:24 GMT
content-type: font/woff2
age: 566324
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

216.58.207.227

200 OK

19 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintA8:8E:91:B3:04:E9:C9:F3:CD:3D:27:83:B0:53:22:C0:21:23:9A:92
ValidityMon, 12 Aug 2024 07:17:58 GMT - Mon, 04 Nov 2024 07:17:57 GMT

File type
Web Open Font Format (Version 2), TrueType, length 18596, version 1.0
Size
19 kB (18596 bytes)
Hash
c83e4437a53d7f849f9d32df3d6b68f3
fabea5ad92ed3e2431659b02e7624df30d0c6bbc
d9bada3a44bb2ffa66dec5cc781cafc9ef17ed876cd9b0c5f7ef18228b63cebb

HTTP Headers

GET /s/roboto/v32/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.file-upload.net
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18596
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 12 Sep 2024 15:12:44 GMT
expires: Fri, 12 Sep 2025 15:12:44 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 01 Aug 2024 20:41:21 GMT
content-type: font/woff2
age: 567020
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

r11.o.lencr.org/

23.36.77.32

504 B

URL
r11.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
0c82d538effb135d61052d6b38f63aab
4f593777c3fa6b7efb917b516f72bf8ffc775fa7
23f3525b987f3f078c15d40289ef14d9ce12509da750ab5122d7d4a903e1c971

HTTP Headers

POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "23F3525B987F3F078C15D40289EF14D9CE12509DA750AB5122D7D4A903E1C971"
Last-Modified: Tue, 17 Sep 2024 14:46:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8512
Expires: Thu, 19 Sep 2024 07:04:57 GMT
Date: Thu, 19 Sep 2024 04:43:05 GMT
Connection: keep-alive

unseenreport.com/pxf.gif?uuid=e20258b7-8358-417a-b559-2dbd16799908&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=f5290245e2d0af25a9b4828613ce8328&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=4

192.243.59.20

200 OK

1 B

URL GET HTTP/1.1
unseenreport.com/pxf.gif?uuid=e20258b7-8358-417a-b559-2dbd16799908&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=f5290245e2d0af25a9b4828613ce8328&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=4
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Certificate
IssuerLet's Encrypt
Subject*.unseenreport.com
FingerprintD9:3D:28:C1:14:1B:2B:53:0E:E4:3E:FC:88:7A:FF:9C:45:4B:63:C7
ValiditySat, 20 Jul 2024 14:59:20 GMT - Fri, 18 Oct 2024 14:59:19 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pxf.gif?uuid=e20258b7-8358-417a-b559-2dbd16799908&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=f5290245e2d0af25a9b4828613ce8328&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=4 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.file-upload.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 19 Sep 2024 04:43:05 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: ad6d904f588ab0f53ad6f54854a4ab36
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

unseenreport.com/pxf.gif?uuid=e20258b7-8358-417a-b559-2dbd16799908&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=844a71fdf0e30c1b81395db55473a737&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=4

192.243.59.20

200 OK

1 B

URL GET HTTP/1.1
unseenreport.com/pxf.gif?uuid=e20258b7-8358-417a-b559-2dbd16799908&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=844a71fdf0e30c1b81395db55473a737&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=4
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Certificate
IssuerLet's Encrypt
Subject*.unseenreport.com
FingerprintD9:3D:28:C1:14:1B:2B:53:0E:E4:3E:FC:88:7A:FF:9C:45:4B:63:C7
ValiditySat, 20 Jul 2024 14:59:20 GMT - Fri, 18 Oct 2024 14:59:19 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pxf.gif?uuid=e20258b7-8358-417a-b559-2dbd16799908&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=844a71fdf0e30c1b81395db55473a737&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=4 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.file-upload.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 19 Sep 2024 04:43:05 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 954492b87f4c2d6660a07b91bb4cf1b9
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

www.google.com/recaptcha/api2/reload?k=6LesER4UAAAAAGw1oVKPrLk_AuxiRz548wcKan1w

142.250.74.164

200 OK

30 kB

URL POST HTTP/3
www.google.com/recaptcha/api2/reload?k=6LesER4UAAAAAGw1oVKPrLk_AuxiRz548wcKan1w
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/bframe?hl=en&v=EGbODne6buzpTnWrrBprcfAY&k=6LesER4UAAAAAGw1oVKPrLk_AuxiRz548wcKan1w
Certificate
IssuerGoogle Trust Services
Subject*.google.com
Fingerprint97:72:B0:50:D3:11:5A:F7:A4:3E:14:43:9B:9B:DA:05:44:40:58:1C
ValidityMon, 12 Aug 2024 06:33:49 GMT - Mon, 04 Nov 2024 06:33:48 GMT

File type
gzip compressed data, max compression
Size
30 kB (30187 bytes)
Hash
853889cb16ee8018746b1b5a8186f35f
c1cd8aea3e1c3e2f6960ac5fb8a97e391d30c5c5
6bcfaf8a19763d6b4bb79e7b68e4bf81987da0724a7a4ad6eb53d3bba6f7fbb8

HTTP Headers

POST /recaptcha/api2/reload?k=6LesER4UAAAAAGw1oVKPrLk_AuxiRz548wcKan1w HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-protobuffer
Content-Length: 8748
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/bframe?hl=en&v=EGbODne6buzpTnWrrBprcfAY&k=6LesER4UAAAAAGw1oVKPrLk_AuxiRz548wcKan1w
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/json; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
x-content-type-options: nosniff
cross-origin-resource-policy: same-site
cross-origin-opener-policy-report-only: same-origin; report-to="coop_38fac9d5b82543fc4729580d18ff2d3d"
report-to: {"group":"coop_38fac9d5b82543fc4729580d18ff2d3d","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/38fac9d5b82543fc4729580d18ff2d3d"}]}
content-encoding: gzip
date: Thu, 19 Sep 2024 04:43:05 GMT
server: ESF
cache-control: private
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: _GRECAPTCHA=09AGteOyoDD2-_oRm5-B20rshxDBO0k3TOIFeUpbuFo46iAaRwfuw9gliRdHfPWXutkBoC0xxw7u4so3n2PmN_yKI; Expires=Tue, 18-Mar-2025 04:43:05 GMT; Path=/recaptcha; Secure; HttpOnly; Priority=HIGH; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Thu, 19 Sep 2024 04:43:05 GMT

fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmYUtfBBc4.woff2

216.58.207.227

200 OK

15 kB

URL GET HTTP/3
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/bframe?hl=en&v=EGbODne6buzpTnWrrBprcfAY&k=6LesER4UAAAAAGw1oVKPrLk_AuxiRz548wcKan1w
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintA8:8E:91:B3:04:E9:C9:F3:CD:3D:27:83:B0:53:22:C0:21:23:9A:92
ValidityMon, 12 Aug 2024 07:17:58 GMT - Mon, 04 Nov 2024 07:17:57 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15340, version 1.0
Size
15 kB (15340 bytes)
Hash
19b7a0adfdd4f808b53af7e2ce2ad4e5
81d5d4c7b5035ad10cce63cf7100295e0c51fdda
c912a9ce0c3122d4b2b29ad26bfe06b0390d1a5bdaa5d6128692c0befd1dfbbd

HTTP Headers

GET /s/roboto/v18/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15340
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 12 Sep 2024 15:01:03 GMT
expires: Fri, 12 Sep 2025 15:01:03 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:33:16 GMT
content-type: font/woff2
age: 567722
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/3
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/bframe?hl=en&v=EGbODne6buzpTnWrrBprcfAY&k=6LesER4UAAAAAGw1oVKPrLk_AuxiRz548wcKan1w
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintA8:8E:91:B3:04:E9:C9:F3:CD:3D:27:83:B0:53:22:C0:21:23:9A:92
ValidityMon, 12 Aug 2024 07:17:58 GMT - Mon, 04 Nov 2024 07:17:57 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15552, version 1.0
Size
16 kB (15552 bytes)
Hash
285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7

HTTP Headers

GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 12 Sep 2024 15:03:54 GMT
expires: Fri, 12 Sep 2025 15:03:54 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
age: 567551
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.google.com/recaptcha/api2/payload?p=06AFcWeA5eVEvIgp-ks1CUBwBvnnwKw9IJBw7bwmUDd26a8I8B-YCpeaEm7nWfwSTCsk-e5fSBAc-ZOXeZ-uqkX1STzHjKn4tsUMrHcnbl4LFsBOf-50eutAh0Vk_e6Vg0IMzDLl5WhYbXjKTBy_1tJZTIuFamLJHb7Ib15IjQJwT9iQUI55tuCHOHgxMCgX5UoUxmb8xbxnfr&k=6LesER4UAAAAAGw1oVKPrLk_AuxiRz548wcKan1w

142.250.74.164

200 OK

32 kB

URL GET HTTP/3
www.google.com/recaptcha/api2/payload?p=06AFcWeA5eVEvIgp-ks1CUBwBvnnwKw9IJBw7bwmUDd26a8I8B-YCpeaEm7nWfwSTCsk-e5fSBAc-ZOXeZ-uqkX1STzHjKn4tsUMrHcnbl4LFsBOf-50eutAh0Vk_e6Vg0IMzDLl5WhYbXjKTBy_1tJZTIuFamLJHb7Ib15IjQJwT9iQUI55tuCHOHgxMCgX5UoUxmb8xbxnfr&k=6LesER4UAAAAAGw1oVKPrLk_AuxiRz548wcKan1w
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/bframe?hl=en&v=EGbODne6buzpTnWrrBprcfAY&k=6LesER4UAAAAAGw1oVKPrLk_AuxiRz548wcKan1w
Certificate
IssuerGoogle Trust Services
Subject*.google.com
Fingerprint97:72:B0:50:D3:11:5A:F7:A4:3E:14:43:9B:9B:DA:05:44:40:58:1C
ValidityMon, 12 Aug 2024 06:33:49 GMT - Mon, 04 Nov 2024 06:33:48 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x300, components 3
Size
32 kB (32121 bytes)
Hash
16a3755d5702b5d76822eb94a63f9e35
953f1a7e770180c360a43b76783d65f1f4ce18be
a08e0a7e59ef803aabf139792d7e110e2a3d9368a074561d8cb24bbaf7ee289c

HTTP Headers

GET /recaptcha/api2/payload?p=06AFcWeA5eVEvIgp-ks1CUBwBvnnwKw9IJBw7bwmUDd26a8I8B-YCpeaEm7nWfwSTCsk-e5fSBAc-ZOXeZ-uqkX1STzHjKn4tsUMrHcnbl4LFsBOf-50eutAh0Vk_e6Vg0IMzDLl5WhYbXjKTBy_1tJZTIuFamLJHb7Ib15IjQJwT9iQUI55tuCHOHgxMCgX5UoUxmb8xbxnfr&k=6LesER4UAAAAAGw1oVKPrLk_AuxiRz548wcKan1w HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/bframe?hl=en&v=EGbODne6buzpTnWrrBprcfAY&k=6LesER4UAAAAAGw1oVKPrLk_AuxiRz548wcKan1w
Cookie: _GRECAPTCHA=09AGteOyoDD2-_oRm5-B20rshxDBO0k3TOIFeUpbuFo46iAaRwfuw9gliRdHfPWXutkBoC0xxw7u4so3n2PmN_yKI
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: image/jpeg
expires: Thu, 19 Sep 2024 04:43:05 GMT
date: Thu, 19 Sep 2024 04:43:05 GMT
cache-control: private, max-age=30
cross-origin-opener-policy-report-only: same-origin; report-to="coop_38fac9d5b82543fc4729580d18ff2d3d"
cross-origin-resource-policy: same-site
report-to: {"group":"coop_38fac9d5b82543fc4729580d18ff2d3d","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/38fac9d5b82543fc4729580d18ff2d3d"}]}
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/api2/refresh_2x.png

142.250.74.35

200 OK

600 B

URL GET HTTP/3
www.gstatic.com/recaptcha/api2/refresh_2x.png
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/bframe?hl=en&v=EGbODne6buzpTnWrrBprcfAY&k=6LesER4UAAAAAGw1oVKPrLk_AuxiRz548wcKan1w
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintA8:8E:91:B3:04:E9:C9:F3:CD:3D:27:83:B0:53:22:C0:21:23:9A:92
ValidityMon, 12 Aug 2024 07:17:58 GMT - Mon, 04 Nov 2024 07:17:57 GMT

File type
PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced
Size
600 B (600 bytes)
Hash
0f2a4639b8a4cb30c76e8333c00d30a6
57e273a270bb864970d747c74b3f0a7c8e515b13
44b988703019cd6bfa86c91840fecf2a42b611b364e3eea2f4eb63bf62714e98

HTTP Headers

GET /recaptcha/api2/refresh_2x.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/EGbODne6buzpTnWrrBprcfAY/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 19 Sep 2024 04:34:41 GMT
expires: Thu, 26 Sep 2024 04:34:41 GMT
cache-control: public, max-age=604800
age: 504
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/api2/audio_2x.png

142.250.74.35

200 OK

530 B

URL GET HTTP/3
www.gstatic.com/recaptcha/api2/audio_2x.png
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/bframe?hl=en&v=EGbODne6buzpTnWrrBprcfAY&k=6LesER4UAAAAAGw1oVKPrLk_AuxiRz548wcKan1w
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintA8:8E:91:B3:04:E9:C9:F3:CD:3D:27:83:B0:53:22:C0:21:23:9A:92
ValidityMon, 12 Aug 2024 07:17:58 GMT - Mon, 04 Nov 2024 07:17:57 GMT

File type
PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced
Size
530 B (530 bytes)
Hash
88e0f42c9fa4f94aa8bcd54d1685c180
5ad9d47a49b82718baa3be88550a0b3350270c42
89c62095126fca89ea1511cf35b49b8306162946b0c26d6f60c5506c51d85992

HTTP Headers

GET /recaptcha/api2/audio_2x.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/EGbODne6buzpTnWrrBprcfAY/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 530
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 17 Sep 2024 12:55:25 GMT
expires: Tue, 24 Sep 2024 12:55:25 GMT
cache-control: public, max-age=604800
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
age: 143260
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/api2/info_2x.png

142.250.74.35

200 OK

665 B

URL GET HTTP/3
www.gstatic.com/recaptcha/api2/info_2x.png
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/bframe?hl=en&v=EGbODne6buzpTnWrrBprcfAY&k=6LesER4UAAAAAGw1oVKPrLk_AuxiRz548wcKan1w
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintA8:8E:91:B3:04:E9:C9:F3:CD:3D:27:83:B0:53:22:C0:21:23:9A:92
ValidityMon, 12 Aug 2024 07:17:58 GMT - Mon, 04 Nov 2024 07:17:57 GMT

File type
PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced
Size
665 B (665 bytes)
Hash
07bf314aab04047b9e9a959ee6f63da3
17bef6602672e2fd9956381e01356245144003e5
55eaf62cb05da20088dc12b39d7d254d046cb1fd61ddf3ae641f1439efd0a5ee

HTTP Headers

GET /recaptcha/api2/info_2x.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/EGbODne6buzpTnWrrBprcfAY/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 665
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 12 Sep 2024 15:17:37 GMT
expires: Thu, 19 Sep 2024 15:17:37 GMT
cache-control: public, max-age=604800
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
age: 566728
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap

216.58.207.234

200 OK

7.0 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
IP
216.58.207.234:443
ASN
#15169 GOOGLE

Requested by
https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint9F:01:79:20:AD:58:33:6E:BF:F2:BF:DA:69:ED:BD:8D:19:F9:2D:D9
ValidityMon, 12 Aug 2024 07:18:03 GMT - Mon, 04 Nov 2024 07:18:02 GMT

File type
ASCII text, with very long lines (7193), with no line terminators
Size
7.0 kB (7004 bytes)
Hash
1b9a5aaa00577f3b515cd8bdb5902734
ac084682592bdc2893faced3b83a36599817add0
19507720081a42c4fcac9da0e5a874af98db546cd9f4aa9aaf271cfb442b9030

HTTP Headers

GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 19 Sep 2024 04:43:03 GMT
date: Thu, 19 Sep 2024 04:43:03 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.gstatic.com/recaptcha/api2/logo_48.png

142.250.74.35

200 OK

2.2 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/api2/logo_48.png
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LesER4UAAAAAGw1oVKPrLk_AuxiRz548wcKan1w&co=aHR0cHM6Ly93d3cuZmlsZS11cGxvYWQubmV0OjQ0Mw..&hl=en&v=EGbODne6buzpTnWrrBprcfAY&size=invisible&cb=nshwxyykwpxp
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintA8:8E:91:B3:04:E9:C9:F3:CD:3D:27:83:B0:53:22:C0:21:23:9A:92
ValidityMon, 12 Aug 2024 07:17:58 GMT - Mon, 04 Nov 2024 07:17:57 GMT

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced
Size
2.2 kB (2228 bytes)
Hash
ef9941290c50cd3866e2ba6b793f010d
4736508c795667dcea21f8d864233031223b7832
1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a

HTTP Headers

GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/EGbODne6buzpTnWrrBprcfAY/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 17 Sep 2024 18:07:15 GMT
expires: Tue, 24 Sep 2024 18:07:15 GMT
cache-control: public, max-age=604800
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
age: 124548
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

examplesclasp.com/impr.gif?sid=H4sIAAAAAAAC%2F1RST4gbVRh%2F2a6nXmwpeBAhBwUFk85MMsnEHopr3Vpa29JV1FN5%2F2b7zMu88b2ZTBovxYL0IBiLIN5mf9m26JaqNw9aJCmIFISNB1nEBc8eFU8KkrgY%2FWD4vt%2F3%2BwZ%2B3%2B99727l%2B6SBnO6detkMldb0eFj3qk%2B%2F7vsnqudUkg%2Bqg6h1udU8UbX95zqtuvdM9bTkXXM88HzP8z2%2Fuq6sjM3g%2BJyESu92%2FHrHqzeDuh82MbD%2Fxy6vwNEKRH%2BfHIUSs9UHlWNQfIKk9%2Fkp6bqZSZ99sZdrmhmLvrjzatJNTJGgtyxjW0Gc3DmYhnG76%2FdhklsLuTD9fweZmpHKt%2FfBkjsHIsH62wudTEMmYOIwiv4EUk%2Bg6ATcXIcSuwTgAucvIOndPm9sQa%2F%2Bw9I5OyOrf%2FwGVczI6s%2FHkPTurWk1qG4YnWfKJA6DuIQaTKA2J0jzKbLhClQxBc%2FegRLfE%2B%2Bxw0h6Oy9Nv%2ByrbrUvbRdK7D0pAy8II9auRY0wqjX9Nq2xMOzUAsGE32p3Oh0vWvik1AQqnkDLEairIJ9%2FqoI8riBPK%2BiJvSr3fb%2FtCU69qMN5Q7QlawnPp%2B3Yp77XipDz%2BSojZOkIXI%2FA7TWk9hq66oPd8Chs%2Fg3clRJOVOAygr4oUUiCwhEUlKBQBEVGUPTLW0K7wJW3hXY58w9ycJAb5dhkm1v0lsk2ZUJA7QhWlNsqfctdB88OjYexOzs2sRNb6T45srD39%2FdydOVeNQ6Djhc0QxkIj8ZBSDusGQVRy29wGTWCCE7trG3U%2FCCs%2Bf5lH8qtLAwZzl%2F9kQypmhHy03dgdAqnp%2BDqCGj%2BBGhRgl4pMUw%2Bi5WWtTzVhop6IjMIUyLNVpFdrWzpffL4Qs%2FGG%2B9D8ocnPxz%2BcvresbfBbYnUlnhTPSDY1DfGl0xBti%2BZwpEvLqSZ6qkhnZ%2FCRkYzeejTs%2FJqYaw4c8qNPnmez4l5efcV6bJzNBEq2XRkZ00JIe26sVySr8%2B41yS7mLsra7lN8vTcxRfWz%2FRSK51TJpmAzvd76i9wNSOPfvXn4srrH0%2Bh7AQ2L9HLH5KDgDJT8PQaXLrsOUNg9RKztIIiL8c2YMumVgRaLjFlJdx%2FMFvWY0vnf1NVbrkb2LQroNl1JL0SfVuir0tQPYLLD42z1D48%2BUNjEWB6Zcy0Xdlm2uqbC5tn5OxHN%2BHUXrXhiTaTsWwz2QybseSChSHzeMxZQ0QRR%2BZm8a87P%2F4dAAD%2F%2F1vAMdK%2FBAAA

172.240.253.132

200 OK

0 B

URL GET HTTP/1.1
examplesclasp.com/impr.gif?sid=H4sIAAAAAAAC%2F1RST4gbVRh%2F2a6nXmwpeBAhBwUFk85MMsnEHopr3Vpa29JV1FN5%2F2b7zMu88b2ZTBovxYL0IBiLIN5mf9m26JaqNw9aJCmIFISNB1nEBc8eFU8KkrgY%2FWD4vt%2F3%2BwZ%2B3%2B99727l%2B6SBnO6detkMldb0eFj3qk%2B%2F7vsnqudUkg%2Bqg6h1udU8UbX95zqtuvdM9bTkXXM88HzP8z2%2Fuq6sjM3g%2BJyESu92%2FHrHqzeDuh82MbD%2Fxy6vwNEKRH%2BfHIUSs9UHlWNQfIKk9%2Fkp6bqZSZ99sZdrmhmLvrjzatJNTJGgtyxjW0Gc3DmYhnG76%2FdhklsLuTD9fweZmpHKt%2FfBkjsHIsH62wudTEMmYOIwiv4EUk%2Bg6ATcXIcSuwTgAucvIOndPm9sQa%2F%2Bw9I5OyOrf%2FwGVczI6s%2FHkPTurWk1qG4YnWfKJA6DuIQaTKA2J0jzKbLhClQxBc%2FegRLfE%2B%2Bxw0h6Oy9Nv%2ByrbrUvbRdK7D0pAy8II9auRY0wqjX9Nq2xMOzUAsGE32p3Oh0vWvik1AQqnkDLEairIJ9%2FqoI8riBPK%2BiJvSr3fb%2FtCU69qMN5Q7QlawnPp%2B3Yp77XipDz%2BSojZOkIXI%2FA7TWk9hq66oPd8Chs%2Fg3clRJOVOAygr4oUUiCwhEUlKBQBEVGUPTLW0K7wJW3hXY58w9ycJAb5dhkm1v0lsk2ZUJA7QhWlNsqfctdB88OjYexOzs2sRNb6T45srD39%2FdydOVeNQ6Djhc0QxkIj8ZBSDusGQVRy29wGTWCCE7trG3U%2FCCs%2Bf5lH8qtLAwZzl%2F9kQypmhHy03dgdAqnp%2BDqCGj%2BBGhRgl4pMUw%2Bi5WWtTzVhop6IjMIUyLNVpFdrWzpffL4Qs%2FGG%2B9D8ocnPxz%2BcvresbfBbYnUlnhTPSDY1DfGl0xBti%2BZwpEvLqSZ6qkhnZ%2FCRkYzeejTs%2FJqYaw4c8qNPnmez4l5efcV6bJzNBEq2XRkZ00JIe26sVySr8%2B41yS7mLsra7lN8vTcxRfWz%2FRSK51TJpmAzvd76i9wNSOPfvXn4srrH0%2Bh7AQ2L9HLH5KDgDJT8PQaXLrsOUNg9RKztIIiL8c2YMumVgRaLjFlJdx%2FMFvWY0vnf1NVbrkb2LQroNl1JL0SfVuir0tQPYLLD42z1D48%2BUNjEWB6Zcy0Xdlm2uqbC5tn5OxHN%2BHUXrXhiTaTsWwz2QybseSChSHzeMxZQ0QRR%2BZm8a87P%2F4dAAD%2F%2F1vAMdK%2FBAAA
IP
172.240.253.132:443
ASN
#7979 SERVERS-COM

Requested by
https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Certificate
IssuerLet's Encrypt
Subjectexamplesclasp.com
FingerprintA0:42:9C:62:D4:04:9A:5B:B5:DE:46:80:1B:DB:46:18:79:CC:7F:DC
ValidityMon, 12 Aug 2024 09:52:03 GMT - Sun, 10 Nov 2024 09:52:02 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /impr.gif?sid=H4sIAAAAAAAC%2F1RST4gbVRh%2F2a6nXmwpeBAhBwUFk85MMsnEHopr3Vpa29JV1FN5%2F2b7zMu88b2ZTBovxYL0IBiLIN5mf9m26JaqNw9aJCmIFISNB1nEBc8eFU8KkrgY%2FWD4vt%2F3%2BwZ%2B3%2B99727l%2B6SBnO6detkMldb0eFj3qk%2B%2F7vsnqudUkg%2Bqg6h1udU8UbX95zqtuvdM9bTkXXM88HzP8z2%2Fuq6sjM3g%2BJyESu92%2FHrHqzeDuh82MbD%2Fxy6vwNEKRH%2BfHIUSs9UHlWNQfIKk9%2Fkp6bqZSZ99sZdrmhmLvrjzatJNTJGgtyxjW0Gc3DmYhnG76%2FdhklsLuTD9fweZmpHKt%2FfBkjsHIsH62wudTEMmYOIwiv4EUk%2Bg6ATcXIcSuwTgAucvIOndPm9sQa%2F%2Bw9I5OyOrf%2FwGVczI6s%2FHkPTurWk1qG4YnWfKJA6DuIQaTKA2J0jzKbLhClQxBc%2FegRLfE%2B%2Bxw0h6Oy9Nv%2ByrbrUvbRdK7D0pAy8II9auRY0wqjX9Nq2xMOzUAsGE32p3Oh0vWvik1AQqnkDLEairIJ9%2FqoI8riBPK%2BiJvSr3fb%2FtCU69qMN5Q7QlawnPp%2B3Yp77XipDz%2BSojZOkIXI%2FA7TWk9hq66oPd8Chs%2Fg3clRJOVOAygr4oUUiCwhEUlKBQBEVGUPTLW0K7wJW3hXY58w9ycJAb5dhkm1v0lsk2ZUJA7QhWlNsqfctdB88OjYexOzs2sRNb6T45srD39%2FdydOVeNQ6Djhc0QxkIj8ZBSDusGQVRy29wGTWCCE7trG3U%2FCCs%2Bf5lH8qtLAwZzl%2F9kQypmhHy03dgdAqnp%2BDqCGj%2BBGhRgl4pMUw%2Bi5WWtTzVhop6IjMIUyLNVpFdrWzpffL4Qs%2FGG%2B9D8ocnPxz%2BcvresbfBbYnUlnhTPSDY1DfGl0xBti%2BZwpEvLqSZ6qkhnZ%2FCRkYzeejTs%2FJqYaw4c8qNPnmez4l5efcV6bJzNBEq2XRkZ00JIe26sVySr8%2B41yS7mLsra7lN8vTcxRfWz%2FRSK51TJpmAzvd76i9wNSOPfvXn4srrH0%2Bh7AQ2L9HLH5KDgDJT8PQaXLrsOUNg9RKztIIiL8c2YMumVgRaLjFlJdx%2FMFvWY0vnf1NVbrkb2LQroNl1JL0SfVuir0tQPYLLD42z1D48%2BUNjEWB6Zcy0Xdlm2uqbC5tn5OxHN%2BHUXrXhiTaTsWwz2QybseSChSHzeMxZQ0QRR%2BZm8a87P%2F4dAAD%2F%2F1vAMdK%2FBAAA HTTP/1.1
Host: examplesclasp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.file-upload.net/
Cookie: u_pl=16026741; uid_id2=e20258b7-8358-417a-b559-2dbd16799908:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecf5290245e2d0af25a9b4828613ce8328=[5462415]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 19 Sep 2024 04:43:04 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: examplesclasp.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 56a5d29f12362ec5666a80480ded3ea0
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

capaciousdrewreligion.com/advertisers.js

185.196.197.72

200 OK

0 B

URL GET HTTP/1.1
capaciousdrewreligion.com/advertisers.js
IP
185.196.197.72:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Certificate
IssuerLet's Encrypt
Subjectcapaciousdrewreligion.com
FingerprintE3:36:E7:35:50:1D:3D:F0:47:9F:E5:94:90:B5:48:C0:67:A2:2B:8A
ValidityTue, 03 Sep 2024 21:28:57 GMT - Mon, 02 Dec 2024 21:28:56 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /advertisers.js HTTP/1.1
Host: capaciousdrewreligion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.file-upload.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 19 Sep 2024 04:43:02 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 01f95badada6b1f1ab0400b97780b535
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

examplesclasp.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSTYgcRRSu3qynXEwIeBBhDgoKzqS7Z7qnxxyCa9wYEpOQVdRTqO6qnpRT09VW9c9kvAQDkoPgGATx1vvNJotuiHrzoEFmAiILwo4HWcQFzx4VTwoy4%2BLog%2Ba9732v4XtfvXc38wPSRE73z7yshkJKetJr2LWnX3ecU7ULIskHtUHgX%2FVbp2q6eK7jN%2Bxnamd51FMnXduxbcd2autC81gNTs5JiPRex2l07EbLbTheCwP9f2xyC4ZaYMUBOQ7BZqsPrRMQ0QRJ%2F%2FMz3PQylT77Yj%2BXNFMaBdt%2BNeklqkzQX5axthAn24fTUGZv%2FQFUcmchF6r4dzAUM2J9%2BwBhsn0oEmGxtdAZSvAEITuKspiAywkEnSBSNyHYHgEihouXkPTvXlS6pNf%2FYemcnZHVP36DKGdk9ecTSPr316QY1DaUzDOhEoNBXEEMJhDdCdJ8imy4AlFOEWXvQLDvif3YUST9nZemXxaiVyu47kGw%2FSe5a7teELbrQdML6i2nTeuh53XqLguZ47c7nY4dLHwSYgIRTyD5CNRYyOefsJDHFvLUQp%2Ft1yLHcdo2i6gddKKoydo89Jnt0HbsUMf2A%2BTRfJURsnSESI4Q6RtI9Q30xAd73nHo%2FBuYaxUMs2AygoJVKDlBaQhKSlAKgjIjKIvqDpPGNdVdJk0eOofZPczNaqyy7ia9o7IuTwioHkGzakukb5mbiLIj42Fszo9VbNhmekCOLez9%2Fb0cPb5fiz23Y7stj7vMprHr0U7YCtzAd5oRD5puACN21jbqjuvVHeeqA2FWFoYM56%2F%2BSIZUzAj56TuEdAojp4jEMdD8CdCyAr1WYZh8FgvJ63kqFWWNhGdgqkKarSK7bm3KA%2FL4Qs%2FGG%2B%2BDR7unPxz%2Bcvb%2BibcR6QqprvCmeEjQlbfGV1RJtq6o0pAvLqWZ6IshnZ%2FCRkYzfuTT8%2Fx6qTQ7d8aMPnk%2BmhPz8t4r3GQXaMJE0jVkZ00wxvW60hEnX58zr%2FHwcm6ureU6ydMLl19YP9dPNTdGqGQCOt%2Fvqb8QiRl59Ks%2FF1fe%2BHgKoSfQeYV%2BvksOA0JNEaU3YNJlzygCLZc4TC2UeTXWbrhsSkEg%2BRLTsIL5Dw6X9VjT%2Bd9UVJvmFrp6BTS7iaRfodAVClmByhFMfmScpXr39A%2FNRSCUK%2BNQ6pWtUGp5e2HzjJz%2F6DaM2K%2B1m02b%2Bh3Pabcpb4ctN4h9h1HqtnzX92kTmZnFv%2B78%2BHcAAAD%2F%2F9sU5Dq%2FBAAA

172.240.253.132

200 OK

0 B

URL GET HTTP/1.1
examplesclasp.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSTYgcRRSu3qynXEwIeBBhDgoKzqS7Z7qnxxyCa9wYEpOQVdRTqO6qnpRT09VW9c9kvAQDkoPgGATx1vvNJotuiHrzoEFmAiILwo4HWcQFzx4VTwoy4%2BLog%2Ba9732v4XtfvXc38wPSRE73z7yshkJKetJr2LWnX3ecU7ULIskHtUHgX%2FVbp2q6eK7jN%2Bxnamd51FMnXduxbcd2autC81gNTs5JiPRex2l07EbLbTheCwP9f2xyC4ZaYMUBOQ7BZqsPrRMQ0QRJ%2F%2FMz3PQylT77Yj%2BXNFMaBdt%2BNeklqkzQX5axthAn24fTUGZv%2FQFUcmchF6r4dzAUM2J9%2BwBhsn0oEmGxtdAZSvAEITuKspiAywkEnSBSNyHYHgEihouXkPTvXlS6pNf%2FYemcnZHVP36DKGdk9ecTSPr316QY1DaUzDOhEoNBXEEMJhDdCdJ8imy4AlFOEWXvQLDvif3YUST9nZemXxaiVyu47kGw%2FSe5a7teELbrQdML6i2nTeuh53XqLguZ47c7nY4dLHwSYgIRTyD5CNRYyOefsJDHFvLUQp%2Ft1yLHcdo2i6gddKKoydo89Jnt0HbsUMf2A%2BTRfJURsnSESI4Q6RtI9Q30xAd73nHo%2FBuYaxUMs2AygoJVKDlBaQhKSlAKgjIjKIvqDpPGNdVdJk0eOofZPczNaqyy7ia9o7IuTwioHkGzakukb5mbiLIj42Fszo9VbNhmekCOLez9%2Fb0cPb5fiz23Y7stj7vMprHr0U7YCtzAd5oRD5puACN21jbqjuvVHeeqA2FWFoYM56%2F%2BSIZUzAj56TuEdAojp4jEMdD8CdCyAr1WYZh8FgvJ63kqFWWNhGdgqkKarSK7bm3KA%2FL4Qs%2FGG%2B%2BDR7unPxz%2Bcvb%2BibcR6QqprvCmeEjQlbfGV1RJtq6o0pAvLqWZ6IshnZ%2FCRkYzfuTT8%2Fx6qTQ7d8aMPnk%2BmhPz8t4r3GQXaMJE0jVkZ00wxvW60hEnX58zr%2FHwcm6ureU6ydMLl19YP9dPNTdGqGQCOt%2Fvqb8QiRl59Ks%2FF1fe%2BHgKoSfQeYV%2BvksOA0JNEaU3YNJlzygCLZc4TC2UeTXWbrhsSkEg%2BRLTsIL5Dw6X9VjT%2Bd9UVJvmFrp6BTS7iaRfodAVClmByhFMfmScpXr39A%2FNRSCUK%2BNQ6pWtUGp5e2HzjJz%2F6DaM2K%2B1m02b%2Bh3Pabcpb4ctN4h9h1HqtnzX92kTmZnFv%2B78%2BHcAAAD%2F%2F9sU5Dq%2FBAAA
IP
172.240.253.132:443
ASN
#7979 SERVERS-COM

Requested by
https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Certificate
IssuerLet's Encrypt
Subjectexamplesclasp.com
FingerprintA0:42:9C:62:D4:04:9A:5B:B5:DE:46:80:1B:DB:46:18:79:CC:7F:DC
ValidityMon, 12 Aug 2024 09:52:03 GMT - Sun, 10 Nov 2024 09:52:02 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSTYgcRRSu3qynXEwIeBBhDgoKzqS7Z7qnxxyCa9wYEpOQVdRTqO6qnpRT09VW9c9kvAQDkoPgGATx1vvNJotuiHrzoEFmAiILwo4HWcQFzx4VTwoy4%2BLog%2Ba9732v4XtfvXc38wPSRE73z7yshkJKetJr2LWnX3ecU7ULIskHtUHgX%2FVbp2q6eK7jN%2Bxnamd51FMnXduxbcd2autC81gNTs5JiPRex2l07EbLbTheCwP9f2xyC4ZaYMUBOQ7BZqsPrRMQ0QRJ%2F%2FMz3PQylT77Yj%2BXNFMaBdt%2BNeklqkzQX5axthAn24fTUGZv%2FQFUcmchF6r4dzAUM2J9%2BwBhsn0oEmGxtdAZSvAEITuKspiAywkEnSBSNyHYHgEihouXkPTvXlS6pNf%2FYemcnZHVP36DKGdk9ecTSPr316QY1DaUzDOhEoNBXEEMJhDdCdJ8imy4AlFOEWXvQLDvif3YUST9nZemXxaiVyu47kGw%2FSe5a7teELbrQdML6i2nTeuh53XqLguZ47c7nY4dLHwSYgIRTyD5CNRYyOefsJDHFvLUQp%2Ft1yLHcdo2i6gddKKoydo89Jnt0HbsUMf2A%2BTRfJURsnSESI4Q6RtI9Q30xAd73nHo%2FBuYaxUMs2AygoJVKDlBaQhKSlAKgjIjKIvqDpPGNdVdJk0eOofZPczNaqyy7ia9o7IuTwioHkGzakukb5mbiLIj42Fszo9VbNhmekCOLez9%2Fb0cPb5fiz23Y7stj7vMprHr0U7YCtzAd5oRD5puACN21jbqjuvVHeeqA2FWFoYM56%2F%2BSIZUzAj56TuEdAojp4jEMdD8CdCyAr1WYZh8FgvJ63kqFWWNhGdgqkKarSK7bm3KA%2FL4Qs%2FGG%2B%2BDR7unPxz%2Bcvb%2BibcR6QqprvCmeEjQlbfGV1RJtq6o0pAvLqWZ6IshnZ%2FCRkYzfuTT8%2Fx6qTQ7d8aMPnk%2BmhPz8t4r3GQXaMJE0jVkZ00wxvW60hEnX58zr%2FHwcm6ureU6ydMLl19YP9dPNTdGqGQCOt%2Fvqb8QiRl59Ks%2FF1fe%2BHgKoSfQeYV%2BvksOA0JNEaU3YNJlzygCLZc4TC2UeTXWbrhsSkEg%2BRLTsIL5Dw6X9VjT%2Bd9UVJvmFrp6BTS7iaRfodAVClmByhFMfmScpXr39A%2FNRSCUK%2BNQ6pWtUGp5e2HzjJz%2F6DaM2K%2B1m02b%2Bh3Pabcpb4ctN4h9h1HqtnzX92kTmZnFv%2B78%2BHcAAAD%2F%2F9sU5Dq%2FBAAA HTTP/1.1
Host: examplesclasp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.file-upload.net/
Cookie: u_pl=16026741; uid_id2=e20258b7-8358-417a-b559-2dbd16799908:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecf5290245e2d0af25a9b4828613ce8328=[5462415]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 19 Sep 2024 04:43:03 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: examplesclasp.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: ed470f0e10ae78b534f2e05345455147
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

examplesclasp.com/pixel/sbls?bv=24.38.5572&tmpl=482&u=https%3A%2F%2Fcdn.show-sb.com%2Fsb%2Fau%2Fbb%2F09%2F20%2Fbb0920e920b04fdebd2119739150c93c%2F1698574651.html&l=1777&fd=236

172.240.253.132

200 OK

0 B

URL GET HTTP/1.1
examplesclasp.com/pixel/sbls?bv=24.38.5572&tmpl=482&u=https%3A%2F%2Fcdn.show-sb.com%2Fsb%2Fau%2Fbb%2F09%2F20%2Fbb0920e920b04fdebd2119739150c93c%2F1698574651.html&l=1777&fd=236
IP
172.240.253.132:443
ASN
#7979 SERVERS-COM

Requested by
https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Certificate
IssuerLet's Encrypt
Subjectexamplesclasp.com
FingerprintA0:42:9C:62:D4:04:9A:5B:B5:DE:46:80:1B:DB:46:18:79:CC:7F:DC
ValidityMon, 12 Aug 2024 09:52:03 GMT - Sun, 10 Nov 2024 09:52:02 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=24.38.5572&tmpl=482&u=https%3A%2F%2Fcdn.show-sb.com%2Fsb%2Fau%2Fbb%2F09%2F20%2Fbb0920e920b04fdebd2119739150c93c%2F1698574651.html&l=1777&fd=236 HTTP/1.1
Host: examplesclasp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.file-upload.net/
Cookie: u_pl=16026741; uid_id2=e20258b7-8358-417a-b559-2dbd16799908:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecf5290245e2d0af25a9b4828613ce8328=[5462415]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 19 Sep 2024 04:43:03 GMT
Content-Length: 0
Connection: keep-alive
Host: examplesclasp.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html

172.67.69.252

200 OK

12 kB

URL User Request GET HTTP/2
www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
IP
172.67.69.252:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectfile-upload.net
Fingerprint63:F7:CF:98:C0:B7:39:66:0D:CE:82:DB:7A:B7:0C:9C:14:19:E9:B8
ValidityThu, 12 Sep 2024 03:57:43 GMT - Wed, 11 Dec 2024 03:57:42 GMT

File type

Size
12 kB (12383 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /download-15249914/AnikaGrace-celebjared.net.zip.html HTTP/1.1
Host: www.file-upload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 19 Sep 2024 04:43:01 GMT
content-type: text/html; charset=UTF-8
set-cookie: PHPSESSID=oa14ceo84po6f3snqh62k6lagn; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VjtzQK7k9G%2FObOQUtvY%2F47FU3uQ8kIvO%2F4oZYYYkcOZugWE38vve2BOn%2FJ8NMDBgcS65XgGw5qBMWUxQ9xRIl01Uzn%2BZupFp0hkokBCC5xTNF6Y7%2F6uzChamZpF9liy8CUo3CC4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8c56e9933a920b31-OSL
content-encoding: br
X-Firefox-Spdy: h2

examplesclasp.com/pixel/sbls?bv=24.38.5572&tmpl=482&u=https%3A%2F%2Fcdn.creative-stat1.com%2Fsb%2Fssp%2Finterstitial%2Fcenter_banner%2F2%2Fjs%2Fscript.js&l=975&fd=132

172.240.253.132

200 OK

0 B

URL GET HTTP/1.1
examplesclasp.com/pixel/sbls?bv=24.38.5572&tmpl=482&u=https%3A%2F%2Fcdn.creative-stat1.com%2Fsb%2Fssp%2Finterstitial%2Fcenter_banner%2F2%2Fjs%2Fscript.js&l=975&fd=132
IP
172.240.253.132:443
ASN
#7979 SERVERS-COM

Requested by
https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Certificate
IssuerLet's Encrypt
Subjectexamplesclasp.com
FingerprintA0:42:9C:62:D4:04:9A:5B:B5:DE:46:80:1B:DB:46:18:79:CC:7F:DC
ValidityMon, 12 Aug 2024 09:52:03 GMT - Sun, 10 Nov 2024 09:52:02 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=24.38.5572&tmpl=482&u=https%3A%2F%2Fcdn.creative-stat1.com%2Fsb%2Fssp%2Finterstitial%2Fcenter_banner%2F2%2Fjs%2Fscript.js&l=975&fd=132 HTTP/1.1
Host: examplesclasp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.file-upload.net/
Cookie: u_pl=16026741; uid_id2=e20258b7-8358-417a-b559-2dbd16799908:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecf5290245e2d0af25a9b4828613ce8328=[5462415]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 19 Sep 2024 04:43:04 GMT
Content-Length: 0
Connection: keep-alive
Host: examplesclasp.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

cdn.creative-stat1.com/sb/ssp/interstitial/center_banner/2/img/close.svg

188.114.96.1

200 OK

2.5 kB

URL GET HTTP/3
cdn.creative-stat1.com/sb/ssp/interstitial/center_banner/2/img/close.svg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Certificate
IssuerGoogle Trust Services
Subjectcreative-stat1.com
FingerprintF8:81:29:04:51:9E:EB:84:A7:36:0A:98:7D:E7:09:9D:A2:5D:A7:79
ValidityTue, 20 Aug 2024 16:31:08 GMT - Mon, 18 Nov 2024 16:31:07 GMT

File type
SVG Scalable Vector Graphics image
Size
2.5 kB (2503 bytes)
Hash
d05ebade4b5acd19668c0e26c2252d14
ced1fb92de4c6e06f54946dbf03349d7e8337150
0538059a2b31e76581ee1c105ef9c138a6a6c02a6f44363fad6650be18587fea

HTTP Headers

GET /sb/ssp/interstitial/center_banner/2/img/close.svg HTTP/1.1
Host: cdn.creative-stat1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 19 Sep 2024 04:43:03 GMT
content-type: image/svg+xml
last-modified: Fri, 19 Jan 2024 14:19:45 GMT
etag: W/"65aa8501-9c7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 33832
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=p5uM%2F6pGmrRndne701SAqap4KRz1z24JUdZZTaCT7eNlQI8A%2Fr9REbDbkj%2BmWee%2BC3tQB5%2FXD9ZCk7yg1gB0HMxZyMbLjh3DKGFk%2BWLNmuvvj6ybFi8nBVPNLU8JsU9UFlWJkFjl82mt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8c56e9a4388156ab-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.creative-stat1.com/sb/ssp/interstitial/center_banner/2/js/jquery.min.js

188.114.96.1

200 OK

84 kB

URL GET HTTP/3
cdn.creative-stat1.com/sb/ssp/interstitial/center_banner/2/js/jquery.min.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Certificate
IssuerGoogle Trust Services
Subjectcreative-stat1.com
FingerprintF8:81:29:04:51:9E:EB:84:A7:36:0A:98:7D:E7:09:9D:A2:5D:A7:79
ValidityTue, 20 Aug 2024 16:31:08 GMT - Mon, 18 Nov 2024 16:31:07 GMT

File type
JavaScript source, ASCII text, with very long lines (32025), with CRLF line terminators
Size
84 kB (84384 bytes)
Hash
6326c600df01e3bfb9b40e1aa08176f8
6b4fb754d29b297b539bf62ba9b4eaf0f33f314a
df34524351c5fabc921a89183b5da5667aebd7b9e9a1c52255c76ff722935ea3

HTTP Headers

GET /sb/ssp/interstitial/center_banner/2/js/jquery.min.js HTTP/1.1
Host: cdn.creative-stat1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 19 Sep 2024 04:43:03 GMT
content-type: application/javascript
last-modified: Fri, 19 Jan 2024 14:19:45 GMT
etag: W/"65aa8501-149a0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 117249
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JDlgH6li8goWtQnNdi3YP%2FzH06sEj4IsbPZeCewuxEKBpkq5yXnjQL8h0Nbc35jJTrw4Q%2Bpv%2FP3GSyMfNmFBekZXkA348cPCYWHpc3FP8OuhH32Mb7eBpGdEBPXSaLimpvDUNV08Cdjq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8c56e9a4489556ab-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.google.com/recaptcha/api.js

142.250.74.164

200 OK

870 B

URL GET HTTP/2
www.google.com/recaptcha/api.js
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Certificate
IssuerGoogle Trust Services
Subjectwww.google.com
Fingerprint8C:22:1C:CB:12:29:80:FE:65:17:C7:64:C1:F6:8E:07:EB:34:A8:42
ValidityMon, 12 Aug 2024 07:19:41 GMT - Mon, 04 Nov 2024 07:19:40 GMT

File type
JavaScript source, ASCII text, with very long lines (870), with no line terminators
Size
870 B (870 bytes)
Hash
db3f5a748364d84b2b5f75e3d4e851d0
17b34ff20d429abee726b4b74530e5af2819f7bc
343ed5ecd144d781de67aa8638b1ca4fce5772faedbb72720daacb250884f4e1

HTTP Headers

GET /recaptcha/api.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.file-upload.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
expires: Thu, 19 Sep 2024 04:43:01 GMT
date: Thu, 19 Sep 2024 04:43:01 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="coop_38fac9d5b82543fc4729580d18ff2d3d"
report-to: {"group":"coop_38fac9d5b82543fc4729580d18ff2d3d","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/38fac9d5b82543fc4729580d18ff2d3d"}]}
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.file-upload.net/favicon.ico

172.67.69.252

200 OK

3.6 kB

URL GET HTTP/2
www.file-upload.net/favicon.ico
IP
172.67.69.252:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Certificate
IssuerGoogle Trust Services
Subjectfile-upload.net
Fingerprint63:F7:CF:98:C0:B7:39:66:0D:CE:82:DB:7A:B7:0C:9C:14:19:E9:B8
ValidityThu, 12 Sep 2024 03:57:43 GMT - Wed, 11 Dec 2024 03:57:42 GMT

File type
MS Windows icon resource - 2 icons, 16x16, 32x32
Size
3.6 kB (3638 bytes)
Hash
f70d80eb3040b290b126d0aac3552a7b
c6e6b99d752f7335001f39af43ac35698e820fd8
f04d8029743b393491cafc284afd80b7212fdd7d60f9b681bb316546c5f7b5e8

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.file-upload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Cookie: PHPSESSID=oa14ceo84po6f3snqh62k6lagn; cookie_consent_level=%7B%22strictly-necessary%22%3Atrue%2C%22functionality%22%3Afalse%2C%22tracking%22%3Afalse%2C%22targeting%22%3Afalse%7D; dom3ic8zudi28v8lr6fgphwffqoz0j6c=e20258b7-8358-417a-b559-2dbd16799908%3A1%3A1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 19 Sep 2024 04:43:02 GMT
content-type: image/vnd.microsoft.icon
last-modified: Mon, 09 Sep 2013 20:39:35 GMT
etag: W/"e36-4e5f962de8e76"
cache-control: max-age=2678400
expires: Tue, 15 Oct 2024 15:01:10 GMT
cf-cache-status: HIT
age: 394912
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=C26pGIrH9Z6%2BOtuldC8BEikRvKlAtIeSbK%2BY0zkm8R%2F0557yV7qdB1PgJNGBVIr%2BAzBI5pLbfNiataFNA80lVu2uQaIte5nDPYhAsr94H94OJ%2B8pB5lWe7s4JIwsaNqldYIHTOk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8c56e99dfcc90b31-OSL
content-encoding: br
X-Firefox-Spdy: h2

cdn.creative-stat1.com/sb/ssp/interstitial/center_banner/2/css/style.css

188.114.96.1

200 OK

4.3 kB

URL GET HTTP/2
cdn.creative-stat1.com/sb/ssp/interstitial/center_banner/2/css/style.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.file-upload.net/download-15249914/AnikaGrace-celebjared.net.zip.html
Certificate
IssuerGoogle Trust Services
Subjectcreative-stat1.com
FingerprintF8:81:29:04:51:9E:EB:84:A7:36:0A:98:7D:E7:09:9D:A2:5D:A7:79
ValidityTue, 20 Aug 2024 16:31:08 GMT - Mon, 18 Nov 2024 16:31:07 GMT

File type
ASCII text, with very long lines (4467), with no line terminators
Size
4.3 kB (4256 bytes)
Hash
e33e809f2279220b3f8bc46acdf81a4d
2a09c94d4901ce3373c7b5311589edba5a4d7be5
ab8d29170e5a2787b1033df15b4e35b9f485ebdbbee469d09468f9f64ae6735a

HTTP Headers

GET /sb/ssp/interstitial/center_banner/2/css/style.css HTTP/1.1
Host: cdn.creative-stat1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.file-upload.net
DNT: 1
Connection: keep-alive
Referer: https://www.file-upload.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 19 Sep 2024 04:43:04 GMT
content-type: text/css
last-modified: Fri, 19 Jan 2024 14:19:45 GMT
etag: W/"65aa8501-10a0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9b1BbcaF%2Bz2P67F%2FBsA7OazaCWBihHGN4hYWvQr7CNxG88z8qKMH%2BXHqUG0KXwcflc4f0L%2F9vgLZC9NzJ8P8IYAPYWRBJK72xqRtAWv74BpNZxmefEVOx9cIjqx0EtZAMpu5vicAe39g"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8c56e9a3af3856c6-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (27)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash