Report - cuu5i8.mcgo2.com/visit/22313d5f-c3f3-4e94-ab96-3e6592ef1468

Report Overview

Visited public
2023-12-21 08:54:54
Tags
URL
cuu5i8.mcgo2.com/visit/22313d5f-c3f3-4e94-ab96-3e6592ef1468
Finishing URL
filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D#
IP / ASN
35.241.59.47
#15169 GOOGLE
Title
+91 895371XXXX - (1) New Message

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
filedownloads.xyz	unknown	2023-11-19	2023-11-19 18:14:13	2023-12-02 07:57:48	11 kB	410 kB	185.77.97.118
bujerdaz.com	unknown	2022-10-03	2022-10-03 18:42:35	2023-12-20 12:29:43	1.0 kB	28 kB	139.45.197.250
d12n3uyt9o8zmb.cloudfront.net	unknown	2008-04-25	2022-12-09 22:55:32	2023-04-04 18:10:52	459 B	0 B	0.0.0.0
cuu5i8.mcgo2.com	unknown	2023-06-04	2023-12-13 17:09:11	2023-12-21 09:54:19	525 B	1.7 kB	35.241.59.47

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-12-20	medium	bujerdaz.com	Sinkholed
2023-12-20	medium	bujerdaz.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (16)

	URL	From	Size	First Seen	Last Seen
	filedownloads.xyz/chat/d12n3uyt9o8zmb.cloudfront.net/4/18/js/jquery-3.5.1.min.js	ScriptElement	90 kB	2023-03-07	2025-05-04
Pretty URL filedownloads.xyz/chat/d12n3uyt9o8zmb.cloudfront.net/4/18/js/jquery-3.5.1.min.js IP 185.77.97.118 ASN #57844 SPDNet Telekomunikasyon Hizmetleri Bilgi Teknolojileri Taahhut Sanayi Ve Ticaret A.S. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-04 20:58 Times Seen108009 Hash dc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d Loading...

	filedownloads.xyz/chat/d12n3uyt9o8zmb.cloudfront.net/4/18/js/sweetalert2.js	ScriptElement	73 kB	2023-03-13	2024-10-11
Pretty URL filedownloads.xyz/chat/d12n3uyt9o8zmb.cloudfront.net/4/18/js/sweetalert2.js IP 185.77.97.118 ASN #57844 SPDNet Telekomunikasyon Hizmetleri Bilgi Teknolojileri Taahhut Sanayi Ve Ticaret A.S. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 02:12 Last Seen2024-10-11 09:15 Times Seen89 Hash 268606def26c8543ec42bc240b1afe62 c3561bb353beda11f7a8166c9182617357dc0e3e bb89b53910382a90727cf0d54a73eca401ed07846f38b9f49df2f77c1d5b98bd Loading...

	filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D	ScriptElement	154 B	2023-03-07	2024-08-21
Pretty URL filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D IP 185.77.97.118 ASN #57844 SPDNet Telekomunikasyon Hizmetleri Bilgi Teknolojileri Taahhut Sanayi Ve Ticaret A.S. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:08 Last Seen2024-08-21 07:57 Times Seen33 Hash f81dfa025f229fb38f1308b2d8c8f95d 3afde4e1aeec758e9a41133551c67262a3e3b4d3 ca6be2213e129c3c56cf1b9d059fae73e0d0d05df994bfbecab02ee69f1e1d8a Loading...

	filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D#	ScriptElement	119 B	2023-03-07	2024-10-27
Pretty URL filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D# IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 13:21 Last Seen2024-10-27 02:08 Times Seen168 Hash 48dc048b345f50a225c2019a98f918b5 f4f2af7830bb9c654ea554ea0e32abea4f92f7ef 6c837667ffa6c853c5c0e0835855195571cd76b0d70bafe8dc27346b5e98b6e6 Loading...

	filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D#	ScriptElement	434 B	2023-03-07	2024-09-19
Pretty URL filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D# IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 16:32 Last Seen2024-09-19 23:00 Times Seen41 Hash 660151585c709b25e4d7ed6bbc2ef980 0bddb4c646d7713e6be05082dc662152d527f259 2555547540b22cc08bd594241dd9257cf18195db9e7f7ab9f9d3b569d3e5e9a9 Loading...

	filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D#	ScriptElement	285 B	2023-03-07	2024-10-11
Pretty URL filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D# IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:01 Last Seen2024-10-11 09:15 Times Seen209 Hash e2757aaa653070072bd0b1acaf676110 f5b478f7ba58fba4297f6f69d7f55e7f1d3bd979 92476d36067b74c7152b96c0178e2a9fb6e2243a1c32a69508579dfc6724e91d Loading...

	filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D#	ScriptElement	390 B	2024-08-20	2024-08-20
Pretty URL filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D# IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 15:22 Last Seen2024-08-20 15:22 Times Seen1 Hash 2df1da306d6196e8556183cdf272c422 e1ecbba5722b03a16b78de8ee96e70994547ef4d 889791aee1642833bb798a906f3438a63478aaf6431c1943f915d0e1ca891db5 Loading...

	filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D#	ScriptElement	130 B	2024-08-20	2024-08-20
Pretty URL filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D# IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 15:22 Last Seen2024-08-20 15:22 Times Seen1 Hash d79d781630d21b3270bd4f9a9a6209df 94338385fb27ae0e51546fe6f86eb68b469f877a 8d8b7f9be1894ebb52a55eae29f2f4f6991c157cce90767379728d96e4771ec8 Loading...

	bujerdaz.com/pfe/current/micro.tag.min.js?z=6734522&sw=/sw-check-permissions-e6842.js	ScriptElement	27 kB	2023-11-02	2024-08-20
Pretty URL bujerdaz.com/pfe/current/micro.tag.min.js?z=6734522&sw=/sw-check-permissions-e6842.js IP 139.45.197.250 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-02 09:44 Last Seen2024-08-20 21:23 Times Seen8998 Hash 5ccd2d5882a06f293d07510ac91c92e6 b44dc0eaa03981adb70d3313e728f9359c1d21c1 9fc2aa21f3a7bfe66783d35fdbb48147f73e72a41f87aea848f64a8cb4518eba Loading...

	filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D#	ScriptElement	497 B	2023-12-19	2024-08-20
Pretty URL filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D# IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-19 12:06 Last Seen2024-08-20 15:33 Times Seen2 Hash b70103c507e343f37cb8f19f858a8fb9 d3c2740128926236dc458edeef60a6d00cabc53d b71dfa508f64c9c17d55f03396f0ec5ff7d29f6b3ad814c6477b1bbd603c9fa4 Loading...

	filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D#	ScriptElement	35 B	2023-03-07	2024-10-11
Pretty URL filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D# IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:01 Last Seen2024-10-11 09:15 Times Seen208 Hash cc5c8ffc2680ded8d7bdc9a4b45b4893 bad29cd3be890576b90d4511df9c0032ea3dc357 4164eae1ec20052899fec5c5b455f8768f59c87171379d5096bc574e607fa352 Loading...

	filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D#	ScriptElement	71 B	2023-03-13	2024-10-11
Pretty URL filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D# IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-13 02:12 Last Seen2024-10-11 09:15 Times Seen193 Hash 5ff3e4ad0a32b8c13dbae7fdc2a06cfc 43c8e15d36372b66ad5801cb720e56d93462dc29 bfb3a0db851344f56410c55b53eb6b5408358784383e7ae14bf4746eea09001d Loading...

	filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D#	ScriptElement	384 B	2023-03-13	2024-08-21
Pretty URL filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D# IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-13 02:12 Last Seen2024-08-21 07:57 Times Seen159 Hash a3f92b7c9a6d87db3d8c5ae7c537d178 0018d18ca63c2bfe32726e7435c5380d18ac3e82 6c2c515444d4acd529d6b6cb866b76624e0b6cc1908c25b632d181ce426319d3 Loading...

	filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D#	ScriptElement	113 B	2024-08-20	2024-08-20
Pretty URL filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D# IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 15:22 Last Seen2024-08-20 15:22 Times Seen1 Hash fdb64fd0667362e44ddc2700cc2ee55d 1ddc61e1d1163c6aeb8ef03ca29141a6202cf01b b2f1f99d0449364ccaeaf7e9cf5e36d01d6287e92df3f7b5a3dcc2a77726c942 Loading...

	filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D#	ScriptElement	914 B	2023-12-19	2024-08-20
Pretty URL filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D# IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-19 12:06 Last Seen2024-08-20 15:33 Times Seen2 Hash 7062a70339d77ec2a5683127c6539a89 79fb96f2039639f63d47d5649a57ebc07c5ef6b0 f10a40cde107b54316edd96dba42cfd0d5738ae273b5f5b1f7b405e9b9b5fbbc Loading...

		Size	First Seen	Last Seen
	#1 Write - c421dfb87204fb8c407f0b495bea943c	5 B	2024-08-20 15:22	2024-08-20 15:22
Pretty Observations First Seen2024-08-20 15:22 Last Seen2024-08-20 15:22 Times Seen1 Hash c421dfb87204fb8c407f0b495bea943c e21eb273bbed88e93e94a334d133e3385d6d3bce 1f4bb09128f073cb8d52f333a08e78ec096da3a6ae58a80af46f563039063c43 Loading...

HTTP Transactions (22)

URL IP Response Size

cuu5i8.mcgo2.com/visit/22313d5f-c3f3-4e94-ab96-3e6592ef1468

35.241.59.47

302 Found

0 B

URL User Request GET HTTP/2
cuu5i8.mcgo2.com/visit/22313d5f-c3f3-4e94-ab96-3e6592ef1468
IP
35.241.59.47:443
ASN
#15169 GOOGLE

Certificate
IssuerGoogle Trust Services LLC
Subject*.mcgo2.com
Fingerprint8E:7E:4A:0F:30:71:86:CA:C8:9C:DA:CC:24:23:F0:8F:06:96:F8:E3
ValidityTue, 12 Dec 2023 05:35:26 GMT - Mon, 11 Mar 2024 06:31:21 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /visit/22313d5f-c3f3-4e94-ab96-3e6592ef1468 HTTP/1.1
Host: cuu5i8.mcgo2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
server: nginx
location: https://filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Full-Version,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Reduced
x-robots-tag: noindex, nofollow, noarchive
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: mcdata=c%253D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%253D1-0-0..m%253D01hj5sakj8x14czdj59qv050k6..l%253D17031488671..e%253D; expires=Thu, 28-Dec-2023 08:54:27 GMT; path=/; secure; httponly; samesite=none
mc_uniqv_22313d5f-c3f3-4e94-ab96-3e6592ef1468=1; expires=Thu, 28-Dec-2023 08:54:27 GMT; path=/; secure; httponly; samesite=none
mc_freq_22313d5f-c3f3-4e94-ab96-3e6592ef1468=60%253D1.1703148867..21600%253D1.1703148867..43200%253D1.1703148867..86400%253D1.1703148867..259200%253D1.1703148867..604800%253D1.1703148867..2592000%253D1.1703148867..7776000%253D1.1703148867..15552000%253D1.1703148867; expires=Tue, 18-Jun-2024 08:54:37 GMT; path=/; secure; httponly; samesite=none
mc_freq=60%253D1.1703148867..21600%253D1.1703148867..43200%253D1.1703148867..86400%253D1.1703148867..259200%253D1.1703148867..604800%253D1.1703148867..2592000%253D1.1703148867..7776000%253D1.1703148867..15552000%253D1.1703148867; expires=Tue, 18-Jun-2024 08:54:37 GMT; path=/; secure; httponly; samesite=none
content-type: text/html
date: Thu, 21 Dec 2023 08:54:27 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D

185.77.97.118

200 OK

6.9 kB

URL User Request GET HTTP/2
filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D
IP
185.77.97.118:443
ASN
#57844 SPDNet Telekomunikasyon Hizmetleri Bilgi Teknolojileri Taahhut Sanayi Ve Ticaret A.S.

