Report - andyday.tv/

Report Overview

Submitted URL
andyday.tv/
IP
104.21.60.156
ASN
#13335 CLOUDFLARENET
Submitted
2024-05-04 22:32:51
Access
public
Website Title
Watch Movies & Series on AndyDay HD Online FREE| andyday.tv Home
Final URL
andyday.tv/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17	2024-05-04	421 B	32 kB	104.17.25.14
img.andyday.tv	unknown	unknown	No data	No data	1.0 kB	64 kB	188.114.96.1
ajax.googleapis.com	12905	2005-01-25	2013-08-16	2024-05-04	425 B	31 kB	172.217.21.170
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-05-04	464 B	1.3 kB	142.250.74.138
stackpath.bootstrapcdn.com	2467	2012-05-25	2018-06-15	2024-05-03	449 B	160 kB	104.18.11.207
maxcdn.bootstrapcdn.com	724	2012-05-25	2014-06-18	2024-05-04	430 B	52 kB	104.18.11.207
www.googletagmanager.com	75	2011-11-11	2013-05-22	2024-05-03	417 B	102 kB	142.250.74.168
use.fontawesome.com	942	2012-10-18	2017-01-30	2024-05-03	950 B	118 kB	172.67.142.245
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-05-04	2.1 kB	136 kB	216.58.207.227
fodsoack.com	unknown	2023-10-08	2023-10-08	2024-01-27	821 B	33 kB	139.45.197.244
andyday.tv	unknown	unknown	No data	No data	2.6 kB	116 kB	172.67.198.2

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-04	medium	fodsoack.com	Sinkholed
2024-05-04	medium	fodsoack.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (20)

	URL	Size	First Seen	Last Seen
	unknown	1.1 kB	2024-05-05	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2024-05-05 00:32:58 Last Seen2024-05-05 00:32:58 Times Seen1 Hash f1d07d10e4680d2814d2de943c66814e acc0a5d20b38ea7700f8b057b282fba39dc0bd29 aaee5aee35c4eb6e77704304643f64680739d219744cca7d05ad835a5dc37904 Loading...

	andyday.tv/	153 B	2024-05-05	2024-05-05
Pretty URL andyday.tv/ IP 172.67.198.2 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-05 00:32:58 Last Seen2024-05-05 00:32:58 Times Seen1 Hash 8e7af83e73202fbffbdd098ca426aba2 30ec3f4154065bf8b835761aff0c8d05ce47dfb7 b34b43ee4a44096510f229be813538ca4c86757a2b741262a95998211d574d9f Loading...

	maxcdn.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js	51 kB	2023-03-07	2024-05-24
Pretty URL maxcdn.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js IP 104.18.11.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:44 Last Seen2024-05-24 04:21:34 Times Seen251262 Hash 67176c242e1bdc20603c878dee836df3 27a71b00383d61ef3c489326b3564d698fc1227c 56c12a125b021d21a69e61d7190cefa168d6c28ce715265cea1b3b0112d169c4 Loading...

	andyday.tv/	66 kB	2024-05-05	2024-05-05
Pretty URL andyday.tv/ IP 172.67.198.2 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-05 00:32:58 Last Seen2024-05-05 00:32:58 Times Seen1 Hash 7aebfdbc6a8c8fe05f185767b4d25bf5 dc8561e7f43d3529680a958495e4789cc1dc3e45 3ab4db94dc426065cca9547e1bc9c9a0c9886f491516f07c3ec2480befb2b815 Loading...

	andyday.tv/js/group_1/app.min.js?v=0.1	28 kB	2023-07-10	2024-05-18
Pretty URL andyday.tv/js/group_1/app.min.js?v=0.1 IP 172.67.198.2 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-10 11:38:33 Last Seen2024-05-18 21:22:30 Times Seen300 Hash 6de46a7fa9c8a9bf98dc4722f4723db0 9db905f1924b05d14f28adcf0d923e3042980690 6b2da9a037c78cfb5c0347bc234babb63abfe0f15dc755fdb0e092a572bd0a09 Loading...

	unknown	1.2 kB	2024-05-05	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2024-05-05 00:32:58 Last Seen2024-05-05 00:32:58 Times Seen1 Hash 5a4b105d6549fcfff2b1f6f1127a2a70 2a3deb412a12a553f6c6ed5a8d4ef46fa7bc41d0 8b0b4197b04c66a150ed0dff2e2fa54eb7f8ea8765fcd92525d5da1bebb97700 Loading...

	unknown	289 B	2023-04-13	2024-05-20
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-13 10:04:51 Last Seen2024-05-20 12:25:01 Times Seen201 Hash bb3ca3e16d4c50ef755f46b070e34757 d97232984ffaec39d400385131b03559db4f6956 72899456d8908d40248fe17e3c0bfdd3f120fc28dea3f70a4907ff5ddb6a030f Loading...

