| r10.o.lencr.org/ | 23.36.77.32 | | 504 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashb34ca6af54e2b9fea57d418f5d1928f7 510b69f4470789a573217726d6f1a3d6ee765460 41e6a348aac9e9db44bfa14b3aa29d411f4489b375ae1f1be6b0d280af98541d
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "41E6A348AAC9E9DB44BFA14B3AA29D411F4489B375AE1F1BE6B0D280AF98541D"
Last-Modified: Mon, 08 Jul 2024 01:53:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5190
Expires: Wed, 10 Jul 2024 13:29:14 GMT
Date: Wed, 10 Jul 2024 12:02:44 GMT
Connection: keep-alive
|
|
| r10.o.lencr.org/ | 23.36.77.32 | | 504 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashe08576e0904dc9903a9c20fa9e3d15b8 74feff76140500fd4a61e89c7e9d8d0a60df1183 ee690bacddf55fd12ae0c9c39e330e0a1a18776b9edc91b4aa6c5bae28824f1e
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "EE690BACDDF55FD12AE0C9C39E330E0A1A18776B9EDC91B4AA6C5BAE28824F1E"
Last-Modified: Tue, 09 Jul 2024 15:28:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20997
Expires: Wed, 10 Jul 2024 17:52:41 GMT
Date: Wed, 10 Jul 2024 12:02:44 GMT
Connection: keep-alive
|
|
| r10.o.lencr.org/ | 23.36.77.32 | | 504 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashe7492695b5254a3a63fcffb4f1ee8cec 0361713c6d8129210245347284c7c6babfd28fb7 5d1bc1c01894fd88a0d4680490977488d6458bb58a98ace24ef8aa103538bc1f
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "5D1BC1C01894FD88A0D4680490977488D6458BB58A98ACE24EF8AA103538BC1F"
Last-Modified: Tue, 09 Jul 2024 23:47:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16437
Expires: Wed, 10 Jul 2024 16:36:41 GMT
Date: Wed, 10 Jul 2024 12:02:44 GMT
Connection: keep-alive
|
|
| r10.o.lencr.org/ | 23.36.77.32 | | 504 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashfc076d7a99abd74b9da6b35304bb93e9 9d541501d5141dcf7b4d839d6fcffabec81e1a14 c86804eff01a7bb9ff866508bfdb1b071cfa4a26617d11094b9f5226e1a4b970
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "C86804EFF01A7BB9FF866508BFDB1B071CFA4A26617D11094B9F5226E1A4B970"
Last-Modified: Tue, 09 Jul 2024 16:18:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16820
Expires: Wed, 10 Jul 2024 16:43:04 GMT
Date: Wed, 10 Jul 2024 12:02:44 GMT
Connection: keep-alive
|
|
| freedl.ink/xfst_theme2/img/logo.png | 104.21.31.46 | 200 OK | 3.8 kB |
URL GET HTTP/2freedl.ink/xfst_theme2/img/logo.png IP104.21.31.46:443
Requested byhttps://frdl.to/wit1zt2wzbf0/ANIDOU3328.part1.rar CertificateIssuerGoogle Trust Services Subjectfreedl.ink FingerprintE3:37:8E:CA:D2:CE:F0:CC:AA:10:17:41:FC:63:34:DA:CE:3E:9B:A1 ValidityWed, 12 Jun 2024 23:08:06 GMT - Tue, 10 Sep 2024 23:08:05 GMT
File typePNG image data, 150 x 31, 8-bit/color RGBA, non-interlaced Hash121681b32d247dbd68a1c690158d2db5 b0d36efd38510f568a61ec6313afbdef205055fe 552b9587003fbf5fd875cc5f070b43639751b15e624782059cb3168d4c36b6b0
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /xfst_theme2/img/logo.png HTTP/1.1
Host: freedl.ink
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://frdl.to/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 10 Jul 2024 12:02:45 GMT
content-type: image/png
content-length: 3800
last-modified: Thu, 08 Feb 2024 12:41:50 GMT
etag: "ed8-610de22a09f80"
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
access-control-allow-credentials: true, true
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
cache-control: max-age=14400
cf-cache-status: HIT
age: 4683
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=E07iGFIEgxQFBvmF%2BXfsPqaW6EpqFTG1qI%2FrHSgjAdNomu3b%2FSYc6%2FSsuNOf3uGLZV52jdfzEiDKbDmKOF2Sq6dGh4TqQgE%2BBox1H%2FebM8lvZD0YPcvLXQkP4uZA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8a1068181ba0569b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.7/umd/popper.min.js | 104.17.25.14 | 200 OK | 6.6 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.7/umd/popper.min.js IP104.17.25.14:443
Requested byhttps://frdl.to/wit1zt2wzbf0/ANIDOU3328.part1.rar CertificateIssuerLet's Encrypt Subjectcdnjs.cloudflare.com Fingerprint3B:5B:7C:DD:19:E8:16:5A:09:22:D6:1E:03:84:8D:B9:A1:32:BF:8E ValiditySun, 02 Jun 2024 00:47:32 GMT - Sat, 31 Aug 2024 00:47:31 GMT
File typeJavaScript source, ASCII text, with very long lines (20831) Hash56456db9d72a4b380ed3cb63095e6022 6dbce88aee15b42f29083df7a07513cf3b486ba0 66f3a07e1fa9b64a686b66381e4458dbc8abf3dbbff954720c4eec07b84411c2
GET /ajax/libs/popper.js/1.14.7/umd/popper.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://frdl.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 10 Jul 2024 12:02:45 GMT
content-type: application/javascript; charset=utf-8
content-length: 6646
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fa9-520c"
last-modified: Mon, 04 May 2020 16:15:37 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 37672
expires: Mon, 30 Jun 2025 12:02:45 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AuYKQR3RRd3f%2FDkK9tWkOL6wk7onyQOYcK6cdwyQEwsFmlIBC7VZDzQ7EO%2BGIaU%2BwAScBS3XYDjooXskzrsv2XwL2OtbDcZmag56LQ9TQqdb1W8kyaItaRynDngWjxz8DZ%2FsBHE0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8a1068183a3d712f-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| o.pki.goog/wr2 | 216.58.211.3 | | 472 B |
IP216.58.211.3:0
Hashf43ac803ddaed04e157d8f4cc47f9d30 3b124d1a4787acb012f8dba86c2682286225e6ec fcc49c4f85feed0addfb35ac975528e62fd12609e78afb3acab0451051523e88
POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 10 Jul 2024 12:02:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| frdl.to/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js | 172.67.139.217 | 200 OK | 1.1 kB |
URL GET HTTP/3frdl.to/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js IP172.67.139.217:443
Requested byhttps://frdl.to/wit1zt2wzbf0/ANIDOU3328.part1.rar CertificateIssuerGoogle Trust Services Subjectfrdl.to Fingerprint01:C5:9B:71:5F:FB:21:0A:CA:14:6B:7F:B9:E8:E9:FC:79:2D:A6:07 ValidityTue, 18 Jun 2024 23:21:27 GMT - Mon, 16 Sep 2024 23:21:26 GMT
File typegzip compressed data, from Unix Hash5e907ff5bbaf79ae568a3e80cf24cbec 5d8974a689bdfc6c33b9ad54706e16c2dc67fe4d 32c44515a06b45faf3c08bcde779e2c34ee352278d21facbcc415cdbad9d4c12
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: frdl.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://frdl.to/wit1zt2wzbf0/ANIDOU3328.part1.rar
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 10 Jul 2024 12:02:45 GMT
content-type: application/javascript
last-modified: Fri, 05 Jul 2024 14:30:09 GMT
etag: W/"66880371-4d7"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AryJ4hHMjNgXEpKgQKhkiBGV%2FuPib079KpbUPTNQ%2FGYMGzxYyaHP6B5%2FdEbIKyJCIozkFTbEJpF0qBnUJKi8zjokQs%2FXAD4ybhlQWLsJ2d2Ekjoc9%2B1thg4T"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8a106817ceec56c9-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Fri, 12 Jul 2024 12:02:45 GMT
cache-control: max-age=172800, public
content-encoding: gzip
|
|
| frdl.to/xfst_theme2/js/jquery.cookie.js | 172.67.139.217 | 200 OK | 1.8 kB |
URL GET HTTP/3frdl.to/xfst_theme2/js/jquery.cookie.js IP172.67.139.217:443
Requested byhttps://frdl.to/wit1zt2wzbf0/ANIDOU3328.part1.rar CertificateIssuerGoogle Trust Services Subjectfrdl.to Fingerprint01:C5:9B:71:5F:FB:21:0A:CA:14:6B:7F:B9:E8:E9:FC:79:2D:A6:07 ValidityTue, 18 Jun 2024 23:21:27 GMT - Mon, 16 Sep 2024 23:21:26 GMT
File typegzip compressed data, from Unix Hash64271ac95d5f957207f36d64a490d042 3426ed3cf28b091da20003a35d8c2525ca3f950a 16b72660366ec590d85ffccdfc521ba0ef7882931ee5d222b50f6fa19408869f
GET /xfst_theme2/js/jquery.cookie.js HTTP/1.1
Host: frdl.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://frdl.to/wit1zt2wzbf0/ANIDOU3328.part1.rar
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 10 Jul 2024 12:02:45 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 14 Oct 2022 10:01:15 GMT
vary: Accept-Encoding
etag: W/"6349336b-c31"
expires: Sun, 04 Aug 2024 09:11:54 GMT
cache-control: max-age=2592000
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
access-control-allow-credentials: true, true
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
content-encoding: gzip
cf-cache-status: HIT
age: 442251
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=da%2BEW3EZhyQS2BU7Yk1YXbYdQ4TkNgIimffH54LNYGFIZTOiozDn%2B8b6QkI0BkpT78WjUzWYJ5JdcWmHGlhrSy4OIafW7NU5RgglUrPlcTUb3enGk70omSR0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8a106817cedc56c9-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.googletagmanager.com/gtag/js?id=G-RL652D9SYS | 142.250.74.40 | 200 OK | 104 kB |
URL GET HTTP/2www.googletagmanager.com/gtag/js?id=G-RL652D9SYS IP142.250.74.40:443
Requested byhttps://frdl.to/wit1zt2wzbf0/ANIDOU3328.part1.rar CertificateIssuerGoogle Trust Services Subject*.google-analytics.com FingerprintBA:5D:A9:7F:41:46:B0:37:01:9E:05:B0:92:BA:41:C9:31:5B:4B:4A ValidityThu, 13 Jun 2024 15:27:14 GMT - Thu, 05 Sep 2024 15:27:13 GMT
File typeJavaScript source, ASCII text, with very long lines (5945) Size104 kB (104169 bytes) Hash7a16d55cc31b35e69f1e08aae06267d7 c66acb1fe0179105bc64321855dc33040cb1033f 1b2d59b6546f8ec5981cf77536a7eba9971b17925a0807fb6f87f7043210ebc6
GET /gtag/js?id=G-RL652D9SYS HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://frdl.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 10 Jul 2024 12:02:45 GMT
expires: Wed, 10 Jul 2024 12:02:45 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 104169
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| o.pki.goog/wr2 | 216.58.211.3 | | 472 B |
IP216.58.211.3:0
Hashf43ac803ddaed04e157d8f4cc47f9d30 3b124d1a4787acb012f8dba86c2682286225e6ec fcc49c4f85feed0addfb35ac975528e62fd12609e78afb3acab0451051523e88
POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 10 Jul 2024 12:02:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| frdl.to/xfst_theme2/js/countdown.js | 172.67.139.217 | 200 OK | 796 B |
URL GET HTTP/3frdl.to/xfst_theme2/js/countdown.js IP172.67.139.217:443
Requested byhttps://frdl.to/wit1zt2wzbf0/ANIDOU3328.part1.rar CertificateIssuerGoogle Trust Services Subjectfrdl.to Fingerprint01:C5:9B:71:5F:FB:21:0A:CA:14:6B:7F:B9:E8:E9:FC:79:2D:A6:07 ValidityTue, 18 Jun 2024 23:21:27 GMT - Mon, 16 Sep 2024 23:21:26 GMT
File typeJavaScript source, ASCII text Hash2b7d7af4d020e0a541c394db405aa666 d6c812e5a842fb7df84301f45a69d9001d040b2e 6b1116dbdcc8665059c0163cb6cd034a949402f5bc6294390e8ffee39952f6ae
GET /xfst_theme2/js/countdown.js HTTP/1.1
Host: frdl.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://frdl.to/wit1zt2wzbf0/ANIDOU3328.part1.rar
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 10 Jul 2024 12:02:45 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 14 Oct 2022 10:01:14 GMT
etag: W/"6349336a-280"
expires: Sun, 04 Aug 2024 09:11:54 GMT
cache-control: max-age=2592000
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
access-control-allow-credentials: true, true
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
cf-cache-status: HIT
age: 442251
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PUx2tfDCPvEjhiZkMzEGXqElwJLO6PgmMiRNCgp1eIITuoXnrzZvs97f89SSXyGyPLAqyNDoDyNLu756ZCLcHxmL7nrC9i8CMahcwd2673gqu4RC1TxKxnuV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8a106817cee656c9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| o.pki.goog/wr2 | 216.58.211.3 | | 471 B |
IP216.58.211.3:0
Hashb81a0d10d099d65f5219d27dd10ef348 bcc52c3d9058a8ca4649e0ecc46ec799a9e5b802 c7dc7a3340a428d3ec5eb279657c90e9a2a377db05b92e38f68f97cf8376297d
POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 10 Jul 2024 12:02:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| o.pki.goog/wr2 | 216.58.211.3 | | 471 B |
IP216.58.211.3:0
Hashb81a0d10d099d65f5219d27dd10ef348 bcc52c3d9058a8ca4649e0ecc46ec799a9e5b802 c7dc7a3340a428d3ec5eb279657c90e9a2a377db05b92e38f68f97cf8376297d
POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 10 Jul 2024 12:02:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| frdl.to/xfst_theme2/js/bootstrap.min.js | 172.67.139.217 | 200 OK | 48 kB |
URL GET HTTP/3frdl.to/xfst_theme2/js/bootstrap.min.js IP172.67.139.217:443
Requested byhttps://frdl.to/wit1zt2wzbf0/ANIDOU3328.part1.rar CertificateIssuerGoogle Trust Services Subjectfrdl.to Fingerprint01:C5:9B:71:5F:FB:21:0A:CA:14:6B:7F:B9:E8:E9:FC:79:2D:A6:07 ValidityTue, 18 Jun 2024 23:21:27 GMT - Mon, 16 Sep 2024 23:21:26 GMT
File typegzip compressed data, from Unix Hash644e3139c5bc681584854e8291d4f108 70b42356a33b590523be1774fd1079207813f498 cf012b0124e23677eb6f03e50cf71e6a55922eca2fb135527efd9c1fd9e59bd2
GET /xfst_theme2/js/bootstrap.min.js HTTP/1.1
Host: frdl.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://frdl.to/wit1zt2wzbf0/ANIDOU3328.part1.rar
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 10 Jul 2024 12:02:45 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 14 Oct 2022 10:01:13 GMT
vary: Accept-Encoding
etag: W/"63493369-e2d8"
expires: Mon, 22 Jul 2024 13:31:33 GMT
cache-control: max-age=2592000
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
access-control-allow-credentials: true, true
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
content-encoding: gzip
cf-cache-status: HIT
age: 1549872
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pGSIEWoiud4DIrPqB%2B9kqAi2C%2BXFCgV1CkH3l7yepwdexmE6iNEcVlJKvKQd8WK8FANRc5%2BO3oTWDXPhIXEKwhPasrAkC%2BTII8KK%2FkEqNQimCnj84P%2FxVHV6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8a106817defb56c9-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 | 142.250.74.99 | 200 OK | 33 kB |
URL GET HTTP/2fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 IP142.250.74.99:443
Requested byhttps://frdl.to/wit1zt2wzbf0/ANIDOU3328.part1.rar CertificateIssuerGoogle Trust Services Subject*.gstatic.com FingerprintC4:9C:27:09:1C:F7:14:C9:86:F0:B5:42:0B:8A:D2:AE:5E:AE:98:04 ValidityThu, 13 Jun 2024 16:31:03 GMT - Thu, 05 Sep 2024 16:31:02 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 33092, version 1.0 Hash057478083c1d55ea0c2182b24f6dd72f caf557cd276a76992084efc4c8857b66791a6b7f bb2f90081933c0f2475883ca2c5cfee94e96d7314a09433fffc42e37f4cffd3b
GET /s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://frdl.to
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33092
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 03 Jul 2024 15:10:08 GMT
expires: Thu, 03 Jul 2025 15:10:08 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 22:51:58 GMT
content-type: font/woff2
age: 593557
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| frdl.to/xfst_theme2/js/share.js | 172.67.139.217 | 200 OK | 33 kB |
URL GET HTTP/3frdl.to/xfst_theme2/js/share.js IP172.67.139.217:443
Requested byhttps://frdl.to/wit1zt2wzbf0/ANIDOU3328.part1.rar CertificateIssuerGoogle Trust Services Subjectfrdl.to Fingerprint01:C5:9B:71:5F:FB:21:0A:CA:14:6B:7F:B9:E8:E9:FC:79:2D:A6:07 ValidityTue, 18 Jun 2024 23:21:27 GMT - Mon, 16 Sep 2024 23:21:26 GMT
Hash693471dd93ac22bed38732ee725edff1 470693b6fb525d9391c6530ba8e22edf2a3cdfe0 37ddc3df628de7dbb35e49b0eef020d9fe1613acbbfc77418bb7e69566395aa5
GET /xfst_theme2/js/share.js HTTP/1.1
Host: frdl.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://frdl.to/wit1zt2wzbf0/ANIDOU3328.part1.rar
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 10 Jul 2024 12:02:45 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 14 Oct 2022 10:01:18 GMT
etag: W/"6349336e-162"
expires: Mon, 22 Jul 2024 13:31:32 GMT
cache-control: max-age=2592000
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
access-control-allow-credentials: true, true
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
cf-cache-status: HIT
age: 1549873
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uQBAqeo8f%2BC%2BrobOCD5tDUvn89s1MAypsObDrbMr2NHI54UVHPNzY6Nop9nBx1DBIBPaMUfK6xyf6pNIAueBfRTkmy98V09AlY7abubh68X3yxRm%2FvCUKYS3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8a106817cee356c9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| frdl.to/xfst_theme2/fa/webfonts/fa-brands-400.woff2 | 172.67.139.217 | 200 OK | 75 kB |
URL GET HTTP/3frdl.to/xfst_theme2/fa/webfonts/fa-brands-400.woff2 IP172.67.139.217:443
Requested byhttps://frdl.to/wit1zt2wzbf0/ANIDOU3328.part1.rar CertificateIssuerGoogle Trust Services Subjectfrdl.to Fingerprint01:C5:9B:71:5F:FB:21:0A:CA:14:6B:7F:B9:E8:E9:FC:79:2D:A6:07 ValidityTue, 18 Jun 2024 23:21:27 GMT - Mon, 16 Sep 2024 23:21:26 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 74652, version 330.15859 Hashc6bc75d4949e1bc9b7442b24c3af6324 3702434c97216b56b6cbd7630a7f904a1c23b45c f808525c9a562a4ee998e33c90c903bdd3ef9ae43e70970713da4e1b1c964ff1
GET /xfst_theme2/fa/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: frdl.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://frdl.to/xfst_theme2/css/style.min.css?t=5
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 10 Jul 2024 12:02:45 GMT
content-type: text/html; charset=utf-8
last-modified: Fri, 14 Oct 2022 10:01:02 GMT
vary: Accept-Encoding
expires: Sun, 04 Aug 2024 09:22:40 GMT
cache-control: max-age=2592000
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
access-control-allow-credentials: true, true
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
cf-cache-status: HIT
age: 441605
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hUPbQMdZmL7suR2U5qlA2MPnYKDc4HdiItitJTacRlIqpmZ8tlyDkwx2WxHblTO%2Ba1FtC28eqgosi0wYGvsX6%2FaeNBctCwdg9ssldqd9VtJIlo56y7kx7I40"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8a10681a5a0156c9-OSL
alt-svc: h3=":443"; ma=86400
|
|
| frdl.to/js/pop.js?=1 | 172.67.139.217 | 200 OK | 561 B |
IP172.67.139.217:443
Requested byhttps://frdl.to/wit1zt2wzbf0/ANIDOU3328.part1.rar CertificateIssuerGoogle Trust Services Subjectfrdl.to Fingerprint01:C5:9B:71:5F:FB:21:0A:CA:14:6B:7F:B9:E8:E9:FC:79:2D:A6:07 ValidityTue, 18 Jun 2024 23:21:27 GMT - Mon, 16 Sep 2024 23:21:26 GMT
Hashe430f83bc61ee6d4c0eac2c1c32d0162 3baf4ef4554ea9f1518713c504ca41e2d5d4fb7d b8570b25846d0a739b755af846fa5c94bfd1fe16237a6676bcba7bd60c5f81ef
GET /js/pop.js?=1 HTTP/1.1
Host: frdl.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://frdl.to/wit1zt2wzbf0/ANIDOU3328.part1.rar
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 10 Jul 2024 12:02:45 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 27 Dec 2022 01:53:54 GMT
etag: W/"63aa5032-38"
expires: Fri, 09 Aug 2024 12:02:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
access-control-allow-credentials: true, true
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tkv8W98IFe9wZ266Kwu%2BeFDjCd9Oho3RinAv2sZQERm0VQNWj9jkZXpvZLNbsFfEGYyH%2Fl6KxYywPq4tfOTP2ktiZ5RhLnXol50xNb9Pu5FpV8%2FU0E%2BAFEmh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8a106817cee856c9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| r10.o.lencr.org/ | 23.33.119.57 | | 504 B |
IP23.33.119.57:0 ASN#20940 Akamai International B.V.
Hashd7b2c37e4b6c062d80ad32046f42d3d8 131cd5c2ca2a258c3cf11746f94cfd43a6a4f04c 317f60a1498c7b52833955e8a54a0ba66b5b8dc9e9862c2ac262b874d491fce2
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "317F60A1498C7B52833955E8A54A0BA66B5B8DC9E9862C2AC262B874D491FCE2"
Last-Modified: Mon, 08 Jul 2024 05:32:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6267
Expires: Wed, 10 Jul 2024 13:47:13 GMT
Date: Wed, 10 Jul 2024 12:02:46 GMT
Connection: keep-alive
|
|
| r10.o.lencr.org/ | 23.33.119.57 | | 504 B |
IP23.33.119.57:0 ASN#20940 Akamai International B.V.
Hashd7b2c37e4b6c062d80ad32046f42d3d8 131cd5c2ca2a258c3cf11746f94cfd43a6a4f04c 317f60a1498c7b52833955e8a54a0ba66b5b8dc9e9862c2ac262b874d491fce2
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "317F60A1498C7B52833955E8A54A0BA66B5B8DC9E9862C2AC262B874D491FCE2"
Last-Modified: Mon, 08 Jul 2024 05:32:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6267
Expires: Wed, 10 Jul 2024 13:47:13 GMT
Date: Wed, 10 Jul 2024 12:02:46 GMT
Connection: keep-alive
|
|
| r10.o.lencr.org/ | 23.33.119.57 | | 504 B |
IP23.33.119.57:0 ASN#20940 Akamai International B.V.
Hashd7b2c37e4b6c062d80ad32046f42d3d8 131cd5c2ca2a258c3cf11746f94cfd43a6a4f04c 317f60a1498c7b52833955e8a54a0ba66b5b8dc9e9862c2ac262b874d491fce2
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "317F60A1498C7B52833955E8A54A0BA66B5B8DC9E9862C2AC262B874D491FCE2"
Last-Modified: Mon, 08 Jul 2024 05:32:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6267
Expires: Wed, 10 Jul 2024 13:47:13 GMT
Date: Wed, 10 Jul 2024 12:02:46 GMT
Connection: keep-alive
|
|
| t.dtscout.com/i/?l=https%3A%2F%2Ffrdl.to%2Fwit1zt2wzbf0%2FANIDOU3328.part1.rar&j= | 141.101.120.11 | 200 OK | 12 kB |
URL GET HTTP/2t.dtscout.com/i/?l=https%3A%2F%2Ffrdl.to%2Fwit1zt2wzbf0%2FANIDOU3328.part1.rar&j= IP141.101.120.11:443
Requested byhttps://frdl.to/wit1zt2wzbf0/ANIDOU3328.part1.rar CertificateIssuerGoogle Trust Services LLC Subjectdtscout.com Fingerprint66:24:0A:22:22:C6:B9:75:79:CD:A9:A3:78:A2:89:16:CD:0F:2F:4A ValidityWed, 15 May 2024 16:12:47 GMT - Tue, 13 Aug 2024 16:12:46 GMT
File typeASCII text, with very long lines (2077) Hash51bd741af3fcc4984d1a753eebfa1141 534664acf69cbbb5c9b97c96b63dd37bdc580da2 3e9c8e5dcf3cbff9e1b7211551a31fe388f1b8e607fd78a0a34855be65da721c
GET /i/?l=https%3A%2F%2Ffrdl.to%2Fwit1zt2wzbf0%2FANIDOU3328.part1.rar&j= HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://frdl.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 10 Jul 2024 12:02:45 GMT
content-type: application/javascript
x-s: mtl1
set-cookie: m=1; Domain=dtscout.com; Expires=Wed, 10-Jul-2024 13:26:05 GMT; Max-Age=5000; Path=/; SameSite=None; Secure
df=1720612965; Domain=dtscout.com; Expires=Fri, 18-Oct-2024 12:02:45 GMT; Max-Age=8640000; Path=/; SameSite=None; Secure
x-t: 0.328
expires: Wed, 10 Jul 2024 12:02:44 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=z2hCqdn8LyHZU%2FKO6Ln%2FYPAzePjsbysQvMYXiawZUUV30e5stQV%2F8A3%2BCI7q1sERZohe%2BhZ4bXoLxqe5g%2By9TZd1CNDR80gkC%2FTANdUuQNU1Z7RF39LWbENGP7uWIp4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8a10681bdf848d62-HEL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| frdl.to/xfst_theme2/js/clipboard.min.js | 172.67.139.217 | 200 OK | 8.5 kB |
URL GET HTTP/3frdl.to/xfst_theme2/js/clipboard.min.js IP172.67.139.217:443
Requested byhttps://frdl.to/wit1zt2wzbf0/ANIDOU3328.part1.rar CertificateIssuerGoogle Trust Services Subjectfrdl.to Fingerprint01:C5:9B:71:5F:FB:21:0A:CA:14:6B:7F:B9:E8:E9:FC:79:2D:A6:07 ValidityTue, 18 Jun 2024 23:21:27 GMT - Mon, 16 Sep 2024 23:21:26 GMT
File typegzip compressed data, from Unix Hash05b1cb94f733eca668439f5192fb9297 d2c4fec007ef7400ce6cf73d0b36f40e8d2ed087 e701a9a1a42449ad0226f2d6657be509522870b69a13ece7893684f329520d0d
GET /xfst_theme2/js/clipboard.min.js HTTP/1.1
Host: frdl.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://frdl.to/wit1zt2wzbf0/ANIDOU3328.part1.rar
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 10 Jul 2024 12:02:45 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sat, 10 Dec 2022 15:13:04 GMT
vary: Accept-Encoding
etag: W/"6394a200-23c8"
expires: Mon, 22 Jul 2024 13:31:33 GMT
cache-control: max-age=2592000
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
access-control-allow-credentials: true, true
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
content-encoding: gzip
cf-cache-status: HIT
age: 1549872
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FHGmWyNpS2GT%2FKqr5Cba0tbZF0rp7EGpu7MU5on3zqRx55F00kcbesfZEJi%2BQq%2FcufV6cICARRQRaTe1A0SYU6skQtbwBgHs4eVd9KPhWMFPj8iXcQalODy2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8a106817defd56c9-OSL
alt-svc: h3=":443"; ma=86400
|
|
| frdl.to/xfst_theme2/js/jquery-1.9.1.min.js | 172.67.139.217 | 200 OK | 93 kB |
URL GET HTTP/3frdl.to/xfst_theme2/js/jquery-1.9.1.min.js IP172.67.139.217:443
Requested byhttps://frdl.to/wit1zt2wzbf0/ANIDOU3328.part1.rar CertificateIssuerGoogle Trust Services Subjectfrdl.to Fingerprint01:C5:9B:71:5F:FB:21:0A:CA:14:6B:7F:B9:E8:E9:FC:79:2D:A6:07 ValidityTue, 18 Jun 2024 23:21:27 GMT - Mon, 16 Sep 2024 23:21:26 GMT
File typeJavaScript source, ASCII text, with very long lines (32089) Hash397754ba49e9e0cf4e7c190da78dda05 ae49e56999d82802727455f0ba83b63acd90a22b c12f6098e641aaca96c60215800f18f5671039aecf812217fab3c0d152f6adb4
GET /xfst_theme2/js/jquery-1.9.1.min.js HTTP/1.1
Host: frdl.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://frdl.to/wit1zt2wzbf0/ANIDOU3328.part1.rar
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 10 Jul 2024 12:02:45 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 14 Oct 2022 10:01:15 GMT
vary: Accept-Encoding
etag: W/"6349336b-169d5"
expires: Sun, 04 Aug 2024 09:11:54 GMT
cache-control: max-age=2592000
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
access-control-allow-credentials: true, true
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
content-encoding: gzip
cf-cache-status: HIT
age: 442251
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qzPgu3fMLOaOk5Ruud1mLXZVTtYHIcU04cwxjkQOh0jQHKaE10rb8fpP6ut9W5wlp9mqamRQEqdDWKX3qZ2ADEFO7sJbgZBt6CWokE6fQjPl5g2zspvnRTK1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8a106817cedb56c9-OSL
alt-svc: h3=":443"; ma=86400
|
|
| frdl.to/wit1zt2wzbf0/favicon.ico | 172.67.139.217 | 200 OK | 14 kB |
URL GET HTTP/3frdl.to/wit1zt2wzbf0/favicon.ico IP172.67.139.217:443
Requested byhttps://frdl.to/wit1zt2wzbf0/ANIDOU3328.part1.rar CertificateIssuerGoogle Trust Services Subjectfrdl.to Fingerprint01:C5:9B:71:5F:FB:21:0A:CA:14:6B:7F:B9:E8:E9:FC:79:2D:A6:07 ValidityTue, 18 Jun 2024 23:21:27 GMT - Mon, 16 Sep 2024 23:21:26 GMT
File typeJavaScript source, ASCII text, with very long lines (736) Hash51701539bc2b0997609aa06eb4974928 b4a084f61b91224317cc6931ed72e620bec57301 e4b1e89f4ee46cf35d65dcc65fcbdf6b077f8cd4941df48e960af22c99fed38e
GET /wit1zt2wzbf0/favicon.ico HTTP/1.1
Host: frdl.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://frdl.to/wit1zt2wzbf0/ANIDOU3328.part1.rar
Cookie: _ga_RL652D9SYS=GS1.1.1720612965.1.0.1720612965.0.0.0; _ga=GA1.1.953054974.1720612966
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 10 Jul 2024 12:02:46 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
strict-transport-security: max-age=0;includeSubDomains;
x-content-type-options: nosniff, nosniff, nosniff
x-frame-options: SAMEORIGIN
expires: Tue, 09 Jul 2024 12:02:46 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
access-control-allow-credentials: true, true
x-xss-protection: 1; mode=block, 1; mode=block
cf-cache-status: BYPASS
set-cookie: affiliate=n7F7Jrl%2FEo2MryqFH%2BBkooSX1Ga6m0j7i5epkk%2FkNkH0by8GBelG7%2FaSwdiJne%2BxUmLtjg%2F5wWMjyhdj1p78VviX3WJNlBu2BZT1ZZYdE2JcFgbaXp9gPRCCY6Kp3hWiHgd1z72cAIZ4gjaP21mNHUNVUodKjw%3D%3D; domain=.freedl.ink; path=/; expires=Wed, 24-Jul-2024 12:02:46 GMT
lang=english; domain=.freedl.ink; path=/
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7lQkmyfWYgvwmH%2BKC2HkjCWPEFKLGl4%2FKSKEHFLIigBMQHoIiCt8LhArlsgONS7itdi2imbB3k7nZx8a7zgmgd1gpL62eK0njcnmW%2BKuTwj6K6C7v7DbjNV2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8a10681c7c8c56c9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.googleapis.com/css2?family=Montserrat:wght@100;200;300;400;500;600;700;800;900&display=swap | 142.250.74.106 | 200 OK | 16 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Montserrat:wght@100;200;300;400;500;600;700;800;900&display=swap IP142.250.74.106:443
Requested byhttps://frdl.to/wit1zt2wzbf0/ANIDOU3328.part1.rar CertificateIssuerGoogle Trust Services Subjectupload.video.google.com FingerprintC7:12:52:3A:BD:E0:73:20:AD:A8:5F:DF:12:DB:C6:DE:AF:63:88:6B ValidityThu, 13 Jun 2024 16:32:33 GMT - Thu, 05 Sep 2024 16:32:32 GMT
Hash32091ddc804c12b484f20b93e3d78669 3f95d2b1dccf36f2048ead1088acbccd6033f119 f1e4c18549167223af672ff319ac7293d52e09fd02544d08d4166078b5f36c4d
GET /css2?family=Montserrat:wght@100;200;300;400;500;600;700;800;900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://frdl.to/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 10 Jul 2024 12:02:45 GMT
date: Wed, 10 Jul 2024 12:02:45 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| frdl.to/xfst_theme2/css/style.min.css?t=5 | 172.67.139.217 | 200 OK | 189 kB |
URL GET HTTP/3frdl.to/xfst_theme2/css/style.min.css?t=5 IP172.67.139.217:443
Requested byhttps://frdl.to/wit1zt2wzbf0/ANIDOU3328.part1.rar CertificateIssuerGoogle Trust Services Subjectfrdl.to Fingerprint01:C5:9B:71:5F:FB:21:0A:CA:14:6B:7F:B9:E8:E9:FC:79:2D:A6:07 ValidityTue, 18 Jun 2024 23:21:27 GMT - Mon, 16 Sep 2024 23:21:26 GMT
File typeassembler source, ASCII text, with very long lines (61504) Size189 kB (189007 bytes) Hash4f2ada6a62b3df6773a827d16d2180a9 2e5dd23ba5f792a18477ffbdfe4c4561c34301bd 1c78e7aba432bfb05b65f1c37fcf2a4f3438c20b3c2a727af462834e9567ccb0
GET /xfst_theme2/css/style.min.css?t=5 HTTP/1.1
Host: frdl.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://frdl.to/wit1zt2wzbf0/ANIDOU3328.part1.rar
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 10 Jul 2024 12:02:45 GMT
content-type: text/css
last-modified: Fri, 14 Oct 2022 10:01:01 GMT
vary: Accept-Encoding
etag: W/"6349335d-2e24f"
expires: Fri, 09 Aug 2024 12:02:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
access-control-allow-credentials: true, true
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
content-encoding: gzip
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SxWWV0n4O8AuOddjib1VUB0jXIV%2BkPCXzWoQCvkLEO9NGCrDzBXyGXHgBA%2BhdVun%2BpmCp%2BfzMjuFsIV1qqmpINgYSQrNpnhNazoY4JVAMbIuf5ollwBDG6%2FZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8a106817cedd56c9-OSL
alt-svc: h3=":443"; ma=86400
|
|
| frdl.to/xfst_theme2/js/script.js | 172.67.139.217 | 200 OK | 520 B |
URL GET HTTP/3frdl.to/xfst_theme2/js/script.js IP172.67.139.217:443
Requested byhttps://frdl.to/wit1zt2wzbf0/ANIDOU3328.part1.rar CertificateIssuerGoogle Trust Services Subjectfrdl.to Fingerprint01:C5:9B:71:5F:FB:21:0A:CA:14:6B:7F:B9:E8:E9:FC:79:2D:A6:07 ValidityTue, 18 Jun 2024 23:21:27 GMT - Mon, 16 Sep 2024 23:21:26 GMT
File typeJavaScript source, ASCII text, with very long lines (536), with no line terminators Hashb9cdd1474f5d47f47a96607e273a190f 9370173f06f31b9da130fac79fb6e5d6366d9200 1ea4d89f08efe3652210b7e481611751102a962a7b2f8d4436d2c43da7feffa2
GET /xfst_theme2/js/script.js HTTP/1.1
Host: frdl.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://frdl.to/wit1zt2wzbf0/ANIDOU3328.part1.rar
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 10 Jul 2024 12:02:45 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 14 Oct 2022 10:01:17 GMT
etag: W/"6349336d-208"
expires: Mon, 22 Jul 2024 13:31:33 GMT
cache-control: max-age=2592000
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
access-control-allow-credentials: true, true
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
cf-cache-status: HIT
age: 1549872
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OWxlNp54W08JCcQkspkn0grAmexYcWmrzu5kP06fujqqOI0LQrKX%2BfHeNxEnG69EfCArJCHM0FdC7upLeB0e65Nw93ZKi1g%2BBZQwsHgH4SkQt9EgxBI5TrCp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8a106817df0356c9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| frdl.to/wit1zt2wzbf0/ANIDOU3328.part1.rar | 172.67.139.217 | 200 OK | 14 kB |
URL User Request GET HTTP/2frdl.to/wit1zt2wzbf0/ANIDOU3328.part1.rar IP172.67.139.217:443
CertificateIssuerGoogle Trust Services Subjectfrdl.to Fingerprint01:C5:9B:71:5F:FB:21:0A:CA:14:6B:7F:B9:E8:E9:FC:79:2D:A6:07 ValidityTue, 18 Jun 2024 23:21:27 GMT - Mon, 16 Sep 2024 23:21:26 GMT
File typeJavaScript source, ASCII text, with very long lines (736) Hash519ac6203e39e58c276d83c86c05ecdb 77304f82c741c288ce012a965e525f8fb49bed2d 29a0fc45893cad9dc978e7361849b15ab933e20bb2f64be6c9690408897eada3
GET /wit1zt2wzbf0/ANIDOU3328.part1.rar HTTP/1.1
Host: frdl.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 10 Jul 2024 12:02:44 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
strict-transport-security: max-age=0;includeSubDomains;
x-content-type-options: nosniff, nosniff, nosniff
x-frame-options: SAMEORIGIN
expires: Tue, 09 Jul 2024 12:02:44 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
access-control-allow-credentials: true, true
x-xss-protection: 1; mode=block, 1; mode=block
cf-cache-status: BYPASS
set-cookie: lang=english; domain=.freedl.ink; path=/
affiliate=xhZF6E9ft2eMryqFH%2BBkonXyDejPG70faluuU3e02223sKBiMNXi6Cby9OAelX4%2BfJvK1kSpa57TBlHXLvsQoq8i2ybTPfc%3D; domain=.freedl.ink; path=/; expires=Wed, 24-Jul-2024 12:02:44 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TJrU9PhfPIjr%2FmqyfLYHfCeIhlZvYBcJq2V9Np5gMw9Htk785OGp0du8z5HVoSWrIEW3StRQQnzJSXolSIGp1dUyaxI9iPD%2FiEJjuuV5M0Yb180obGaX5SNi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8a1068143f0856ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Karla:wght@200;300;400;500&family=Source+Sans+Pro:wght@200;300;400;600&display=swap | 142.250.74.106 | 200 OK | 13 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Karla:wght@200;300;400;500&family=Source+Sans+Pro:wght@200;300;400;600&display=swap IP142.250.74.106:443
Requested byhttps://frdl.to/wit1zt2wzbf0/ANIDOU3328.part1.rar CertificateIssuerGoogle Trust Services Subjectupload.video.google.com FingerprintC7:12:52:3A:BD:E0:73:20:AD:A8:5F:DF:12:DB:C6:DE:AF:63:88:6B ValidityThu, 13 Jun 2024 16:32:33 GMT - Thu, 05 Sep 2024 16:32:32 GMT
Hash6317433d4cca5d9db0f0324b17870827 65130a4dd2d832b5f19f342844a81c23b1813d83 43a52c7b1448ea0192fe12c6b2b2c5fd14c079f7254e71ea49e0db5a5dbbf832
GET /css2?family=Karla:wght@200;300;400;500&family=Source+Sans+Pro:wght@200;300;400;600&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://frdl.to/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 10 Jul 2024 12:02:45 GMT
date: Wed, 10 Jul 2024 12:02:45 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| waust.at/d.js | 172.67.71.57 | 200 OK | 15 kB |
IP172.67.71.57:443
Requested byhttps://frdl.to/wit1zt2wzbf0/ANIDOU3328.part1.rar CertificateIssuerGoogle Trust Services Subjectwaust.at Fingerprint23:97:A9:BF:8A:3F:8F:7E:DD:39:FB:28:55:22:37:0A:6E:8E:9F:1B ValidityTue, 02 Jul 2024 02:16:40 GMT - Mon, 30 Sep 2024 02:16:39 GMT
File typeJavaScript source, ASCII text, with very long lines (14706), with no line terminators Hash38cdedd658fa41770f607c0b117c1f82 3f3c9c6c330ab649e27ec56a8d852e9d41b0edf4 951feaddb6ad45bcc58fee7033004366978150e8f2927692781c3e2755c7c15c
GET /d.js HTTP/1.1
Host: waust.at
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://frdl.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 10 Jul 2024 12:02:45 GMT
content-type: application/x-javascript
last-modified: Thu, 12 Jan 2023 17:19:44 GMT
etag: W/"63c04130-3972"
expires: Thu, 11 Jul 2024 11:48:27 GMT
cache-control: max-age=86400
access-control-allow-origin: *
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 858
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=52kmO2Ij9PCsxem9pbMToKNy7glEatZjI1%2FvlVwquL2Jt8kut4Wky25CdP54qtymo%2B%2FdDvheCMNly9Aw9JrRM2REnABHVjf8w40FjIQVbnRsFJEMMAwK4zt4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8a1068182e337130-OSL
X-Firefox-Spdy: h2
|
|
| frdl.to/xfst_theme2/css/bootstrap.min.css | 172.67.139.217 | 200 OK | 156 kB |
URL GET HTTP/3frdl.to/xfst_theme2/css/bootstrap.min.css IP172.67.139.217:443
Requested byhttps://frdl.to/wit1zt2wzbf0/ANIDOU3328.part1.rar CertificateIssuerGoogle Trust Services Subjectfrdl.to Fingerprint01:C5:9B:71:5F:FB:21:0A:CA:14:6B:7F:B9:E8:E9:FC:79:2D:A6:07 ValidityTue, 18 Jun 2024 23:21:27 GMT - Mon, 16 Sep 2024 23:21:26 GMT
File typeASCII text, with very long lines (65324) Size156 kB (155758 bytes) Hasha15c2ac3234aa8f6064ef9c1f7383c37 6e10354828454898fda80f55f3decb347fd9ed21 60b19e5da6a9234ff9220668a5ec1125c157a268513256188ee80f2d2c8d8d36
GET /xfst_theme2/css/bootstrap.min.css HTTP/1.1
Host: frdl.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://frdl.to/xfst_theme2/css/style.min.css?t=5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 10 Jul 2024 12:02:45 GMT
content-type: text/css
last-modified: Fri, 14 Oct 2022 10:00:59 GMT
vary: Accept-Encoding
etag: W/"6349335b-2606e"
expires: Mon, 22 Jul 2024 13:31:33 GMT
cache-control: max-age=2592000
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
access-control-allow-credentials: true, true
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
content-encoding: gzip
cf-cache-status: HIT
age: 1549872
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FZFvYIxcL%2BPazUusrm8qoVBlWGxVqjJQmlmwaYj%2FF95cGZcuBq9L4DaeZbjyHEIFUsax%2BtGQc%2F7OK4QoOHS%2BqNt257OJGDP0jNvoWyN4LZkMS4%2BdsXpKTU8s"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8a106819b93756c9-OSL
alt-svc: h3=":443"; ma=86400
|
|
| t.dtscout.com/pv/?_a=v&_h=frdl.to&_ss=6jtit38c6m&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=34wz&_cb=_dtspv.c | 141.101.120.11 | 200 OK | 51 B |
URL GET HTTP/2t.dtscout.com/pv/?_a=v&_h=frdl.to&_ss=6jtit38c6m&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=34wz&_cb=_dtspv.c IP141.101.120.11:443
Requested byhttps://frdl.to/wit1zt2wzbf0/ANIDOU3328.part1.rar CertificateIssuerGoogle Trust Services LLC Subjectdtscout.com Fingerprint66:24:0A:22:22:C6:B9:75:79:CD:A9:A3:78:A2:89:16:CD:0F:2F:4A ValidityWed, 15 May 2024 16:12:47 GMT - Tue, 13 Aug 2024 16:12:46 GMT
File typeASCII text, with no line terminators Hash86f5d423382435793ccebfeb12e81507 307c81f2e952e0c7e1b47b744e1af550cf569f42 a712e44557437d558ff3435e81687ca88dbddb4de6360f57a34eacde808553f6
GET /pv/?_a=v&_h=frdl.to&_ss=6jtit38c6m&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=34wz&_cb=_dtspv.c HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://frdl.to/
Cookie: m=1; df=1720612965
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 10 Jul 2024 12:02:46 GMT
content-type: application/javascript
x-t: 0.16
x-c: 0
expires: Wed, 10 Jul 2024 12:02:45 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4clMBjNXWrEybBbi%2BXk6vFb0D%2FWtWgrN3Zxz2jWYZenVS35FT1Nu88PCMLJ0d9kZymjC7l3u82aG%2FsjKh4mA631EJe1Mgs2UJ6i9eQQKE9G010yF2foO7eevgFyCIvA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8a10681db8ec8d62-HEL
content-encoding: br
X-Firefox-Spdy: h2
|
|