Certificate
IssuerZeroSSL
Subjectfiledownloads.xyz
FingerprintFD:0A:C9:F4:CB:A1:91:C0:E8:47:64:77:78:A1:F5:DA:8A:EE:07:76
ValiditySun, 19 Nov 2023 00:00:00 GMT - Sat, 17 Feb 2024 23:59:59 GMT

File type
HTML document, Unicode text, UTF-8 (with BOM) text, with very long lines (2039), with CRLF line terminators
Size
6.9 kB (6938 bytes)
Hash
01a194501100624f0b9aad83d7706370
68b1f056e5d0885a40e13e5abbd6c6d1f269506f
6acef3fd1ef5e22ee6b0b7b06ed4282eff510d018545645f7e48ca463cc71925

HTTP Headers

GET /chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D HTTP/1.1
Host: filedownloads.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: hcdn
date: Thu, 21 Dec 2023 08:54:27 GMT
content-type: text/html; charset=UTF-8
content-length: 6938
x-powered-by: PHP/7.4.33
content-encoding: br
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 61b9e27cf06113cec06343fd9cd511e0-fast-edge3
x-hcdn-cache-status: DYNAMIC
x-hcdn-upstream-rt: 0.412
accept-ranges: bytes
X-Firefox-Spdy: h2

filedownloads.xyz/chat/d12n3uyt9o8zmb.cloudfront.net/4/18/css/style.css

185.77.97.118

200 OK

2.7 kB

URL GET HTTP/3
filedownloads.xyz/chat/d12n3uyt9o8zmb.cloudfront.net/4/18/css/style.css
IP
185.77.97.118:443
ASN
#57844 SPDNet Telekomunikasyon Hizmetleri Bilgi Teknolojileri Taahhut Sanayi Ve Ticaret A.S.

Requested by
https://filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D
Certificate
IssuerZeroSSL
Subjectfiledownloads.xyz
FingerprintFD:0A:C9:F4:CB:A1:91:C0:E8:47:64:77:78:A1:F5:DA:8A:EE:07:76
ValiditySun, 19 Nov 2023 00:00:00 GMT - Sat, 17 Feb 2024 23:59:59 GMT

File type
assembler source, ASCII text, with CRLF line terminators
Size
2.7 kB (2723 bytes)
Hash
d5826b1f342ac06d6fac79b73607d666
0d93193430ceb006aaac7d129f066a807e9f6109
8a2349f7d325afbe475e3624bbe702328e981f7171b211552da9f12bec4604f8

HTTP Headers

GET /chat/d12n3uyt9o8zmb.cloudfront.net/4/18/css/style.css HTTP/1.1
Host: filedownloads.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: hcdn
date: Thu, 21 Dec 2023 08:54:28 GMT
content-type: text/css
content-length: 2723
cache-control: public, max-age=604800
expires: Thu, 28 Dec 2023 02:23:39 GMT
last-modified: Thu, 07 Dec 2023 08:10:42 GMT
etag: "3421-65717e02-5682407955c87177;br"
content-encoding: br
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
age: 23449
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: eaac9237361a1e9d5327c6967c760a00-fast-edge1
x-hcdn-cache-status: HIT
accept-ranges: bytes

filedownloads.xyz/chat/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css

185.77.97.118

200 OK

6.6 kB

URL GET HTTP/3
filedownloads.xyz/chat/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
IP
185.77.97.118:443
ASN
#57844 SPDNet Telekomunikasyon Hizmetleri Bilgi Teknolojileri Taahhut Sanayi Ve Ticaret A.S.

Requested by
https://filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D
Certificate
IssuerZeroSSL
Subjectfiledownloads.xyz
FingerprintFD:0A:C9:F4:CB:A1:91:C0:E8:47:64:77:78:A1:F5:DA:8A:EE:07:76
ValiditySun, 19 Nov 2023 00:00:00 GMT - Sat, 17 Feb 2024 23:59:59 GMT

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (30765)
Size
6.6 kB (6615 bytes)
Hash
ab2eca4b4b98875cf79aead360a35f2a
fbc95b426f3eaea13520458aef40ddd2ffd23726
b10049c39a8bdc82373204b1a9839ddf5aebda9a6e5f0c7745ef3f7e5fc8bf5a

HTTP Headers

GET /chat/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: filedownloads.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: hcdn
date: Thu, 21 Dec 2023 08:54:28 GMT
content-type: text/css
content-length: 6615
cache-control: public, max-age=604800
expires: Thu, 28 Dec 2023 02:23:39 GMT
last-modified: Thu, 07 Dec 2023 08:10:46 GMT
etag: "78d3-65717e06-b6e257c6b76089ab;br"
content-encoding: br
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
age: 23449
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 6b07a89a022e37c017074f398ff814a4-fast-edge1
x-hcdn-cache-status: HIT
accept-ranges: bytes

filedownloads.xyz/chat/img/profile3.webp

185.77.97.118

200 OK

5.2 kB

URL GET HTTP/3
filedownloads.xyz/chat/img/profile3.webp
IP
185.77.97.118:443
ASN
#57844 SPDNet Telekomunikasyon Hizmetleri Bilgi Teknolojileri Taahhut Sanayi Ve Ticaret A.S.

Requested by
https://filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D
Certificate
IssuerZeroSSL
Subjectfiledownloads.xyz
FingerprintFD:0A:C9:F4:CB:A1:91:C0:E8:47:64:77:78:A1:F5:DA:8A:EE:07:76
ValiditySun, 19 Nov 2023 00:00:00 GMT - Sat, 17 Feb 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 201x251, Scaling: [none]x[none], YUV color, decoders should clamp
Size
5.2 kB (5198 bytes)
Hash
cfcc62e8b4ac5953786b04f056dac380
a4418208a543815dab2f16982a98980993031171
668c71059370c529ba549ab06845745bb8f5597d0d05a0add6e402b7a1f86add

HTTP Headers

GET /chat/img/profile3.webp HTTP/1.1
Host: filedownloads.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: hcdn
date: Thu, 21 Dec 2023 08:54:28 GMT
content-type: image/webp
content-length: 5198
cache-control: public, max-age=604800
expires: Thu, 28 Dec 2023 02:23:39 GMT
last-modified: Thu, 07 Dec 2023 08:10:39 GMT
etag: "144e-65717dff-18fac87d28cc8794;;;"
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
age: 23449
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: f56deeff1622fa0a81cd7c6a50f17f26-fast-edge1
x-hcdn-cache-status: HIT
accept-ranges: bytes

filedownloads.xyz/chat/d12n3uyt9o8zmb.cloudfront.net/4/18/img/video-call.webp

185.77.97.118

200 OK

850 B

URL GET HTTP/3
filedownloads.xyz/chat/d12n3uyt9o8zmb.cloudfront.net/4/18/img/video-call.webp
IP
185.77.97.118:443
ASN
#57844 SPDNet Telekomunikasyon Hizmetleri Bilgi Teknolojileri Taahhut Sanayi Ve Ticaret A.S.

Requested by
https://filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D
Certificate
IssuerZeroSSL
Subjectfiledownloads.xyz
FingerprintFD:0A:C9:F4:CB:A1:91:C0:E8:47:64:77:78:A1:F5:DA:8A:EE:07:76
ValiditySun, 19 Nov 2023 00:00:00 GMT - Sat, 17 Feb 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
850 B (850 bytes)
Hash
4fa05ff20b738e86e5c77fbfc71bc6f5
0b8559ed417ed4c0eda4acec75a9dca494e7e004
c1d98f237cbeb27d2a8ec1b720a4bf84629cd42d1eff476412beb42f7d372e35

HTTP Headers

GET /chat/d12n3uyt9o8zmb.cloudfront.net/4/18/img/video-call.webp HTTP/1.1
Host: filedownloads.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: hcdn
date: Thu, 21 Dec 2023 08:54:28 GMT
content-type: image/webp
content-length: 850
cache-control: public, max-age=604800
expires: Thu, 28 Dec 2023 02:23:39 GMT
last-modified: Thu, 07 Dec 2023 08:10:43 GMT
etag: "352-65717e03-e0eacbb3fa7343fe;;;"
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
age: 23449
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: e612fd9c3d8d00a7a46006e83af100f5-fast-edge1
x-hcdn-cache-status: HIT
accept-ranges: bytes

filedownloads.xyz/chat/d12n3uyt9o8zmb.cloudfront.net/4/18/img/call.webp

185.77.97.118

200 OK

1.5 kB

URL GET HTTP/3
filedownloads.xyz/chat/d12n3uyt9o8zmb.cloudfront.net/4/18/img/call.webp
IP
185.77.97.118:443
ASN
#57844 SPDNet Telekomunikasyon Hizmetleri Bilgi Teknolojileri Taahhut Sanayi Ve Ticaret A.S.

Requested by
https://filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D
Certificate
IssuerZeroSSL
Subjectfiledownloads.xyz
FingerprintFD:0A:C9:F4:CB:A1:91:C0:E8:47:64:77:78:A1:F5:DA:8A:EE:07:76
ValiditySun, 19 Nov 2023 00:00:00 GMT - Sat, 17 Feb 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
1.5 kB (1484 bytes)
Hash
1331ba66dcf7095ae77f16de566e0388
d74ba876f5a959f23381971c9070d6ac1fa29886
29c70f7544406e1988c7d17f73f258f9b7a11b989a426ce3025ec585a3657677

HTTP Headers

GET /chat/d12n3uyt9o8zmb.cloudfront.net/4/18/img/call.webp HTTP/1.1
Host: filedownloads.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: hcdn
date: Thu, 21 Dec 2023 08:54:28 GMT
content-type: image/webp
content-length: 1484
cache-control: public, max-age=604800
expires: Thu, 28 Dec 2023 02:23:40 GMT
last-modified: Thu, 07 Dec 2023 08:10:43 GMT
etag: "5cc-65717e03-313d1f8f709f424;;;"
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
age: 23448
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 78f99de4c7bd8be81fe8d3ddd84017e0-fast-edge1
x-hcdn-cache-status: HIT
accept-ranges: bytes

filedownloads.xyz/chat/d12n3uyt9o8zmb.cloudfront.net/4/18/img/videoblur1.png

185.77.97.118

200 OK

2.4 kB

URL GET HTTP/3
filedownloads.xyz/chat/d12n3uyt9o8zmb.cloudfront.net/4/18/img/videoblur1.png
IP
185.77.97.118:443
ASN
#57844 SPDNet Telekomunikasyon Hizmetleri Bilgi Teknolojileri Taahhut Sanayi Ve Ticaret A.S.

Requested by
https://filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D
Certificate
IssuerZeroSSL
Subjectfiledownloads.xyz
FingerprintFD:0A:C9:F4:CB:A1:91:C0:E8:47:64:77:78:A1:F5:DA:8A:EE:07:76
ValiditySun, 19 Nov 2023 00:00:00 GMT - Sat, 17 Feb 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
2.4 kB (2432 bytes)
Hash
53cec73aff438287d150f6d69811fd45
77238c2d8208b8999f5038f502e7fc54934a7777
5a86d37a2b16d2d2de6a07d9d078985e5a8274139ef37d614025f390eacd90f4

HTTP Headers

GET /chat/d12n3uyt9o8zmb.cloudfront.net/4/18/img/videoblur1.png HTTP/1.1
Host: filedownloads.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: hcdn
date: Thu, 21 Dec 2023 08:54:28 GMT
content-type: image/webp
content-length: 2432
cache-control: public, max-age=604800
expires: Thu, 28 Dec 2023 08:49:34 GMT
x-hcdn-image-optimizer: f:webp q:85 w:1600
age: 293
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: a85eba7cbd3451f1ddae47db62634158-fast-edge1
x-hcdn-cache-status: HIT
accept-ranges: bytes

filedownloads.xyz/chat/d12n3uyt9o8zmb.cloudfront.net/4/18/img/video-camera.png

185.77.97.118

200 OK

336 B

URL GET HTTP/3
filedownloads.xyz/chat/d12n3uyt9o8zmb.cloudfront.net/4/18/img/video-camera.png
IP
185.77.97.118:443
ASN
#57844 SPDNet Telekomunikasyon Hizmetleri Bilgi Teknolojileri Taahhut Sanayi Ve Ticaret A.S.

Requested by
https://filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D
Certificate
IssuerZeroSSL
Subjectfiledownloads.xyz
FingerprintFD:0A:C9:F4:CB:A1:91:C0:E8:47:64:77:78:A1:F5:DA:8A:EE:07:76
ValiditySun, 19 Nov 2023 00:00:00 GMT - Sat, 17 Feb 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
336 B (336 bytes)
Hash
eb43ab9a20f4dde0d739f9673b3639cd
54b1e5954e6887a26bf50339a2d43b9bd9b81ec8
8c4feaafe2d7233ca7a6bed8797fef744b1cf9a64c33fd8b9ba2eb2555f69557

HTTP Headers

GET /chat/d12n3uyt9o8zmb.cloudfront.net/4/18/img/video-camera.png HTTP/1.1
Host: filedownloads.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: hcdn
date: Thu, 21 Dec 2023 08:54:28 GMT
content-type: image/webp
content-length: 336
cache-control: public, max-age=604800
expires: Thu, 28 Dec 2023 08:49:35 GMT
x-hcdn-image-optimizer: f:webp q:85 w:1600
age: 293
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: e9bf4c28169ca263d396284dd729a107-fast-edge1
x-hcdn-cache-status: HIT
accept-ranges: bytes

filedownloads.xyz/chat/img/oar2.webp

185.77.97.118

200 OK

33 kB

URL GET HTTP/3
filedownloads.xyz/chat/img/oar2.webp
IP
185.77.97.118:443
ASN
#57844 SPDNet Telekomunikasyon Hizmetleri Bilgi Teknolojileri Taahhut Sanayi Ve Ticaret A.S.

Requested by
https://filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D
Certificate
IssuerZeroSSL
Subjectfiledownloads.xyz
FingerprintFD:0A:C9:F4:CB:A1:91:C0:E8:47:64:77:78:A1:F5:DA:8A:EE:07:76
ValiditySun, 19 Nov 2023 00:00:00 GMT - Sat, 17 Feb 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 405x720, Scaling: [none]x[none], YUV color, decoders should clamp
Size
33 kB (33412 bytes)
Hash
d9fb0c4bb0b54465a4b5f6c70279f079
997f93910b8a80962a2087701e5ce5ea23eaa21e
05be48297084ca6e3ff456724a4417f0621cf15802364484394aa73bb32f72a9

HTTP Headers

GET /chat/img/oar2.webp HTTP/1.1
Host: filedownloads.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: hcdn
date: Thu, 21 Dec 2023 08:54:28 GMT
content-type: image/webp
content-length: 33412
cache-control: public, max-age=604800
expires: Thu, 28 Dec 2023 02:23:40 GMT
last-modified: Thu, 07 Dec 2023 08:10:39 GMT
etag: "8284-65717dff-6c8d6905bece1b5d;;;"
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
age: 23448
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 64a4e9fab0ea747066e2a06ca4946c02-fast-edge1
x-hcdn-cache-status: HIT
accept-ranges: bytes

filedownloads.xyz/chat/d12n3uyt9o8zmb.cloudfront.net/4/18/img/play-button.png

185.77.97.118

200 OK

1.1 kB

URL GET HTTP/3
filedownloads.xyz/chat/d12n3uyt9o8zmb.cloudfront.net/4/18/img/play-button.png
IP
185.77.97.118:443
ASN
#57844 SPDNet Telekomunikasyon Hizmetleri Bilgi Teknolojileri Taahhut Sanayi Ve Ticaret A.S.

Requested by
https://filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D
Certificate
IssuerZeroSSL
Subjectfiledownloads.xyz
FingerprintFD:0A:C9:F4:CB:A1:91:C0:E8:47:64:77:78:A1:F5:DA:8A:EE:07:76
ValiditySun, 19 Nov 2023 00:00:00 GMT - Sat, 17 Feb 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
1.1 kB (1058 bytes)
Hash
5f8861385897f89bda1b8b7eb8e9ad6d
b1b2e9efc940d4139cd73dc2827744131a84f1a5
484cda03c3d24ffe165ee8d30f26e2287cac46db2aa1e430714853c6f1770f3a

HTTP Headers

GET /chat/d12n3uyt9o8zmb.cloudfront.net/4/18/img/play-button.png HTTP/1.1
Host: filedownloads.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: hcdn
date: Thu, 21 Dec 2023 08:54:28 GMT
content-type: image/webp
content-length: 1058
cache-control: public, max-age=604800
expires: Thu, 28 Dec 2023 08:49:35 GMT
x-hcdn-image-optimizer: f:webp q:85 w:1600
age: 293
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 8d6ab0e806658747eedc894042e955af-fast-edge1
x-hcdn-cache-status: HIT
accept-ranges: bytes

filedownloads.xyz/chat/d12n3uyt9o8zmb.cloudfront.net/4/18/js/jquery-3.5.1.min.js

185.77.97.118

200 OK

30 kB

URL GET HTTP/3
filedownloads.xyz/chat/d12n3uyt9o8zmb.cloudfront.net/4/18/js/jquery-3.5.1.min.js
IP
185.77.97.118:443
ASN
#57844 SPDNet Telekomunikasyon Hizmetleri Bilgi Teknolojileri Taahhut Sanayi Ve Ticaret A.S.

Requested by
https://filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D
Certificate
IssuerZeroSSL
Subjectfiledownloads.xyz
FingerprintFD:0A:C9:F4:CB:A1:91:C0:E8:47:64:77:78:A1:F5:DA:8A:EE:07:76
ValiditySun, 19 Nov 2023 00:00:00 GMT - Sat, 17 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65451)
Size
30 kB (30026 bytes)
Hash
dc5e7f18c8d36ac1d3d4753a87c98d0a
c8e1c8b386dc5b7a9184c763c88d19a346eb3342
f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d

HTTP Headers

GET /chat/d12n3uyt9o8zmb.cloudfront.net/4/18/js/jquery-3.5.1.min.js HTTP/1.1
Host: filedownloads.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: hcdn
date: Thu, 21 Dec 2023 08:54:28 GMT
content-type: application/x-javascript
content-length: 30026
cache-control: public, max-age=604800
expires: Thu, 28 Dec 2023 02:23:39 GMT
last-modified: Thu, 07 Dec 2023 08:10:45 GMT
etag: "15d84-65717e05-9e605753820a1cd5;br"
content-encoding: br
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
age: 23449
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 5318d9f0679731e12feaed5136608a5a-fast-edge1
x-hcdn-cache-status: HIT
accept-ranges: bytes

filedownloads.xyz/chat/d12n3uyt9o8zmb.cloudfront.net/4/18/js/sweetalert2.js

185.77.97.118

200 OK

18 kB

URL GET HTTP/3
filedownloads.xyz/chat/d12n3uyt9o8zmb.cloudfront.net/4/18/js/sweetalert2.js
IP
185.77.97.118:443
ASN
#57844 SPDNet Telekomunikasyon Hizmetleri Bilgi Teknolojileri Taahhut Sanayi Ve Ticaret A.S.

Requested by
https://filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D
Certificate
IssuerZeroSSL
Subjectfiledownloads.xyz
FingerprintFD:0A:C9:F4:CB:A1:91:C0:E8:47:64:77:78:A1:F5:DA:8A:EE:07:76
ValiditySun, 19 Nov 2023 00:00:00 GMT - Sat, 17 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (48321), with CRLF line terminators
Size
18 kB (18357 bytes)
Hash
268606def26c8543ec42bc240b1afe62
c3561bb353beda11f7a8166c9182617357dc0e3e
bb89b53910382a90727cf0d54a73eca401ed07846f38b9f49df2f77c1d5b98bd

HTTP Headers

GET /chat/d12n3uyt9o8zmb.cloudfront.net/4/18/js/sweetalert2.js HTTP/1.1
Host: filedownloads.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: hcdn
date: Thu, 21 Dec 2023 08:54:28 GMT
content-type: application/x-javascript
content-length: 18357
cache-control: public, max-age=604800
expires: Thu, 28 Dec 2023 02:23:39 GMT
last-modified: Thu, 07 Dec 2023 08:10:45 GMT
etag: "11d68-65717e05-d8ba8347f031581a;br"
content-encoding: br
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
age: 23449
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 65ed5cda71b2ba5f29e5f936956f5b68-fast-edge1
x-hcdn-cache-status: HIT
accept-ranges: bytes

filedownloads.xyz/chat/css2?family=Open+Sans&display=swap

185.77.97.118

200 OK

242 B

URL GET HTTP/3
filedownloads.xyz/chat/css2?family=Open+Sans&display=swap
IP
185.77.97.118:443
ASN
#57844 SPDNet Telekomunikasyon Hizmetleri Bilgi Teknolojileri Taahhut Sanayi Ve Ticaret A.S.

Requested by
https://filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D
Certificate
IssuerZeroSSL
Subjectfiledownloads.xyz
FingerprintFD:0A:C9:F4:CB:A1:91:C0:E8:47:64:77:78:A1:F5:DA:8A:EE:07:76
ValiditySun, 19 Nov 2023 00:00:00 GMT - Sat, 17 Feb 2024 23:59:59 GMT

File type
Unicode text, UTF-8 (with BOM) text
Size
242 B (242 bytes)
Hash
390b74e2f1ea2d2b62636fd670445f37
d91e0f6c8e550e5a773908184271c026a3e945e0
8f16c3fff0a2d9f65c56054569e809a28ac59bc5c8c70fdd0f1c2a052a649857

HTTP Headers

GET /chat/css2?family=Open+Sans&display=swap HTTP/1.1
Host: filedownloads.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: hcdn
date: Thu, 21 Dec 2023 08:54:28 GMT
content-length: 242
last-modified: Thu, 07 Dec 2023 08:10:39 GMT
etag: "f2-65717dff-2b33a731998cf63a;;;"
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 32c8e5701eac99fd21cfaae07780175d-fast-edge1
x-hcdn-cache-status: DYNAMIC
x-hcdn-upstream-rt: 0.315
accept-ranges: bytes

filedownloads.xyz/chat/s/opensans/v36/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0C4n.ttf

185.77.97.118

200 OK

70 kB

URL GET HTTP/3
filedownloads.xyz/chat/s/opensans/v36/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0C4n.ttf
IP
185.77.97.118:443
ASN
#57844 SPDNet Telekomunikasyon Hizmetleri Bilgi Teknolojileri Taahhut Sanayi Ve Ticaret A.S.

Requested by
https://filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D
Certificate
IssuerZeroSSL
Subjectfiledownloads.xyz
FingerprintFD:0A:C9:F4:CB:A1:91:C0:E8:47:64:77:78:A1:F5:DA:8A:EE:07:76
ValiditySun, 19 Nov 2023 00:00:00 GMT - Sat, 17 Feb 2024 23:59:59 GMT

File type
TrueType Font data, 18 tables, 1st "GDEF", 14 names, Microsoft, language 0x409
Size
70 kB (69811 bytes)
Hash
dd7ca4f5cf9c67d1d028da5c01d67884
4387c5a4c1a4c5bcb5b9b0c67b4a9cab7b3faf26
325f509becc84d3f07bcc20775bee09691bdb24c236381f1508f3fb7cce00496

HTTP Headers

GET /chat/s/opensans/v36/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0C4n.ttf HTTP/1.1
Host: filedownloads.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://filedownloads.xyz/chat/css2?family=Open+Sans&display=swap
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: hcdn
date: Thu, 21 Dec 2023 08:54:28 GMT
content-type: application/x-font-ttf
content-length: 69811
cache-control: public, max-age=604800
expires: Thu, 28 Dec 2023 02:23:40 GMT
last-modified: Thu, 07 Dec 2023 08:10:42 GMT
etag: "1dd08-65717e02-98596f18475d922a;br"
content-encoding: br
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
age: 23448
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 9bceac4e6c73e51ba4de0bd2df95ee8f-fast-edge1
x-hcdn-cache-status: HIT
accept-ranges: bytes

filedownloads.xyz/chat/d12n3uyt9o8zmb.cloudfront.net/4/18/css/bg-chat.png

185.77.97.118

200 OK

137 kB

URL GET HTTP/3
filedownloads.xyz/chat/d12n3uyt9o8zmb.cloudfront.net/4/18/css/bg-chat.png
IP
185.77.97.118:443
ASN
#57844 SPDNet Telekomunikasyon Hizmetleri Bilgi Teknolojileri Taahhut Sanayi Ve Ticaret A.S.

Requested by
https://filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D
Certificate
IssuerZeroSSL
Subjectfiledownloads.xyz
FingerprintFD:0A:C9:F4:CB:A1:91:C0:E8:47:64:77:78:A1:F5:DA:8A:EE:07:76
ValiditySun, 19 Nov 2023 00:00:00 GMT - Sat, 17 Feb 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
137 kB (137446 bytes)
Hash
eb5ea727b940536aabbf9a21e4dce13d
359fb8a09f5e085777f948f561e2fdaa844ac46b
8ecc9eb95731071d372a7d3a1125c3842ce6a7ef17e15e67b1a749d60d6e4f08

HTTP Headers

GET /chat/d12n3uyt9o8zmb.cloudfront.net/4/18/css/bg-chat.png HTTP/1.1
Host: filedownloads.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://filedownloads.xyz/chat/d12n3uyt9o8zmb.cloudfront.net/4/18/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: hcdn
date: Thu, 21 Dec 2023 08:54:28 GMT
content-type: image/webp
content-length: 137446
cache-control: public, max-age=604800
expires: Thu, 28 Dec 2023 08:49:35 GMT
x-hcdn-image-optimizer: f:webp q:85 w:1600
age: 293
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 862d4517986816b84ae14a7d31c9cd91-fast-edge1
x-hcdn-cache-status: HIT
accept-ranges: bytes

bujerdaz.com/zone?&pub=0&zone_id=6734522&is_mobile=false&domain=filedownloads.xyz&var=&ymid=&var_3=&var_4=&dsig=&tg=1&sw=3.1.471&action=prerequest

139.45.197.250

200 OK

0 B

URL POST HTTP/2
bujerdaz.com/zone?&pub=0&zone_id=6734522&is_mobile=false&domain=filedownloads.xyz&var=&ymid=&var_3=&var_4=&dsig=&tg=1&sw=3.1.471&action=prerequest
IP
139.45.197.250:443
ASN
#9002 RETN Limited

Requested by
https://filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D
Certificate
IssuerLet's Encrypt
Subjectbujerdaz.com
FingerprintDC:62:5D:B8:3D:5B:82:0B:A5:6A:03:FC:6E:C8:4B:47:DD:AE:61:65
ValidityTue, 07 Nov 2023 05:17:01 GMT - Mon, 05 Feb 2024 05:17:00 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /zone?&pub=0&zone_id=6734522&is_mobile=false&domain=filedownloads.xyz&var=&ymid=&var_3=&var_4=&dsig=&tg=1&sw=3.1.471&action=prerequest HTTP/1.1
Host: bujerdaz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filedownloads.xyz
DNT: 1
Connection: keep-alive
Referer: https://filedownloads.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 21 Dec 2023 08:54:28 GMT
content-length: 0
x-trace-id: c40209061ddb04f5dec9b7a2dc00afcf
access-control-allow-origin: https://filedownloads.xyz
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

filedownloads.xyz/sw-check-permissions-e6842.js

185.77.97.118

200 OK

243 B

URL GET HTTP/3
filedownloads.xyz/sw-check-permissions-e6842.js
IP
185.77.97.118:443
ASN
#57844 SPDNet Telekomunikasyon Hizmetleri Bilgi Teknolojileri Taahhut Sanayi Ve Ticaret A.S.

Requested by
https://filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D
Certificate
IssuerZeroSSL
Subjectfiledownloads.xyz
FingerprintFD:0A:C9:F4:CB:A1:91:C0:E8:47:64:77:78:A1:F5:DA:8A:EE:07:76
ValiditySun, 19 Nov 2023 00:00:00 GMT - Sat, 17 Feb 2024 23:59:59 GMT

File type
Java source, ASCII text
Size
243 B (243 bytes)
Hash
f683a4af0a51e7b7f39d9aaa460d80a6
3ffca9789923bc43bd10314dc8b2e14c980ddfad
4f8e2d184e28fa8a6ba1b238a4c0d38d0829c2e3ca2adf3bbb4ee289225ede08

HTTP Headers

GET /sw-check-permissions-e6842.js HTTP/1.1
Host: filedownloads.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: hcdn
date: Thu, 21 Dec 2023 08:54:28 GMT
content-type: application/x-javascript
content-length: 243
cache-control: public, max-age=604800
expires: Thu, 28 Dec 2023 02:23:40 GMT
last-modified: Thu, 07 Dec 2023 09:35:44 GMT
etag: "236-657191f0-1c5e5f3a507d1936;br"
content-encoding: br
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
age: 23448
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 57b7d0d937ff34199ad3d91ce1747ab8-fast-edge1
x-hcdn-cache-status: HIT
accept-ranges: bytes

filedownloads.xyz/chat/ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2

185.77.97.118

200 OK

77 kB

URL GET HTTP/3
filedownloads.xyz/chat/ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2
IP
185.77.97.118:443
ASN
#57844 SPDNet Telekomunikasyon Hizmetleri Bilgi Teknolojileri Taahhut Sanayi Ve Ticaret A.S.

Requested by
https://filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D
Certificate
IssuerZeroSSL
Subjectfiledownloads.xyz
FingerprintFD:0A:C9:F4:CB:A1:91:C0:E8:47:64:77:78:A1:F5:DA:8A:EE:07:76
ValiditySun, 19 Nov 2023 00:00:00 GMT - Sat, 17 Feb 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 77160, version 4.459
Size
77 kB (77160 bytes)
Hash
af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

HTTP Headers

GET /chat/ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2 HTTP/1.1
Host: filedownloads.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://filedownloads.xyz/chat/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: hcdn
date: Thu, 21 Dec 2023 08:54:32 GMT
content-type: font/woff2
content-length: 77160
cache-control: public, max-age=604800
expires: Thu, 28 Dec 2023 05:39:21 GMT
last-modified: Thu, 07 Dec 2023 08:10:56 GMT
etag: "12d68-65717e10-aceefc9e97b5015d;;;"
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
age: 11711
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 9bada2c77588ffd581e18913e6fe16be-fast-edge1
x-hcdn-cache-status: HIT
accept-ranges: bytes

filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D

185.77.97.118

200 OK

6.9 kB

URL User Request GET HTTP/2
filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D
IP
185.77.97.118:443
ASN
#57844 SPDNet Telekomunikasyon Hizmetleri Bilgi Teknolojileri Taahhut Sanayi Ve Ticaret A.S.

Certificate
IssuerZeroSSL
Subjectfiledownloads.xyz
FingerprintFD:0A:C9:F4:CB:A1:91:C0:E8:47:64:77:78:A1:F5:DA:8A:EE:07:76
ValiditySun, 19 Nov 2023 00:00:00 GMT - Sat, 17 Feb 2024 23:59:59 GMT

File type
HTML document, Unicode text, UTF-8 (with BOM) text, with very long lines (2039), with CRLF line terminators
Size
6.9 kB (6938 bytes)
Hash
01a194501100624f0b9aad83d7706370
68b1f056e5d0885a40e13e5abbd6c6d1f269506f
6acef3fd1ef5e22ee6b0b7b06ed4282eff510d018545645f7e48ca463cc71925

HTTP Headers

GET /chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D HTTP/1.1
Host: filedownloads.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: hcdn
date: Thu, 21 Dec 2023 08:54:50 GMT
content-type: text/html; charset=UTF-8
content-length: 6938
x-powered-by: PHP/7.4.33
content-encoding: br
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: cbf49ed4970e48bfc37a615ae49fe89f-fast-edge2
x-hcdn-cache-status: DYNAMIC
x-hcdn-upstream-rt: 0.310
accept-ranges: bytes
X-Firefox-Spdy: h2

bujerdaz.com/pfe/current/micro.tag.min.js?z=6734522&sw=/sw-check-permissions-e6842.js

139.45.197.250

200 OK

27 kB

URL GET HTTP/2
bujerdaz.com/pfe/current/micro.tag.min.js?z=6734522&sw=/sw-check-permissions-e6842.js
IP
139.45.197.250:443
ASN
#9002 RETN Limited

Requested by
https://filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D
Certificate
IssuerLet's Encrypt
Subjectbujerdaz.com
FingerprintDC:62:5D:B8:3D:5B:82:0B:A5:6A:03:FC:6E:C8:4B:47:DD:AE:61:65
ValidityTue, 07 Nov 2023 05:17:01 GMT - Mon, 05 Feb 2024 05:17:00 GMT

File type
ASCII text, with very long lines (27007), with no line terminators
Size
27 kB (27007 bytes)
Hash
5ccd2d5882a06f293d07510ac91c92e6
b44dc0eaa03981adb70d3313e728f9359c1d21c1
9fc2aa21f3a7bfe66783d35fdbb48147f73e72a41f87aea848f64a8cb4518eba

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pfe/current/micro.tag.min.js?z=6734522&sw=/sw-check-permissions-e6842.js HTTP/1.1
Host: bujerdaz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://filedownloads.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 21 Dec 2023 08:54:28 GMT
content-type: application/javascript
last-modified: Mon, 27 Nov 2023 17:44:23 GMT
etag: W/"6564d577-697f"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2

d12n3uyt9o8zmb.cloudfront.net/15/pro/favicon.ico

0.0.0.0

0 B

URL GET
d12n3uyt9o8zmb.cloudfront.net/15/pro/favicon.ico
IP
0.0.0.0:0
ASN
#0

Requested by
https://filedownloads.xyz/chat/index.php?mcdata=c%3D22313d5f-c3f3-4e94-ab96-3e6592ef1468..d%3D1-0-0..m%3D01hj5sakj8x14czdj59qv050k6..l%3D17031488671..e%3D

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /15/pro/favicon.ico HTTP/1.1
Host: d12n3uyt9o8zmb.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://filedownloads.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (16)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by