	unknown	3.0 kB	2024-05-05	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2024-05-05 00:32:58 Last Seen2024-05-05 00:32:58 Times Seen1 Hash 7bc63f8642039f915031f2ec16715b13 18c09cd754571907a46d5b57f2fd1d3688151e0d 1b12d688599637547ffb57cff40238104c3e456e1016f553e559eb638e214ca8 Loading...

	unknown	283 B	2024-05-05	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2024-05-05 00:32:58 Last Seen2024-05-05 00:32:58 Times Seen1 Hash a1a486707477c12956398b60345deece a495c7773f6c551ce11e0f708839639413820f21 4ef2329869bce039ff7c6f92331781bdf5c22076391d9a9397da23cfbcfb986f Loading...

	www.googletagmanager.com/gtag/js?id=G-YCDEF0T4KW	306 kB	2024-05-05	2024-05-05
Pretty URL www.googletagmanager.com/gtag/js?id=G-YCDEF0T4KW IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-05 00:32:58 Last Seen2024-05-05 00:32:58 Times Seen2 Hash eb324581e057c743f9a73b80f1edccc6 837c16fbffd69c16fd0d4d3956087e93b4c3d501 7e6a005cb019478bcb3d4d7d59f1a09db31f5a75d052fd1ae1a7e387e0c9798d Loading...

	unknown	575 B	2024-05-05	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2024-05-05 00:32:58 Last Seen2024-05-05 00:32:58 Times Seen1 Hash 48f85b8705e3e62881bd961a549b4282 c5f541c5c19c9e13ea24cd3da06a9b2e83446ee1 d96f89fbbad41f67426928f1cbb6a34a4e65d928de0792a55634b268cb93f581 Loading...

	unknown	34 B	2023-04-11	2024-05-24
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:16:40 Last Seen2024-05-24 02:04:35 Times Seen78107 Hash 572cb94037fffc2a0a53b465972e15f1 0d679b041a7c1ca45cc99e2d229fc2b86762838d 6487e4bdd0f51bbfd9105810a41755847fdae2c274e2fc325cd22356d7707e35 Loading...

	andyday.tv/	445 B	2024-05-05	2024-05-05
Pretty URL andyday.tv/ IP 172.67.198.2 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-05 00:32:58 Last Seen2024-05-05 00:32:58 Times Seen1 Hash ec9bf7454a3a0cf84d669c521271e7f1 948fba589fbd8d1d0e9bdf9f51c3c98e5f354856 6423e4aeec0252ce23df71f3f32133e0ac5b0b897b7d7949836e83917c0a99eb Loading...

	ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js	87 kB	2023-03-07	2024-05-24
Pretty URL ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js IP 172.217.21.170 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-05-24 02:36:37 Times Seen116484 Hash a09e13ee94d51c524b7e2a728c7d4039 0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae 160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef Loading...

	unknown	147 B	2024-05-05	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2024-05-05 00:32:58 Last Seen2024-05-05 00:32:58 Times Seen1 Hash 0d4e4f4838e8f6a7f0406d317004db43 b529e591c1dc4917284d3d2e8040650ca0c3de95 c60c62686789d3cb1139f872843f251bb5e7127e3836a9d61652e7c40851651f Loading...

	unknown	361 B	2024-05-05	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2024-05-05 00:32:58 Last Seen2024-05-05 00:32:58 Times Seen1 Hash 9b89f09af76d97b9f08a62512ea6618a cf5e367e77a7c39d3cc6b25095a114bbd9d2c844 d1a6a22864f97ca9625f7554588a6e7ee9d1783cd2be256c0c3e13c3078d8c48 Loading...

	unknown	152 B	2024-05-05	2024-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2024-05-05 00:32:58 Last Seen2024-05-05 00:32:58 Times Seen1 Hash c061c00b411738f5db5d94b0b0aab0e2 b086bfc998ccbb96f0fd01cfa0657657a73e0f9f e5f77692c7532467643688bbb81644aa909d2ecf578885810a4579b65c63d3c4 Loading...

	cdnjs.cloudflare.com/ajax/libs/vue/2.6.10/vue.min.js	94 kB	2023-03-07	2024-05-23
Pretty URL cdnjs.cloudflare.com/ajax/libs/vue/2.6.10/vue.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:07 Last Seen2024-05-23 18:54:21 Times Seen2649 Hash 17e942ea0854bd9dce2070bae6826937 434cdec1669f2c6c7406297a72120936bc56ed52 72194d152571dd375c4365e5c3b4af9db2c06af0102ced18fcb062597d38be26 Loading...

	andyday.tv/	29 B	2023-03-07	2024-05-20
Pretty URL andyday.tv/ IP 172.67.198.2 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 16:34:47 Last Seen2024-05-20 12:25:01 Times Seen288 Hash 1b7fdd744c60ca3a67ba0df5e9ac66ff a7ea5e13282f866e9132bb0eb095245da0788a37 abcb1af09d6eb4cd696f7844dc4c02883d673fccfeeb2369ff588b84964d7d36 Loading...

	unknown	759 B	2023-04-13	2024-05-20
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-13 10:04:51 Last Seen2024-05-20 12:25:00 Times Seen184 Hash f2423e0fb745a0a938ea171936dc8ab7 d3d871b860daa4f923393a08ed5e020c591974f8 2f06b741e27c27039ebc0cbfe33b922c73f949b9902610f698e9523be7c04dbb Loading...

HTTP Transactions (22)

URL IP Response Size

cdnjs.cloudflare.com/ajax/libs/vue/2.6.10/vue.min.js

104.17.25.14

200 OK

31 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/vue/2.6.10/vue.min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://andyday.tv/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65449)
Size
31 kB (30769 bytes)
Hash
17e942ea0854bd9dce2070bae6826937
434cdec1669f2c6c7406297a72120936bc56ed52
72194d152571dd375c4365e5c3b4af9db2c06af0102ced18fcb062597d38be26

HTTP Headers

GET /ajax/libs/vue/2.6.10/vue.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://andyday.tv/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 22:32:25 GMT
content-type: application/javascript; charset=utf-8
content-length: 30769
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb0402c-16deb"
last-modified: Mon, 04 May 2020 16:17:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 368067
expires: Thu, 24 Apr 2025 22:32:25 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uqBsN39q4dr1QYF1krfKIbuLwPx71x%2Fqnjzteqo86E6UfIggXTvsP2QBtbHw2Ersx9ATX0LZKLyUdH6GlCyt1H4Ckq635nB72%2FfL1PWihyHA%2BIfp%2FxkgIaDwZXBC%2B5uyKEbok58F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87ebf2567c1056be-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

img.andyday.tv/xxrz/400x400/100/b9/cc/b9cc48061a385e4b3dfa38971cbd4d54/b9cc48061a385e4b3dfa38971cbd4d54.png

188.114.96.1

200 OK

50 kB

URL GET HTTP/2
img.andyday.tv/xxrz/400x400/100/b9/cc/b9cc48061a385e4b3dfa38971cbd4d54/b9cc48061a385e4b3dfa38971cbd4d54.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://andyday.tv/
Certificate
IssuerGoogle Trust Services LLC
Subjectandyday.tv
Fingerprint15:60:71:25:61:F0:C4:9E:41:1C:DD:B4:F7:DC:CF:3E:B5:96:7C:9C
ValiditySat, 09 Mar 2024 05:17:59 GMT - Fri, 07 Jun 2024 05:17:58 GMT

File type
PNG image data, 400 x 112, 8-bit/color RGBA, interlaced
Size
50 kB (49549 bytes)
Hash
8c56da36b334ae4a8cbcf093dd15ef10
fd72ae964d38af503212d77eec889a03eebebf6b
217d4ebbaa373d647936465ac1ef01dea5444717295e01a0130a5561f9f9aa81

HTTP Headers

GET /xxrz/400x400/100/b9/cc/b9cc48061a385e4b3dfa38971cbd4d54/b9cc48061a385e4b3dfa38971cbd4d54.png HTTP/1.1
Host: img.andyday.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://andyday.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 22:32:25 GMT
content-type: image/png
content-length: 49549
last-modified: Thu, 14 Sep 2023 16:31:56 GMT
vary: Accept-Encoding
etag: W/"6503357c-88db"
x-cache: HIT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3292
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=a0eYv0TTq7xbsED8YW8J1lULal1tqLLdSPTGkf6vKtLSkoiUESPXhCnyaF5CApQFVHXm%2BNfYzW42b6cVIqotfjB%2ByB2HfjCyrNNzlsk56w9jZZYUkLeNpQjRZtSCGE7RQw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ebf2569c30b523-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js

172.217.21.170

200 OK

30 kB

URL GET HTTP/2
ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js
IP
172.217.21.170:443
ASN
#15169 GOOGLE

Requested by
https://andyday.tv/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
30 kB (30399 bytes)
Hash
a09e13ee94d51c524b7e2a728c7d4039
0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae
160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef

HTTP Headers

GET /ajax/libs/jquery/3.3.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://andyday.tv/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30399
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 00:40:41 GMT
expires: Sat, 03 May 2025 00:40:41 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 165104
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-YCDEF0T4KW

142.250.74.168

200 OK

102 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=G-YCDEF0T4KW
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://andyday.tv/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE
ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT

File type
JavaScript source, ASCII text, with very long lines (5955)
Size
102 kB (101545 bytes)
Hash
eb324581e057c743f9a73b80f1edccc6
837c16fbffd69c16fd0d4d3956087e93b4c3d501
7e6a005cb019478bcb3d4d7d59f1a09db31f5a75d052fd1ae1a7e387e0c9798d

HTTP Headers

GET /gtag/js?id=G-YCDEF0T4KW HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://andyday.tv/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 04 May 2024 22:32:25 GMT
expires: Sat, 04 May 2024 22:32:25 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 101545
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Montserrat:wght@300;400;500;600;700&display=swap

142.250.74.138

200 OK

647 B

URL GET HTTP/2
fonts.googleapis.com/css2?family=Montserrat:wght@300;400;500;600;700&display=swap
IP
142.250.74.138:443
ASN
#15169 GOOGLE

Requested by
https://andyday.tv/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
ASCII text
Size
647 B (647 bytes)
Hash
afcff0ab070eccf88381be75340a66e1
75451afaea739cd4c6560a795e732487e97cf14b
9a8364dad1c151156362a93903ed299fbeff8a50a53dc57b3011813f2865c194

HTTP Headers

GET /css2?family=Montserrat:wght@300;400;500;600;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://andyday.tv/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 04 May 2024 22:32:25 GMT
date: Sat, 04 May 2024 22:32:25 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

use.fontawesome.com/releases/v5.3.1/webfonts/fa-solid-900.woff2

172.67.142.245

200 OK

67 kB

URL GET HTTP/2
use.fontawesome.com/releases/v5.3.1/webfonts/fa-solid-900.woff2
IP
172.67.142.245:443
ASN
#13335 CLOUDFLARENET

Requested by
https://andyday.tv/
Certificate
IssuerCloudflare, Inc.
Subjectuse.fontawesome.com
FingerprintCB:BE:6B:C4:5F:DF:18:7A:C3:AD:BF:6C:40:36:18:9F:E2:99:7F:78
ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 10 Oct 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 67400, version 1.0
Size
67 kB (67400 bytes)
Hash
14a08198ec7d1eb96d515362293fed36
965d78c34637d1bdab6277805faecb6caa959669
ca3ea16761b7d443c64cfd99dd1cf8aa84790a25bb4709582935956fe71d014d

HTTP Headers

GET /releases/v5.3.1/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://andyday.tv
DNT: 1
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 22:32:25 GMT
content-type: font/woff2
content-length: 67400
access-control-allow-origin: *
cache-control: max-age=31556926
etag: "14a08198ec7d1eb96d515362293fed36"
last-modified: Fri, 22 Sep 2023 01:45:31 GMT
vary: Origin, Accept-Encoding
cf-cache-status: HIT
age: 359554
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dr9E1aGtnARZq8pEAjmMXfu2GQDC4VtNJhsyyzeSRoApyz31sN7vMhAfxGYX88SIv8ZmjPKbkg4hdWr2UaTpx8emwYDFYkuWZCs33zsDQnO1qkcm30QNwU3%2B1bOSSZvIEBBeE2Ca"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ebf259fd22b515-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2

216.58.207.227

200 OK

33 kB

URL GET HTTP/2
fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://andyday.tv/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 33092, version 1.0
Size
33 kB (33092 bytes)
Hash
057478083c1d55ea0c2182b24f6dd72f
caf557cd276a76992084efc4c8857b66791a6b7f
bb2f90081933c0f2475883ca2c5cfee94e96d7314a09433fffc42e37f4cffd3b

HTTP Headers

GET /s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://andyday.tv
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33092
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:38:02 GMT
expires: Fri, 02 May 2025 02:38:02 GMT
cache-control: public, max-age=31536000
age: 244463
last-modified: Wed, 13 Sep 2023 22:51:58 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2

216.58.207.227

200 OK

33 kB

URL GET HTTP/2
fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://andyday.tv/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 33092, version 1.0
Size
33 kB (33092 bytes)
Hash
057478083c1d55ea0c2182b24f6dd72f
caf557cd276a76992084efc4c8857b66791a6b7f
bb2f90081933c0f2475883ca2c5cfee94e96d7314a09433fffc42e37f4cffd3b

HTTP Headers

GET /s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://andyday.tv
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33092
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:38:02 GMT
expires: Fri, 02 May 2025 02:38:02 GMT
cache-control: public, max-age=31536000
age: 244463
last-modified: Wed, 13 Sep 2023 22:51:58 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2

216.58.207.227

200 OK

33 kB

URL GET HTTP/2
fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://andyday.tv/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 33092, version 1.0
Size
33 kB (33092 bytes)
Hash
057478083c1d55ea0c2182b24f6dd72f
caf557cd276a76992084efc4c8857b66791a6b7f
bb2f90081933c0f2475883ca2c5cfee94e96d7314a09433fffc42e37f4cffd3b

HTTP Headers

GET /s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://andyday.tv
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33092
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:38:02 GMT
expires: Fri, 02 May 2025 02:38:02 GMT
cache-control: public, max-age=31536000
age: 244463
last-modified: Wed, 13 Sep 2023 22:51:58 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fodsoack.com/tag.min.js

139.45.197.244

200 OK

28 kB

URL GET HTTP/2
fodsoack.com/tag.min.js
IP
139.45.197.244:443
ASN
#9002 RETN Limited

Requested by
https://andyday.tv/
Certificate
IssuerLet's Encrypt
Subjectfodsoack.com
FingerprintED:F6:A3:34:75:32:D9:0C:2B:1C:F4:12:2B:2E:B1:F5:91:87:60:88
ValiditySat, 16 Mar 2024 05:07:39 GMT - Fri, 14 Jun 2024 05:07:38 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
28 kB (28334 bytes)
Hash
ae155af4fc0005bd4faab65e5c1cca00
4da21aabdd22446a02c50bded5c52d74ffa102d8
0c8f928eeb6c914b37b422cc7205f36aff66c2db7522e4ee20ec887606f4dc1c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tag.min.js HTTP/1.1
Host: fodsoack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://andyday.tv/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 22:32:25 GMT
content-type: text/javascript; charset=utf-8
content-length: 28334
content-encoding: br
x-trace-id: 3dcc30663bbed50d2f13baad5205db2c
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
accept-ranges: bytes
last-modified: Sat, 04 May 2024 16:54:49 GMT
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2

216.58.207.227

200 OK

33 kB

URL GET HTTP/2
fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://andyday.tv/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 33092, version 1.0
Size
33 kB (33092 bytes)
Hash
057478083c1d55ea0c2182b24f6dd72f
caf557cd276a76992084efc4c8857b66791a6b7f
bb2f90081933c0f2475883ca2c5cfee94e96d7314a09433fffc42e37f4cffd3b

HTTP Headers

GET /s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://andyday.tv
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33092
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:38:02 GMT
expires: Fri, 02 May 2025 02:38:02 GMT
cache-control: public, max-age=31536000
age: 244464
last-modified: Wed, 13 Sep 2023 22:51:58 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

img.andyday.tv/xxrz/100x100/100/81/94/819444f6a143586ae5a5cd5f79ad7504/819444f6a143586ae5a5cd5f79ad7504.png

188.114.96.1

200 OK

13 kB

URL GET HTTP/3
img.andyday.tv/xxrz/100x100/100/81/94/819444f6a143586ae5a5cd5f79ad7504/819444f6a143586ae5a5cd5f79ad7504.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://andyday.tv/
Certificate
IssuerGoogle Trust Services LLC
Subjectandyday.tv
Fingerprint15:60:71:25:61:F0:C4:9E:41:1C:DD:B4:F7:DC:CF:3E:B5:96:7C:9C
ValiditySat, 09 Mar 2024 05:17:59 GMT - Fri, 07 Jun 2024 05:17:58 GMT

File type
PNG image data, 100 x 100, 8-bit/color RGBA, interlaced
Size
13 kB (13368 bytes)
Hash
26537bfe5746c657075455c8203d713b
a14a6cbd1ca39e346bbc26682d7f296f84ea3296
0d08e01790ffb822b17d558a7f1201b2be7a167fbd0a1d3bc58c39b7ed77be7b

HTTP Headers

GET /xxrz/100x100/100/81/94/819444f6a143586ae5a5cd5f79ad7504/819444f6a143586ae5a5cd5f79ad7504.png HTTP/1.1
Host: img.andyday.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://andyday.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 22:32:26 GMT
content-type: image/png
content-length: 13368
last-modified: Thu, 14 Sep 2023 16:31:56 GMT
vary: Accept-Encoding
etag: W/"6503357c-25c4"
x-cache: HIT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5337
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AVXb%2B5%2F07%2BqJd2Xu1FRUqnEX2GcSftxcPkO8ExYDrGFzTQhLVpUReUqh2gKJKeXjRMTJ0EVlikSkW8NHVBdN%2F%2BrpPVqNzkmFaveB1d8no1Wmn5d6R7nG9HyuU%2Baaxj3NbA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ebf25f0f7256c4-OSL
alt-svc: h3=":443"; ma=86400

andyday.tv/ajax/verify?domain=andyday.tv

172.67.198.2

200 OK

15 B

URL GET HTTP/3
andyday.tv/ajax/verify?domain=andyday.tv
IP
172.67.198.2:443
ASN
#13335 CLOUDFLARENET

Requested by
https://andyday.tv/
Certificate
IssuerGoogle Trust Services LLC
Subjectandyday.tv
Fingerprint15:60:71:25:61:F0:C4:9E:41:1C:DD:B4:F7:DC:CF:3E:B5:96:7C:9C
ValiditySat, 09 Mar 2024 05:17:59 GMT - Fri, 07 Jun 2024 05:17:58 GMT

File type
JSON text data
Size
15 B (15 bytes)
Hash
28ec1eee5f4049e3c4f2135069c1d2c8
3505519507ca1c2a089c46e100b80408ca278421
edc48cd3b0bc4fa7ba23aad40b8508a17d370ca38be174bae2a2f64634e65a2b

HTTP Headers

GET /ajax/verify?domain=andyday.tv HTTP/1.1
Host: andyday.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://andyday.tv/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 22:32:26 GMT
content-type: application/json; charset=utf-8
content-length: 15
x-dns-prefetch-control: on
expect-ct: max-age=0
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff, nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 0, 1; mode=block
content-language: en
etag: W/"f-NQVRlQfKHCoInEbhALgECMonhCE"
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=q9PwPo34sEhggFaEtmYCpMoXSsShiAprvZt2fkebWkiioKqbEhu5y5Z6wQTeq%2FBkOfO5S75uTR0woOoNK84ml5nSPwKOoafMV%2B%2Fks80z05FsT6UJmI8esce7sw%2Fd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ebf25f1b07b518-OSL
alt-svc: h3=":443"; ma=86400

stackpath.bootstrapcdn.com/bootstrap/4.4.1/css/bootstrap.min.css

104.18.11.207

200 OK

160 kB

URL GET HTTP/2
stackpath.bootstrapcdn.com/bootstrap/4.4.1/css/bootstrap.min.css
IP
104.18.11.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://andyday.tv/
Certificate
IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63
ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT

File type
ASCII text, with very long lines (65324)
Size
160 kB (159515 bytes)
Hash
7cc40c199d128af6b01e74a28c5900b0
d305110fb79113a961394b433d851a3410342b8c
2ff5b959fa9f6b4b1d04d20a37d706e90039176ab1e2a202994d9580baeebfd6

HTTP Headers

GET /bootstrap/4.4.1/css/bootstrap.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://andyday.tv/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 22:32:25 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"7cc40c199d128af6b01e74a28c5900b0"
last-modified: Mon, 25 Jan 2021 22:04:09 GMT
cdn-cachedat: 10/31/2023 19:00:00
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1078
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 4cfc9bfb6c056c31a4ee9b65db48c62b
cdn-cache: HIT
cf-cache-status: HIT
age: 368083
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87ebf2564e5b1bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

andyday.tv/css/group_1/theme_1/home.css?v=0.3

172.67.198.2

200 OK

5.8 kB

URL GET HTTP/3
andyday.tv/css/group_1/theme_1/home.css?v=0.3
IP
172.67.198.2:443
ASN
#13335 CLOUDFLARENET

Requested by
https://andyday.tv/
Certificate
IssuerGoogle Trust Services LLC
Subjectandyday.tv
Fingerprint15:60:71:25:61:F0:C4:9E:41:1C:DD:B4:F7:DC:CF:3E:B5:96:7C:9C
ValiditySat, 09 Mar 2024 05:17:59 GMT - Fri, 07 Jun 2024 05:17:58 GMT

File type
ASCII text, with very long lines (5853), with no line terminators
Size
5.8 kB (5776 bytes)
Hash
52ff1f6770198c6a2cff73a209801cdc
9cf5b63d4d15fd26955b7ff41b74e00a8a5a97c3
19199ca3dc195fae227cd97ad0ed45e495326a0c0c549376d839dc625ee61053

HTTP Headers

GET /css/group_1/theme_1/home.css?v=0.3 HTTP/1.1
Host: andyday.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://andyday.tv/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 04 May 2024 22:32:25 GMT
content-type: text/css; charset=UTF-8
x-dns-prefetch-control: on
expect-ct: max-age=0
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff, nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 0, 1; mode=block
cache-control: public, max-age=2592000
last-modified: Thu, 06 Jul 2023 17:27:13 GMT
etag: W/"1690-1892c3e641d"
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 363823
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=G%2FtMZZiRX1zZbDynNCVqY69PbvhmlmF8OwRS8N2MQLU%2FP050gt%2BjfRCghd4fgAyyUOvWMszG%2BbI434yrQgKmHH8zvMmhWlfTRPrUVHCEFvCzY4FclwO722EP5G%2FH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ebf2560b02b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

andyday.tv/js/group_1/app.min.js?v=0.1

172.67.198.2

200 OK

28 kB

URL GET HTTP/3
andyday.tv/js/group_1/app.min.js?v=0.1
IP
172.67.198.2:443
ASN
#13335 CLOUDFLARENET

Requested by
https://andyday.tv/
Certificate
IssuerGoogle Trust Services LLC
Subjectandyday.tv
Fingerprint15:60:71:25:61:F0:C4:9E:41:1C:DD:B4:F7:DC:CF:3E:B5:96:7C:9C
ValiditySat, 09 Mar 2024 05:17:59 GMT - Fri, 07 Jun 2024 05:17:58 GMT

File type
JavaScript source, ASCII text, with very long lines (27615), with no line terminators
Size
28 kB (27615 bytes)
Hash
6de46a7fa9c8a9bf98dc4722f4723db0
9db905f1924b05d14f28adcf0d923e3042980690
6b2da9a037c78cfb5c0347bc234babb63abfe0f15dc755fdb0e092a572bd0a09

HTTP Headers

GET /js/group_1/app.min.js?v=0.1 HTTP/1.1
Host: andyday.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://andyday.tv/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 04 May 2024 22:32:25 GMT
content-type: application/javascript; charset=UTF-8
x-dns-prefetch-control: on
expect-ct: max-age=0
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff, nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 0, 1; mode=block
cache-control: public, max-age=2592000
last-modified: Thu, 06 Jul 2023 17:26:29 GMT
etag: W/"6bdf-1892c3db6ed"
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 363874
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4cO%2Fj7DQFKr3SBol%2FGDKyHBLykrDxUoPQm7ql8jfepYoTa3FdbwfpIrGTyInm4gUWc1y1NMrpjBkvm7lEwo5NBFWfmet58a1DrVKjn2sHEwg9g0Awx%2B6iRC3y0RL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ebf2563b20b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

andyday.tv/

172.67.198.2

200 OK

0 B

URL HEAD HTTP/3
andyday.tv/
IP
172.67.198.2:443
ASN
#13335 CLOUDFLARENET

Requested by
https://andyday.tv/
Certificate
IssuerGoogle Trust Services LLC
Subjectandyday.tv
Fingerprint15:60:71:25:61:F0:C4:9E:41:1C:DD:B4:F7:DC:CF:3E:B5:96:7C:9C
ValiditySat, 09 Mar 2024 05:17:59 GMT - Fri, 07 Jun 2024 05:17:58 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

HEAD / HTTP/1.1
Host: andyday.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://andyday.tv/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 04 May 2024 22:32:25 GMT
x-dns-prefetch-control: on
expect-ct: max-age=0
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff, nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 0, 1; mode=block
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4QFF6vXuor73TD7Qsyc4L8W8JxemrsSAg6T3Cl1TkbcQxBZq4ZWmRiWB8t0VhFoxh4HxSTHVpAu9XfJEE0h%2F1Q4nq0JVs6MuWZnWqqMKSduhcI0urJxif1V7BaDA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ebf2592d99b518-OSL
alt-svc: h3=":443"; ma=86400

andyday.tv/

172.67.198.2

200 OK

77 kB

URL User Request GET HTTP/2
andyday.tv/
IP
172.67.198.2:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectandyday.tv
Fingerprint15:60:71:25:61:F0:C4:9E:41:1C:DD:B4:F7:DC:CF:3E:B5:96:7C:9C
ValiditySat, 09 Mar 2024 05:17:59 GMT - Fri, 07 Jun 2024 05:17:58 GMT

File type

Size
77 kB (77377 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: andyday.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 22:32:24 GMT
content-type: text/html; charset=utf-8
x-dns-prefetch-control: on
expect-ct: max-age=0
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff, nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 0, 1; mode=block
content-language: en
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=m%2FjpAuRm3oG3P3XfTLTpSMQ8OTF6Qt36pYZVMXIOB5zt%2FYSESTyGq%2BoBxVlRWyqk%2F%2FkYAdbDpiYyfepRVZujLPVn2%2F2pSWuJ%2BJpTduE41pE0OMYIpeF9AHG3c9oT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ebf252bdbe568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

use.fontawesome.com/releases/v5.3.1/css/all.css

172.67.142.245

200 OK

49 kB

URL GET HTTP/2
use.fontawesome.com/releases/v5.3.1/css/all.css
IP
172.67.142.245:443
ASN
#13335 CLOUDFLARENET

Requested by
https://andyday.tv/
Certificate
IssuerCloudflare, Inc.
Subjectuse.fontawesome.com
FingerprintCB:BE:6B:C4:5F:DF:18:7A:C3:AD:BF:6C:40:36:18:9F:E2:99:7F:78
ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 10 Oct 2024 23:59:59 GMT

File type
ASCII text, with very long lines (48464)
Size
49 kB (48649 bytes)
Hash
10519cfd3206802f58315b877a9beab5
03232d7095b4a14b88810a0ffe76ae50726c23c6
604dcf1f11698655f75046bb92f98aaa9477e1c16b01c5fc415e78794393ffb9

HTTP Headers

GET /releases/v5.3.1/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://andyday.tv/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 22:32:25 GMT
content-type: text/css
cache-control: max-age=31556926
etag: W/"10519cfd3206802f58315b877a9beab5"
last-modified: Fri, 22 Sep 2023 01:45:29 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 368093
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ReTaDWQnu9eopEgVks4GBPxWyqf7vXBijI6MMo2goIuoKccLCM%2FjdzXXGzV%2BdmSt5STOqWsVBm6NoXOncKNlGk7oFE6avjvS4dZ9jWIeOPPn0rw1tNsm22BH4yxDgByyLDrEZFjL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ebf257084156a8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

maxcdn.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js

104.18.11.207

200 OK

51 kB

URL GET HTTP/2
maxcdn.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js
IP
104.18.11.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://andyday.tv/
Certificate
IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63
ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT

File type
JavaScript source, ASCII text, with very long lines (50758)
Size
51 kB (51039 bytes)
Hash
67176c242e1bdc20603c878dee836df3
27a71b00383d61ef3c489326b3564d698fc1227c
56c12a125b021d21a69e61d7190cefa168d6c28ce715265cea1b3b0112d169c4

HTTP Headers

GET /bootstrap/4.1.3/js/bootstrap.min.js HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://andyday.tv/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 22:32:25 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"67176c242e1bdc20603c878dee836df3"
last-modified: Mon, 25 Jan 2021 22:04:06 GMT
cdn-cachedat: 10/31/2023 18:58:40
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1048
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 96836f9a16ad736eafb4dde61f94079f
cdn-cache: HIT
cf-cache-status: HIT
age: 354024
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87ebf2568ea01bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

fodsoack.com/5/7391735/?oo=1&aab=1

139.45.197.244

200 OK

2.8 kB

URL GET HTTP/2
fodsoack.com/5/7391735/?oo=1&aab=1
IP
139.45.197.244:443
ASN
#9002 RETN Limited

Requested by
https://andyday.tv/
Certificate
IssuerLet's Encrypt
Subjectfodsoack.com
FingerprintED:F6:A3:34:75:32:D9:0C:2B:1C:F4:12:2B:2E:B1:F5:91:87:60:88
ValiditySat, 16 Mar 2024 05:07:39 GMT - Fri, 14 Jun 2024 05:07:38 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (3083), with no line terminators
Size
2.8 kB (2839 bytes)
Hash
860f236a57a59644ebab07de61beee95
8e0667a3e526b02eae7a99d88f15a799d9c0dfd9
aa249ccefc5cf0bab9d9d55b351c852db6df4558bf584968b42cb7f8d08d94b6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /5/7391735/?oo=1&aab=1 HTTP/1.1
Host: fodsoack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://andyday.tv
DNT: 1
Connection: keep-alive
Referer: https://andyday.tv/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 22:32:25 GMT
content-type: application/json
x-trace-id: f363ad1cccf9b423dcff6a11602eb175
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://yonmewon.com>; rel="preconnect dns-prefetch",<https://sr7pv7n5x.com>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://andyday.tv
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=0080522c6f6e47d3eab8089791b9374d; expires=Sun, 04 May 2025 22:32:25 GMT; path=/; secure; SameSite=None
oaidts=1714861945; expires=Sun, 04 May 2025 22:32:25 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

andyday.tv/ajax/login-state

172.67.198.2

200 OK

291 B

URL GET HTTP/3
andyday.tv/ajax/login-state
IP
172.67.198.2:443
ASN
#13335 CLOUDFLARENET

Requested by
https://andyday.tv/
Certificate
IssuerGoogle Trust Services LLC
Subjectandyday.tv
Fingerprint15:60:71:25:61:F0:C4:9E:41:1C:DD:B4:F7:DC:CF:3E:B5:96:7C:9C
ValiditySat, 09 Mar 2024 05:17:59 GMT - Fri, 07 Jun 2024 05:17:58 GMT

File type
HTML document, ASCII text, with very long lines (328), with no line terminators
Size
291 B (291 bytes)
Hash
a2cbfe314aad90eb1495a55f9b17eaa3
23be0c8498d2dad4b2f53c9b2bfcf66cef553e35
3c92def4fba947fc346a7b10b49c94cb9b20d23522d9fea4306d736f58540049

HTTP Headers

GET /ajax/login-state HTTP/1.1
Host: andyday.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://andyday.tv/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 04 May 2024 22:32:26 GMT
content-type: application/json; charset=utf-8
x-dns-prefetch-control: on
expect-ct: max-age=0
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff, nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 0, 1; mode=block
content-language: en
etag: W/"123-PAQXid/TKA5MRawKtUmEVbPbJ/M"
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TkN4qDZ4G8dvyQJ8sxwezDR30rPeATgqxFwwqsm%2B40EX2SAnnX8YjsLDACJm0rBdnWg2%2BHW7%2FfE%2FoelqqYK7yvmQSAJbSShZjeKHD9c5JrSNzB6H28aASg57ybob"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ebf25f0b06b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (20)

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations