Report - frdl.to/luef8xlhrvzu/Jenadammaya.zip.html

Report Overview

Submitted URL
frdl.to/luef8xlhrvzu/Jenadammaya.zip.html
IP
185.178.208.141
ASN
#57724 Ddos-Guard Ltd
Submitted
2024-04-18 05:35:20
Access
public
Website Title
Download Jenadammaya zip
Final URL
frdl.to/luef8xlhrvzu/Jenadammaya.zip.html
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
arvigorothan.com	unknown	2023-10-19	2023-10-19	2024-04-13	393 B	29 kB	172.67.150.119
dugraukeeck.net	unknown	unknown	No data	No data	443 B	2.8 kB	139.45.197.243
awhauchoa.net	unknown	unknown	No data	No data	1.1 kB	3.8 kB	139.45.197.243
waust.at	38137	unknown	2016-01-28	2024-04-16	381 B	16 kB	104.26.4.7
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17	2024-04-17	431 B	7.7 kB	104.17.24.14
frdl.to	unknown	unknown	2023-11-15	2024-03-04	6.4 kB	407 kB	185.178.208.141
freedl.ink	unknown	2023-08-15	2023-08-22	2024-02-20	436 B	4.8 kB	188.114.96.1
www.googletagmanager.com	75	2011-11-11	2013-05-22	2024-04-18	414 B	101 kB	142.250.74.168
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-04-18	977 B	31 kB	216.58.207.234
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-04-18	1.6 kB	102 kB	142.250.74.163
t.dtscout.com	11951	2013-11-01	2017-01-30	2024-04-11	960 B	3.7 kB	141.101.120.10
my.rtmark.net	9054	2014-10-29	2015-02-04	2024-04-17	449 B	738 B	139.45.195.8

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-18	medium	arvigorothan.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (22)

	URL	Size	First Seen	Last Seen
	frdl.to/xfst_theme2/js/script.js	520 B	2023-03-26	2024-04-18
Pretty URL frdl.to/xfst_theme2/js/script.js IP 185.178.208.141 ASN #57724 Ddos-Guard Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 07:35:46 Last Seen2024-04-18 07:35:29 Times Seen28 Hash 774b7f6797df59430d993d008f270f84 bbcb6da966acf2b5d9bc10ac424688b847cb67ca 3653640dd81b2b40edab3d87bc89dfa5ebd5cc4a8bdd439b996fcefccce972a5 Loading...

	frdl.to/xfst_theme2/js/countdown.js	640 B	2023-03-08	2024-04-18
Pretty URL frdl.to/xfst_theme2/js/countdown.js IP 185.178.208.141 ASN #57724 Ddos-Guard Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:47:08 Last Seen2024-04-18 07:35:29 Times Seen80 Hash 2b7d7af4d020e0a541c394db405aa666 d6c812e5a842fb7df84301f45a69d9001d040b2e 6b1116dbdcc8665059c0163cb6cd034a949402f5bc6294390e8ffee39952f6ae Loading...

	frdl.to/luef8xlhrvzu/Jenadammaya.zip.html	286 B	2023-03-08	2024-04-25
Pretty URL frdl.to/luef8xlhrvzu/Jenadammaya.zip.html IP 185.178.208.141 ASN #57724 Ddos-Guard Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 05:15:30 Last Seen2024-04-25 19:17:57 Times Seen312 Hash a10faca4ada9bbdcb1b350c8d4fdbceb acb8f3cfe394c96d40e8bc0a300ab889811849b9 cd39142e37a1c495b80ad9e423875277b29731e29a0538ce4c256e4b36eb9910 Loading...

	cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.7/umd/popper.min.js	21 kB	2023-03-07	2024-04-30
Pretty URL cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.7/umd/popper.min.js IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:27 Last Seen2024-04-30 21:59:13 Times Seen16836 Hash 56456db9d72a4b380ed3cb63095e6022 6dbce88aee15b42f29083df7a07513cf3b486ba0 66f3a07e1fa9b64a686b66381e4458dbc8abf3dbbff954720c4eec07b84411c2 Loading...

	frdl.to/xfst_theme2/js/clipboard.min.js	9.2 kB	2023-03-07	2024-04-30
Pretty URL frdl.to/xfst_theme2/js/clipboard.min.js IP 185.178.208.141 ASN #57724 Ddos-Guard Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:23:44 Last Seen2024-04-30 20:27:26 Times Seen4706 Hash 15f52a1ee547f2bdd46e56747332ca2d 9a7cb405f9beed005891587d41f76a0720893ffc e17a1d816e13c0826e0ed7febfabc3277f45571234bde0bf9120829a7169edc9 Loading...

	arvigorothan.com/tag.min.js	81 kB	2024-04-17	2024-04-18
Pretty URL arvigorothan.com/tag.min.js IP 172.67.150.119 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-17 22:03:30 Last Seen2024-04-18 11:03:12 Times Seen18 Hash 8aa3978b40509f8fa662e6ced412222e 71ae04ed1ec259a70027a3fced8b9e28b3fb1dcf 0ace61137665f71c72d727387965ad06a9cf5e05dc11ee156484fa224baec435 Loading...

	waust.at/d.js	15 kB	2023-03-08	2024-04-30
Pretty URL waust.at/d.js IP 104.26.4.7 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:06 Last Seen2024-04-30 20:20:40 Times Seen2205 Hash 38cdedd658fa41770f607c0b117c1f82 3f3c9c6c330ab649e27ec56a8d852e9d41b0edf4 951feaddb6ad45bcc58fee7033004366978150e8f2927692781c3e2755c7c15c Loading...

	t.dtscout.com/i/?l=https%3A%2F%2Ffrdl.to%2Fluef8xlhrvzu%2FJenadammaya.zip.html&j=	2.1 kB	2023-03-07	2024-04-30
Pretty URL t.dtscout.com/i/?l=https%3A%2F%2Ffrdl.to%2Fluef8xlhrvzu%2FJenadammaya.zip.html&j= IP 141.101.120.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:00 Last Seen2024-04-30 20:20:40 Times Seen4444 Hash 51bd741af3fcc4984d1a753eebfa1141 534664acf69cbbb5c9b97c96b63dd37bdc580da2 3e9c8e5dcf3cbff9e1b7211551a31fe388f1b8e607fd78a0a34855be65da721c Loading...

	frdl.to/luef8xlhrvzu/Jenadammaya.zip.html	853 B	2023-03-07	2024-04-25
Pretty URL frdl.to/luef8xlhrvzu/Jenadammaya.zip.html IP 185.178.208.141 ASN #57724 Ddos-Guard Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 21:43:32 Last Seen2024-04-25 19:17:57 Times Seen293 Hash 971ccce1cb82f9abada60a82500d22d6 79952a68530d1833179499a4dd44bca7437e1afb 0863118d0e302374e73b965a0c757374322b4edbe07b5dafd7f109b048bdc3b0 Loading...

	frdl.to/xfst_theme2/js/share.js	354 B	2023-03-07	2024-04-26
Pretty URL frdl.to/xfst_theme2/js/share.js IP 185.178.208.141 ASN #57724 Ddos-Guard Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:18 Last Seen2024-04-26 20:17:01 Times Seen297 Hash 693471dd93ac22bed38732ee725edff1 470693b6fb525d9391c6530ba8e22edf2a3cdfe0 37ddc3df628de7dbb35e49b0eef020d9fe1613acbbfc77418bb7e69566395aa5 Loading...

	frdl.to/js/pop.js?=1	56 B	2024-04-15	2024-04-18
Pretty URL frdl.to/js/pop.js?=1 IP 185.178.208.141 ASN #57724 Ddos-Guard Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-15 01:23:09 Last Seen2024-04-18 07:35:29 Times Seen4 Hash e430f83bc61ee6d4c0eac2c1c32d0162 3baf4ef4554ea9f1518713c504ca41e2d5d4fb7d b8570b25846d0a739b755af846fa5c94bfd1fe16237a6676bcba7bd60c5f81ef Loading...

	frdl.to/luef8xlhrvzu/Jenadammaya.zip.html	196 B	2024-04-15	2024-04-18
Pretty URL frdl.to/luef8xlhrvzu/Jenadammaya.zip.html IP 185.178.208.141 ASN #57724 Ddos-Guard Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-15 01:23:09 Last Seen2024-04-18 07:35:28 Times Seen2 Hash d211d960d4c2d996c796d62cd2708176 3cba847364a0dc132d033d551bd0719d8617ca9a 506f29d5fe697af45280e499f8a2b66317d928cda929810631a9558a123c6cf6 Loading...

	frdl.to/xfst_theme2/js/bootstrap.min.js	58 kB	2023-03-07	2024-04-30
Pretty URL frdl.to/xfst_theme2/js/bootstrap.min.js IP 185.178.208.141 ASN #57724 Ddos-Guard Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:33 Last Seen2024-04-30 22:37:34 Times Seen20361 Hash e1d98d47689e00f8ecbc5d9f61bdb42e 6778fed3cf095a318141a31f455c8f4663885bde 0a34a87842c539c1f4feec56bba982fd596b73500046a6e6fe38a22260c6577b Loading...

	www.googletagmanager.com/gtag/js?id=G-RL652D9SYS	300 kB	2024-04-18	2024-04-18
Pretty URL www.googletagmanager.com/gtag/js?id=G-RL652D9SYS IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-18 07:35:28 Last Seen2024-04-18 07:35:29 Times Seen2 Hash c29b45cd65ff96c00eb8b2295574e867 3a9beb23fb1c8b3c6c23fc16307dce0cb542f4fe c935ee80b96f714b73650471b12ccc66b3e8490af7bf4d27112f62695227b797 Loading...

	t.dtscout.com/pv/?_a=v&_h=frdl.to&_ss=4viucnrad8&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=37cx&_cb=_dtspv.c	51 B	2024-04-18	2024-04-18
Pretty URL t.dtscout.com/pv/?_a=v&_h=frdl.to&_ss=4viucnrad8&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=37cx&_cb=_dtspv.c IP 141.101.120.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-18 07:35:29 Last Seen2024-04-18 07:35:29 Times Seen1 Hash 13a303baa873192d472246a2c8d26a66 88b7c91388b3f6202bd31ea90cb5502ae42fbdf7 1cd78b1062453e2486ea11f0959e3a7fb1907e8cca4a21b12e9fd274869b0809 Loading...

	frdl.to/xfst_theme2/js/jquery-1.9.1.min.js	93 kB	2023-03-07	2024-04-30
Pretty URL frdl.to/xfst_theme2/js/jquery-1.9.1.min.js IP 185.178.208.141 ASN #57724 Ddos-Guard Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-30 21:34:02 Times Seen23579 Hash 397754ba49e9e0cf4e7c190da78dda05 ae49e56999d82802727455f0ba83b63acd90a22b c12f6098e641aaca96c60215800f18f5671039aecf812217fab3c0d152f6adb4 Loading...

	frdl.to/xfst_theme2/js/jquery.cookie.js	3.1 kB	2023-03-07	2024-04-26
Pretty URL frdl.to/xfst_theme2/js/jquery.cookie.js IP 185.178.208.141 ASN #57724 Ddos-Guard Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:23:22 Last Seen2024-04-26 20:17:01 Times Seen2521 Hash ff14e4812b7f512e620b1ad35542bcfc c40c5f777e7a2f63e7b731b3cdb1fe9c806b23ae c4fb91befcf134b81ecfa1c586e1f9d6426c8f4fc1f6c130ac1fddb49ab5df96 Loading...

	frdl.to/luef8xlhrvzu/Jenadammaya.zip.html	943 B	2024-04-18	2024-04-18
Pretty URL frdl.to/luef8xlhrvzu/Jenadammaya.zip.html IP 185.178.208.141 ASN #57724 Ddos-Guard Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-18 07:35:29 Last Seen2024-04-18 07:35:29 Times Seen1 Hash 81d6ea9ffc1ea0646f9bd613f357f762 c0e76a2fb8b507dc231370a839fe27801024b3d0 3b9cc78b2d2cec141c7ad2e6442c291ae63868d7a8d268e0d377edc3d81be0b5 Loading...

	frdl.to/luef8xlhrvzu/Jenadammaya.zip.html	719 B	2023-05-21	2024-04-18
Pretty URL frdl.to/luef8xlhrvzu/Jenadammaya.zip.html IP 185.178.208.141 ASN #57724 Ddos-Guard Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-21 18:27:23 Last Seen2024-04-18 07:35:29 Times Seen16 Hash 0b32aa13a9034c1e872c80ffa4516c0f 3b8b39b975dd5aff2a5e5c2d8a94b69efb37bd28 fce3fbaa4c6872a36dc16cd321cb51e50ceb1dccfac1628f314452e3730170ea Loading...

	frdl.to/luef8xlhrvzu/Jenadammaya.zip.html	212 B	2024-04-15	2024-04-18
Pretty URL frdl.to/luef8xlhrvzu/Jenadammaya.zip.html IP 185.178.208.141 ASN #57724 Ddos-Guard Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-15 01:23:09 Last Seen2024-04-18 07:35:29 Times Seen2 Hash 61b6d93fb531cb2e11113388ab3a49bb 819e4c76271e0bbbedcc668d14610979dbe5a3d9 c68650528723a0fcf2308a7993e08c2944f989c17992fcbfe5efe828e154f258 Loading...

	frdl.to/luef8xlhrvzu/Jenadammaya.zip.html	92 B	2024-03-02	2024-04-18
Pretty URL frdl.to/luef8xlhrvzu/Jenadammaya.zip.html IP 185.178.208.141 ASN #57724 Ddos-Guard Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2024-03-02 01:04:02 Last Seen2024-04-18 07:35:29 Times Seen6 Hash 0bd36aa737278bebbda7c8101850171a c1a7cbaab5a0168f99f4e68b21ffbb52cd30c240 ad2efe7e6c16f82e3313a3b7353cf8f7aa334542cd3fd764e4cef48afa8a4522 Loading...

	frdl.to/luef8xlhrvzu/Jenadammaya.zip.html	153 B	2024-01-20	2024-04-18
Pretty URL frdl.to/luef8xlhrvzu/Jenadammaya.zip.html IP 185.178.208.141 ASN #57724 Ddos-Guard Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2024-01-20 20:07:17 Last Seen2024-04-18 07:35:29 Times Seen9 Hash 4e288bf9ef9df7872869765c8c51d7ef ce861f6bb920ef4866d2a8f0d0e6004798d12a2c 8687cb084628e582a9cec888aacdc2fcf5daecc227a0d700cf2ed13542a1dc26 Loading...

HTTP Transactions (28)

URL IP Response Size

cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.7/umd/popper.min.js

104.17.24.14

200 OK

6.6 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.7/umd/popper.min.js
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://frdl.to/luef8xlhrvzu/Jenadammaya.zip.html
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (20831)
Size
6.6 kB (6646 bytes)
Hash
56456db9d72a4b380ed3cb63095e6022
6dbce88aee15b42f29083df7a07513cf3b486ba0
66f3a07e1fa9b64a686b66381e4458dbc8abf3dbbff954720c4eec07b84411c2

HTTP Headers

GET /ajax/libs/popper.js/1.14.7/umd/popper.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://frdl.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 18 Apr 2024 05:34:54 GMT
content-type: application/javascript; charset=utf-8
content-length: 6646
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fa9-520c"
last-modified: Mon, 04 May 2020 16:15:37 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 600010
expires: Tue, 08 Apr 2025 05:34:54 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=f7jblCENbjruoiG7K0H8Li3AeAzXrRyMdUC20hbMXr%2BOyfPBg4G7EjDsAYaCES3n9KmK0tsE5Bbg4gWUfjxZZT%2B%2F6xDR3nOl9fTB3gKsR5D6915nKKxyAU%2F%2Fvl1qzrmTJO7b%2FBmQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 876249d5bf05b4f7-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

frdl.to/luef8xlhrvzu/Jenadammaya.zip.html

185.178.208.141

200 OK

41 kB

URL User Request GET HTTP/2
frdl.to/luef8xlhrvzu/Jenadammaya.zip.html
IP
185.178.208.141:443
ASN
#57724 Ddos-Guard Ltd

Certificate
IssuerLet's Encrypt
Subjectfrdl.to
Fingerprint07:14:0F:45:8D:1A:43:AD:B3:FF:34:B0:6D:94:3E:A2:CA:B2:2F:55
ValidityFri, 12 Apr 2024 07:06:45 GMT - Thu, 11 Jul 2024 07:06:44 GMT

File type
JavaScript source, ASCII text, with very long lines (46683)
Size
41 kB (41286 bytes)
Hash
6196a2dcae1caa3d8e36eb046efc40fb
46d5a86be92adb204208894cbc38183dd23aba6c
0aa70b39eba89eaa7a984199b491e645c0480250fce66e4d33a4959a34d60126

HTTP Headers

GET /luef8xlhrvzu/Jenadammaya.zip.html HTTP/1.1
Host: frdl.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 18 Apr 2024 05:34:54 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
strict-transport-security: max-age=0;includeSubDomains;
x-frame-options: SAMEORIGIN
expires: Wed, 17 Apr 2024 05:34:54 GMT
set-cookie: __ddg1_=a1ZJSchkxgIiD12SVM3N; Domain=.frdl.to; HttpOnly; Path=/; Expires=Fri, 18-Apr-2025 05:34:53 GMT
affiliate=tZ%2FeQxjfQ%2BiMryqFH%2BBkohC%2BTDJu%2FUAfUFMvEfrFNzDWJA%2Fq4%2BQ4xLTN4VPtvC9gTMyZq02bOwSbNJNHy1zwOJkKXUJCSI2s; domain=.freedl.ink; path=/; expires=Thu, 02-May-2024 05:34:54 GMT
lang=english; domain=.freedl.ink; path=/
x-content-type-options: nosniff, nosniff, nosniff
content-encoding: gzip
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
access-control-allow-credentials: true, true
x-xss-protection: 1; mode=block, 1; mode=block
X-Firefox-Spdy: h2

frdl.to/xfst_theme2/js/jquery.cookie.js

185.178.208.141

200 OK

1.4 kB

URL GET HTTP/2
frdl.to/xfst_theme2/js/jquery.cookie.js
IP
185.178.208.141:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://frdl.to/luef8xlhrvzu/Jenadammaya.zip.html
Certificate
IssuerLet's Encrypt
Subjectfrdl.to
Fingerprint07:14:0F:45:8D:1A:43:AD:B3:FF:34:B0:6D:94:3E:A2:CA:B2:2F:55
ValidityFri, 12 Apr 2024 07:06:45 GMT - Thu, 11 Jul 2024 07:06:44 GMT

File type
JavaScript source, ASCII text
Size
1.4 kB (1365 bytes)
Hash
ff14e4812b7f512e620b1ad35542bcfc
c40c5f777e7a2f63e7b731b3cdb1fe9c806b23ae
c4fb91befcf134b81ecfa1c586e1f9d6426c8f4fc1f6c130ac1fddb49ab5df96

HTTP Headers

GET /xfst_theme2/js/jquery.cookie.js HTTP/1.1
Host: frdl.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://frdl.to/luef8xlhrvzu/Jenadammaya.zip.html
Cookie: __ddg1_=a1ZJSchkxgIiD12SVM3N
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Sun, 07 Apr 2024 13:55:46 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 14 Oct 2022 10:01:15 GMT
vary: Accept-Encoding
cache-control: max-age=2592000
content-encoding: gzip
etag: "6349336b-c31"
expires: Tue, 07 May 2024 13:55:46 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
access-control-allow-credentials: true, true
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
age: 920348
content-length: 1365
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2

frdl.to/xfst_theme2/js/share.js

185.178.208.141

200 OK

112 B

URL GET HTTP/2
frdl.to/xfst_theme2/js/share.js
IP
185.178.208.141:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://frdl.to/luef8xlhrvzu/Jenadammaya.zip.html
Certificate
IssuerLet's Encrypt
Subjectfrdl.to
Fingerprint07:14:0F:45:8D:1A:43:AD:B3:FF:34:B0:6D:94:3E:A2:CA:B2:2F:55
ValidityFri, 12 Apr 2024 07:06:45 GMT - Thu, 11 Jul 2024 07:06:44 GMT

File type
ASCII text
Size
112 B (112 bytes)
Hash
693471dd93ac22bed38732ee725edff1
470693b6fb525d9391c6530ba8e22edf2a3cdfe0
37ddc3df628de7dbb35e49b0eef020d9fe1613acbbfc77418bb7e69566395aa5

HTTP Headers

GET /xfst_theme2/js/share.js HTTP/1.1
Host: frdl.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://frdl.to/luef8xlhrvzu/Jenadammaya.zip.html
Cookie: __ddg1_=a1ZJSchkxgIiD12SVM3N
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Sat, 30 Mar 2024 12:29:52 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 14 Oct 2022 10:01:18 GMT
etag: W/"6349336e-162"
expires: Mon, 29 Apr 2024 12:29:52 GMT
cache-control: max-age=2592000
accept-ranges: bytes
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
access-control-allow-credentials: true, true
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
content-encoding: br
vary: Accept-Encoding
age: 1616703
content-length: 112
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2

frdl.to/js/pop.js?=1

185.178.208.141

200 OK

44 B

URL GET HTTP/2
frdl.to/js/pop.js?=1
IP
185.178.208.141:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://frdl.to/luef8xlhrvzu/Jenadammaya.zip.html
Certificate
IssuerLet's Encrypt
Subjectfrdl.to
Fingerprint07:14:0F:45:8D:1A:43:AD:B3:FF:34:B0:6D:94:3E:A2:CA:B2:2F:55
ValidityFri, 12 Apr 2024 07:06:45 GMT - Thu, 11 Jul 2024 07:06:44 GMT

File type
ASCII text
Size
44 B (44 bytes)
Hash
e430f83bc61ee6d4c0eac2c1c32d0162
3baf4ef4554ea9f1518713c504ca41e2d5d4fb7d
b8570b25846d0a739b755af846fa5c94bfd1fe16237a6676bcba7bd60c5f81ef

HTTP Headers

GET /js/pop.js?=1 HTTP/1.1
Host: frdl.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://frdl.to/luef8xlhrvzu/Jenadammaya.zip.html
Cookie: __ddg1_=a1ZJSchkxgIiD12SVM3N
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Fri, 12 Apr 2024 02:01:22 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 27 Dec 2022 01:53:54 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-credentials: true
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 44
ddg-cache-status: HIT,MISS
etag: "63aa5032-38"
expires: Sun, 12 May 2024 02:01:22 GMT
age: 531212
X-Firefox-Spdy: h2

frdl.to/xfst_theme2/js/countdown.js

185.178.208.141

200 OK

289 B

URL GET HTTP/2
frdl.to/xfst_theme2/js/countdown.js
IP
185.178.208.141:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://frdl.to/luef8xlhrvzu/Jenadammaya.zip.html
Certificate
IssuerLet's Encrypt
Subjectfrdl.to
Fingerprint07:14:0F:45:8D:1A:43:AD:B3:FF:34:B0:6D:94:3E:A2:CA:B2:2F:55
ValidityFri, 12 Apr 2024 07:06:45 GMT - Thu, 11 Jul 2024 07:06:44 GMT

File type
JavaScript source, ASCII text
Size
289 B (289 bytes)
Hash
2b7d7af4d020e0a541c394db405aa666
d6c812e5a842fb7df84301f45a69d9001d040b2e
6b1116dbdcc8665059c0163cb6cd034a949402f5bc6294390e8ffee39952f6ae

HTTP Headers

GET /xfst_theme2/js/countdown.js HTTP/1.1
Host: frdl.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://frdl.to/luef8xlhrvzu/Jenadammaya.zip.html
Cookie: __ddg1_=a1ZJSchkxgIiD12SVM3N
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Wed, 17 Apr 2024 13:49:38 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 14 Oct 2022 10:01:14 GMT
cache-control: max-age=2592000
accept-ranges: bytes
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
access-control-allow-credentials: true, true
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
content-encoding: br
vary: Accept-Encoding
content-length: 289
ddg-cache-status: HIT,HIT
etag: W/"6349336a-280"
expires: Thu, 16 May 2024 13:34:08 GMT
age: 56716
X-Firefox-Spdy: h2

frdl.to/xfst_theme2/js/bootstrap.min.js

185.178.208.141

200 OK

15 kB

URL GET HTTP/2
frdl.to/xfst_theme2/js/bootstrap.min.js
IP
185.178.208.141:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://frdl.to/luef8xlhrvzu/Jenadammaya.zip.html
Certificate
IssuerLet's Encrypt
Subjectfrdl.to
Fingerprint07:14:0F:45:8D:1A:43:AD:B3:FF:34:B0:6D:94:3E:A2:CA:B2:2F:55
ValidityFri, 12 Apr 2024 07:06:45 GMT - Thu, 11 Jul 2024 07:06:44 GMT

File type
JavaScript source, ASCII text, with very long lines (57791)
Size
15 kB (15434 bytes)
Hash
e1d98d47689e00f8ecbc5d9f61bdb42e
6778fed3cf095a318141a31f455c8f4663885bde
0a34a87842c539c1f4feec56bba982fd596b73500046a6e6fe38a22260c6577b

HTTP Headers

GET /xfst_theme2/js/bootstrap.min.js HTTP/1.1
Host: frdl.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://frdl.to/luef8xlhrvzu/Jenadammaya.zip.html
Cookie: __ddg1_=a1ZJSchkxgIiD12SVM3N
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Sun, 07 Apr 2024 13:55:46 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 14 Oct 2022 10:01:13 GMT
vary: Accept-Encoding
cache-control: max-age=2592000
content-encoding: gzip
etag: "63493369-e2d8"
expires: Tue, 07 May 2024 13:55:46 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
access-control-allow-credentials: true, true
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
age: 920348
content-length: 15434
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2

frdl.to/xfst_theme2/js/clipboard.min.js

185.178.208.141

200 OK

3.2 kB

URL GET HTTP/2
frdl.to/xfst_theme2/js/clipboard.min.js
IP
185.178.208.141:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://frdl.to/luef8xlhrvzu/Jenadammaya.zip.html
Certificate
IssuerLet's Encrypt
Subjectfrdl.to
Fingerprint07:14:0F:45:8D:1A:43:AD:B3:FF:34:B0:6D:94:3E:A2:CA:B2:2F:55
ValidityFri, 12 Apr 2024 07:06:45 GMT - Thu, 11 Jul 2024 07:06:44 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (9067)
Size
3.2 kB (3216 bytes)
Hash
15f52a1ee547f2bdd46e56747332ca2d
9a7cb405f9beed005891587d41f76a0720893ffc
e17a1d816e13c0826e0ed7febfabc3277f45571234bde0bf9120829a7169edc9

HTTP Headers

GET /xfst_theme2/js/clipboard.min.js HTTP/1.1
Host: frdl.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://frdl.to/luef8xlhrvzu/Jenadammaya.zip.html
Cookie: __ddg1_=a1ZJSchkxgIiD12SVM3N
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Sun, 07 Apr 2024 13:55:46 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sat, 10 Dec 2022 15:13:04 GMT
vary: Accept-Encoding
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-credentials: true
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-encoding: gzip
ddg-cache-status: HIT,MISS
etag: "6394a200-23c8"
expires: Tue, 07 May 2024 13:55:46 GMT
age: 920348
content-length: 3216
X-Firefox-Spdy: h2

freedl.ink/xfst_theme2/img/logo.png

188.114.96.1

200 OK

3.8 kB

URL GET HTTP/2
freedl.ink/xfst_theme2/img/logo.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://frdl.to/luef8xlhrvzu/Jenadammaya.zip.html
Certificate
IssuerGoogle Trust Services LLC
Subjectfreedl.ink
Fingerprint6A:CD:38:31:38:83:61:64:49:01:DF:F9:CC:AC:01:5B:55:83:B5:D0
ValiditySun, 14 Apr 2024 21:01:34 GMT - Sat, 13 Jul 2024 21:01:33 GMT

File type
PNG image data, 150 x 31, 8-bit/color RGBA, non-interlaced
Size
3.8 kB (3800 bytes)
Hash
121681b32d247dbd68a1c690158d2db5
b0d36efd38510f568a61ec6313afbdef205055fe
552b9587003fbf5fd875cc5f070b43639751b15e624782059cb3168d4c36b6b0

HTTP Headers

GET /xfst_theme2/img/logo.png HTTP/1.1
Host: freedl.ink
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://frdl.to/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 18 Apr 2024 05:34:54 GMT
content-type: image/png
content-length: 3800
last-modified: Thu, 08 Feb 2024 12:41:50 GMT
etag: "ed8-610de22a09f80"
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
access-control-allow-credentials: true, true
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
cache-control: max-age=14400
cf-cache-status: HIT
age: 3785
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hLnKRZekLCxro72aY2o1lHrYc9NY6GG%2Bxk61oeyhoSg%2F5R%2FtqAaQs7n3lw5AJuPBhzlNKzXjtMsz9cqaOKxGDctcTCXvPNuYMKEqYNhFhysg2Nnu5N4MFPwdq7gn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876249d5fa1fb4ed-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

frdl.to/xfst_theme2/js/jquery-1.9.1.min.js

185.178.208.141

200 OK

33 kB

URL GET HTTP/2
frdl.to/xfst_theme2/js/jquery-1.9.1.min.js
IP
185.178.208.141:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://frdl.to/luef8xlhrvzu/Jenadammaya.zip.html
Certificate
IssuerLet's Encrypt
Subjectfrdl.to
Fingerprint07:14:0F:45:8D:1A:43:AD:B3:FF:34:B0:6D:94:3E:A2:CA:B2:2F:55
ValidityFri, 12 Apr 2024 07:06:45 GMT - Thu, 11 Jul 2024 07:06:44 GMT

File type
JavaScript source, ASCII text, with very long lines (32089)
Size
33 kB (32819 bytes)
Hash
397754ba49e9e0cf4e7c190da78dda05
ae49e56999d82802727455f0ba83b63acd90a22b
c12f6098e641aaca96c60215800f18f5671039aecf812217fab3c0d152f6adb4

HTTP Headers

GET /xfst_theme2/js/jquery-1.9.1.min.js HTTP/1.1
Host: frdl.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://frdl.to/luef8xlhrvzu/Jenadammaya.zip.html
Cookie: __ddg1_=a1ZJSchkxgIiD12SVM3N
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Sun, 07 Apr 2024 13:55:46 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 14 Oct 2022 10:01:15 GMT
vary: Accept-Encoding
cache-control: max-age=2592000
content-encoding: gzip
etag: "6349336b-169d5"
expires: Tue, 07 May 2024 13:55:46 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
access-control-allow-credentials: true, true
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
age: 920348
content-length: 32819
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2

frdl.to/xfst_theme2/js/script.js

185.178.208.141

200 OK

211 B

URL GET HTTP/2
frdl.to/xfst_theme2/js/script.js
IP
185.178.208.141:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://frdl.to/luef8xlhrvzu/Jenadammaya.zip.html
Certificate
IssuerLet's Encrypt
Subjectfrdl.to
Fingerprint07:14:0F:45:8D:1A:43:AD:B3:FF:34:B0:6D:94:3E:A2:CA:B2:2F:55
ValidityFri, 12 Apr 2024 07:06:45 GMT - Thu, 11 Jul 2024 07:06:44 GMT

File type
JavaScript source, ASCII text
Size
211 B (211 bytes)
Hash
774b7f6797df59430d993d008f270f84
bbcb6da966acf2b5d9bc10ac424688b847cb67ca
3653640dd81b2b40edab3d87bc89dfa5ebd5cc4a8bdd439b996fcefccce972a5

HTTP Headers

GET /xfst_theme2/js/script.js HTTP/1.1
Host: frdl.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://frdl.to/luef8xlhrvzu/Jenadammaya.zip.html
Cookie: __ddg1_=a1ZJSchkxgIiD12SVM3N
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Tue, 16 Apr 2024 21:24:29 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 14 Oct 2022 10:01:17 GMT
etag: W/"6349336d-208"
expires: Thu, 16 May 2024 21:24:29 GMT
cache-control: max-age=2592000
accept-ranges: bytes
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
access-control-allow-credentials: true, true
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
content-encoding: br
vary: Accept-Encoding
age: 115825
content-length: 211
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-RL652D9SYS

142.250.74.168

200 OK

100 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=G-RL652D9SYS
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://frdl.to/luef8xlhrvzu/Jenadammaya.zip.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D
ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT

File type
JavaScript source, ASCII text, with very long lines (5955)
Size
100 kB (100157 bytes)
Hash
c29b45cd65ff96c00eb8b2295574e867
3a9beb23fb1c8b3c6c23fc16307dce0cb542f4fe
c935ee80b96f714b73650471b12ccc66b3e8490af7bf4d27112f62695227b797

HTTP Headers

GET /gtag/js?id=G-RL652D9SYS HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://frdl.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 18 Apr 2024 05:34:54 GMT
expires: Thu, 18 Apr 2024 05:34:54 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 100157
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

frdl.to/xfst_theme2/css/bootstrap.min.css

185.178.208.141

200 OK

23 kB

URL GET HTTP/2
frdl.to/xfst_theme2/css/bootstrap.min.css
IP
185.178.208.141:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://frdl.to/luef8xlhrvzu/Jenadammaya.zip.html
Certificate
IssuerLet's Encrypt
Subjectfrdl.to
Fingerprint07:14:0F:45:8D:1A:43:AD:B3:FF:34:B0:6D:94:3E:A2:CA:B2:2F:55
ValidityFri, 12 Apr 2024 07:06:45 GMT - Thu, 11 Jul 2024 07:06:44 GMT

File type
ASCII text, with very long lines (65324)
Size
23 kB (23237 bytes)
Hash
a15c2ac3234aa8f6064ef9c1f7383c37
6e10354828454898fda80f55f3decb347fd9ed21
60b19e5da6a9234ff9220668a5ec1125c157a268513256188ee80f2d2c8d8d36

HTTP Headers

GET /xfst_theme2/css/bootstrap.min.css HTTP/1.1
Host: frdl.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://frdl.to/xfst_theme2/css/style.min.css?t=5
Cookie: __ddg1_=a1ZJSchkxgIiD12SVM3N
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Tue, 09 Apr 2024 09:15:10 GMT
content-type: text/css
last-modified: Fri, 14 Oct 2022 10:00:59 GMT
vary: Accept-Encoding
etag: W/"6349335b-2606e"
expires: Thu, 09 May 2024 09:15:10 GMT
cache-control: max-age=2592000
content-encoding: gzip
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
access-control-allow-credentials: true, true
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
age: 764384
content-length: 23237
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2

arvigorothan.com/tag.min.js

172.67.150.119

200 OK

28 kB

URL GET HTTP/2
arvigorothan.com/tag.min.js
IP
172.67.150.119:443
ASN
#13335 CLOUDFLARENET

Requested by
https://frdl.to/luef8xlhrvzu/Jenadammaya.zip.html
Certificate
IssuerGoogle Trust Services LLC
Subjectarvigorothan.com
Fingerprint3A:2D:B5:82:D0:74:59:F6:A0:25:BC:11:72:CE:92:28:1A:77:F7:F3
ValiditySat, 13 Apr 2024 22:48:55 GMT - Fri, 12 Jul 2024 22:48:54 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
28 kB (27458 bytes)
Hash
8aa3978b40509f8fa662e6ced412222e
71ae04ed1ec259a70027a3fced8b9e28b3fb1dcf
0ace61137665f71c72d727387965ad06a9cf5e05dc11ee156484fa224baec435

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tag.min.js HTTP/1.1
Host: arvigorothan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://frdl.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 18 Apr 2024 05:34:54 GMT
content-type: text/javascript; charset=utf-8
x-trace-id: 6b8efd10b2dac4538c8a1b60620804d3
cache-control: max-age=86400
last-modified: Wed, 17 Apr 2024 13:37:29 GMT
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
expires: Fri, 19 Apr 2024 02:44:09 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 10245
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tekIkK1ZwnTbn41DIyyTytAlg3HDOEA8%2BHbEOqri4E4IlMqWLAbw4GKpPIfS%2Fcv4%2BDt4xLPcHmn7BsXeig2jQuW57FAn0BCK49uc1TKLOKrJlQDMaG2eWQbC5WzHMWmkNWj7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876249d85b7ab50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

frdl.to/xfst_theme2/fa/webfonts/fa-brands-400.woff2

185.178.208.141

200 OK

75 kB

URL GET HTTP/2
frdl.to/xfst_theme2/fa/webfonts/fa-brands-400.woff2
IP
185.178.208.141:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://frdl.to/luef8xlhrvzu/Jenadammaya.zip.html
Certificate
IssuerLet's Encrypt
Subjectfrdl.to
Fingerprint07:14:0F:45:8D:1A:43:AD:B3:FF:34:B0:6D:94:3E:A2:CA:B2:2F:55
ValidityFri, 12 Apr 2024 07:06:45 GMT - Thu, 11 Jul 2024 07:06:44 GMT

File type
Web Open Font Format (Version 2), TrueType, length 74652, version 330.15859
Size
75 kB (74652 bytes)
Hash
c658415c34d6c562735029d37053bf8f
68e045a10734bd6c942c839c75243540654b5d9a
433d970f04c9cfdfe1eef18106807714cffa2ec96651af41c1be35d00a87bc1c

HTTP Headers

GET /xfst_theme2/fa/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: frdl.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://frdl.to/xfst_theme2/css/style.min.css?t=5
Cookie: __ddg1_=a1ZJSchkxgIiD12SVM3N
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Sun, 07 Apr 2024 13:57:32 GMT
content-type: text/html; charset=utf-8
content-length: 74652
last-modified: Fri, 14 Oct 2022 10:01:02 GMT
vary: Accept-Encoding
cache-control: max-age=2592000
accept-ranges: bytes
etag: "6349335e-1239c"
expires: Tue, 07 May 2024 13:57:32 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
access-control-allow-credentials: true, true
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
age: 920242
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2

fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2

142.250.74.163

200 OK

33 kB

URL GET HTTP/2
fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://frdl.to/luef8xlhrvzu/Jenadammaya.zip.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
Web Open Font Format (Version 2), TrueType, length 33092, version 1.0
Size
33 kB (33092 bytes)
Hash
057478083c1d55ea0c2182b24f6dd72f
caf557cd276a76992084efc4c8857b66791a6b7f
bb2f90081933c0f2475883ca2c5cfee94e96d7314a09433fffc42e37f4cffd3b

HTTP Headers

GET /s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://frdl.to
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33092
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 02:14:58 GMT
expires: Wed, 16 Apr 2025 02:14:58 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 22:51:58 GMT
content-type: font/woff2
age: 184796
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2

142.250.74.163

200 OK

33 kB

URL GET HTTP/2
fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://frdl.to/luef8xlhrvzu/Jenadammaya.zip.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
Web Open Font Format (Version 2), TrueType, length 33092, version 1.0
Size
33 kB (33092 bytes)
Hash
057478083c1d55ea0c2182b24f6dd72f
caf557cd276a76992084efc4c8857b66791a6b7f
bb2f90081933c0f2475883ca2c5cfee94e96d7314a09433fffc42e37f4cffd3b

HTTP Headers

GET /s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://frdl.to
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33092
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 02:14:58 GMT
expires: Wed, 16 Apr 2025 02:14:58 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 22:51:58 GMT
content-type: font/woff2
age: 184796
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2

142.250.74.163

200 OK

33 kB

URL GET HTTP/2
fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://frdl.to/luef8xlhrvzu/Jenadammaya.zip.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
Web Open Font Format (Version 2), TrueType, length 33092, version 1.0
Size
33 kB (33092 bytes)
Hash
057478083c1d55ea0c2182b24f6dd72f
caf557cd276a76992084efc4c8857b66791a6b7f
bb2f90081933c0f2475883ca2c5cfee94e96d7314a09433fffc42e37f4cffd3b

HTTP Headers

GET /s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://frdl.to
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33092
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 02:14:58 GMT
expires: Wed, 16 Apr 2025 02:14:58 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 22:51:58 GMT
content-type: font/woff2
age: 184796
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

dugraukeeck.net/5/7319742/?oo=1&js_build=iclick-v1.773.0

139.45.197.243

200 OK

1.5 kB

URL GET HTTP/2
dugraukeeck.net/5/7319742/?oo=1&js_build=iclick-v1.773.0
IP
139.45.197.243:443
ASN
#9002 RETN Limited

Requested by
https://frdl.to/luef8xlhrvzu/Jenadammaya.zip.html
Certificate
IssuerLet's Encrypt
Subjectdugraukeeck.net
Fingerprint17:03:05:4B:B1:E5:A6:E5:F6:32:62:22:3C:77:BF:C3:DA:9E:32:96
ValidityTue, 16 Apr 2024 00:39:43 GMT - Mon, 15 Jul 2024 00:39:42 GMT

File type
gzip compressed data, max speed, from Unix
Size
1.5 kB (1461 bytes)
Hash
99340be70cecf92eb3abfc20eab218b4
8d5bb0b2eada744f3d8034fda5b43d8c49ee6fe7
690d3a23f118dee37b6383cba5ef367af38725b5cd9d39d467f21f4cc1f570fd

HTTP Headers

GET /5/7319742/?oo=1&js_build=iclick-v1.773.0 HTTP/1.1
Host: dugraukeeck.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://frdl.to
DNT: 1
Connection: keep-alive
Referer: https://frdl.to/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 05:34:55 GMT
content-type: application/json
x-trace-id: c8f6846541794598afaf67fb50591be7
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://yonmewon.com>; rel="preconnect dns-prefetch",<https://sr7pv7n5x.com>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://frdl.to
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=008042923c4948d7e0606fc56d7aecf3; expires=Fri, 18 Apr 2025 05:34:55 GMT; path=/; secure; SameSite=None
oaidts=1713418495; expires=Fri, 18 Apr 2025 05:34:55 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

frdl.to/xfst_theme2/css/style.min.css?t=5

185.178.208.141

200 OK

189 kB

URL GET HTTP/2
frdl.to/xfst_theme2/css/style.min.css?t=5
IP
185.178.208.141:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://frdl.to/luef8xlhrvzu/Jenadammaya.zip.html
Certificate
IssuerLet's Encrypt
Subjectfrdl.to
Fingerprint07:14:0F:45:8D:1A:43:AD:B3:FF:34:B0:6D:94:3E:A2:CA:B2:2F:55
ValidityFri, 12 Apr 2024 07:06:45 GMT - Thu, 11 Jul 2024 07:06:44 GMT

File type
assembler source, ASCII text, with very long lines (61504)
Size
189 kB (189007 bytes)
Hash
4f2ada6a62b3df6773a827d16d2180a9
2e5dd23ba5f792a18477ffbdfe4c4561c34301bd
1c78e7aba432bfb05b65f1c37fcf2a4f3438c20b3c2a727af462834e9567ccb0

HTTP Headers

GET /xfst_theme2/css/style.min.css?t=5 HTTP/1.1
Host: frdl.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://frdl.to/luef8xlhrvzu/Jenadammaya.zip.html
Cookie: __ddg1_=a1ZJSchkxgIiD12SVM3N
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Wed, 10 Apr 2024 13:29:56 GMT
content-type: text/css
last-modified: Fri, 14 Oct 2022 10:01:01 GMT
vary: Accept-Encoding
etag: W/"6349335d-2e24f"
expires: Fri, 10 May 2024 13:29:56 GMT
cache-control: max-age=2592000
content-encoding: gzip
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
access-control-allow-credentials: true, true
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
age: 662698
content-length: 36455
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2

awhauchoa.net/?rb=Ctvyqp03_5Xe3Z7tPEhT_J6Eu949sX6AU36UhgpXXUUhDlwKXDDS5VxkXCP8AE_Tr8oYxBb83GKrHILbIEwSTYHKuQCN0saR_wRSERVdmnZpFavHd21IYtLY9-X6VTUzmEpbM2V9gbL_bGtTgggU7MtOqhS-C3tWnqcrAmZe9Gu5tGzjNMbCCn2at6lb39fWJsjdTRuqRrGm59p349812ooraRcPFrvJLZNJ8FGu6Z77Jcol_rUgwHE0PXZRfYaj&request_ab2=0&zoneid=7319742&js_build=iclick-v1.773.0&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=0&pl=https%3A%2F%2Ffrdl.to%2Fluef8xlhrvzu%2FJenadammaya.zip.html&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.773.0&navlng=en-US&pnt=0&pnrc=0&wasm=1&bs=07e856b6-78de-4f73-b8c1-e65a718a8c1f&userId=008042923c4948d7e0606fc56d7aecf3&m=link

139.45.197.243

200 OK

2.7 kB

URL GET HTTP/2
awhauchoa.net/?rb=Ctvyqp03_5Xe3Z7tPEhT_J6Eu949sX6AU36UhgpXXUUhDlwKXDDS5VxkXCP8AE_Tr8oYxBb83GKrHILbIEwSTYHKuQCN0saR_wRSERVdmnZpFavHd21IYtLY9-X6VTUzmEpbM2V9gbL_bGtTgggU7MtOqhS-C3tWnqcrAmZe9Gu5tGzjNMbCCn2at6lb39fWJsjdTRuqRrGm59p349812ooraRcPFrvJLZNJ8FGu6Z77Jcol_rUgwHE0PXZRfYaj&request_ab2=0&zoneid=7319742&js_build=iclick-v1.773.0&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=0&pl=https%3A%2F%2Ffrdl.to%2Fluef8xlhrvzu%2FJenadammaya.zip.html&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.773.0&navlng=en-US&pnt=0&pnrc=0&wasm=1&bs=07e856b6-78de-4f73-b8c1-e65a718a8c1f&userId=008042923c4948d7e0606fc56d7aecf3&m=link
IP
139.45.197.243:443
ASN
#9002 RETN Limited

Requested by
https://frdl.to/luef8xlhrvzu/Jenadammaya.zip.html
Certificate
IssuerLet's Encrypt
Subjectawhauchoa.net
Fingerprint70:0E:FB:69:A6:6E:AD:8C:76:85:7B:3B:62:68:EC:7F:BF:00:FC:B1
ValidityWed, 17 Apr 2024 18:19:12 GMT - Tue, 16 Jul 2024 18:19:11 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (2685), with no line terminators
Size
2.7 kB (2655 bytes)
Hash
6f6b56d33c31941b7d70dfa0ae4a9567
3268ac7e841d924584d37fcec0023e29a0b949a4
dc10446be320aacda534724774c77a463aac217b34c6cb8ec572f5c8f7401f7c

HTTP Headers

GET /?rb=Ctvyqp03_5Xe3Z7tPEhT_J6Eu949sX6AU36UhgpXXUUhDlwKXDDS5VxkXCP8AE_Tr8oYxBb83GKrHILbIEwSTYHKuQCN0saR_wRSERVdmnZpFavHd21IYtLY9-X6VTUzmEpbM2V9gbL_bGtTgggU7MtOqhS-C3tWnqcrAmZe9Gu5tGzjNMbCCn2at6lb39fWJsjdTRuqRrGm59p349812ooraRcPFrvJLZNJ8FGu6Z77Jcol_rUgwHE0PXZRfYaj&request_ab2=0&zoneid=7319742&js_build=iclick-v1.773.0&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=0&pl=https%3A%2F%2Ffrdl.to%2Fluef8xlhrvzu%2FJenadammaya.zip.html&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.773.0&navlng=en-US&pnt=0&pnrc=0&wasm=1&bs=07e856b6-78de-4f73-b8c1-e65a718a8c1f&userId=008042923c4948d7e0606fc56d7aecf3&m=link HTTP/1.1
Host: awhauchoa.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://frdl.to/
Origin: https://frdl.to
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 05:34:55 GMT
content-type: application/json
x-trace-id: 55502f9f3f9f00109300095a9ba2e164
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://frdl.to
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=008042923c4948d7e0606fc56d7aecf3; expires=Fri, 18 Apr 2025 05:34:55 GMT; path=/; secure; SameSite=None
oaidts=1713418495; expires=Fri, 18 Apr 2025 05:34:55 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Thu, 25 Apr 2024 05:34:55 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

waust.at/d.js

104.26.4.7

200 OK

15 kB

URL GET HTTP/2
waust.at/d.js
IP
104.26.4.7:443
ASN
#13335 CLOUDFLARENET

Requested by
https://frdl.to/luef8xlhrvzu/Jenadammaya.zip.html
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:3D:6E:A9:C7:6B:CD:4B:7B:04:51:4F:D1:D7:10:2D:12:92:F9:58
ValiditySun, 04 Jun 2023 00:00:00 GMT - Mon, 03 Jun 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (14706), with no line terminators
Size
15 kB (14706 bytes)
Hash
38cdedd658fa41770f607c0b117c1f82
3f3c9c6c330ab649e27ec56a8d852e9d41b0edf4
951feaddb6ad45bcc58fee7033004366978150e8f2927692781c3e2755c7c15c

HTTP Headers

GET /d.js HTTP/1.1
Host: waust.at
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://frdl.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 18 Apr 2024 05:34:54 GMT
content-type: application/x-javascript
last-modified: Thu, 12 Jan 2023 17:19:30 GMT
etag: W/"63c04122-3972"
expires: Fri, 19 Apr 2024 05:10:36 GMT
cache-control: max-age=86400
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 1458
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=q8vS7ausVurcGiTjaI5mwF8onSW2F5X0eilUD3q7Yi%2FKAEq%2Fkfbr%2B%2FP34yhC1YHiuhnzXiToqP2RnF%2B8wOJswzcDFD%2BtEEQqGIYAE4V5V0p7lySAdzSynRFE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876249d5fe84b518-OSL
content-encoding: br
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Karla:wght@200;300;400;500&family=Source+Sans+Pro:wght@200;300;400;600&display=swap

216.58.207.234

200 OK

13 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Karla:wght@200;300;400;500&family=Source+Sans+Pro:wght@200;300;400;600&display=swap
IP
216.58.207.234:443
ASN
#15169 GOOGLE

Requested by
https://frdl.to/luef8xlhrvzu/Jenadammaya.zip.html
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E
ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT

File type
ASCII text
Size
13 kB (13204 bytes)
Hash
6317433d4cca5d9db0f0324b17870827
65130a4dd2d832b5f19f342844a81c23b1813d83
43a52c7b1448ea0192fe12c6b2b2c5fd14c079f7254e71ea49e0db5a5dbbf832

HTTP Headers

GET /css2?family=Karla:wght@200;300;400;500&family=Source+Sans+Pro:wght@200;300;400;600&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://frdl.to/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 18 Apr 2024 05:34:54 GMT
date: Thu, 18 Apr 2024 05:34:54 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

t.dtscout.com/i/?l=https%3A%2F%2Ffrdl.to%2Fluef8xlhrvzu%2FJenadammaya.zip.html&j=

141.101.120.10

200 OK

2.1 kB

URL GET HTTP/2
t.dtscout.com/i/?l=https%3A%2F%2Ffrdl.to%2Fluef8xlhrvzu%2FJenadammaya.zip.html&j=
IP
141.101.120.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://frdl.to/luef8xlhrvzu/Jenadammaya.zip.html
Certificate
IssuerGoogle Trust Services LLC
Subjectdtscout.com
Fingerprint69:9E:FB:2A:E2:0B:6B:60:8A:15:AF:4F:5A:3D:94:5B:68:70:F4:21
ValiditySun, 17 Mar 2024 14:35:30 GMT - Sat, 15 Jun 2024 14:35:29 GMT

File type
ASCII text, with very long lines (2163), with no line terminators
Size
2.1 kB (2079 bytes)
Hash
8811c1da7d7cd9a89cf1c9d88cf153c1
5dd7a95e6eee435a18d261757a4aa4aeea7ae472
0c72ec693d21a33e6c802f2648030af0433badc9a020325a82550115cf5044cc

HTTP Headers

GET /i/?l=https%3A%2F%2Ffrdl.to%2Fluef8xlhrvzu%2FJenadammaya.zip.html&j= HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://frdl.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 18 Apr 2024 05:34:55 GMT
content-type: application/javascript
x-s: mtl1
set-cookie: m=1; Domain=dtscout.com; Expires=Thu, 18-Apr-2024 06:58:15 GMT; Max-Age=5000; Path=/; SameSite=None; Secure
oa=1; Domain=dtscout.com; Expires=Thu, 18-Apr-2024 09:34:55 GMT; Max-Age=14400; Path=/; SameSite=None; Secure
df=1713418495; Domain=dtscout.com; Expires=Sat, 27-Jul-2024 05:34:55 GMT; Max-Age=8640000; Path=/; SameSite=None; Secure
x-t: 0.275
expires: Thu, 18 Apr 2024 05:34:54 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=k57aLrHGht7qRiL%2BMo7EYa0GFU0gyHIt6JVAuQVHmyOwcxKtM%2FXxhfvdgxH3xFa0uF7x%2Fxl%2F9YjsBCuJO7BKzq4dgd%2BCjcbpMKYEUFqNrJ%2BJpSLMfuBRzargh9F5Yts%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876249da9e408da5-HEL
content-encoding: br
X-Firefox-Spdy: h2

frdl.to/luef8xlhrvzu/favicon.ico

185.178.208.141

200 OK

15 kB

URL GET HTTP/2
frdl.to/luef8xlhrvzu/favicon.ico
IP
185.178.208.141:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://frdl.to/luef8xlhrvzu/Jenadammaya.zip.html
Certificate
IssuerLet's Encrypt
Subjectfrdl.to
Fingerprint07:14:0F:45:8D:1A:43:AD:B3:FF:34:B0:6D:94:3E:A2:CA:B2:2F:55
ValidityFri, 12 Apr 2024 07:06:45 GMT - Thu, 11 Jul 2024 07:06:44 GMT

File type
JavaScript source, ASCII text, with very long lines (736)
Size
15 kB (14765 bytes)
Hash
efe0f70381991f814e130ccb1d7ef3f5
c7f75a05763f2bb05fa8cb697b4134eb56199518
a56aacb2b1d1dab20226a201f9fd4ebdb69a5a6c8705b5b9df53b93c564810ee

HTTP Headers

GET /luef8xlhrvzu/favicon.ico HTTP/1.1
Host: frdl.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://frdl.to/luef8xlhrvzu/Jenadammaya.zip.html
Cookie: __ddg1_=a1ZJSchkxgIiD12SVM3N
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 18 Apr 2024 05:34:55 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
strict-transport-security: max-age=0;includeSubDomains;
x-frame-options: SAMEORIGIN
expires: Wed, 17 Apr 2024 05:34:55 GMT
set-cookie: affiliate=FbvI8bMJ7vmMryqFH%2BBkonHygZS2%2BKXMGDVsZr1gR%2FKQdqt4Mcme5xIQqQ%2FcjQMAq9uJdqhYHIswh2HChUcrfXXktvC%2B7RnFyC7jz%2FsB2pjLsqLffxRIDcuAMf8CdvKcJjqSmg5Uc4TOR366J5CF3%2Fq6i1nN7K4%3D; domain=.freedl.ink; path=/; expires=Thu, 02-May-2024 05:34:55 GMT
lang=english; domain=.freedl.ink; path=/
x-content-type-options: nosniff, nosniff, nosniff
content-encoding: gzip
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
access-control-allow-credentials: true, true
x-xss-protection: 1; mode=block, 1; mode=block
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2

t.dtscout.com/pv/?_a=v&_h=frdl.to&_ss=4viucnrad8&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=37cx&_cb=_dtspv.c

141.101.120.10

200 OK

51 B

URL GET HTTP/2
t.dtscout.com/pv/?_a=v&_h=frdl.to&_ss=4viucnrad8&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=37cx&_cb=_dtspv.c
IP
141.101.120.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://frdl.to/luef8xlhrvzu/Jenadammaya.zip.html
Certificate
IssuerGoogle Trust Services LLC
Subjectdtscout.com
Fingerprint69:9E:FB:2A:E2:0B:6B:60:8A:15:AF:4F:5A:3D:94:5B:68:70:F4:21
ValiditySun, 17 Mar 2024 14:35:30 GMT - Sat, 15 Jun 2024 14:35:29 GMT

File type
ASCII text, with no line terminators
Size
51 B (51 bytes)
Hash
fa5977438c0911552112dcb2ba65094f
86ca195b9d1ca2781707f47759e32c4dd483a2dc
9769b3751bbedc6eee1fd5fe79195679dad94fde450013d9596740ed8b707af5

HTTP Headers

GET /pv/?_a=v&_h=frdl.to&_ss=4viucnrad8&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=37cx&_cb=_dtspv.c HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://frdl.to/
Cookie: m=1; oa=1; df=1713418495
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 18 Apr 2024 05:34:55 GMT
content-type: application/javascript
x-t: 0.168
x-c: 0
expires: Thu, 18 Apr 2024 05:34:54 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PyhQqP%2BrC5oSi53VBTI64sscXJaA89Hnbs9l96LQMinyZWThF3M2szrkHqLsDHyH2sEjhOw2eFsi%2FOIo98NnQDHJrkMIZQRJM0udTgsq1ghtXULVUCKF9a0bv6mdfPc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876249dc5ec58da5-HEL
content-encoding: br
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Montserrat:wght@100;200;300;400;500;600;700;800;900&display=swap

216.58.207.234

200 OK

16 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Montserrat:wght@100;200;300;400;500;600;700;800;900&display=swap
IP
216.58.207.234:443
ASN
#15169 GOOGLE

Requested by
https://frdl.to/luef8xlhrvzu/Jenadammaya.zip.html
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E
ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT

File type
ASCII text
Size
16 kB (16470 bytes)
Hash
32091ddc804c12b484f20b93e3d78669
3f95d2b1dccf36f2048ead1088acbccd6033f119
f1e4c18549167223af672ff319ac7293d52e09fd02544d08d4166078b5f36c4d

HTTP Headers

GET /css2?family=Montserrat:wght@100;200;300;400;500;600;700;800;900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://frdl.to/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 18 Apr 2024 05:34:54 GMT
date: Thu, 18 Apr 2024 05:34:54 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

my.rtmark.net/gid.js?userId=008042923c4948d7e0606fc56d7aecf3

139.45.195.8

200 OK

65 B

URL GET HTTP/2
my.rtmark.net/gid.js?userId=008042923c4948d7e0606fc56d7aecf3
IP
139.45.195.8:443
ASN
#9002 RETN Limited

Requested by
https://frdl.to/luef8xlhrvzu/Jenadammaya.zip.html
Certificate
IssuerLet's Encrypt
Subjectrtmark.net
FingerprintDB:C0:8B:64:1C:E3:2A:9C:B9:04:0D:F3:6F:5A:E0:35:F4:C7:75:CC
ValiditySat, 02 Mar 2024 21:53:43 GMT - Fri, 31 May 2024 21:53:42 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
65 B (65 bytes)
Hash
65ad569e6d577feb0e64807a050cb1a8
579e9361bb33021f46f468a3bb809b8476b49434
b59233cde46d73966f97014b11a0cf4c9150a85f42a5ee015336c19cae05da39

HTTP Headers

GET /gid.js?userId=008042923c4948d7e0606fc56d7aecf3 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://frdl.to
DNT: 1
Connection: keep-alive
Referer: https://frdl.to/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 05:34:55 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://frdl.to
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=008042923c4948d7e0606fc56d7aecf3; expires=Fri, 18 Apr 2025 05:34:55 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (22)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML