Report - rndtechnosoft.com/clientapps/shoppingapp/home/myaccount/61988cc95fba40d73622f1f43963879a/Up-dating.php

Report Overview

Submitted URL
rndtechnosoft.com/clientapps/shoppingapp/home/myaccount/61988cc95fba40d73622f1f43963879a/Up-dating.php
IP
103.191.208.92
ASN
#150055 DIGITAL SNAP
Submitted
2024-04-20 07:59:53
Access
public
Website Title
1 new message
Final URL
www.rndtechnosoft.com/404.php
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
40

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
va.tawk.to	8297	unknown	2017-01-30	2024-04-18	2.6 kB	8.0 kB	104.22.25.131
cdn.jsdelivr.net	439	2012-05-16	2012-09-30	2024-04-18	872 B	607 kB	151.101.193.229
rndtechnosoft.com	unknown	2014-12-08	2015-05-14	2024-03-27	556 B	1.2 kB	103.191.208.92
www.rndtechnosoft.com	unknown	2014-12-08	2019-03-29	2024-03-19	9.7 kB	2.4 MB	103.191.208.92
www.google.com	7	1997-09-15	2015-05-10	2024-03-23	2.3 kB	4.8 kB	142.250.74.164
vsa29.tawk.to	unknown	unknown	2020-03-11	2024-03-28	1.1 kB	417 B	104.22.24.131
www.google.no	25607	2001-02-26	2016-04-05	2024-04-19	1.1 kB	641 B	142.250.74.163
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-04-20	471 B	7.3 kB	142.250.74.106
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-04-20	1.6 kB	26 kB	216.58.207.227
static.getbutton.io	31869	2019-09-03	2019-10-01	2024-04-08	861 B	554 kB	172.67.74.247
www.gstatic.com	unknown	2008-02-11	2016-07-26	2024-04-19	492 B	207 kB	142.250.74.35
embed.tawk.to	8650	unknown	2014-03-19	2024-04-18	9.9 kB	856 kB	104.22.25.131
tawk.link	48589	2015-04-22	2015-06-24	2024-04-18	388 B	13 kB	172.67.162.230
www.googletagmanager.com	75	2011-11-11	2013-05-22	2024-04-19	5.4 kB	980 kB	142.250.74.168
ems.rndtechnosoft.com	unknown	2014-12-08	2023-09-12	2024-03-19	870 B	4.3 kB	103.191.208.92

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-20	medium	rndtechnosoft.com	Sinkholed
2024-04-20	medium	rndtechnosoft.com	Sinkholed
2024-04-20	medium	rndtechnosoft.com	Sinkholed
2024-04-20	medium	rndtechnosoft.com	Sinkholed
2024-04-20	medium	rndtechnosoft.com	Sinkholed
2024-04-20	medium	rndtechnosoft.com	Sinkholed
2024-04-20	medium	rndtechnosoft.com	Sinkholed
2024-04-20	medium	rndtechnosoft.com	Sinkholed
2024-04-20	medium	rndtechnosoft.com	Sinkholed
2024-04-20	medium	rndtechnosoft.com	Sinkholed
2024-04-20	medium	rndtechnosoft.com	Sinkholed
2024-04-20	medium	rndtechnosoft.com	Sinkholed
2024-04-20	medium	rndtechnosoft.com	Sinkholed
2024-04-20	medium	rndtechnosoft.com	Sinkholed
2024-04-20	medium	rndtechnosoft.com	Sinkholed
2024-04-20	medium	rndtechnosoft.com	Sinkholed
2024-04-20	medium	rndtechnosoft.com	Sinkholed
2024-04-20	medium	rndtechnosoft.com	Sinkholed
2024-04-20	medium	rndtechnosoft.com	Sinkholed
2024-04-20	medium	rndtechnosoft.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (51)

	URL	Size	First Seen	Last Seen
	www.rndtechnosoft.com/404.php	153 B	2023-03-26	2024-04-29
Pretty URL www.rndtechnosoft.com/404.php IP 103.191.208.92 ASN #150055 DIGITAL SNAP Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-26 00:48:53 Last Seen2024-04-29 02:55:44 Times Seen26 Hash 8be0ab36a828346830597d86db039370 1ade3ed0084211ca9986b7bb4b10ca329fae0c54 7ddaaebb0766a5a52c4d1b3e80806af5578a3aea6a3e7061506021a797f23ea0 Loading...

	www.google-analytics.com/analytics.js	4.7 kB	2023-04-11	2024-05-03
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-05-03 10:27:08 Times Seen343870 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	embed.tawk.to/630dcc4b37898912e96620d6/1gbmuc2sq	2.1 kB	2024-04-20	2024-04-20
Pretty URL embed.tawk.to/630dcc4b37898912e96620d6/1gbmuc2sq IP 104.22.25.131 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-20 09:59:56 Last Seen2024-04-20 09:59:56 Times Seen1 Hash a253ec87cf48bd3e849680769544e7f5 5dce1d42359c6e765116ac4318a3eb29bdeaaa1e 9b249dec09ddf3df5441af552831128d0662c29dcb570198b56788afc69cbea4 Loading...

	www.rndtechnosoft.com/404.php	151 B	2023-03-07	2024-04-29
Pretty URL www.rndtechnosoft.com/404.php IP 103.191.208.92 ASN #150055 DIGITAL SNAP Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:21:17 Last Seen2024-04-29 02:55:44 Times Seen27 Hash 1ba63c927ee3c0960877a972ea30e6ad bad9b95e54aafdceab5d98818e42e3cc0277f584 ad7aa86c20bfbbf4b6fcc71889e95361087fd08de1601642b9225dde553aa49a Loading...

	www.rndtechnosoft.com/js/vendor/modernizr-2.6.2.min.js	15 kB	2023-03-07	2024-04-29
Pretty URL www.rndtechnosoft.com/js/vendor/modernizr-2.6.2.min.js IP 103.191.208.92 ASN #150055 DIGITAL SNAP Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:49 Last Seen2024-04-29 18:35:24 Times Seen2876 Hash 42306a279a9e831515347ae319181cd1 d069641242e4fe1beb6de8f53a77dd964c98bce0 cf25ec18f223f4c51ce1128a42e644cdc2244d88f89d1a51440d9dbe51f4efe8 Loading...

	embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-24d8db78.js	113 kB	2024-04-04	2024-04-22
Pretty URL embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-24d8db78.js IP 104.22.25.131 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-04 13:22:35 Last Seen2024-04-22 01:56:43 Times Seen213 Hash d67e8e92f153ef2b6332e4a84051896e 46076321b1ef81d170a664e6fb452e5a4070bb62 befa5027d9afa506072bde391860033cd8d96041767287585ddd5462810f9db8 Loading...

	www.googletagmanager.com/gtag/js?id=UA-283934328-1	203 kB	2024-04-20	2024-04-20
Pretty URL www.googletagmanager.com/gtag/js?id=UA-283934328-1 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-20 09:59:56 Last Seen2024-04-20 09:59:58 Times Seen2 Hash 8729baed22679cb5fba46bb1b2e37b59 f6d8d6ae2fb372d38bddf9c97311a660f2b864b8 fda29c7c58bd19b5ba2955f1412265ce344fcea21ac692ba1a8154a9451ee56f Loading...

	www.googletagmanager.com/gtag/js?id=UA-283934328-1&l=dataLayer&cx=c	203 kB	2024-04-20	2024-04-20
Pretty URL www.googletagmanager.com/gtag/js?id=UA-283934328-1&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-20 09:59:56 Last Seen2024-04-20 09:59:58 Times Seen2 Hash 3476191b7a2e3e934e2ebb46309079bb 9048ff94a8081df874e3c03e98d227e5966f48c5 9a424f5d25fdda8fd1d4badf51ca15f3929e6c2926d9d586ee45a4e04d594420 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-NZP4MQXS	174 kB	2024-04-20	2024-04-20
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-NZP4MQXS IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-20 09:59:57 Last Seen2024-04-20 09:59:58 Times Seen2 Hash 6c43ea70c05ade7aaba16c2e3c263552 ced8063fffe490b495eed887566bc168907650f7 fa2a421624b8997a1f108e53cfce6fb52764935eb3f9cde13cf51a8ce0680cd8 Loading...

	embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-f1565420.js	11 kB	2024-04-04	2024-04-21
Pretty URL embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-f1565420.js IP 104.22.25.131 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-04 17:36:50 Last Seen2024-04-21 18:16:02 Times Seen168 Hash 63c6e2590e1cbc9c6098bd422232fcc6 bc333c909e3ade0408528d73dc29c249a12f917b 2ddb45ffe9fe95232c05138dccb4076e28d78fb105f2cd5ca6dee0f85bcbdb6f Loading...

	embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-9294da6c.js	18 kB	2024-04-04	2024-04-22
Pretty URL embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-9294da6c.js IP 104.22.25.131 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-04 13:22:37 Last Seen2024-04-22 01:56:43 Times Seen216 Hash 34171aeb4a8a2b1a28add18e27dfce02 f410acdae61158f940e9dd1b0eed87dcd7c6dee0 266550a7339062b1f111b38963a74d39b33d18710cf58cb06f5c7850d6faa163 Loading...

	www.google.com/recaptcha/api.js	850 B	2024-04-16	2024-04-24
Pretty URL www.google.com/recaptcha/api.js IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-16 10:37:30 Last Seen2024-04-24 17:14:37 Times Seen377 Hash 7c792e0e26e2bd74f8e53c7da0d6b8a2 a43099555724ee257f66ca05de55cb56a14c8fca d782a59ef4bab02833ce95b5e9c9bd622f328683659f43a34f1dbcf54f1d4443 Loading...

	unknown	37 B	2023-04-11	2024-05-03
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:31:25 Last Seen2024-05-03 10:08:13 Times Seen233867 Hash 29d0c84b9d1d8da446a6062c6a840ad9 6d6b3a6065667c7c50d92f3889c85ed65a9ad784 3c3cbdb71d0d2c22f504f4d63d8a6ffe8d250cde7e58300619be35b6bbab26a1 Loading...

	www.google.com/pagead/1p-conversion/11428680380/?random=1713599966159&cv=11&fst=1713599966159&bg=ffffff&guid=ON&async=1&gtm=45be44h0v9172240245z8810191683za201&gcd=13l3l3l2l1&dma_cps=sypham&dma=1&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.rndtechnosoft.com%2F404.php&label=ukpHCIa1yP4YELylz8kq&hn=www.google.com&frm=0&value=0&bttype=purchase&npa=1&pscdl=noapi&auid=368927344.1713599966&fdr=SA&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4	2.6 kB	2024-04-20	2024-04-20
Pretty URL www.google.com/pagead/1p-conversion/11428680380/?random=1713599966159&cv=11&fst=1713599966159&bg=ffffff&guid=ON&async=1&gtm=45be44h0v9172240245z8810191683za201&gcd=13l3l3l2l1&dma_cps=sypham&dma=1&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.rndtechnosoft.com%2F404.php&label=ukpHCIa1yP4YELylz8kq&hn=www.google.com&frm=0&value=0&bttype=purchase&npa=1&pscdl=noapi&auid=368927344.1713599966&fdr=SA&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4 IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-20 09:59:57 Last Seen2024-04-20 09:59:58 Times Seen2 Hash 97dfef6c321d2cf8e55ac712acf1fef3 0aa7796c9f4365f220ae2dcf889feafe7e40e437 43530c25a5c000b649e0f4343fc0bd3748e0f0b77f1e1c63aeee4baea3f627f5 Loading...

	embed.tawk.to/_s/v4/app/660e2260004/js/twk-app.js	151 B	2023-03-07	2024-05-03
Pretty URL embed.tawk.to/_s/v4/app/660e2260004/js/twk-app.js IP 104.22.25.131 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:46 Last Seen2024-05-03 06:33:35 Times Seen46682 Hash e736e189edb5d0d9d5b8e7f23dd9114a bcabee193f13756fa9154fc492fe420c47140343 13cf82e6f9d48221cd55f8b3c3d206f7bdb83f291034b478e484ccfef7d500dd Loading...

	cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js	303 kB	2023-04-05	2024-05-03
Pretty URL cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js IP 151.101.193.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 07:49:38 Last Seen2024-05-03 06:33:36 Times Seen59079 Hash 7bb7aac0cac89a90304af1c72eb4f50d 729f6f8ca5787d89743b0ed7eb27fd76406bf985 f5c06455e539dcd889f7f05d709b5adc76c444099fe57f431365af2fc57e803b Loading...

	ems.rndtechnosoft.com/websites/6607e172952f5/connect.js	5.0 kB	2024-01-20	2024-04-29
Pretty URL ems.rndtechnosoft.com/websites/6607e172952f5/connect.js IP 103.191.208.92 ASN #150055 DIGITAL SNAP Introduced by scriptElement Embedded in HTML false Observations First Seen2024-01-20 10:42:16 Last Seen2024-04-29 02:55:46 Times Seen23 Hash 169d9ea59bdbc4eb1e7932bfc5dfe764 4855947606c17dccac75a3a85d574c05f2a0cc8e 077094c4a45a54c12b5fe1151fa56eb329f4ca29d8f2164365615173b90a3232 Loading...

	www.googletagmanager.com/gtag/js?id=UA-127636869-1	146 kB	2024-04-20	2024-04-20
Pretty URL www.googletagmanager.com/gtag/js?id=UA-127636869-1 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-20 09:59:57 Last Seen2024-04-20 09:59:58 Times Seen2 Hash 24b8d7ded56873e3b06e4afd50d4d4db c995f0304d17b8bcb78d4256575fef360a1e18d0 188eeca247fbf9c8f570224d97618fbf43556aada646ef07ccdaa7237d9b682c Loading...

	www.googletagmanager.com/gtag/js?id=G-TVHYLDE4P1&l=dataLayer&cx=c	285 kB	2024-04-20	2024-04-20
Pretty URL www.googletagmanager.com/gtag/js?id=G-TVHYLDE4P1&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-20 09:59:57 Last Seen2024-04-20 09:59:58 Times Seen2 Hash 03e6c0d2e10938fd8286bee127874446 57b0f5d7020da674ecb0b0c9577b7396394983ac d035f73499895761a51f8e35f06e5c5434fc615dea5a962b03d3660b124b3bcd Loading...

	embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-4fe9d5dd.js	906 B	2023-06-02	2024-05-03
Pretty URL embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-4fe9d5dd.js IP 104.22.25.131 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-02 11:09:48 Last Seen2024-05-03 06:33:35 Times Seen32147 Hash 1c5ecf371149feca23bd895ba9dfec4d 6f6213ae4c63d959441572d232f0425467ed05de fb193c2bcf1a14030cea8d72baa20ab7b1cf88f9e90adb31895279beedf6bf84 Loading...

	www.googletagmanager.com/gtag/js?id=G-VQ9S55LZTK	294 kB	2024-04-20	2024-04-20
Pretty URL www.googletagmanager.com/gtag/js?id=G-VQ9S55LZTK IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-20 09:59:57 Last Seen2024-04-20 09:59:58 Times Seen2 Hash a6e4941dad8289b6d195b74bf098ca5b 0d343ca8fa8dffcdab6873456bac330bdd5683a2 b5eb4bdb993ffbd15ecf09acf6565ab0b54678af968ad42e765bfb1f2c44d4c5 Loading...

	www.rndtechnosoft.com/404.php	445 B	2023-03-07	2024-04-29
Pretty URL www.rndtechnosoft.com/404.php IP 103.191.208.92 ASN #150055 DIGITAL SNAP Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:21:17 Last Seen2024-04-29 02:55:44 Times Seen27 Hash ed2f75ee4b66fc6e1f3077ff87facae1 7a5601c4c0bef66d16b9b28e0352a36fe8c1457c 64ed3a0d0a8cfc0733cf8b8e79b64eec10c97bf48e9d8efdf15936f4a3986c78 Loading...

	www.rndtechnosoft.com/js/compressed.js	368 kB	2023-03-07	2024-04-29
Pretty URL www.rndtechnosoft.com/js/compressed.js IP 103.191.208.92 ASN #150055 DIGITAL SNAP Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:21:17 Last Seen2024-04-29 02:55:46 Times Seen49 Hash 633bf836000f9e29acf39a57247b71e5 733899afeed360d2334f1a7cdc7bc86d78a0878f 69dda73d5e3c0d810d4d2d55216dc4af5c81f987e236e0a528f8c9e7cfc8ef1e Loading...

	embed.tawk.to/_s/v4/app/660e2260004/languages/en.js	17 kB	2023-10-31	2024-05-03
Pretty URL embed.tawk.to/_s/v4/app/660e2260004/languages/en.js IP 104.22.25.131 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-31 10:48:20 Last Seen2024-05-03 06:33:36 Times Seen21671 Hash 7f37a030886ec7fce1d065ec482789ee 661ad608ac1513e2ccdec4cd55eb552a8604c8f6 75b20e74e3effa00e4b62b9da6df7d7542d91cb4b50078b8365112d556a73a7e Loading...

	embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-2d0b383d.js	699 B	2023-10-20	2024-05-03
Pretty URL embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-2d0b383d.js IP 104.22.25.131 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-20 20:17:18 Last Seen2024-05-03 06:33:35 Times Seen16403 Hash 838903127a65ec440893b4945c40ca4a 827f3e5341f56fa4473d53b788af41ec6bf21b8b 89f08c4a66c9a737c6155b8313e87b36687fe65bfc9a1ba1783aeace487bcde3 Loading...

	www.rndtechnosoft.com/404.php	155 B	2023-09-08	2024-04-29
Pretty URL www.rndtechnosoft.com/404.php IP 103.191.208.92 ASN #150055 DIGITAL SNAP Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-08 01:36:29 Last Seen2024-04-29 02:55:45 Times Seen14 Hash a507eb8e99732b8ed592fe1c3eda53b7 c844197723cb0698693f2df0e89005829e3657b8 64a4c7d213c85f384b2e3b9eed3345e00f2938e1b9f69f3a6e3b788611024371 Loading...

	www.rndtechnosoft.com/js/main.js	54 kB	2023-03-07	2024-04-29
Pretty URL www.rndtechnosoft.com/js/main.js IP 103.191.208.92 ASN #150055 DIGITAL SNAP Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:21:17 Last Seen2024-04-29 02:55:46 Times Seen46 Hash b9433beabae2cca42aef33ac141f0e1e 8b24c9ce4375ba449c67c4defd4e9635e1f2e053 fd5e928ce5984f1c16a79888bb761a47d77d18c2399ad1601197fa57a5b16b52 Loading...

	www.googletagmanager.com/gtag/js?id=G-3HD2DLK7TE&l=dataLayer&cx=c	250 kB	2024-04-20	2024-04-20
Pretty URL www.googletagmanager.com/gtag/js?id=G-3HD2DLK7TE&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-20 09:59:57 Last Seen2024-04-20 09:59:58 Times Seen2 Hash 0e2bff5a9f1a74d90dd07eaffaaa64dd 1bddf71deb8e935b65bd36fd83309d9cbab58c13 35642d968469b3261973865306bb2d7247f500fcc54403f61357dbe96df4b03f Loading...

	embed.tawk.to/_s/v4/app/660e2260004/js/twk-main.js	121 B	2023-03-07	2024-05-03
Pretty URL embed.tawk.to/_s/v4/app/660e2260004/js/twk-main.js IP 104.22.25.131 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:45 Last Seen2024-05-03 06:33:36 Times Seen46003 Hash da5bb1dc647470204df0e49f5afac2de f5cbf596ca5e4fe208e4c55af6e45b71f9febbe8 705186becc9e0a306a6b4867ae2768aa9dd3b8c12393d9f9c52029e9a6fcf31c Loading...

	embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-2c776523.js	9.9 kB	2023-12-06	2024-05-03
Pretty URL embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-2c776523.js IP 104.22.25.131 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-06 05:31:15 Last Seen2024-05-03 06:33:35 Times Seen4930 Hash 70aec2dd89cac4933594c25b71d61f46 3dfe6f517bd57abbea46dd4da776e80270d9db5f cd50385cef163eb376d93e7b1e07fe467de23b60c98373f7d69448214d3e9cdd Loading...

	www.rndtechnosoft.com/404.php	153 B	2023-09-08	2024-04-29
Pretty URL www.rndtechnosoft.com/404.php IP 103.191.208.92 ASN #150055 DIGITAL SNAP Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-08 01:36:29 Last Seen2024-04-29 02:55:45 Times Seen14 Hash 8f1e3bd959d35c28815314ca9bffd11b 43ee5f5fe774d2fb3e759535e7cdb28678b39a5e 4dfaf3db8d30725e4567a2d6549910740715d943b06133a5082d5ce2c056927b Loading...

	embed.tawk.to/_s/v4/app/660e2260004/js/twk-vendor.js	83 kB	2024-03-08	2024-05-03
Pretty URL embed.tawk.to/_s/v4/app/660e2260004/js/twk-vendor.js IP 104.22.25.131 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-08 05:46:53 Last Seen2024-05-03 06:33:35 Times Seen445 Hash 3b341e35b39f6195793ecaf5db7c1d63 3ef56ed9ac8bfbf5347dc4592653703f59763083 548669d6434f5204dca25b9a6f8a02f63301b8c1b58a717b91fec8b6c2918305 Loading...

	www.rndtechnosoft.com/404.php	342 B	2024-01-20	2024-04-29
Pretty URL www.rndtechnosoft.com/404.php IP 103.191.208.92 ASN #150055 DIGITAL SNAP Introduced by scriptElement Embedded in HTML true Observations First Seen2024-01-20 10:42:16 Last Seen2024-04-29 02:55:45 Times Seen12 Hash 77747e06eec2400d9ef5d93aeaa56a27 6db93f636b9172556515488b4238de1657c40c2d 66cce3e447aad36d9f7be5ce0b266e21e37d376133115fe72258aee102d37024 Loading...

	www.rndtechnosoft.com/404.php	341 B	2024-01-20	2024-04-29
Pretty URL www.rndtechnosoft.com/404.php IP 103.191.208.92 ASN #150055 DIGITAL SNAP Introduced by scriptElement Embedded in HTML true Observations First Seen2024-01-20 10:42:16 Last Seen2024-04-29 02:55:45 Times Seen12 Hash a05a398a10b1b92447464d938c748157 df273379ada2db533b05273427acd2c56b3e10d1 5d6563922c0b65a9133d9cd081f08119361e9fcc0aef5a8d37fb22ef8f89c69f Loading...

	www.rndtechnosoft.com/404.php	41 B	2023-03-07	2024-05-03
Pretty URL www.rndtechnosoft.com/404.php IP 103.191.208.92 ASN #150055 DIGITAL SNAP Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02:03 Last Seen2024-05-03 06:47:29 Times Seen7185 Hash 2ec370ca0eaf3069dce13df24243d863 64c1919bbb18a6d851d1b7772f830320b8ab5cc1 6a31a3a39783d09cc53dd9e9baeb4a4fa49be602eef90f6bbb9f78af02688064 Loading...

	embed.tawk.to/_s/v4/app/660e2260004/js/twk-runtime.js	2.3 kB	2024-04-04	2024-04-22
Pretty URL embed.tawk.to/_s/v4/app/660e2260004/js/twk-runtime.js IP 104.22.25.131 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-04 13:22:35 Last Seen2024-04-22 01:56:43 Times Seen141 Hash 44fd6460256eed06d411cfcd6e73561b bbe5f331b1827fa44a41b4b1aec99213d7bd5e4e 2d1cdc5e3baad1b8d46ca182e036848b57aa19fa4ea5eb66187ac15c3aaad284 Loading...

	www.rndtechnosoft.com/404.php	334 B	2023-03-07	2024-04-29
Pretty URL www.rndtechnosoft.com/404.php IP 103.191.208.92 ASN #150055 DIGITAL SNAP Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:21:17 Last Seen2024-04-29 02:55:45 Times Seen27 Hash 4c95b3444ce47b885d6d87208edf9b33 440d2a0abcd5c0d95cb95e42b1374a87d12c0e2a 391be6171f5df135e6fbfb9afc80ec620313c45cdb324aad2cfd920eef50d7e4 Loading...

	www.googletagmanager.com/gtag/js?id=UA-127636869-1&l=dataLayer&cx=c	143 kB	2024-04-20	2024-04-20
Pretty URL www.googletagmanager.com/gtag/js?id=UA-127636869-1&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-20 09:59:57 Last Seen2024-04-20 09:59:58 Times Seen2 Hash 47cec6a7c92cf7603785657626ac6a15 5d30e1d4edf846da2647772fdaae112d10fb10a6 c72bf1037b4201c01742c1098490a777c9f08a8ab7bc9851f9a48478d2527d6d Loading...

	www.rndtechnosoft.com/sandbox%20eval%20code	147 B	2023-04-11	2024-05-03
Pretty URL www.rndtechnosoft.com/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-05-03 10:27:09 Times Seen344377 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	www.googletagmanager.com/gtag/destination?id=AW-11428680380&l=dataLayer&cx=c	281 kB	2024-04-20	2024-04-20
Pretty URL www.googletagmanager.com/gtag/destination?id=AW-11428680380&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-20 09:59:57 Last Seen2024-04-20 09:59:58 Times Seen2 Hash 83c24e9d696eb277101ae2edf9589911 f4792b6028af9d1941c94cae07c5740b39077f45 d948a8c3cc01679df849e6b15486855d991939a18cf6d78c4ef122403eb30e34 Loading...

	www.rndtechnosoft.com/404.php	991 B	2023-03-07	2024-04-29
Pretty URL www.rndtechnosoft.com/404.php IP 103.191.208.92 ASN #150055 DIGITAL SNAP Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:21:17 Last Seen2024-04-29 02:55:45 Times Seen27 Hash a09f9db0e5ff82c85c4c15d36157f578 ce379dca3b0d777f9ed6000baeda4e0c3a214689 83a7a65e16322e204bf923399259f63ec7fb7ce4023a5a138c01019178397072 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-PGF8QBW	231 kB	2024-04-20	2024-04-20
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-PGF8QBW IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-20 09:59:57 Last Seen2024-04-20 09:59:58 Times Seen2 Hash 135ec2aaffe65b14df61b9367496b099 7c1a6d7bf2bfecf6a989584e30b8faf3ccb80b92 cde2263968f3d77007b2b58788a9232dba85f847c46e0ff033a82d984066c83f Loading...

	www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js	518 kB	2024-04-16	2024-04-24
Pretty URL www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js IP 142.250.74.35 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-16 08:39:13 Last Seen2024-04-24 17:56:53 Times Seen2481 Hash 8326c23d6b3eed35bc3e62f3294587fd edda17e74e53e85073e5eac9cb6be2163dbfa23c 57f03d3ba66117edc152646341120dd3a1d7d71b9a98a3723af5a8ae61bcb3ab Loading...

	embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-common.js	226 kB	2024-04-04	2024-04-22
Pretty URL embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-common.js IP 104.22.25.131 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-04 13:22:36 Last Seen2024-04-22 01:56:43 Times Seen135 Hash 00600786ca50d48a5a4a55f2d48ca09c cdb5b6b1952065e30f3d7bfa6acb282c5d7f42cd b0b620cc047e7bff01fc82ed63b6854d1dbd5b528fdd14c7959837dd59adb30e Loading...

	embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-vendors.js	217 kB	2024-03-08	2024-05-03
Pretty URL embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-vendors.js IP 104.22.25.131 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-08 05:46:54 Last Seen2024-05-03 06:33:35 Times Seen440 Hash 1c73b4eb89bbe24ecf154b671ddbcafc 75e59ec09164b620648be5cc80048372e6c62aa5 972de8c5257c5c31f0ae45016595089022e4f82e766cec78fb40c997bfbac75f Loading...

	embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-48f3b594.js	19 kB	2024-04-04	2024-04-22
Pretty URL embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-48f3b594.js IP 104.22.25.131 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-04 13:22:36 Last Seen2024-04-22 01:56:43 Times Seen213 Hash eef7f2f4cac5d7366ee947ab6d9ccaa6 1ee4496c42c0abd1bb905b45acfc1ed9c9d1b586 2872298ae965ac31b7c24d05243960848a3ac0937386b08a019f1a48e2cb9e5f Loading...

	static.getbutton.io/widget-send-button/js/init.js	429 kB	2024-04-20	2024-05-02
Pretty URL static.getbutton.io/widget-send-button/js/init.js IP 172.67.74.247 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-20 09:59:58 Last Seen2024-05-02 22:21:23 Times Seen16 Hash 47527f5be5b465d2d3fdbdb9779c397a adaf5f878c26d7801f895677166a21bfa635dc6f 9b1dc76101401add4413d1476e5a5dac5a038a2dff56aba37287874a1503ea9f Loading...

	www.googletagmanager.com/gtag/js?id=G-3HD2DLK7TE	250 kB	2024-04-20	2024-04-20
Pretty URL www.googletagmanager.com/gtag/js?id=G-3HD2DLK7TE IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-20 09:59:58 Last Seen2024-04-20 09:59:58 Times Seen2 Hash 522437ff8aa6f42b9a79403302b2fa2f 39b74c8950ab7288231e6313e4ed0c4915d19f92 2efa47c9383b7c513e5205da40d7d418ec28719ff219180807d927c96d30e106 Loading...

	www.googletagmanager.com/gtag/js?id=AW-11428680380&l=dataLayer&cx=c	281 kB	2024-04-20	2024-04-20
Pretty URL www.googletagmanager.com/gtag/js?id=AW-11428680380&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-20 09:59:58 Last Seen2024-04-20 09:59:58 Times Seen2 Hash 66708a3d1fee1345b803375e9e732531 1399403f626756d4d2127abb07016603999c7f82 0ff5e655f943512f67d8a9dcc90b150311cba8951aaf68aeefc8af239d99511a Loading...

	embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-2d0b9454.js	535 B	2023-06-02	2024-05-03
Pretty URL embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-2d0b9454.js IP 104.22.25.131 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-02 11:09:48 Last Seen2024-05-03 06:33:35 Times Seen32117 Hash c506281367048d4a134c9affbc68c8c6 ffa331eb81694501d6ff64ae2d1f7e667529c3ba 7e0a886153a50f34adeb6d141b542d08a6338c5e3bada9fc3ccf88d0580356df Loading...

		Size	First Seen	Last Seen
	#1 Write - 07811dc6c422334ce36a09ff5cd6fe71	4 B	2023-03-11	2024-05-03
Pretty Observations First Seen2023-03-11 11:15:57 Last Seen2024-05-03 09:45:23 Times Seen2121 Hash 07811dc6c422334ce36a09ff5cd6fe71 7e79a3af2634de6635e59c9404d251b3955d39f9 6557739a67283a8de383fc5c0997fbec7c5721a46f28f3235fc9607598d9016b Loading...

HTTP Transactions (74)

URL IP Response Size

rndtechnosoft.com/clientapps/shoppingapp/home/myaccount/61988cc95fba40d73622f1f43963879a/Up-dating.php

103.191.208.92

302 Found

771 B

URL User Request GET HTTP/2
rndtechnosoft.com/clientapps/shoppingapp/home/myaccount/61988cc95fba40d73622f1f43963879a/Up-dating.php
IP
103.191.208.92:443
ASN
#150055 DIGITAL SNAP

Certificate
IssuerLet's Encrypt
Subjectcpanel.rndtechnosoft.com
Fingerprint23:34:71:78:70:6B:66:28:84:02:9D:09:57:DE:18:6C:96:D2:9B:29
ValidityWed, 17 Apr 2024 01:09:10 GMT - Tue, 16 Jul 2024 01:09:09 GMT

File type
HTML document, ASCII text, with CRLF, LF line terminators
Size
771 B (771 bytes)
Hash
1597c10f533a5853e70df48c1f50937c
18d401b292522117086c3dbdc1940444aa1cc4da
b5ffafff1266d67b31cc80784d26d1f87b06773c1d50f490b84d10caabc15856

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /clientapps/shoppingapp/home/myaccount/61988cc95fba40d73622f1f43963879a/Up-dating.php HTTP/1.1
Host: rndtechnosoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
content-type: text/html
content-length: 771
date: Sat, 20 Apr 2024 07:59:23 GMT
server: LiteSpeed
cache-control: no-cache, no-store, must-revalidate, max-age=0
location: https://www.rndtechnosoft.com/404.php
vary: User-Agent
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=UA-127636869-1

142.250.74.168

200 OK

55 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=UA-127636869-1
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB
ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT

File type
JavaScript source, ASCII text, with very long lines (1900)
Size
55 kB (55437 bytes)
Hash
24b8d7ded56873e3b06e4afd50d4d4db
c995f0304d17b8bcb78d4256575fef360a1e18d0
188eeca247fbf9c8f570224d97618fbf43556aada646ef07ccdaa7237d9b682c

HTTP Headers

GET /gtag/js?id=UA-127636869-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 20 Apr 2024 07:59:24 GMT
expires: Sat, 20 Apr 2024 07:59:24 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 55437
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-VQ9S55LZTK

142.250.74.168

200 OK

99 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=G-VQ9S55LZTK
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB
ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT

File type
JavaScript source, ASCII text, with very long lines (4179)
Size
99 kB (98879 bytes)
Hash
a6e4941dad8289b6d195b74bf098ca5b
0d343ca8fa8dffcdab6873456bac330bdd5683a2
b5eb4bdb993ffbd15ecf09acf6565ab0b54678af968ad42e765bfb1f2c44d4c5

HTTP Headers

GET /gtag/js?id=G-VQ9S55LZTK HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 20 Apr 2024 07:59:24 GMT
expires: Sat, 20 Apr 2024 07:59:24 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 98879
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=UA-283934328-1

142.250.74.168

200 OK

73 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=UA-283934328-1
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB
ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT

File type
JavaScript source, ASCII text, with very long lines (4179)
Size
73 kB (73360 bytes)
Hash
8729baed22679cb5fba46bb1b2e37b59
f6d8d6ae2fb372d38bddf9c97311a660f2b864b8
fda29c7c58bd19b5ba2955f1412265ce344fcea21ac692ba1a8154a9451ee56f

HTTP Headers

GET /gtag/js?id=UA-283934328-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 20 Apr 2024 07:59:24 GMT
expires: Sat, 20 Apr 2024 07:59:24 GMT
cache-control: private, max-age=900
last-modified: Sat, 20 Apr 2024 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 73360
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.rndtechnosoft.com/css/bootstrap.min.css

103.191.208.92

200 OK

19 kB

URL GET HTTP/3
www.rndtechnosoft.com/css/bootstrap.min.css
IP
103.191.208.92:443
ASN
#150055 DIGITAL SNAP

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerLet's Encrypt
Subjectcpanel.rndtechnosoft.com
Fingerprint23:34:71:78:70:6B:66:28:84:02:9D:09:57:DE:18:6C:96:D2:9B:29
ValidityWed, 17 Apr 2024 01:09:10 GMT - Tue, 16 Jul 2024 01:09:09 GMT

File type
ASCII text, with very long lines (65324)
Size
19 kB (19141 bytes)
Hash
88d1b1c0fd447a75e6e60a61ca041aae
5b0f9ffc6551c19931b78b109438ffbe4dd7b61b
cd5525bc887734465161af57feaa4d63c3f5681cb477816b23b6e17d94995707

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /css/bootstrap.min.css HTTP/1.1
Host: www.rndtechnosoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/404.php
Cookie: PHPSESSID=8991b1a8599f785b24b33ecb29c92a43
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=2592000
expires: Mon, 20 May 2024 07:59:24 GMT
content-type: text/css
last-modified: Wed, 26 Feb 2020 16:41:54 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 19141
date: Sat, 20 Apr 2024 07:59:24 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"

www.rndtechnosoft.com/css/animations.css

103.191.208.92

200 OK

3.4 kB

URL GET HTTP/3
www.rndtechnosoft.com/css/animations.css
IP
103.191.208.92:443
ASN
#150055 DIGITAL SNAP

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerLet's Encrypt
Subjectcpanel.rndtechnosoft.com
Fingerprint23:34:71:78:70:6B:66:28:84:02:9D:09:57:DE:18:6C:96:D2:9B:29
ValidityWed, 17 Apr 2024 01:09:10 GMT - Tue, 16 Jul 2024 01:09:09 GMT

File type
ASCII text, with very long lines (460)
Size
3.4 kB (3370 bytes)
Hash
3a3b70a909d421599f9b280d537d3acc
9f58385d45d3fbb4d436809d774f1d65c77694aa
99658a5fedce61c759501a1769bd6f1d90dd840c75ff5b7e8a05fdb96340cea7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /css/animations.css HTTP/1.1
Host: www.rndtechnosoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/404.php
Cookie: PHPSESSID=8991b1a8599f785b24b33ecb29c92a43
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=2592000
expires: Mon, 20 May 2024 07:59:24 GMT
content-type: text/css
last-modified: Wed, 26 Feb 2020 16:41:54 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3370
date: Sat, 20 Apr 2024 07:59:24 GMT
server: LiteSpeed

www.rndtechnosoft.com/css/font-awesome.css

103.191.208.92

200 OK

7.0 kB

URL GET HTTP/3
www.rndtechnosoft.com/css/font-awesome.css
IP
103.191.208.92:443
ASN
#150055 DIGITAL SNAP

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerLet's Encrypt
Subjectcpanel.rndtechnosoft.com
Fingerprint23:34:71:78:70:6B:66:28:84:02:9D:09:57:DE:18:6C:96:D2:9B:29
ValidityWed, 17 Apr 2024 01:09:10 GMT - Tue, 16 Jul 2024 01:09:09 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (372)
Size
7.0 kB (7000 bytes)
Hash
4984472821ed815cb098343467674df1
a112f6d8e90e76f7ac75fff36630d930e85abb9c
41f97db2438081cd63298d42f3d7568538bfd96859801a177c29169a085387b1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /css/font-awesome.css HTTP/1.1
Host: www.rndtechnosoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/404.php
Cookie: PHPSESSID=8991b1a8599f785b24b33ecb29c92a43
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=2592000
expires: Mon, 20 May 2024 07:59:24 GMT
content-type: text/css
last-modified: Wed, 26 Feb 2020 16:41:54 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 7000
date: Sat, 20 Apr 2024 07:59:24 GMT
server: LiteSpeed

www.googletagmanager.com/gtag/js?id=G-3HD2DLK7TE

142.250.74.168

200 OK

88 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=G-3HD2DLK7TE
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB
ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT

File type
JavaScript source, ASCII text, with very long lines (5955)
Size
88 kB (88498 bytes)
Hash
522437ff8aa6f42b9a79403302b2fa2f
39b74c8950ab7288231e6313e4ed0c4915d19f92
2efa47c9383b7c513e5205da40d7d418ec28719ff219180807d927c96d30e106

HTTP Headers

GET /gtag/js?id=G-3HD2DLK7TE HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 20 Apr 2024 07:59:24 GMT
expires: Sat, 20 Apr 2024 07:59:24 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 88498
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.rndtechnosoft.com/css/main.css

103.191.208.92

200 OK

57 kB

URL GET HTTP/3
www.rndtechnosoft.com/css/main.css
IP
103.191.208.92:443
ASN
#150055 DIGITAL SNAP

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerLet's Encrypt
Subjectcpanel.rndtechnosoft.com
Fingerprint23:34:71:78:70:6B:66:28:84:02:9D:09:57:DE:18:6C:96:D2:9B:29
ValidityWed, 17 Apr 2024 01:09:10 GMT - Tue, 16 Jul 2024 01:09:09 GMT

File type
ASCII text
Size
57 kB (57379 bytes)
Hash
671af04eb60cbdb241773942a235b595
6c7190885ce48455ede5bd17ce4a09c8dea86e3c
93850797eb70ebdf02f9f65fa827bca9300af181f2aafd006cc176c0b4305733

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /css/main.css HTTP/1.1
Host: www.rndtechnosoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/404.php
Cookie: PHPSESSID=8991b1a8599f785b24b33ecb29c92a43
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=2592000
expires: Mon, 20 May 2024 07:59:24 GMT
content-type: text/css
last-modified: Fri, 02 Feb 2024 10:49:38 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 57379
date: Sat, 20 Apr 2024 07:59:24 GMT
server: LiteSpeed

www.rndtechnosoft.com/js/vendor/modernizr-2.6.2.min.js

103.191.208.92

200 OK

6.0 kB

URL GET HTTP/3
www.rndtechnosoft.com/js/vendor/modernizr-2.6.2.min.js
IP
103.191.208.92:443
ASN
#150055 DIGITAL SNAP

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerLet's Encrypt
Subjectcpanel.rndtechnosoft.com
Fingerprint23:34:71:78:70:6B:66:28:84:02:9D:09:57:DE:18:6C:96:D2:9B:29
ValidityWed, 17 Apr 2024 01:09:10 GMT - Tue, 16 Jul 2024 01:09:09 GMT

File type
JavaScript source, ASCII text, with very long lines (14756)
Size
6.0 kB (5958 bytes)
Hash
42306a279a9e831515347ae319181cd1
d069641242e4fe1beb6de8f53a77dd964c98bce0
cf25ec18f223f4c51ce1128a42e644cdc2244d88f89d1a51440d9dbe51f4efe8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/vendor/modernizr-2.6.2.min.js HTTP/1.1
Host: www.rndtechnosoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/404.php
Cookie: PHPSESSID=8991b1a8599f785b24b33ecb29c92a43
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=2592000
expires: Mon, 20 May 2024 07:59:24 GMT
content-type: text/javascript
last-modified: Tue, 06 Nov 2018 14:04:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 5958
date: Sat, 20 Apr 2024 07:59:24 GMT
server: LiteSpeed

www.rndtechnosoft.com/js/main.js

103.191.208.92

200 OK

14 kB

URL GET HTTP/3
www.rndtechnosoft.com/js/main.js
IP
103.191.208.92:443
ASN
#150055 DIGITAL SNAP

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerLet's Encrypt
Subjectcpanel.rndtechnosoft.com
Fingerprint23:34:71:78:70:6B:66:28:84:02:9D:09:57:DE:18:6C:96:D2:9B:29
ValidityWed, 17 Apr 2024 01:09:10 GMT - Tue, 16 Jul 2024 01:09:09 GMT

File type
JavaScript source, ASCII text, with very long lines (2522)
Size
14 kB (13791 bytes)
Hash
b9433beabae2cca42aef33ac141f0e1e
8b24c9ce4375ba449c67c4defd4e9635e1f2e053
fd5e928ce5984f1c16a79888bb761a47d77d18c2399ad1601197fa57a5b16b52

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/main.js HTTP/1.1
Host: www.rndtechnosoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/404.php
Cookie: PHPSESSID=8991b1a8599f785b24b33ecb29c92a43
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=2592000
expires: Mon, 20 May 2024 07:59:24 GMT
content-type: text/javascript
last-modified: Wed, 21 Oct 2020 07:30:10 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 13791
date: Sat, 20 Apr 2024 07:59:24 GMT
server: LiteSpeed

www.rndtechnosoft.com/admin/images/footer/Logo-26802_108x81whiute.png

103.191.208.92

200 OK

7.9 kB

URL GET HTTP/3
www.rndtechnosoft.com/admin/images/footer/Logo-26802_108x81whiute.png
IP
103.191.208.92:443
ASN
#150055 DIGITAL SNAP

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerLet's Encrypt
Subjectcpanel.rndtechnosoft.com
Fingerprint23:34:71:78:70:6B:66:28:84:02:9D:09:57:DE:18:6C:96:D2:9B:29
ValidityWed, 17 Apr 2024 01:09:10 GMT - Tue, 16 Jul 2024 01:09:09 GMT

File type
PNG image data, 109 x 82, 8-bit/color RGBA, non-interlaced
Size
7.9 kB (7883 bytes)
Hash
320df563b23f8e20f2a1bf95618d1a85
1d5d3b34752724667c85a8510a1fa308ad6a6b59
ac9d331dda30a2741368bd43b472c37658d80cce11893352781bf8ea73134351

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /admin/images/footer/Logo-26802_108x81whiute.png HTTP/1.1
Host: www.rndtechnosoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/404.php
Cookie: PHPSESSID=8991b1a8599f785b24b33ecb29c92a43
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Sun, 20 Apr 2025 07:59:24 GMT
content-type: image/png
last-modified: Fri, 20 Oct 2023 10:33:16 GMT
accept-ranges: bytes
content-length: 7883
date: Sat, 20 Apr 2024 07:59:24 GMT
server: LiteSpeed
vary: User-Agent

www.rndtechnosoft.com/admin/images/header/Logo-31570_Logo-57394_Logo-68690.png

103.191.208.92

200 OK

9.3 kB

URL GET HTTP/3
www.rndtechnosoft.com/admin/images/header/Logo-31570_Logo-57394_Logo-68690.png
IP
103.191.208.92:443
ASN
#150055 DIGITAL SNAP

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerLet's Encrypt
Subjectcpanel.rndtechnosoft.com
Fingerprint23:34:71:78:70:6B:66:28:84:02:9D:09:57:DE:18:6C:96:D2:9B:29
ValidityWed, 17 Apr 2024 01:09:10 GMT - Tue, 16 Jul 2024 01:09:09 GMT

File type
PNG image data, 200 x 70, 8-bit/color RGBA, non-interlaced
Size
9.3 kB (9303 bytes)
Hash
25f04b4a31f639c81f0cfbeda96c96dc
76ec28c689d2ffbc52f051a884b2bf3fd230690c
d11a46a1649a8a528952e81e02ac4ea1c396495ae6871f66cd05c10413ccac62

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /admin/images/header/Logo-31570_Logo-57394_Logo-68690.png HTTP/1.1
Host: www.rndtechnosoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/404.php
Cookie: PHPSESSID=8991b1a8599f785b24b33ecb29c92a43
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Sun, 20 Apr 2025 07:59:24 GMT
content-type: image/png
last-modified: Wed, 04 Jan 2023 10:19:54 GMT
accept-ranges: bytes
content-length: 9303
date: Sat, 20 Apr 2024 07:59:24 GMT
server: LiteSpeed
vary: User-Agent

www.rndtechnosoft.com/js/compressed.js

103.191.208.92

200 OK

111 kB

URL GET HTTP/3
www.rndtechnosoft.com/js/compressed.js
IP
103.191.208.92:443
ASN
#150055 DIGITAL SNAP

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerLet's Encrypt
Subjectcpanel.rndtechnosoft.com
Fingerprint23:34:71:78:70:6B:66:28:84:02:9D:09:57:DE:18:6C:96:D2:9B:29
ValidityWed, 17 Apr 2024 01:09:10 GMT - Tue, 16 Jul 2024 01:09:09 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65449)
Size
111 kB (110695 bytes)
Hash
633bf836000f9e29acf39a57247b71e5
733899afeed360d2334f1a7cdc7bc86d78a0878f
69dda73d5e3c0d810d4d2d55216dc4af5c81f987e236e0a528f8c9e7cfc8ef1e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/compressed.js HTTP/1.1
Host: www.rndtechnosoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/404.php
Cookie: PHPSESSID=8991b1a8599f785b24b33ecb29c92a43
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=2592000
expires: Mon, 20 May 2024 07:59:24 GMT
content-type: text/javascript
last-modified: Tue, 06 Nov 2018 14:04:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 110695
date: Sat, 20 Apr 2024 07:59:24 GMT
server: LiteSpeed

ems.rndtechnosoft.com/websites/6607e172952f5/connect.js

103.191.208.92

200 OK

1.6 kB

URL GET HTTP/2
ems.rndtechnosoft.com/websites/6607e172952f5/connect.js
IP
103.191.208.92:443
ASN
#150055 DIGITAL SNAP

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerLet's Encrypt
Subjectems.rndtechnosoft.com
FingerprintD3:BB:F8:AE:D4:85:26:A0:48:77:D7:5C:82:1E:BA:67:57:E5:E3:32
ValidityFri, 19 Apr 2024 16:10:22 GMT - Thu, 18 Jul 2024 16:10:21 GMT

File type
JavaScript source, ASCII text, with very long lines (648)
Size
1.6 kB (1619 bytes)
Hash
169d9ea59bdbc4eb1e7932bfc5dfe764
4855947606c17dccac75a3a85d574c05f2a0cc8e
077094c4a45a54c12b5fe1151fa56eb329f4ca29d8f2164365615173b90a3232

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /websites/6607e172952f5/connect.js HTTP/1.1
Host: ems.rndtechnosoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-powered-by: PHP/7.4.33
cache-control: no-cache, private
access-control-allow-origin: *
content-type: application/javascript
set-cookie: XSRF-TOKEN=eyJpdiI6IlV5aEF1dG5YeWJmZlFFK05WdUU5cEE9PSIsInZhbHVlIjoiTUJnUTdKdkRjYW42K1Bvd3JyZ3g5eUpqMXNEZy9jVVVTWk1tZERvYkJMOEJnRXNtZ00vM0hVMUhyZk9vV2gvc0g0KzM3dkJ0UmJwVTl2SCtaTS9OekV3aTE3Wnovb1RHUXBtMlY3UVVCOVA0ZlQ5NEJVV2duL2Uxb3luUjF0QzQiLCJtYWMiOiI1NGMzNzc5M2YwZTY4ODBlNjZmZTE5MjdiZTQ4MDc5ZjFjNzQwNzU2ODk0NjQxMmQ0ODFmYTdhMDkxMTEyM2IyIiwidGFnIjoiIn0%3D; expires=Sat, 20-Apr-2024 09:59:25 GMT; Max-Age=7200; path=/; samesite=lax; secure
acelle_session=eyJpdiI6IjY2V01POUdDcVBKdFk0b3hHeFpGN0E9PSIsInZhbHVlIjoieThuSzVQNVVGV001SEZlSWhzd1BYVmdQbnk0L29QZFV0aGpTeURwbUVBN0I2UUFuL3lsNlpBMEZSWDJTR2ovclp6N3NyUnBFSHcrODk0UWNsQ1RsMWNmNE14ZFFSbHIwZHRqb0Q3YUFSQmcyVGs0RWl1WUNpNG9ZZzZoNCt1cysiLCJtYWMiOiI0NzI4MWY1YmQ2OGQ4NTU5MDgwMmY5MDBlY2YxNWZmMWJiODdjMGI4M2U3NzA5MWU5NjFmMGQyZjNjOWQ1MmEwIiwidGFnIjoiIn0%3D; expires=Sat, 20-Apr-2024 09:59:25 GMT; Max-Age=7200; path=/; httponly; samesite=lax; secure
content-length: 1619
content-encoding: br
vary: Accept-Encoding
date: Sat, 20 Apr 2024 07:59:25 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=UA-127636869-1&l=dataLayer&cx=c

142.250.74.168

200 OK

54 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=UA-127636869-1&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB
ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT

File type
JavaScript source, ASCII text, with very long lines (1900)
Size
54 kB (54386 bytes)
Hash
47cec6a7c92cf7603785657626ac6a15
5d30e1d4edf846da2647772fdaae112d10fb10a6
c72bf1037b4201c01742c1098490a777c9f08a8ab7bc9851f9a48478d2527d6d

HTTP Headers

GET /gtag/js?id=UA-127636869-1&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 20 Apr 2024 07:59:25 GMT
expires: Sat, 20 Apr 2024 07:59:25 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 54386
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2

216.58.207.227

200 OK

7.8 kB

URL GET HTTP/2
fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7840, version 1.0
Size
7.8 kB (7840 bytes)
Hash
8d91ec1ca2d8b56640a47117e313a3e9
a9e9bafe64666f4595051a0e895b47a5fa39e67e
78bc3aa78faec288bbb3bf26c9a0fa4eb67b1e69da94a17233c5cab60525efdb

HTTP Headers

GET /s/poppins/v21/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.rndtechnosoft.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7840
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 17:31:54 GMT
expires: Fri, 18 Apr 2025 17:31:54 GMT
cache-control: public, max-age=31536000
age: 138451
last-modified: Fri, 22 Mar 2024 00:02:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-3HD2DLK7TE&l=dataLayer&cx=c

142.250.74.168

200 OK

88 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-3HD2DLK7TE&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB
ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT

File type
JavaScript source, ASCII text, with very long lines (5955)
Size
88 kB (88514 bytes)
Hash
0e2bff5a9f1a74d90dd07eaffaaa64dd
1bddf71deb8e935b65bd36fd83309d9cbab58c13
35642d968469b3261973865306bb2d7247f500fcc54403f61357dbe96df4b03f

HTTP Headers

GET /gtag/js?id=G-3HD2DLK7TE&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 20 Apr 2024 07:59:25 GMT
expires: Sat, 20 Apr 2024 07:59:25 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 88514
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.googletagmanager.com/gtag/js?id=UA-283934328-1&l=dataLayer&cx=c

142.250.74.168

200 OK

73 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=UA-283934328-1&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB
ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT

File type
JavaScript source, ASCII text, with very long lines (4179)
Size
73 kB (73381 bytes)
Hash
3476191b7a2e3e934e2ebb46309079bb
9048ff94a8081df874e3c03e98d227e5966f48c5
9a424f5d25fdda8fd1d4badf51ca15f3929e6c2926d9d586ee45a4e04d594420

HTTP Headers

GET /gtag/js?id=UA-283934328-1&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 20 Apr 2024 07:59:25 GMT
expires: Sat, 20 Apr 2024 07:59:25 GMT
cache-control: private, max-age=900
last-modified: Sat, 20 Apr 2024 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 73381
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2

216.58.207.227

200 OK

7.8 kB

URL GET HTTP/2
fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7816, version 1.0
Size
7.8 kB (7816 bytes)
Hash
25b0e113ca7cce3770d542736db26368
cb726212d5d525021752a1d8470a0fb593e0c49e
9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526

HTTP Headers

GET /s/poppins/v21/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.rndtechnosoft.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 20:25:17 GMT
expires: Tue, 15 Apr 2025 20:25:17 GMT
cache-control: public, max-age=31536000
age: 387248
last-modified: Fri, 22 Mar 2024 00:00:32 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2

216.58.207.227

200 OK

7.7 kB

URL GET HTTP/2
fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7748, version 1.0
Size
7.7 kB (7748 bytes)
Hash
a09f2fccfee35b7247b08a1a266f0328
0da2d17e738f46d2a09e6fb7969da451719a9820
cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446

HTTP Headers

GET /s/poppins/v21/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.rndtechnosoft.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 03:25:26 GMT
expires: Wed, 16 Apr 2025 03:25:26 GMT
cache-control: public, max-age=31536000
age: 362039
last-modified: Fri, 22 Mar 2024 00:01:14 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtm.js?id=GTM-NZP4MQXS

142.250.74.168

200 OK

63 kB

URL GET HTTP/3
www.googletagmanager.com/gtm.js?id=GTM-NZP4MQXS
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB
ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT

File type
JavaScript source, ASCII text, with very long lines (2165)
Size
63 kB (63371 bytes)
Hash
6c43ea70c05ade7aaba16c2e3c263552
ced8063fffe490b495eed887566bc168907650f7
fa2a421624b8997a1f108e53cfce6fb52764935eb3f9cde13cf51a8ce0680cd8

HTTP Headers

GET /gtm.js?id=GTM-NZP4MQXS HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 20 Apr 2024 07:59:25 GMT
expires: Sat, 20 Apr 2024 07:59:25 GMT
cache-control: private, max-age=900
last-modified: Sat, 20 Apr 2024 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 63371
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.googletagmanager.com/gtm.js?id=GTM-PGF8QBW

142.250.74.168

200 OK

83 kB

URL GET HTTP/3
www.googletagmanager.com/gtm.js?id=GTM-PGF8QBW
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB
ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT

File type
JavaScript source, ASCII text, with very long lines (2212)
Size
83 kB (82851 bytes)
Hash
135ec2aaffe65b14df61b9367496b099
7c1a6d7bf2bfecf6a989584e30b8faf3ccb80b92
cde2263968f3d77007b2b58788a9232dba85f847c46e0ff033a82d984066c83f

HTTP Headers

GET /gtm.js?id=GTM-PGF8QBW HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 20 Apr 2024 07:59:25 GMT
expires: Sat, 20 Apr 2024 07:59:25 GMT
cache-control: private, max-age=900
last-modified: Sat, 20 Apr 2024 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 82851
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.googletagmanager.com/gtag/js?id=G-TVHYLDE4P1&l=dataLayer&cx=c

142.250.74.168

200 OK

97 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-TVHYLDE4P1&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB
ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT

File type
JavaScript source, ASCII text, with very long lines (5955)
Size
97 kB (97302 bytes)
Hash
03e6c0d2e10938fd8286bee127874446
57b0f5d7020da674ecb0b0c9577b7396394983ac
d035f73499895761a51f8e35f06e5c5434fc615dea5a962b03d3660b124b3bcd

HTTP Headers

GET /gtag/js?id=G-TVHYLDE4P1&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 20 Apr 2024 07:59:25 GMT
expires: Sat, 20 Apr 2024 07:59:25 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 97302
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.rndtechnosoft.com/admin/images/logo/loader.gif

103.191.208.92

200 OK

167 kB

URL GET HTTP/3
www.rndtechnosoft.com/admin/images/logo/loader.gif
IP
103.191.208.92:443
ASN
#150055 DIGITAL SNAP

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerLet's Encrypt
Subjectcpanel.rndtechnosoft.com
Fingerprint23:34:71:78:70:6B:66:28:84:02:9D:09:57:DE:18:6C:96:D2:9B:29
ValidityWed, 17 Apr 2024 01:09:10 GMT - Tue, 16 Jul 2024 01:09:09 GMT

File type
GIF image data, version 89a, 300 x 300
Size
167 kB (166589 bytes)
Hash
fabaa60bd14b5523dc5ae8bbe6072ec1
1f46ac5e62dfb78d88dfb1df8e0101a96daa8164
4c05015d7abf4a65e88ab3d6631b2b5d687f2dd576ab47bc27f7e63387a73272

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /admin/images/logo/loader.gif HTTP/1.1
Host: www.rndtechnosoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/404.php
Cookie: PHPSESSID=8991b1a8599f785b24b33ecb29c92a43; _ga_VQ9S55LZTK=GS1.1.1713599964.1.0.1713599964.0.0.0; _ga=GA1.1.550048247.1713599964
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Sun, 20 Apr 2025 07:59:25 GMT
content-type: image/gif
last-modified: Mon, 14 Jun 2021 09:50:24 GMT
accept-ranges: bytes
content-length: 166589
date: Sat, 20 Apr 2024 07:59:25 GMT
server: LiteSpeed
vary: User-Agent

www.googletagmanager.com/gtag/js?id=AW-11428680380&l=dataLayer&cx=c

142.250.74.168

200 OK

98 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=AW-11428680380&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB
ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT

File type
JavaScript source, ASCII text, with very long lines (5945)
Size
98 kB (98280 bytes)
Hash
66708a3d1fee1345b803375e9e732531
1399403f626756d4d2127abb07016603999c7f82
0ff5e655f943512f67d8a9dcc90b150311cba8951aaf68aeefc8af239d99511a

HTTP Headers

GET /gtag/js?id=AW-11428680380&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 20 Apr 2024 07:59:26 GMT
expires: Sat, 20 Apr 2024 07:59:26 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 98280
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.googletagmanager.com/gtag/destination?id=AW-11428680380&l=dataLayer&cx=c

142.250.74.168

200 OK

98 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/destination?id=AW-11428680380&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB
ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT

File type
JavaScript source, ASCII text, with very long lines (5945)
Size
98 kB (98374 bytes)
Hash
83c24e9d696eb277101ae2edf9589911
f4792b6028af9d1941c94cae07c5740b39077f45
d948a8c3cc01679df849e6b15486855d991939a18cf6d78c4ef122403eb30e34

HTTP Headers

GET /gtag/destination?id=AW-11428680380&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 20 Apr 2024 07:59:26 GMT
expires: Sat, 20 Apr 2024 07:59:26 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 98374
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.rndtechnosoft.com/img/parallax/footer_bg.png

103.191.208.92

200 OK

285 kB

URL GET HTTP/3
www.rndtechnosoft.com/img/parallax/footer_bg.png
IP
103.191.208.92:443
ASN
#150055 DIGITAL SNAP

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerLet's Encrypt
Subjectcpanel.rndtechnosoft.com
Fingerprint23:34:71:78:70:6B:66:28:84:02:9D:09:57:DE:18:6C:96:D2:9B:29
ValidityWed, 17 Apr 2024 01:09:10 GMT - Tue, 16 Jul 2024 01:09:09 GMT

File type
PNG image data, 1920 x 700, 8-bit colormap, non-interlaced
Size
285 kB (284716 bytes)
Hash
a902dae91a77b913f4fffb107d5b26d3
6a8df5c3e5181803496bbf832a8e3a8ff6b87a8d
66744f7e63876f3d90b2356d9ed328e6c2d0ac97a51273f14364d3a1bc5b586d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/parallax/footer_bg.png HTTP/1.1
Host: www.rndtechnosoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/css/main.css
Cookie: PHPSESSID=8991b1a8599f785b24b33ecb29c92a43; _ga_VQ9S55LZTK=GS1.1.1713599964.1.0.1713599964.0.0.0; _ga=GA1.1.550048247.1713599964
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Sun, 20 Apr 2025 07:59:25 GMT
content-type: image/png
last-modified: Mon, 24 Aug 2020 05:50:20 GMT
accept-ranges: bytes
content-length: 284716
date: Sat, 20 Apr 2024 07:59:25 GMT
server: LiteSpeed
vary: User-Agent

www.rndtechnosoft.com/img/404.jpg

103.191.208.92

200 OK

1.4 MB

URL GET HTTP/3
www.rndtechnosoft.com/img/404.jpg
IP
103.191.208.92:443
ASN
#150055 DIGITAL SNAP

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerLet's Encrypt
Subjectcpanel.rndtechnosoft.com
Fingerprint23:34:71:78:70:6B:66:28:84:02:9D:09:57:DE:18:6C:96:D2:9B:29
ValidityWed, 17 Apr 2024 01:09:10 GMT - Tue, 16 Jul 2024 01:09:09 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=1300, bps=158, PhotometricInterpretation=RGB, orientation=upper-left, width=1920], baseline, precision 8, 1920x1300, components 3
Size
1.4 MB (1427165 bytes)
Hash
d0b9c5446ad8c08f426942e2eb452753
4030400ca503c7d300cb2ded6ddcf6b4519c675d
7f556eaa676c06b2e7eaf579f5a4c10b929380718d60b8fe55132a92ab59aeda

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/404.jpg HTTP/1.1
Host: www.rndtechnosoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/css/main.css
Cookie: PHPSESSID=8991b1a8599f785b24b33ecb29c92a43; _ga_VQ9S55LZTK=GS1.1.1713599964.1.0.1713599964.0.0.0; _ga=GA1.1.550048247.1713599964
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Sun, 20 Apr 2025 07:59:25 GMT
content-type: image/jpeg
last-modified: Tue, 06 Nov 2018 14:04:44 GMT
accept-ranges: bytes
content-length: 1427165
date: Sat, 20 Apr 2024 07:59:25 GMT
server: LiteSpeed
vary: User-Agent

www.rndtechnosoft.com/img/texture_dark.jpg

103.191.208.92

200 OK

132 kB

URL GET HTTP/3
www.rndtechnosoft.com/img/texture_dark.jpg
IP
103.191.208.92:443
ASN
#150055 DIGITAL SNAP

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerLet's Encrypt
Subjectcpanel.rndtechnosoft.com
Fingerprint23:34:71:78:70:6B:66:28:84:02:9D:09:57:DE:18:6C:96:D2:9B:29
ValidityWed, 17 Apr 2024 01:09:10 GMT - Tue, 16 Jul 2024 01:09:09 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1920x1575, components 3
Size
132 kB (132349 bytes)
Hash
e1fd63a942f683d1c872cd1b294eea7f
f7729fb210371904b50c9fb2cb572d0b563bb6d3
f51c7c5a328c95c2fd191e262a3f1d9d3d302aa88fb4bd826d1dca7e46429a28

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/texture_dark.jpg HTTP/1.1
Host: www.rndtechnosoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/css/main.css
Cookie: PHPSESSID=8991b1a8599f785b24b33ecb29c92a43; _ga_VQ9S55LZTK=GS1.1.1713599964.1.0.1713599964.0.0.0; _ga=GA1.1.550048247.1713599964
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Sun, 20 Apr 2025 07:59:25 GMT
content-type: image/jpeg
last-modified: Mon, 24 Aug 2020 05:57:02 GMT
accept-ranges: bytes
content-length: 132349
date: Sat, 20 Apr 2024 07:59:25 GMT
server: LiteSpeed
vary: User-Agent

www.rndtechnosoft.com/fonts/fontawesome-webfont-v=4.7.0.woff2

103.191.208.92

200 OK

77 kB

URL GET HTTP/3
www.rndtechnosoft.com/fonts/fontawesome-webfont-v=4.7.0.woff2
IP
103.191.208.92:443
ASN
#150055 DIGITAL SNAP

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerLet's Encrypt
Subjectcpanel.rndtechnosoft.com
Fingerprint23:34:71:78:70:6B:66:28:84:02:9D:09:57:DE:18:6C:96:D2:9B:29
ValidityWed, 17 Apr 2024 01:09:10 GMT - Tue, 16 Jul 2024 01:09:09 GMT

File type
Web Open Font Format (Version 2), TrueType, length 77160, version 4.459
Size
77 kB (77160 bytes)
Hash
af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /fonts/fontawesome-webfont-v=4.7.0.woff2 HTTP/1.1
Host: www.rndtechnosoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/css/font-awesome.css
Cookie: PHPSESSID=8991b1a8599f785b24b33ecb29c92a43; _ga_VQ9S55LZTK=GS1.1.1713599964.1.0.1713599964.0.0.0; _ga=GA1.1.550048247.1713599964
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Sat, 27 Apr 2024 07:59:25 GMT
content-type: font/woff2
last-modified: Tue, 06 Nov 2018 14:04:30 GMT
accept-ranges: bytes
content-length: 77160
date: Sat, 20 Apr 2024 07:59:25 GMT
server: LiteSpeed
vary: User-Agent

www.rndtechnosoft.com/img/parallax/copyright_bg.jpg

103.191.208.92

200 OK

62 kB

URL GET HTTP/3
www.rndtechnosoft.com/img/parallax/copyright_bg.jpg
IP
103.191.208.92:443
ASN
#150055 DIGITAL SNAP

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerLet's Encrypt
Subjectcpanel.rndtechnosoft.com
Fingerprint23:34:71:78:70:6B:66:28:84:02:9D:09:57:DE:18:6C:96:D2:9B:29
ValidityWed, 17 Apr 2024 01:09:10 GMT - Tue, 16 Jul 2024 01:09:09 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1920x800, components 3
Size
62 kB (62448 bytes)
Hash
ad4f22d28adb7f7b466f60602c245306
908fa1c18cba97b782bc24eff776cbaeda544892
c3d65a726ac390fecf0d6af5547d14fa4156a19106f84d3f2ab4b69a9d08a26b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/parallax/copyright_bg.jpg HTTP/1.1
Host: www.rndtechnosoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/css/main.css
Cookie: PHPSESSID=8991b1a8599f785b24b33ecb29c92a43; _ga_VQ9S55LZTK=GS1.1.1713599964.1.0.1713599964.0.0.0; _ga=GA1.1.550048247.1713599964
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Sun, 20 Apr 2025 07:59:25 GMT
content-type: image/jpeg
last-modified: Mon, 24 Aug 2020 06:02:30 GMT
accept-ranges: bytes
content-length: 62448
date: Sat, 20 Apr 2024 07:59:25 GMT
server: LiteSpeed
vary: User-Agent

www.google.com/pagead/1p-conversion/11428680380/?random=1713599966159&cv=11&fst=1713599966159&bg=ffffff&guid=ON&async=1&gtm=45be44h0v9172240245z8810191683za201&gcd=13l3l3l2l1&dma_cps=sypham&dma=1&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.rndtechnosoft.com%2F404.php&label=ukpHCIa1yP4YELylz8kq&hn=www.google.com&frm=0&value=0&bttype=purchase&npa=1&pscdl=noapi&auid=368927344.1713599966&fdr=SA&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4

142.250.74.164

200 OK

1.6 kB

URL GET HTTP/3
www.google.com/pagead/1p-conversion/11428680380/?random=1713599966159&cv=11&fst=1713599966159&bg=ffffff&guid=ON&async=1&gtm=45be44h0v9172240245z8810191683za201&gcd=13l3l3l2l1&dma_cps=sypham&dma=1&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.rndtechnosoft.com%2F404.php&label=ukpHCIa1yP4YELylz8kq&hn=www.google.com&frm=0&value=0&bttype=purchase&npa=1&pscdl=noapi&auid=368927344.1713599966&fdr=SA&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT

File type
JavaScript source, ASCII text, with very long lines (2598), with no line terminators
Size
1.6 kB (1575 bytes)
Hash
97dfef6c321d2cf8e55ac712acf1fef3
0aa7796c9f4365f220ae2dcf889feafe7e40e437
43530c25a5c000b649e0f4343fc0bd3748e0f0b77f1e1c63aeee4baea3f627f5

HTTP Headers

GET /pagead/1p-conversion/11428680380/?random=1713599966159&cv=11&fst=1713599966159&bg=ffffff&guid=ON&async=1&gtm=45be44h0v9172240245z8810191683za201&gcd=13l3l3l2l1&dma_cps=sypham&dma=1&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.rndtechnosoft.com%2F404.php&label=ukpHCIa1yP4YELylz8kq&hn=www.google.com&frm=0&value=0&bttype=purchase&npa=1&pscdl=noapi&auid=368927344.1713599966&fdr=SA&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 20 Apr 2024 07:59:26 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1575
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js

142.250.74.35

200 OK

206 kB

URL GET HTTP/2
www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
JavaScript source, ASCII text, with very long lines (597)
Size
206 kB (206057 bytes)
Hash
8326c23d6b3eed35bc3e62f3294587fd
edda17e74e53e85073e5eac9cb6be2163dbfa23c
57f03d3ba66117edc152646341120dd3a1d7d71b9a98a3723af5a8ae61bcb3ab

HTTP Headers

GET /recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.rndtechnosoft.com
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 206057
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 23:55:24 GMT
expires: Tue, 15 Apr 2025 23:55:24 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Apr 2024 02:01:04 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 374642
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.rndtechnosoft.com/admin/images/header/Favicon-76160_favicon%20white%20background.png

103.191.208.92

200 OK

19 kB

URL GET HTTP/3
www.rndtechnosoft.com/admin/images/header/Favicon-76160_favicon%20white%20background.png
IP
103.191.208.92:443
ASN
#150055 DIGITAL SNAP

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerLet's Encrypt
Subjectcpanel.rndtechnosoft.com
Fingerprint23:34:71:78:70:6B:66:28:84:02:9D:09:57:DE:18:6C:96:D2:9B:29
ValidityWed, 17 Apr 2024 01:09:10 GMT - Tue, 16 Jul 2024 01:09:09 GMT

File type
PNG image data, 284 x 284, 8-bit/color RGBA, non-interlaced
Size
19 kB (18736 bytes)
Hash
ddf6426165f9042f40cc466a5a1d8fa4
691c40cbb0843f814f45232c7843a847fad861d7
c9270bf9996780d8fd7eba99d2c6c3eed00b5580291d3610f9d895fbe80e088a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /admin/images/header/Favicon-76160_favicon%20white%20background.png HTTP/1.1
Host: www.rndtechnosoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/404.php
Cookie: PHPSESSID=8991b1a8599f785b24b33ecb29c92a43; _ga_VQ9S55LZTK=GS1.1.1713599964.1.0.1713599964.0.0.0; _ga=GA1.1.550048247.1713599964; _ga_3HD2DLK7TE=GS1.1.1713599965.1.0.1713599965.0.0.0; _ga_TVHYLDE4P1=GS1.1.1713599965.1.0.1713599965.0.0.0; _gcl_au=1.1.368927344.1713599966; _ga_VW4PQRSMYF=GS1.1.1713599966.1.0.1713599966.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Sun, 20 Apr 2025 07:59:26 GMT
content-type: image/png
last-modified: Sat, 25 Sep 2021 06:11:10 GMT
accept-ranges: bytes
content-length: 18736
date: Sat, 20 Apr 2024 07:59:26 GMT
server: LiteSpeed
vary: User-Agent

static.getbutton.io/widget/bundle.js

172.67.74.247

200 OK

123 kB

URL GET HTTP/2
static.getbutton.io/widget/bundle.js
IP
172.67.74.247:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerGoogle Trust Services LLC
Subjectgetbutton.io
Fingerprint54:E4:32:AA:1C:CC:59:4A:FE:D2:A5:DF:9C:B1:67:EC:70:40:D9:80
ValidityTue, 12 Mar 2024 02:23:32 GMT - Mon, 10 Jun 2024 02:23:31 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65475)
Size
123 kB (123314 bytes)
Hash
47527f5be5b465d2d3fdbdb9779c397a
adaf5f878c26d7801f895677166a21bfa635dc6f
9b1dc76101401add4413d1476e5a5dac5a038a2dff56aba37287874a1503ea9f

HTTP Headers

GET /widget/bundle.js HTTP/1.1
Host: static.getbutton.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rndtechnosoft.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 20 Apr 2024 07:59:25 GMT
content-type: application/javascript
last-modified: Thu, 18 Apr 2024 11:06:25 GMT
etag: W/"6620feb1-68d7a"
expires: Sat, 20 Apr 2024 08:09:23 GMT
cache-control: max-age=14400
access-control-allow-origin: *
cf-cache-status: HIT
age: 10202
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xgnFF9GQ4z%2BmUPPp64u7wkl%2F42tGo%2F7XFRDbPfipfLD2A1SRd6nDK7C4VgkVuBFXgz9pTJkuGZZWxhvIZb6oCnBmRmi6zLPaL%2BuiomWhsxJ6qnMTfIRwTvp%2Bhx%2B2d7ITLvM35j0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8773984aff7656c5-OSL
content-encoding: br
X-Firefox-Spdy: h2

www.google.no/pagead/1p-conversion/11428680380/?random=1465426461&cv=11&fst=1713599966159&bg=ffffff&guid=ON&async=1&gtm=45be44h0v9172240245z8810191683za201&gcd=13l3l3l2l1&dma_cps=sypham&dma=1&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.rndtechnosoft.com%2F404.php&label=ukpHCIa1yP4YELylz8kq&hn=www.google.com&frm=0&value=0&npa=1&pscdl=noapi&auid=368927344.1713599966&fdr=SA&gcp=2&sscte=1&ct_cookie_present=1&fmt=3&ct_cookie_present=false&sscte=1&crd=CLHBsQIIsMGxAgi5wbECCJjBsQI&eitems=ChAI8M-NsQYQh-u3r6P2kOg0Eh0A2yzU0oJNiZnw65e9lXI0AXfgxIt1lXheYM3yrg&pscrd=IhMI_vK1qqnQhQMVh8g7Ah0YAQrZMgIIAzICCAQyAggHMgIICDICCAkyAggKMgIIAjICCAs6Hmh0dHBzOi8vd3d3LnJuZHRlY2hub3NvZnQuY29tLw&ipr=y

142.250.74.163

200 OK

42 B

URL GET HTTP/2
www.google.no/pagead/1p-conversion/11428680380/?random=1465426461&cv=11&fst=1713599966159&bg=ffffff&guid=ON&async=1&gtm=45be44h0v9172240245z8810191683za201&gcd=13l3l3l2l1&dma_cps=sypham&dma=1&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.rndtechnosoft.com%2F404.php&label=ukpHCIa1yP4YELylz8kq&hn=www.google.com&frm=0&value=0&npa=1&pscdl=noapi&auid=368927344.1713599966&fdr=SA&gcp=2&sscte=1&ct_cookie_present=1&fmt=3&ct_cookie_present=false&sscte=1&crd=CLHBsQIIsMGxAgi5wbECCJjBsQI&eitems=ChAI8M-NsQYQh-u3r6P2kOg0Eh0A2yzU0oJNiZnw65e9lXI0AXfgxIt1lXheYM3yrg&pscrd=IhMI_vK1qqnQhQMVh8g7Ah0YAQrZMgIIAzICCAQyAggHMgIICDICCAkyAggKMgIIAjICCAs6Hmh0dHBzOi8vd3d3LnJuZHRlY2hub3NvZnQuY29tLw&ipr=y
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.no
Fingerprint4E:BD:F9:72:97:67:A2:4B:EE:E4:B0:03:CD:C8:F3:30:53:27:53:1D
ValidityMon, 18 Mar 2024 20:50:06 GMT - Mon, 10 Jun 2024 20:50:05 GMT

File type
GIF image data, version 89a, 1 x 1
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /pagead/1p-conversion/11428680380/?random=1465426461&cv=11&fst=1713599966159&bg=ffffff&guid=ON&async=1&gtm=45be44h0v9172240245z8810191683za201&gcd=13l3l3l2l1&dma_cps=sypham&dma=1&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.rndtechnosoft.com%2F404.php&label=ukpHCIa1yP4YELylz8kq&hn=www.google.com&frm=0&value=0&npa=1&pscdl=noapi&auid=368927344.1713599966&fdr=SA&gcp=2&sscte=1&ct_cookie_present=1&fmt=3&ct_cookie_present=false&sscte=1&crd=CLHBsQIIsMGxAgi5wbECCJjBsQI&eitems=ChAI8M-NsQYQh-u3r6P2kOg0Eh0A2yzU0oJNiZnw65e9lXI0AXfgxIt1lXheYM3yrg&pscrd=IhMI_vK1qqnQhQMVh8g7Ah0YAQrZMgIIAzICCAQyAggHMgIICDICCAkyAggKMgIIAjICCAs6Hmh0dHBzOi8vd3d3LnJuZHRlY2hub3NvZnQuY29tLw&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rndtechnosoft.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 20 Apr 2024 07:59:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

embed.tawk.to/_s/v4/app/660e2260004/js/twk-runtime.js

104.22.25.131

200 OK

15 kB

URL GET HTTP/3
embed.tawk.to/_s/v4/app/660e2260004/js/twk-runtime.js
IP
104.22.25.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerGoogle Trust Services LLC
Subjecttawk.to
Fingerprint83:4E:6B:81:26:A0:67:FF:06:8D:D3:DC:E5:70:3F:A3:4B:08:C5:F5
ValidityThu, 28 Mar 2024 00:13:59 GMT - Wed, 26 Jun 2024 00:13:58 GMT

File type
JavaScript source, ASCII text, with very long lines (2306), with no line terminators
Size
15 kB (14583 bytes)
Hash
44fd6460256eed06d411cfcd6e73561b
bbe5f331b1827fa44a41b4b1aec99213d7bd5e4e
2d1cdc5e3baad1b8d46ca182e036848b57aa19fa4ea5eb66187ac15c3aaad284

HTTP Headers

GET /_s/v4/app/660e2260004/js/twk-runtime.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.rndtechnosoft.com
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:59:27 GMT
content-type: application/javascript
last-modified: Thu, 04 Apr 2024 03:46:14 GMT
etag: W/"44fd6460256eed06d411cfcd6e73561b"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 877398527aecb52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-4fe9d5dd.js

104.22.25.131

200 OK

56 kB

URL GET HTTP/3
embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-4fe9d5dd.js
IP
104.22.25.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerGoogle Trust Services LLC
Subjecttawk.to
Fingerprint83:4E:6B:81:26:A0:67:FF:06:8D:D3:DC:E5:70:3F:A3:4B:08:C5:F5
ValidityThu, 28 Mar 2024 00:13:59 GMT - Wed, 26 Jun 2024 00:13:58 GMT

File type
JavaScript source, ASCII text, with very long lines (906), with no line terminators
Size
56 kB (56280 bytes)
Hash
1c5ecf371149feca23bd895ba9dfec4d
6f6213ae4c63d959441572d232f0425467ed05de
fb193c2bcf1a14030cea8d72baa20ab7b1cf88f9e90adb31895279beedf6bf84

HTTP Headers

GET /_s/v4/app/660e2260004/js/twk-chunk-4fe9d5dd.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:59:32 GMT
content-type: application/javascript
last-modified: Thu, 04 Apr 2024 03:46:14 GMT
etag: W/"1c5ecf371149feca23bd895ba9dfec4d"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: MISS
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 1397081
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87739873edbf569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-2d0b383d.js

104.22.25.131

200 OK

42 kB

URL GET HTTP/3
embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-2d0b383d.js
IP
104.22.25.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerGoogle Trust Services LLC
Subjecttawk.to
Fingerprint83:4E:6B:81:26:A0:67:FF:06:8D:D3:DC:E5:70:3F:A3:4B:08:C5:F5
ValidityThu, 28 Mar 2024 00:13:59 GMT - Wed, 26 Jun 2024 00:13:58 GMT

File type
JavaScript source, ASCII text, with very long lines (699), with no line terminators
Size
42 kB (41697 bytes)
Hash
838903127a65ec440893b4945c40ca4a
827f3e5341f56fa4473d53b788af41ec6bf21b8b
89f08c4a66c9a737c6155b8313e87b36687fe65bfc9a1ba1783aeace487bcde3

HTTP Headers

GET /_s/v4/app/660e2260004/js/twk-chunk-2d0b383d.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:59:32 GMT
content-type: application/javascript
last-modified: Thu, 04 Apr 2024 03:46:14 GMT
etag: W/"838903127a65ec440893b4945c40ca4a"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: MISS
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 1397082
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87739873ddaf569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

embed.tawk.to/_s/v4/assets/fonts/tawk-font-icon-2.woff2?55755728=

104.22.25.131

200 OK

10 kB

URL GET HTTP/3
embed.tawk.to/_s/v4/assets/fonts/tawk-font-icon-2.woff2?55755728=
IP
104.22.25.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerGoogle Trust Services LLC
Subjecttawk.to
Fingerprint83:4E:6B:81:26:A0:67:FF:06:8D:D3:DC:E5:70:3F:A3:4B:08:C5:F5
ValidityThu, 28 Mar 2024 00:13:59 GMT - Wed, 26 Jun 2024 00:13:58 GMT

File type
Web Open Font Format (Version 2), TrueType, length 10520, version 1.0
Size
10 kB (10520 bytes)
Hash
054b3b66812d0a4b87ffc6776f0a42f1
683eb11f2439b9edc3290899fb47806166b5182e
f4d4fcb3cdd9f021bca50bedb83de05b77fd23b3c98ad36b103fea8c0744ea71

HTTP Headers

GET /_s/v4/assets/fonts/tawk-font-icon-2.woff2?55755728= HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.rndtechnosoft.com
DNT: 1
Connection: keep-alive
Referer: https://embed.tawk.to/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:59:32 GMT
content-type: font/woff2
content-length: 10520
last-modified: Sat, 22 May 2021 07:25:13 GMT
etag: "054b3b66812d0a4b87ffc6776f0a42f1"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 877398752d1cb52d-OSL
alt-svc: h3=":443"; ma=86400

embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-common.js

104.22.25.131

200 OK

50 kB

URL GET HTTP/3
embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-common.js
IP
104.22.25.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerGoogle Trust Services LLC
Subjecttawk.to
Fingerprint83:4E:6B:81:26:A0:67:FF:06:8D:D3:DC:E5:70:3F:A3:4B:08:C5:F5
ValidityThu, 28 Mar 2024 00:13:59 GMT - Wed, 26 Jun 2024 00:13:58 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65458)
Size
50 kB (50036 bytes)
Hash
00600786ca50d48a5a4a55f2d48ca09c
cdb5b6b1952065e30f3d7bfa6acb282c5d7f42cd
b0b620cc047e7bff01fc82ed63b6854d1dbd5b528fdd14c7959837dd59adb30e

HTTP Headers

GET /_s/v4/app/660e2260004/js/twk-chunk-common.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.rndtechnosoft.com
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:59:27 GMT
content-type: application/javascript
last-modified: Thu, 04 Apr 2024 03:46:14 GMT
etag: W/"00600786ca50d48a5a4a55f2d48ca09c"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 877398527aeab52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

tawk.link/avatar/male-09.svg

172.67.162.230

13 kB

URL GET
tawk.link/avatar/male-09.svg
IP
172.67.162.230:0
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rndtechnosoft.com/404.php

File type
SVG Scalable Vector Graphics image
Size
13 kB (12661 bytes)
Hash
64dda06540f22ad6691a2884ee29c5ad
de01d14d1098cce664b0ec58bb66fe31049d592b
eaa3d6c4a12cdcf9768586031f5b9c8dc2d31244215c492e2d21cf7e1b5b383a

HTTP Headers

GET /avatar/male-09.svg HTTP/1.1
Host: tawk.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 20 Apr 2024 07:59:44 GMT
content-type: image/svg+xml
x-powered-by: Express
cache-control: public, max-age=2592000, immutable
last-modified: Thu, 04 Apr 2024 12:42:21 GMT
etag: W/"1404-18ea921b28e"
strict-transport-security: max-age=600
cf-cache-status: HIT
age: 688561
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=answABFxWdseobLH1k5FfVOm%2FFwN3GC1ACLWqHEte5tAm3ZKO1Ocrgz%2BjBxMA4MVCQEA66NG%2FsScVOdWg2c9esIJ3gO3yZQ6QWSdRhCd6e9rgtzgCEMLxV09i4A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 877398bd0e94712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-9294da6c.js

104.22.25.131

200 OK

18 kB

URL GET HTTP/3
embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-9294da6c.js
IP
104.22.25.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerGoogle Trust Services LLC
Subjecttawk.to
Fingerprint83:4E:6B:81:26:A0:67:FF:06:8D:D3:DC:E5:70:3F:A3:4B:08:C5:F5
ValidityThu, 28 Mar 2024 00:13:59 GMT - Wed, 26 Jun 2024 00:13:58 GMT

File type
JavaScript source, ASCII text, with very long lines (18229), with no line terminators
Size
18 kB (18229 bytes)
Hash
34171aeb4a8a2b1a28add18e27dfce02
f410acdae61158f940e9dd1b0eed87dcd7c6dee0
266550a7339062b1f111b38963a74d39b33d18710cf58cb06f5c7850d6faa163

HTTP Headers

GET /_s/v4/app/660e2260004/js/twk-chunk-9294da6c.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:59:32 GMT
content-type: application/javascript
last-modified: Thu, 04 Apr 2024 03:46:14 GMT
etag: W/"34171aeb4a8a2b1a28add18e27dfce02"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: MISS
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 1397082
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87739873ad92569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-24d8db78.js

104.22.25.131

200 OK

113 kB

URL GET HTTP/3
embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-24d8db78.js
IP
104.22.25.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerGoogle Trust Services LLC
Subjecttawk.to
Fingerprint83:4E:6B:81:26:A0:67:FF:06:8D:D3:DC:E5:70:3F:A3:4B:08:C5:F5
ValidityThu, 28 Mar 2024 00:13:59 GMT - Wed, 26 Jun 2024 00:13:58 GMT

File type
JavaScript source, ASCII text, with very long lines (65464)
Size
113 kB (113007 bytes)
Hash
d67e8e92f153ef2b6332e4a84051896e
46076321b1ef81d170a664e6fb452e5a4070bb62
befa5027d9afa506072bde391860033cd8d96041767287585ddd5462810f9db8

HTTP Headers

GET /_s/v4/app/660e2260004/js/twk-chunk-24d8db78.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:59:32 GMT
content-type: application/javascript
last-modified: Thu, 04 Apr 2024 03:46:14 GMT
etag: W/"d67e8e92f153ef2b6332e4a84051896e"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: MISS
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 1397081
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87739873fdcc569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

embed.tawk.to/_s/v4/app/660e2260004/css/max-widget.css

104.22.25.131

200 OK

78 kB

URL GET HTTP/3
embed.tawk.to/_s/v4/app/660e2260004/css/max-widget.css
IP
104.22.25.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerGoogle Trust Services LLC
Subjecttawk.to
Fingerprint83:4E:6B:81:26:A0:67:FF:06:8D:D3:DC:E5:70:3F:A3:4B:08:C5:F5
ValidityThu, 28 Mar 2024 00:13:59 GMT - Wed, 26 Jun 2024 00:13:58 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
78 kB (78103 bytes)
Hash
aa429d098305efeb3d236b3872f2da79
e0d6e416eb7c1c8f10ec76f835eda23d5c1d0ab0
5285275760ce24f97fc85a2aa7a705e2bfcdebe875a6028441382d2ca36b3f1c

HTTP Headers

GET /_s/v4/app/660e2260004/css/max-widget.css HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:59:32 GMT
content-type: text/css
cache-control: public, max-age=2592000, immutable
cf-bgj: minify
cf-polished: origSize=78232
access-control-allow-origin: *
etag: W/"05d886069cda40a8e20243d226b04764"
last-modified: Thu, 04 Apr 2024 03:46:14 GMT
strict-transport-security: max-age=0; includeSubDomains; preload
x-cache-status: MISS
cf-cache-status: HIT
age: 1397080
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87739874de96569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

ems.rndtechnosoft.com/websites/650ef17c6c903/connect.js

103.191.208.92

500 Internal Server Error

0 B

URL GET HTTP/2
ems.rndtechnosoft.com/websites/650ef17c6c903/connect.js
IP
103.191.208.92:443
ASN
#150055 DIGITAL SNAP

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerLet's Encrypt
Subjectems.rndtechnosoft.com
FingerprintD3:BB:F8:AE:D4:85:26:A0:48:77:D7:5C:82:1E:BA:67:57:E5:E3:32
ValidityFri, 19 Apr 2024 16:10:22 GMT - Thu, 18 Jul 2024 16:10:21 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /websites/650ef17c6c903/connect.js HTTP/1.1
Host: ems.rndtechnosoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 500 Internal Server Error
x-powered-by: PHP/7.4.33
cache-control: no-cache, private
content-type: text/html; charset=UTF-8
set-cookie: XSRF-TOKEN=eyJpdiI6IkczcnVhVzV1V0dmQ1BEdDFDOG5FdlE9PSIsInZhbHVlIjoiQzJyTndoREw3Y1Zkb1B0MnZ0ZE1EdlVhWXpYS0JzOVVTOE82bktKL1Zad2t4NGQxZU04K096TnZta3Rkd29NTFROUFlFeG5WbGVCcVlldGQ2Y0hMMW1sNkVsMDdnMGdVaVJjcEZzVXA0cWp6cUkvOExadjBJQ1prZms4SnFiTmwiLCJtYWMiOiJhMDAyYjVmYTY1MDQ5ZDdhZTAzZjE0ZTQzMDI2M2ViZjZhODg4YmIwNzUwMzA1MzlkMTRhMzFkNjE3NWIxNGQwIiwidGFnIjoiIn0%3D; expires=Sat, 20-Apr-2024 09:59:25 GMT; Max-Age=7200; path=/; samesite=lax; secure
acelle_session=eyJpdiI6IlkrZEJaa0ZqU2p4bHE0QTZOVWo2OWc9PSIsInZhbHVlIjoiRXVzYlpzYkxha0lzMStwN2J3T1BHM2txQkpERDlSYTNUeEtaT01IK2lORHBxandaRmhkY1dkMEZCbU9UcmNreXRJcTZmWjNMc09qUHdWZzVWUjE5bWthQVhHSFcyRnJSWXVyY2hUa1plU2QzSXBUd0xzS1VzTHY0ZytzajJZem0iLCJtYWMiOiIyOTgyZGZkNThjNDQ4ODY4MGYzZjY3OWMzYmVjZDhhY2E2NjBiMGYxYTgzZjZmYjJiNjc1NzU5Yjc2Y2Y1NTYwIiwidGFnIjoiIn0%3D; expires=Sat, 20-Apr-2024 09:59:25 GMT; Max-Age=7200; path=/; httponly; samesite=lax; secure
content-encoding: br
vary: Accept-Encoding
date: Sat, 20 Apr 2024 07:59:25 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

embed.tawk.to/_s/v4/app/660e2260004/css/bubble-widget.css

104.22.25.131

200 OK

14 kB

URL GET HTTP/3
embed.tawk.to/_s/v4/app/660e2260004/css/bubble-widget.css
IP
104.22.25.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerGoogle Trust Services LLC
Subjecttawk.to
Fingerprint83:4E:6B:81:26:A0:67:FF:06:8D:D3:DC:E5:70:3F:A3:4B:08:C5:F5
ValidityThu, 28 Mar 2024 00:13:59 GMT - Wed, 26 Jun 2024 00:13:58 GMT

File type
ASCII text, with very long lines (13521), with no line terminators
Size
14 kB (13521 bytes)
Hash
950518e32fd92957181f766f08d3cf98
9fe20c86b818d3576e9d70e6ed091964cb8b7427
2f56f47d64037d5aa3a96b50c840580e5549fee6f9fafff8af3d1821d189fa5c

HTTP Headers

GET /_s/v4/app/660e2260004/css/bubble-widget.css HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:59:32 GMT
content-type: text/css
cache-control: public, max-age=2592000, immutable
cf-bgj: minify
cf-polished: origSize=13594
access-control-allow-origin: *
etag: W/"ce7913b80c763449b3895d46419f7a6b"
last-modified: Thu, 04 Apr 2024 03:46:14 GMT
strict-transport-security: max-age=0; includeSubDomains; preload
x-cache-status: HIT
cf-cache-status: HIT
age: 1397081
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87739874ae64569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

static.getbutton.io/widget-send-button/js/init.js

172.67.74.247

302 Found

429 kB

URL GET HTTP/2
static.getbutton.io/widget-send-button/js/init.js
IP
172.67.74.247:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerGoogle Trust Services LLC
Subjectgetbutton.io
Fingerprint54:E4:32:AA:1C:CC:59:4A:FE:D2:A5:DF:9C:B1:67:EC:70:40:D9:80
ValidityTue, 12 Mar 2024 02:23:32 GMT - Mon, 10 Jun 2024 02:23:31 GMT

File type

Size
429 kB (429434 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /widget-send-button/js/init.js HTTP/1.1
Host: static.getbutton.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Sat, 20 Apr 2024 07:59:25 GMT
content-type: text/html
location: https://static.getbutton.io/widget/bundle.js
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Hm80%2BbVJLBGU5PjJKRPW2Cwy%2FUigH5IMyJfzPblyzo8hhHuHRYzfyu1iTo0h3vyVrXzy%2B7bzU0obvhuBL6ff9VXfqg79BLV5B243q7g0cUBaP6p0bUkGJum8FhY%2BrBSVwEMEzS4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87739849be3f56c5-OSL
X-Firefox-Spdy: h2

va.tawk.to/v1/session/start

104.22.25.131

200 OK

0 B

URL OPTIONS HTTP/3
va.tawk.to/v1/session/start
IP
104.22.25.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerGoogle Trust Services LLC
Subjecttawk.to
Fingerprint83:4E:6B:81:26:A0:67:FF:06:8D:D3:DC:E5:70:3F:A3:4B:08:C5:F5
ValidityThu, 28 Mar 2024 00:13:59 GMT - Wed, 26 Jun 2024 00:13:58 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /v1/session/start HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.rndtechnosoft.com/
Origin: https://www.rndtechnosoft.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:59:27 GMT
content-type: text/html; charset=utf-8
x-served-by: visitor-application-preemptive-mvbx
access-control-allow-origin: https://www.rndtechnosoft.com
access-control-allow-credentials: true
access-control-max-age: 3600
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
cache-control: public, s-maxage=600, max-age=600
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 877398567da6b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

embed.tawk.to/_s/v4/app/660e2260004/css/message-preview.css

104.22.25.131

200 OK

41 kB

URL GET HTTP/3
embed.tawk.to/_s/v4/app/660e2260004/css/message-preview.css
IP
104.22.25.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerGoogle Trust Services LLC
Subjecttawk.to
Fingerprint83:4E:6B:81:26:A0:67:FF:06:8D:D3:DC:E5:70:3F:A3:4B:08:C5:F5
ValidityThu, 28 Mar 2024 00:13:59 GMT - Wed, 26 Jun 2024 00:13:58 GMT

File type
ASCII text, with very long lines (40772), with no line terminators
Size
41 kB (40772 bytes)
Hash
96be1f6983c01fe07004e163e0c6ce8a
46334521ca7c554fb7608e4e93cba4c6fac72f77
26c00c91aa26f8a81dc41fe7ca0db1dfd849180200596138437f2ca57357dd0f

HTTP Headers

GET /_s/v4/app/660e2260004/css/message-preview.css HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:59:32 GMT
content-type: text/css
cache-control: public, max-age=2592000, immutable
cf-bgj: minify
cf-polished: origSize=40905
access-control-allow-origin: *
etag: W/"7060c2e317491c949f29253a1286dad2"
last-modified: Thu, 04 Apr 2024 03:46:14 GMT
strict-transport-security: max-age=0; includeSubDomains; preload
x-cache-status: MISS
cf-cache-status: HIT
age: 1397081
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87739874ae68569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

embed.tawk.to/_s/v4/app/660e2260004/js/twk-vendor.js

104.22.25.131

200 OK

83 kB

URL GET HTTP/3
embed.tawk.to/_s/v4/app/660e2260004/js/twk-vendor.js
IP
104.22.25.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerGoogle Trust Services LLC
Subjecttawk.to
Fingerprint83:4E:6B:81:26:A0:67:FF:06:8D:D3:DC:E5:70:3F:A3:4B:08:C5:F5
ValidityThu, 28 Mar 2024 00:13:59 GMT - Wed, 26 Jun 2024 00:13:58 GMT

File type

Size
83 kB (82913 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /_s/v4/app/660e2260004/js/twk-vendor.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.rndtechnosoft.com
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:59:27 GMT
content-type: application/javascript
last-modified: Thu, 04 Apr 2024 03:46:14 GMT
etag: W/"3b341e35b39f6195793ecaf5db7c1d63"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 877398526adbb52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-48f3b594.js

104.22.25.131

200 OK

19 kB

URL GET HTTP/3
embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-48f3b594.js
IP
104.22.25.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerGoogle Trust Services LLC
Subjecttawk.to
Fingerprint83:4E:6B:81:26:A0:67:FF:06:8D:D3:DC:E5:70:3F:A3:4B:08:C5:F5
ValidityThu, 28 Mar 2024 00:13:59 GMT - Wed, 26 Jun 2024 00:13:58 GMT

File type
JavaScript source, ASCII text, with very long lines (18963), with no line terminators
Size
19 kB (18963 bytes)
Hash
eef7f2f4cac5d7366ee947ab6d9ccaa6
1ee4496c42c0abd1bb905b45acfc1ed9c9d1b586
2872298ae965ac31b7c24d05243960848a3ac0937386b08a019f1a48e2cb9e5f

HTTP Headers

GET /_s/v4/app/660e2260004/js/twk-chunk-48f3b594.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:59:32 GMT
content-type: application/javascript
last-modified: Thu, 04 Apr 2024 03:46:14 GMT
etag: W/"eef7f2f4cac5d7366ee947ab6d9ccaa6"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 1397081
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87739873ddb1569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

vsa29.tawk.to/s/?k=662375e25625d7d34e3dcd1d&cver=0&pop=false&asver=109&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI2MzBkY2M0YjM3ODk4OTEyZTk2NjIwZDYiLCJ2aWQiOiI2MzBkY2M0YjM3ODk4OTEyZTk2NjIwZDYtc25UOTRJaGQyaGdXZDBXQjBLcThpIiwic2lkIjoiNjYyMzc1ZTI1NjI1ZDdkMzRlM2RjZDFkIiwiaWF0IjoxNzEzNTk5OTcxLCJleHAiOjE3MTM2MDE3NzEsImp0aSI6Ilp0WUpzbEJNbWpnWnVId3N0R0M0NSJ9.z9GXcH9cTr-2VvKFQXuSxAPR9vdAiILRC860Pfj6ZQKp6LnMun9b4_7ISdn9q7uoQRbCgS9n7N2FhkH4Gqapdw&EIO=3&transport=websocket&__t=OxwX8H8

104.22.24.131

101 Switching Protocols

0 B

URL GET HTTP/1.1
vsa29.tawk.to/s/?k=662375e25625d7d34e3dcd1d&cver=0&pop=false&asver=109&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI2MzBkY2M0YjM3ODk4OTEyZTk2NjIwZDYiLCJ2aWQiOiI2MzBkY2M0YjM3ODk4OTEyZTk2NjIwZDYtc25UOTRJaGQyaGdXZDBXQjBLcThpIiwic2lkIjoiNjYyMzc1ZTI1NjI1ZDdkMzRlM2RjZDFkIiwiaWF0IjoxNzEzNTk5OTcxLCJleHAiOjE3MTM2MDE3NzEsImp0aSI6Ilp0WUpzbEJNbWpnWnVId3N0R0M0NSJ9.z9GXcH9cTr-2VvKFQXuSxAPR9vdAiILRC860Pfj6ZQKp6LnMun9b4_7ISdn9q7uoQRbCgS9n7N2FhkH4Gqapdw&EIO=3&transport=websocket&__t=OxwX8H8
IP
104.22.24.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerGoogle Trust Services LLC
Subjecttawk.to
Fingerprint83:4E:6B:81:26:A0:67:FF:06:8D:D3:DC:E5:70:3F:A3:4B:08:C5:F5
ValidityThu, 28 Mar 2024 00:13:59 GMT - Wed, 26 Jun 2024 00:13:58 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /s/?k=662375e25625d7d34e3dcd1d&cver=0&pop=false&asver=109&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI2MzBkY2M0YjM3ODk4OTEyZTk2NjIwZDYiLCJ2aWQiOiI2MzBkY2M0YjM3ODk4OTEyZTk2NjIwZDYtc25UOTRJaGQyaGdXZDBXQjBLcThpIiwic2lkIjoiNjYyMzc1ZTI1NjI1ZDdkMzRlM2RjZDFkIiwiaWF0IjoxNzEzNTk5OTcxLCJleHAiOjE3MTM2MDE3NzEsImp0aSI6Ilp0WUpzbEJNbWpnWnVId3N0R0M0NSJ9.z9GXcH9cTr-2VvKFQXuSxAPR9vdAiILRC860Pfj6ZQKp6LnMun9b4_7ISdn9q7uoQRbCgS9n7N2FhkH4Gqapdw&EIO=3&transport=websocket&__t=OxwX8H8 HTTP/1.1
Host: vsa29.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www.rndtechnosoft.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: CsQTgdsKtl+3Ch9cBaIkbQ==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Date: Sat, 20 Apr 2024 07:59:33 GMT
Connection: upgrade
upgrade: websocket
sec-websocket-accept: Yyfyi8SAffCR2Oj5ElcBVZ49GyY=
sec-websocket-extensions: permessage-deflate
strict-transport-security: max-age=0; includeSubDomains; preload
CF-Cache-Status: DYNAMIC
X-Content-Type-Options: nosniff
Server: cloudflare
CF-RAY: 87739874db735697-OSL
alt-svc: h3=":443"; ma=86400

embed.tawk.to/_s/v4/app/660e2260004/js/twk-main.js

104.22.25.131

200 OK

121 B

URL GET HTTP/2
embed.tawk.to/_s/v4/app/660e2260004/js/twk-main.js
IP
104.22.25.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerGoogle Trust Services LLC
Subjecttawk.to
Fingerprint83:4E:6B:81:26:A0:67:FF:06:8D:D3:DC:E5:70:3F:A3:4B:08:C5:F5
ValidityThu, 28 Mar 2024 00:13:59 GMT - Wed, 26 Jun 2024 00:13:58 GMT

File type
ASCII text, with no line terminators
Size
121 B (121 bytes)
Hash
3b41342f7e3be590563e8e3b5ff770c7
c9ca54d23ea78b320f080b76e22bb6b4e704d55f
ef04d89daeed55613a63a4af62c147ce86e4a7f22c8ce700dd6bdb11ab187e43

HTTP Headers

GET /_s/v4/app/660e2260004/js/twk-main.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.rndtechnosoft.com
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 20 Apr 2024 07:59:27 GMT
content-type: application/javascript
last-modified: Thu, 04 Apr 2024 03:46:14 GMT
etag: W/"da5bb1dc647470204df0e49f5afac2de"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 877398524c2b569f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

embed.tawk.to/_s/v4/app/660e2260004/js/twk-app.js

104.22.25.131

200 OK

151 B

URL GET HTTP/3
embed.tawk.to/_s/v4/app/660e2260004/js/twk-app.js
IP
104.22.25.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerGoogle Trust Services LLC
Subjecttawk.to
Fingerprint83:4E:6B:81:26:A0:67:FF:06:8D:D3:DC:E5:70:3F:A3:4B:08:C5:F5
ValidityThu, 28 Mar 2024 00:13:59 GMT - Wed, 26 Jun 2024 00:13:58 GMT

File type
ASCII text, with no line terminators
Size
151 B (151 bytes)
Hash
04a9862af6efaf787bc8fb8e99ba6987
a57bb8f258eb1a60dc3b288a608ad8ef9fbecef3
ecc74c329a700e3e6ca29aed5ffe3c166cf39670c8b11573fa7f837f79a71b5c

HTTP Headers

GET /_s/v4/app/660e2260004/js/twk-app.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.rndtechnosoft.com
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:59:27 GMT
content-type: application/javascript
last-modified: Thu, 04 Apr 2024 03:46:14 GMT
etag: W/"e736e189edb5d0d9d5b8e7f23dd9114a"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 877398527aefb52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.googleapis.com/css?family=Poppins:100,200,300,400,500,600,700,800,900

142.250.74.106

200 OK

6.7 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Poppins:100,200,300,400,500,600,700,800,900
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
ASCII text, with very long lines (6838), with no line terminators
Size
6.7 kB (6694 bytes)
Hash
2016e22e6f4f03740a17b4b80a2d67b2
6a7ef7c27102282560111488c0dd76dcaf2a6b4e
9664e8764e767340eee10e27be239fb1f700e9a7a155952a071039b77ee8ba57

HTTP Headers

GET /css?family=Poppins:100,200,300,400,500,600,700,800,900 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 20 Apr 2024 07:59:24 GMT
date: Sat, 20 Apr 2024 07:59:24 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

embed.tawk.to/_s/v4/app/660e2260004/css/min-widget.css

104.22.25.131

200 OK

25 kB

URL GET HTTP/3
embed.tawk.to/_s/v4/app/660e2260004/css/min-widget.css
IP
104.22.25.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerGoogle Trust Services LLC
Subjecttawk.to
Fingerprint83:4E:6B:81:26:A0:67:FF:06:8D:D3:DC:E5:70:3F:A3:4B:08:C5:F5
ValidityThu, 28 Mar 2024 00:13:59 GMT - Wed, 26 Jun 2024 00:13:58 GMT

File type
ASCII text, with very long lines (24751), with no line terminators
Size
25 kB (24751 bytes)
Hash
d4f9ad34fae3ba64cbc48057dc47e968
f8d0d55dc6e9b5d53f74b0b8bfc5e2edbdb0618d
2b5b9f68ace12b789b1371204754547021dcbf3e9df630e7e22b49ee56e05b8c

HTTP Headers

GET /_s/v4/app/660e2260004/css/min-widget.css HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:59:32 GMT
content-type: text/css
cache-control: public, max-age=2592000, immutable
cf-bgj: minify
cf-polished: origSize=24831
access-control-allow-origin: *
etag: W/"5742a34aaab2a5983c7c11cdeef1c0ee"
last-modified: Thu, 04 Apr 2024 03:46:14 GMT
strict-transport-security: max-age=0; includeSubDomains; preload
x-cache-status: HIT
cf-cache-status: HIT
age: 1397081
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 877398747e33569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js

151.101.193.229

200 OK

303 kB

URL GET HTTP/2
cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js
IP
151.101.193.229:443
ASN
#54113 FASTLY

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type

Size
303 kB (302554 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /emojione/2.2.7/lib/js/emojione.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
etag: W/"49dda-cp9vjKV4fYl0Ow7X6yf9dkBr+YU"
content-encoding: br
accept-ranges: bytes
date: Sat, 20 Apr 2024 07:59:32 GMT
age: 9148624
x-served-by: cache-fra-eddf8230136-FRA, cache-hel1410029-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 41275
X-Firefox-Spdy: h2

va.tawk.to/log-performance/v3

104.22.25.131

200 OK

5 B

URL POST HTTP/3
va.tawk.to/log-performance/v3
IP
104.22.25.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerGoogle Trust Services LLC
Subjecttawk.to
Fingerprint83:4E:6B:81:26:A0:67:FF:06:8D:D3:DC:E5:70:3F:A3:4B:08:C5:F5
ValidityThu, 28 Mar 2024 00:13:59 GMT - Wed, 26 Jun 2024 00:13:58 GMT

File type
ASCII text, with no line terminators
Size
5 B (5 bytes)
Hash
38a8a3e3b4b6a6e4f295b2e0f899b1f0
474f5fac3d23afbaf16c5a31c98dfcd956e4c186
7652c7891ed06bce4174ab00a6ee9721daf6a4286929213ecb7daf42cd866615

HTTP Headers

POST /log-performance/v3 HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rndtechnosoft.com/
Content-Type: application/json; charset=utf-8
Content-Length: 95
Origin: https://www.rndtechnosoft.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:59:34 GMT
content-type: text/html; charset=utf-8
x-served-by: visitor-application-preemptive-4mll
access-control-allow-origin: https://www.rndtechnosoft.com
access-control-allow-credentials: true
access-control-max-age: 3600
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8773987cdd59569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.rndtechnosoft.com/404.php

103.191.208.92

200 OK

18 kB

URL User Request GET HTTP/2
www.rndtechnosoft.com/404.php
IP
103.191.208.92:443
ASN
#150055 DIGITAL SNAP

Certificate
IssuerLet's Encrypt
Subjectcpanel.rndtechnosoft.com
Fingerprint23:34:71:78:70:6B:66:28:84:02:9D:09:57:DE:18:6C:96:D2:9B:29
ValidityWed, 17 Apr 2024 01:09:10 GMT - Tue, 16 Jul 2024 01:09:09 GMT

File type
JavaScript source, ASCII text, with CRLF, LF line terminators
Size
18 kB (17693 bytes)
Hash
f71fe5fa610ad01d1307d0c255874c9b
10e4d5d4a31ab45a7a8009ac8b06b01aa1b55bdb
22f23e7649bdd77116542fa574bece16959d0159406e54f9d8995c00f54e7022

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /404.php HTTP/1.1
Host: www.rndtechnosoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-powered-by: PHP/7.4.33
set-cookie: PHPSESSID=8991b1a8599f785b24b33ecb29c92a43; path=/; secure
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-type: text/html;charset=UTF-8
content-encoding: br
vary: Accept-Encoding,User-Agent
date: Sat, 20 Apr 2024 07:59:24 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

va.tawk.to/v1/widget-settings?propertyId=630dcc4b37898912e96620d6&widgetId=1gbmuc2sq&sv=null

104.22.25.131

200 OK

3.7 kB

URL GET HTTP/3
va.tawk.to/v1/widget-settings?propertyId=630dcc4b37898912e96620d6&widgetId=1gbmuc2sq&sv=null
IP
104.22.25.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerGoogle Trust Services LLC
Subjecttawk.to
Fingerprint83:4E:6B:81:26:A0:67:FF:06:8D:D3:DC:E5:70:3F:A3:4B:08:C5:F5
ValidityThu, 28 Mar 2024 00:13:59 GMT - Wed, 26 Jun 2024 00:13:58 GMT

File type
troff or preprocessor input, Unicode text, UTF-8 text, with very long lines (4294), with no line terminators
Size
3.7 kB (3702 bytes)
Hash
846e3e82b810eb78276ce42ac5108bef
89edbc691761809746d91908e24366a49473d8ff
f9674f9919e65962957ec9c5e23a39e47af11301d733b23a2749b8302487e68f

HTTP Headers

GET /v1/widget-settings?propertyId=630dcc4b37898912e96620d6&widgetId=1gbmuc2sq&sv=null HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rndtechnosoft.com/
Origin: https://www.rndtechnosoft.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:59:28 GMT
content-type: application/json
x-served-by: visitor-application-preemptive-pffs
access-control-allow-origin: *
access-control-max-age: 3600
access-control-allow-methods: GET,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
cache-control: public, max-age=7200, s-maxage=1800
etag: W/"2-26-0"
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
x-content-type-options: nosniff
server: cloudflare
cf-ray: 877398566da0b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-2c776523.js

104.22.25.131

200 OK

9.9 kB

URL GET HTTP/3
embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-2c776523.js
IP
104.22.25.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerGoogle Trust Services LLC
Subjecttawk.to
Fingerprint83:4E:6B:81:26:A0:67:FF:06:8D:D3:DC:E5:70:3F:A3:4B:08:C5:F5
ValidityThu, 28 Mar 2024 00:13:59 GMT - Wed, 26 Jun 2024 00:13:58 GMT

File type
JavaScript source, ASCII text, with very long lines (10730), with no line terminators
Size
9.9 kB (9929 bytes)
Hash
2ed46b3171b0456fda29f3bfda5f846e
0c4834c6f96e8640bcdd46c48396a1f1f7d287b2
0c9f49f27e34e05a7e4159648875b32880d3d986ee2d70d78d6138df5e9f1654

HTTP Headers

GET /_s/v4/app/660e2260004/js/twk-chunk-2c776523.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:59:32 GMT
content-type: application/javascript
last-modified: Thu, 04 Apr 2024 03:46:14 GMT
etag: W/"70aec2dd89cac4933594c25b71d61f46"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: MISS
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 1397082
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87739873ad8f569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-vendors.js

104.22.25.131

200 OK

217 kB

URL GET HTTP/3
embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-vendors.js
IP
104.22.25.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerGoogle Trust Services LLC
Subjecttawk.to
Fingerprint83:4E:6B:81:26:A0:67:FF:06:8D:D3:DC:E5:70:3F:A3:4B:08:C5:F5
ValidityThu, 28 Mar 2024 00:13:59 GMT - Wed, 26 Jun 2024 00:13:58 GMT

File type

Size
217 kB (217197 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /_s/v4/app/660e2260004/js/twk-chunk-vendors.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.rndtechnosoft.com
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:59:27 GMT
content-type: application/javascript
last-modified: Thu, 04 Apr 2024 03:46:14 GMT
etag: W/"1c73b4eb89bbe24ecf154b671ddbcafc"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 877398527ae8b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-2d0b9454.js

104.22.25.131

200 OK

535 B

URL GET HTTP/3
embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-2d0b9454.js
IP
104.22.25.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerGoogle Trust Services LLC
Subjecttawk.to
Fingerprint83:4E:6B:81:26:A0:67:FF:06:8D:D3:DC:E5:70:3F:A3:4B:08:C5:F5
ValidityThu, 28 Mar 2024 00:13:59 GMT - Wed, 26 Jun 2024 00:13:58 GMT

File type
JavaScript source, ASCII text, with very long lines (557), with no line terminators
Size
535 B (535 bytes)
Hash
3f4a6312d60391bda06462d7321ffcdc
9f09295297840a36d2ac95344b39b0af1a729f82
28d61df22c079e51c45b6f87db516f03cb85cf3f2c3a970be369944c3f91bcf1

HTTP Headers

GET /_s/v4/app/660e2260004/js/twk-chunk-2d0b9454.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:59:32 GMT
content-type: application/javascript
last-modified: Thu, 04 Apr 2024 03:46:14 GMT
etag: W/"c506281367048d4a134c9affbc68c8c6"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: MISS
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 1397081
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87739873edc4569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

embed.tawk.to/630dcc4b37898912e96620d6/1gbmuc2sq

104.22.25.131

200 OK

2.1 kB

URL GET HTTP/2
embed.tawk.to/630dcc4b37898912e96620d6/1gbmuc2sq
IP
104.22.25.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerGoogle Trust Services LLC
Subjecttawk.to
Fingerprint83:4E:6B:81:26:A0:67:FF:06:8D:D3:DC:E5:70:3F:A3:4B:08:C5:F5
ValidityThu, 28 Mar 2024 00:13:59 GMT - Wed, 26 Jun 2024 00:13:58 GMT

File type
JavaScript source, ASCII text, with very long lines (2310), with no line terminators
Size
2.1 kB (2123 bytes)
Hash
b3ffdd9b4fb159294af502e57c2c48ae
f31f1fb2e6e6ef7e5e3032eb0fb86aa7add1f3f5
89c174bb54ac599146fe2d5e6c30b627a3c146a1515bfbb6300e82eefc93b6fe

HTTP Headers

GET /630dcc4b37898912e96620d6/1gbmuc2sq HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.rndtechnosoft.com
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 20 Apr 2024 07:59:26 GMT
content-type: application/x-javascript
access-control-allow-origin: *
cache-control: public, max-age=7200, s-maxage=3600
etag: W/"stable-v4-660e2260004"
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87739849ad45569f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

va.tawk.to/log-performance/v3

104.22.25.131

200 OK

0 B

URL OPTIONS HTTP/3
va.tawk.to/log-performance/v3
IP
104.22.25.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerGoogle Trust Services LLC
Subjecttawk.to
Fingerprint83:4E:6B:81:26:A0:67:FF:06:8D:D3:DC:E5:70:3F:A3:4B:08:C5:F5
ValidityThu, 28 Mar 2024 00:13:59 GMT - Wed, 26 Jun 2024 00:13:58 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /log-performance/v3 HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.rndtechnosoft.com/
Origin: https://www.rndtechnosoft.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:59:33 GMT
content-type: text/html; charset=utf-8
x-served-by: visitor-application-preemptive-tc2t
access-control-allow-origin: https://www.rndtechnosoft.com
access-control-allow-credentials: true
access-control-max-age: 3600
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
cache-control: public, s-maxage=600, max-age=600
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87739878a9b6569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.google.com/recaptcha/api.js

142.250.74.164

200 OK

850 B

URL GET HTTP/2
www.google.com/recaptcha/api.js
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintCD:48:2A:0C:60:1D:37:5A:D4:D5:A9:F7:DE:A0:2B:5E:2F:29:76:73
ValidityMon, 18 Mar 2024 20:38:49 GMT - Mon, 10 Jun 2024 20:38:48 GMT

File type
JavaScript source, ASCII text, with very long lines (850), with no line terminators
Size
850 B (850 bytes)
Hash
7c792e0e26e2bd74f8e53c7da0d6b8a2
a43099555724ee257f66ca05de55cb56a14c8fca
d782a59ef4bab02833ce95b5e9c9bd622f328683659f43a34f1dbcf54f1d4443

HTTP Headers

GET /recaptcha/api.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
expires: Sat, 20 Apr 2024 07:59:24 GMT
date: Sat, 20 Apr 2024 07:59:24 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-f1565420.js

104.22.25.131

200 OK

11 kB

URL GET HTTP/3
embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-f1565420.js
IP
104.22.25.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerGoogle Trust Services LLC
Subjecttawk.to
Fingerprint83:4E:6B:81:26:A0:67:FF:06:8D:D3:DC:E5:70:3F:A3:4B:08:C5:F5
ValidityThu, 28 Mar 2024 00:13:59 GMT - Wed, 26 Jun 2024 00:13:58 GMT

File type
JavaScript source, ASCII text, with very long lines (11139), with no line terminators
Size
11 kB (11139 bytes)
Hash
63c6e2590e1cbc9c6098bd422232fcc6
bc333c909e3ade0408528d73dc29c249a12f917b
2ddb45ffe9fe95232c05138dccb4076e28d78fb105f2cd5ca6dee0f85bcbdb6f

HTTP Headers

GET /_s/v4/app/660e2260004/js/twk-chunk-f1565420.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:59:32 GMT
content-type: application/javascript
last-modified: Thu, 04 Apr 2024 03:46:14 GMT
etag: W/"63c6e2590e1cbc9c6098bd422232fcc6"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: MISS
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 1397082
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87739873bda4569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

embed.tawk.to/_s/v4/assets/images/attention-grabbers/168-r-br.svg

104.22.25.131

200 OK

22 kB

URL GET HTTP/3
embed.tawk.to/_s/v4/assets/images/attention-grabbers/168-r-br.svg
IP
104.22.25.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerGoogle Trust Services LLC
Subjecttawk.to
Fingerprint83:4E:6B:81:26:A0:67:FF:06:8D:D3:DC:E5:70:3F:A3:4B:08:C5:F5
ValidityThu, 28 Mar 2024 00:13:59 GMT - Wed, 26 Jun 2024 00:13:58 GMT

File type
SVG Scalable Vector Graphics image
Size
22 kB (22356 bytes)
Hash
f66e029841759471d2ec78b86760dca7
d9db67738984efee3dd63cb144759ac0521c7dda
5108ef00c54e1f6ce859852834135447457cf19ee19aa7b0fb55b64b425cb526

HTTP Headers

GET /_s/v4/assets/images/attention-grabbers/168-r-br.svg HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:59:32 GMT
content-type: image/svg+xml
last-modified: Sat, 22 May 2021 07:25:19 GMT
etag: W/"f66e029841759471d2ec78b86760dca7"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: MISS
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 2158923
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 877398751edd569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.google.com/pagead/1p-conversion/11428680380/?random=1465426461&cv=11&fst=1713599966159&bg=ffffff&guid=ON&async=1&gtm=45be44h0v9172240245z8810191683za201&gcd=13l3l3l2l1&dma_cps=sypham&dma=1&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.rndtechnosoft.com%2F404.php&label=ukpHCIa1yP4YELylz8kq&hn=www.google.com&frm=0&value=0&npa=1&pscdl=noapi&auid=368927344.1713599966&fdr=SA&gcp=2&sscte=1&ct_cookie_present=1&fmt=3&ct_cookie_present=false&sscte=1&crd=CLHBsQIIsMGxAgi5wbECCJjBsQI&eitems=ChAI8M-NsQYQh-u3r6P2kOg0Eh0A2yzU0oJNiZnw65e9lXI0AXfgxIt1lXheYM3yrg&pscrd=IhMI_vK1qqnQhQMVh8g7Ah0YAQrZMgIIAzICCAQyAggHMgIICDICCAkyAggKMgIIAjICCAs6Hmh0dHBzOi8vd3d3LnJuZHRlY2hub3NvZnQuY29tLw

142.250.74.164

302 Found

42 B

URL GET HTTP/3
www.google.com/pagead/1p-conversion/11428680380/?random=1465426461&cv=11&fst=1713599966159&bg=ffffff&guid=ON&async=1&gtm=45be44h0v9172240245z8810191683za201&gcd=13l3l3l2l1&dma_cps=sypham&dma=1&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.rndtechnosoft.com%2F404.php&label=ukpHCIa1yP4YELylz8kq&hn=www.google.com&frm=0&value=0&npa=1&pscdl=noapi&auid=368927344.1713599966&fdr=SA&gcp=2&sscte=1&ct_cookie_present=1&fmt=3&ct_cookie_present=false&sscte=1&crd=CLHBsQIIsMGxAgi5wbECCJjBsQI&eitems=ChAI8M-NsQYQh-u3r6P2kOg0Eh0A2yzU0oJNiZnw65e9lXI0AXfgxIt1lXheYM3yrg&pscrd=IhMI_vK1qqnQhQMVh8g7Ah0YAQrZMgIIAzICCAQyAggHMgIICDICCAkyAggKMgIIAjICCAs6Hmh0dHBzOi8vd3d3LnJuZHRlY2hub3NvZnQuY29tLw
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT

File type

Size
42 B (42 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pagead/1p-conversion/11428680380/?random=1465426461&cv=11&fst=1713599966159&bg=ffffff&guid=ON&async=1&gtm=45be44h0v9172240245z8810191683za201&gcd=13l3l3l2l1&dma_cps=sypham&dma=1&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.rndtechnosoft.com%2F404.php&label=ukpHCIa1yP4YELylz8kq&hn=www.google.com&frm=0&value=0&npa=1&pscdl=noapi&auid=368927344.1713599966&fdr=SA&gcp=2&sscte=1&ct_cookie_present=1&fmt=3&ct_cookie_present=false&sscte=1&crd=CLHBsQIIsMGxAgi5wbECCJjBsQI&eitems=ChAI8M-NsQYQh-u3r6P2kOg0Eh0A2yzU0oJNiZnw65e9lXI0AXfgxIt1lXheYM3yrg&pscrd=IhMI_vK1qqnQhQMVh8g7Ah0YAQrZMgIIAzICCAQyAggHMgIICDICCAkyAggKMgIIAjICCAs6Hmh0dHBzOi8vd3d3LnJuZHRlY2hub3NvZnQuY29tLw HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 20 Apr 2024 07:59:26 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/pagead/1p-conversion/11428680380/?random=1465426461&cv=11&fst=1713599966159&bg=ffffff&guid=ON&async=1&gtm=45be44h0v9172240245z8810191683za201&gcd=13l3l3l2l1&dma_cps=sypham&dma=1&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.rndtechnosoft.com%2F404.php&label=ukpHCIa1yP4YELylz8kq&hn=www.google.com&frm=0&value=0&npa=1&pscdl=noapi&auid=368927344.1713599966&fdr=SA&gcp=2&sscte=1&ct_cookie_present=1&fmt=3&ct_cookie_present=false&sscte=1&crd=CLHBsQIIsMGxAgi5wbECCJjBsQI&eitems=ChAI8M-NsQYQh-u3r6P2kOg0Eh0A2yzU0oJNiZnw65e9lXI0AXfgxIt1lXheYM3yrg&pscrd=IhMI_vK1qqnQhQMVh8g7Ah0YAQrZMgIIAzICCAQyAggHMgIICDICCAkyAggKMgIIAjICCAs6Hmh0dHBzOi8vd3d3LnJuZHRlY2hub3NvZnQuY29tLw&ipr=y
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

embed.tawk.to/_s/v4/app/660e2260004/languages/en.js

104.22.25.131

200 OK

17 kB

URL GET HTTP/3
embed.tawk.to/_s/v4/app/660e2260004/languages/en.js
IP
104.22.25.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerGoogle Trust Services LLC
Subjecttawk.to
Fingerprint83:4E:6B:81:26:A0:67:FF:06:8D:D3:DC:E5:70:3F:A3:4B:08:C5:F5
ValidityThu, 28 Mar 2024 00:13:59 GMT - Wed, 26 Jun 2024 00:13:58 GMT

File type
JavaScript source, ASCII text, with CRLF, LF line terminators
Size
17 kB (17013 bytes)
Hash
7f37a030886ec7fce1d065ec482789ee
661ad608ac1513e2ccdec4cd55eb552a8604c8f6
75b20e74e3effa00e4b62b9da6df7d7542d91cb4b50078b8365112d556a73a7e

HTTP Headers

GET /_s/v4/app/660e2260004/languages/en.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:59:28 GMT
content-type: application/javascript
last-modified: Thu, 04 Apr 2024 03:46:15 GMT
etag: W/"7f37a030886ec7fce1d065ec482789ee"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: MISS
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 1397078
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8773985e1ab1569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js

151.101.193.229

200 OK

303 kB

URL GET HTTP/2
cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js
IP
151.101.193.229:443
ASN
#54113 FASTLY

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type

Size
303 kB (302554 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /emojione/2.2.7/lib/js/emojione.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
etag: W/"49dda-cp9vjKV4fYl0Ow7X6yf9dkBr+YU"
content-encoding: br
accept-ranges: bytes
date: Sat, 20 Apr 2024 07:59:32 GMT
age: 9148624
x-served-by: cache-fra-eddf8230136-FRA, cache-hel1410029-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 41275
X-Firefox-Spdy: h2

va.tawk.to/v1/session/start

104.22.25.131

200 OK

1.1 kB

URL POST HTTP/3
va.tawk.to/v1/session/start
IP
104.22.25.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rndtechnosoft.com/404.php
Certificate
IssuerGoogle Trust Services LLC
Subjecttawk.to
Fingerprint83:4E:6B:81:26:A0:67:FF:06:8D:D3:DC:E5:70:3F:A3:4B:08:C5:F5
ValidityThu, 28 Mar 2024 00:13:59 GMT - Wed, 26 Jun 2024 00:13:58 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (1189), with no line terminators
Size
1.1 kB (1093 bytes)
Hash
8de455ea5dded2f0fe587d7413e63971
49378072d8875e91febbfdccac9528f00f242a9e
233f2a4af41afe83bb2e290d61614d0274f15dc23c6b0e231a825cf35c84ce9f

HTTP Headers

POST /v1/session/start HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rndtechnosoft.com/
Content-Type: application/json; charset=utf-8
Content-Length: 190
Origin: https://www.rndtechnosoft.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:59:32 GMT
content-type: application/json
x-served-by: visitor-application-preemptive-tc2t
access-control-allow-origin: https://www.rndtechnosoft.com
access-control-allow-credentials: true
access-control-max-age: 3600
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87739857ce9cb52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (51)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML