| rndtechnosoft.com/clientapps/shoppingapp/home/myaccount/61988cc95fba40d73622f1f43963879a/Up-dating.php | 103.191.208.92 | 302 Found | 771 B |
URL User Request GET HTTP/2rndtechnosoft.com/clientapps/shoppingapp/home/myaccount/61988cc95fba40d73622f1f43963879a/Up-dating.php IP103.191.208.92:443
CertificateIssuerLet's Encrypt Subjectcpanel.rndtechnosoft.com Fingerprint23:34:71:78:70:6B:66:28:84:02:9D:09:57:DE:18:6C:96:D2:9B:29 ValidityWed, 17 Apr 2024 01:09:10 GMT - Tue, 16 Jul 2024 01:09:09 GMT
File typeHTML document, ASCII text, with CRLF, LF line terminators Hash1597c10f533a5853e70df48c1f50937c 18d401b292522117086c3dbdc1940444aa1cc4da b5ffafff1266d67b31cc80784d26d1f87b06773c1d50f490b84d10caabc15856
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /clientapps/shoppingapp/home/myaccount/61988cc95fba40d73622f1f43963879a/Up-dating.php HTTP/1.1
Host: rndtechnosoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
content-type: text/html
content-length: 771
date: Sat, 20 Apr 2024 07:59:23 GMT
server: LiteSpeed
cache-control: no-cache, no-store, must-revalidate, max-age=0
location: https://www.rndtechnosoft.com/404.php
vary: User-Agent
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=UA-127636869-1 | 142.250.74.168 | 200 OK | 55 kB |
URL GET HTTP/2www.googletagmanager.com/gtag/js?id=UA-127636869-1 IP142.250.74.168:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (1900) Hash24b8d7ded56873e3b06e4afd50d4d4db c995f0304d17b8bcb78d4256575fef360a1e18d0 188eeca247fbf9c8f570224d97618fbf43556aada646ef07ccdaa7237d9b682c
GET /gtag/js?id=UA-127636869-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 20 Apr 2024 07:59:24 GMT
expires: Sat, 20 Apr 2024 07:59:24 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 55437
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-VQ9S55LZTK | 142.250.74.168 | 200 OK | 99 kB |
URL GET HTTP/2www.googletagmanager.com/gtag/js?id=G-VQ9S55LZTK IP142.250.74.168:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (4179) Hasha6e4941dad8289b6d195b74bf098ca5b 0d343ca8fa8dffcdab6873456bac330bdd5683a2 b5eb4bdb993ffbd15ecf09acf6565ab0b54678af968ad42e765bfb1f2c44d4c5
GET /gtag/js?id=G-VQ9S55LZTK HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 20 Apr 2024 07:59:24 GMT
expires: Sat, 20 Apr 2024 07:59:24 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 98879
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=UA-283934328-1 | 142.250.74.168 | 200 OK | 73 kB |
URL GET HTTP/2www.googletagmanager.com/gtag/js?id=UA-283934328-1 IP142.250.74.168:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (4179) Hash8729baed22679cb5fba46bb1b2e37b59 f6d8d6ae2fb372d38bddf9c97311a660f2b864b8 fda29c7c58bd19b5ba2955f1412265ce344fcea21ac692ba1a8154a9451ee56f
GET /gtag/js?id=UA-283934328-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 20 Apr 2024 07:59:24 GMT
expires: Sat, 20 Apr 2024 07:59:24 GMT
cache-control: private, max-age=900
last-modified: Sat, 20 Apr 2024 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 73360
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.rndtechnosoft.com/css/bootstrap.min.css | 103.191.208.92 | 200 OK | 19 kB |
URL GET HTTP/3www.rndtechnosoft.com/css/bootstrap.min.css IP103.191.208.92:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerLet's Encrypt Subjectcpanel.rndtechnosoft.com Fingerprint23:34:71:78:70:6B:66:28:84:02:9D:09:57:DE:18:6C:96:D2:9B:29 ValidityWed, 17 Apr 2024 01:09:10 GMT - Tue, 16 Jul 2024 01:09:09 GMT
File typeASCII text, with very long lines (65324) Hash88d1b1c0fd447a75e6e60a61ca041aae 5b0f9ffc6551c19931b78b109438ffbe4dd7b61b cd5525bc887734465161af57feaa4d63c3f5681cb477816b23b6e17d94995707
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/bootstrap.min.css HTTP/1.1
Host: www.rndtechnosoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/404.php
Cookie: PHPSESSID=8991b1a8599f785b24b33ecb29c92a43
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=2592000
expires: Mon, 20 May 2024 07:59:24 GMT
content-type: text/css
last-modified: Wed, 26 Feb 2020 16:41:54 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 19141
date: Sat, 20 Apr 2024 07:59:24 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
|
|
| www.rndtechnosoft.com/css/animations.css | 103.191.208.92 | 200 OK | 3.4 kB |
URL GET HTTP/3www.rndtechnosoft.com/css/animations.css IP103.191.208.92:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerLet's Encrypt Subjectcpanel.rndtechnosoft.com Fingerprint23:34:71:78:70:6B:66:28:84:02:9D:09:57:DE:18:6C:96:D2:9B:29 ValidityWed, 17 Apr 2024 01:09:10 GMT - Tue, 16 Jul 2024 01:09:09 GMT
File typeASCII text, with very long lines (460) Hash3a3b70a909d421599f9b280d537d3acc 9f58385d45d3fbb4d436809d774f1d65c77694aa 99658a5fedce61c759501a1769bd6f1d90dd840c75ff5b7e8a05fdb96340cea7
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/animations.css HTTP/1.1
Host: www.rndtechnosoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/404.php
Cookie: PHPSESSID=8991b1a8599f785b24b33ecb29c92a43
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=2592000
expires: Mon, 20 May 2024 07:59:24 GMT
content-type: text/css
last-modified: Wed, 26 Feb 2020 16:41:54 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3370
date: Sat, 20 Apr 2024 07:59:24 GMT
server: LiteSpeed
|
|
| www.rndtechnosoft.com/css/font-awesome.css | 103.191.208.92 | 200 OK | 7.0 kB |
URL GET HTTP/3www.rndtechnosoft.com/css/font-awesome.css IP103.191.208.92:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerLet's Encrypt Subjectcpanel.rndtechnosoft.com Fingerprint23:34:71:78:70:6B:66:28:84:02:9D:09:57:DE:18:6C:96:D2:9B:29 ValidityWed, 17 Apr 2024 01:09:10 GMT - Tue, 16 Jul 2024 01:09:09 GMT
File typetroff or preprocessor input, ASCII text, with very long lines (372) Hash4984472821ed815cb098343467674df1 a112f6d8e90e76f7ac75fff36630d930e85abb9c 41f97db2438081cd63298d42f3d7568538bfd96859801a177c29169a085387b1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/font-awesome.css HTTP/1.1
Host: www.rndtechnosoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/404.php
Cookie: PHPSESSID=8991b1a8599f785b24b33ecb29c92a43
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=2592000
expires: Mon, 20 May 2024 07:59:24 GMT
content-type: text/css
last-modified: Wed, 26 Feb 2020 16:41:54 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 7000
date: Sat, 20 Apr 2024 07:59:24 GMT
server: LiteSpeed
|
|
| www.googletagmanager.com/gtag/js?id=G-3HD2DLK7TE | 142.250.74.168 | 200 OK | 88 kB |
URL GET HTTP/2www.googletagmanager.com/gtag/js?id=G-3HD2DLK7TE IP142.250.74.168:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (5955) Hash522437ff8aa6f42b9a79403302b2fa2f 39b74c8950ab7288231e6313e4ed0c4915d19f92 2efa47c9383b7c513e5205da40d7d418ec28719ff219180807d927c96d30e106
GET /gtag/js?id=G-3HD2DLK7TE HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 20 Apr 2024 07:59:24 GMT
expires: Sat, 20 Apr 2024 07:59:24 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 88498
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.rndtechnosoft.com/css/main.css | 103.191.208.92 | 200 OK | 57 kB |
URL GET HTTP/3www.rndtechnosoft.com/css/main.css IP103.191.208.92:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerLet's Encrypt Subjectcpanel.rndtechnosoft.com Fingerprint23:34:71:78:70:6B:66:28:84:02:9D:09:57:DE:18:6C:96:D2:9B:29 ValidityWed, 17 Apr 2024 01:09:10 GMT - Tue, 16 Jul 2024 01:09:09 GMT
Hash671af04eb60cbdb241773942a235b595 6c7190885ce48455ede5bd17ce4a09c8dea86e3c 93850797eb70ebdf02f9f65fa827bca9300af181f2aafd006cc176c0b4305733
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/main.css HTTP/1.1
Host: www.rndtechnosoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/404.php
Cookie: PHPSESSID=8991b1a8599f785b24b33ecb29c92a43
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=2592000
expires: Mon, 20 May 2024 07:59:24 GMT
content-type: text/css
last-modified: Fri, 02 Feb 2024 10:49:38 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 57379
date: Sat, 20 Apr 2024 07:59:24 GMT
server: LiteSpeed
|
|
| www.rndtechnosoft.com/js/vendor/modernizr-2.6.2.min.js | 103.191.208.92 | 200 OK | 6.0 kB |
URL GET HTTP/3www.rndtechnosoft.com/js/vendor/modernizr-2.6.2.min.js IP103.191.208.92:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerLet's Encrypt Subjectcpanel.rndtechnosoft.com Fingerprint23:34:71:78:70:6B:66:28:84:02:9D:09:57:DE:18:6C:96:D2:9B:29 ValidityWed, 17 Apr 2024 01:09:10 GMT - Tue, 16 Jul 2024 01:09:09 GMT
File typeJavaScript source, ASCII text, with very long lines (14756) Hash42306a279a9e831515347ae319181cd1 d069641242e4fe1beb6de8f53a77dd964c98bce0 cf25ec18f223f4c51ce1128a42e644cdc2244d88f89d1a51440d9dbe51f4efe8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/vendor/modernizr-2.6.2.min.js HTTP/1.1
Host: www.rndtechnosoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/404.php
Cookie: PHPSESSID=8991b1a8599f785b24b33ecb29c92a43
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=2592000
expires: Mon, 20 May 2024 07:59:24 GMT
content-type: text/javascript
last-modified: Tue, 06 Nov 2018 14:04:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 5958
date: Sat, 20 Apr 2024 07:59:24 GMT
server: LiteSpeed
|
|
| www.rndtechnosoft.com/js/main.js | 103.191.208.92 | 200 OK | 14 kB |
URL GET HTTP/3www.rndtechnosoft.com/js/main.js IP103.191.208.92:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerLet's Encrypt Subjectcpanel.rndtechnosoft.com Fingerprint23:34:71:78:70:6B:66:28:84:02:9D:09:57:DE:18:6C:96:D2:9B:29 ValidityWed, 17 Apr 2024 01:09:10 GMT - Tue, 16 Jul 2024 01:09:09 GMT
File typeJavaScript source, ASCII text, with very long lines (2522) Hashb9433beabae2cca42aef33ac141f0e1e 8b24c9ce4375ba449c67c4defd4e9635e1f2e053 fd5e928ce5984f1c16a79888bb761a47d77d18c2399ad1601197fa57a5b16b52
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/main.js HTTP/1.1
Host: www.rndtechnosoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/404.php
Cookie: PHPSESSID=8991b1a8599f785b24b33ecb29c92a43
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=2592000
expires: Mon, 20 May 2024 07:59:24 GMT
content-type: text/javascript
last-modified: Wed, 21 Oct 2020 07:30:10 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 13791
date: Sat, 20 Apr 2024 07:59:24 GMT
server: LiteSpeed
|
|
| www.rndtechnosoft.com/admin/images/footer/Logo-26802_108x81whiute.png | 103.191.208.92 | 200 OK | 7.9 kB |
URL GET HTTP/3www.rndtechnosoft.com/admin/images/footer/Logo-26802_108x81whiute.png IP103.191.208.92:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerLet's Encrypt Subjectcpanel.rndtechnosoft.com Fingerprint23:34:71:78:70:6B:66:28:84:02:9D:09:57:DE:18:6C:96:D2:9B:29 ValidityWed, 17 Apr 2024 01:09:10 GMT - Tue, 16 Jul 2024 01:09:09 GMT
File typePNG image data, 109 x 82, 8-bit/color RGBA, non-interlaced Hash320df563b23f8e20f2a1bf95618d1a85 1d5d3b34752724667c85a8510a1fa308ad6a6b59 ac9d331dda30a2741368bd43b472c37658d80cce11893352781bf8ea73134351
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /admin/images/footer/Logo-26802_108x81whiute.png HTTP/1.1
Host: www.rndtechnosoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/404.php
Cookie: PHPSESSID=8991b1a8599f785b24b33ecb29c92a43
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Sun, 20 Apr 2025 07:59:24 GMT
content-type: image/png
last-modified: Fri, 20 Oct 2023 10:33:16 GMT
accept-ranges: bytes
content-length: 7883
date: Sat, 20 Apr 2024 07:59:24 GMT
server: LiteSpeed
vary: User-Agent
|
|
| www.rndtechnosoft.com/admin/images/header/Logo-31570_Logo-57394_Logo-68690.png | 103.191.208.92 | 200 OK | 9.3 kB |
URL GET HTTP/3www.rndtechnosoft.com/admin/images/header/Logo-31570_Logo-57394_Logo-68690.png IP103.191.208.92:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerLet's Encrypt Subjectcpanel.rndtechnosoft.com Fingerprint23:34:71:78:70:6B:66:28:84:02:9D:09:57:DE:18:6C:96:D2:9B:29 ValidityWed, 17 Apr 2024 01:09:10 GMT - Tue, 16 Jul 2024 01:09:09 GMT
File typePNG image data, 200 x 70, 8-bit/color RGBA, non-interlaced Hash25f04b4a31f639c81f0cfbeda96c96dc 76ec28c689d2ffbc52f051a884b2bf3fd230690c d11a46a1649a8a528952e81e02ac4ea1c396495ae6871f66cd05c10413ccac62
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /admin/images/header/Logo-31570_Logo-57394_Logo-68690.png HTTP/1.1
Host: www.rndtechnosoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/404.php
Cookie: PHPSESSID=8991b1a8599f785b24b33ecb29c92a43
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Sun, 20 Apr 2025 07:59:24 GMT
content-type: image/png
last-modified: Wed, 04 Jan 2023 10:19:54 GMT
accept-ranges: bytes
content-length: 9303
date: Sat, 20 Apr 2024 07:59:24 GMT
server: LiteSpeed
vary: User-Agent
|
|
| www.rndtechnosoft.com/js/compressed.js | 103.191.208.92 | 200 OK | 111 kB |
URL GET HTTP/3www.rndtechnosoft.com/js/compressed.js IP103.191.208.92:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerLet's Encrypt Subjectcpanel.rndtechnosoft.com Fingerprint23:34:71:78:70:6B:66:28:84:02:9D:09:57:DE:18:6C:96:D2:9B:29 ValidityWed, 17 Apr 2024 01:09:10 GMT - Tue, 16 Jul 2024 01:09:09 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65449) Size111 kB (110695 bytes) Hash633bf836000f9e29acf39a57247b71e5 733899afeed360d2334f1a7cdc7bc86d78a0878f 69dda73d5e3c0d810d4d2d55216dc4af5c81f987e236e0a528f8c9e7cfc8ef1e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/compressed.js HTTP/1.1
Host: www.rndtechnosoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/404.php
Cookie: PHPSESSID=8991b1a8599f785b24b33ecb29c92a43
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=2592000
expires: Mon, 20 May 2024 07:59:24 GMT
content-type: text/javascript
last-modified: Tue, 06 Nov 2018 14:04:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 110695
date: Sat, 20 Apr 2024 07:59:24 GMT
server: LiteSpeed
|
|
| ems.rndtechnosoft.com/websites/6607e172952f5/connect.js | 103.191.208.92 | 200 OK | 1.6 kB |
URL GET HTTP/2ems.rndtechnosoft.com/websites/6607e172952f5/connect.js IP103.191.208.92:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerLet's Encrypt Subjectems.rndtechnosoft.com FingerprintD3:BB:F8:AE:D4:85:26:A0:48:77:D7:5C:82:1E:BA:67:57:E5:E3:32 ValidityFri, 19 Apr 2024 16:10:22 GMT - Thu, 18 Jul 2024 16:10:21 GMT
File typeJavaScript source, ASCII text, with very long lines (648) Hash169d9ea59bdbc4eb1e7932bfc5dfe764 4855947606c17dccac75a3a85d574c05f2a0cc8e 077094c4a45a54c12b5fe1151fa56eb329f4ca29d8f2164365615173b90a3232
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /websites/6607e172952f5/connect.js HTTP/1.1
Host: ems.rndtechnosoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-powered-by: PHP/7.4.33
cache-control: no-cache, private
access-control-allow-origin: *
content-type: application/javascript
set-cookie: XSRF-TOKEN=eyJpdiI6IlV5aEF1dG5YeWJmZlFFK05WdUU5cEE9PSIsInZhbHVlIjoiTUJnUTdKdkRjYW42K1Bvd3JyZ3g5eUpqMXNEZy9jVVVTWk1tZERvYkJMOEJnRXNtZ00vM0hVMUhyZk9vV2gvc0g0KzM3dkJ0UmJwVTl2SCtaTS9OekV3aTE3Wnovb1RHUXBtMlY3UVVCOVA0ZlQ5NEJVV2duL2Uxb3luUjF0QzQiLCJtYWMiOiI1NGMzNzc5M2YwZTY4ODBlNjZmZTE5MjdiZTQ4MDc5ZjFjNzQwNzU2ODk0NjQxMmQ0ODFmYTdhMDkxMTEyM2IyIiwidGFnIjoiIn0%3D; expires=Sat, 20-Apr-2024 09:59:25 GMT; Max-Age=7200; path=/; samesite=lax; secure
acelle_session=eyJpdiI6IjY2V01POUdDcVBKdFk0b3hHeFpGN0E9PSIsInZhbHVlIjoieThuSzVQNVVGV001SEZlSWhzd1BYVmdQbnk0L29QZFV0aGpTeURwbUVBN0I2UUFuL3lsNlpBMEZSWDJTR2ovclp6N3NyUnBFSHcrODk0UWNsQ1RsMWNmNE14ZFFSbHIwZHRqb0Q3YUFSQmcyVGs0RWl1WUNpNG9ZZzZoNCt1cysiLCJtYWMiOiI0NzI4MWY1YmQ2OGQ4NTU5MDgwMmY5MDBlY2YxNWZmMWJiODdjMGI4M2U3NzA5MWU5NjFmMGQyZjNjOWQ1MmEwIiwidGFnIjoiIn0%3D; expires=Sat, 20-Apr-2024 09:59:25 GMT; Max-Age=7200; path=/; httponly; samesite=lax; secure
content-length: 1619
content-encoding: br
vary: Accept-Encoding
date: Sat, 20 Apr 2024 07:59:25 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=UA-127636869-1&l=dataLayer&cx=c | 142.250.74.168 | 200 OK | 54 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=UA-127636869-1&l=dataLayer&cx=c IP142.250.74.168:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (1900) Hash47cec6a7c92cf7603785657626ac6a15 5d30e1d4edf846da2647772fdaae112d10fb10a6 c72bf1037b4201c01742c1098490a777c9f08a8ab7bc9851f9a48478d2527d6d
GET /gtag/js?id=UA-127636869-1&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 20 Apr 2024 07:59:25 GMT
expires: Sat, 20 Apr 2024 07:59:25 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 54386
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2 | 216.58.207.227 | 200 OK | 7.8 kB |
URL GET HTTP/2fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2 IP216.58.207.227:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 7840, version 1.0 Hash8d91ec1ca2d8b56640a47117e313a3e9 a9e9bafe64666f4595051a0e895b47a5fa39e67e 78bc3aa78faec288bbb3bf26c9a0fa4eb67b1e69da94a17233c5cab60525efdb
GET /s/poppins/v21/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.rndtechnosoft.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7840
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 17:31:54 GMT
expires: Fri, 18 Apr 2025 17:31:54 GMT
cache-control: public, max-age=31536000
age: 138451
last-modified: Fri, 22 Mar 2024 00:02:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-3HD2DLK7TE&l=dataLayer&cx=c | 142.250.74.168 | 200 OK | 88 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=G-3HD2DLK7TE&l=dataLayer&cx=c IP142.250.74.168:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (5955) Hash0e2bff5a9f1a74d90dd07eaffaaa64dd 1bddf71deb8e935b65bd36fd83309d9cbab58c13 35642d968469b3261973865306bb2d7247f500fcc54403f61357dbe96df4b03f
GET /gtag/js?id=G-3HD2DLK7TE&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 20 Apr 2024 07:59:25 GMT
expires: Sat, 20 Apr 2024 07:59:25 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 88514
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.googletagmanager.com/gtag/js?id=UA-283934328-1&l=dataLayer&cx=c | 142.250.74.168 | 200 OK | 73 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=UA-283934328-1&l=dataLayer&cx=c IP142.250.74.168:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (4179) Hash3476191b7a2e3e934e2ebb46309079bb 9048ff94a8081df874e3c03e98d227e5966f48c5 9a424f5d25fdda8fd1d4badf51ca15f3929e6c2926d9d586ee45a4e04d594420
GET /gtag/js?id=UA-283934328-1&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 20 Apr 2024 07:59:25 GMT
expires: Sat, 20 Apr 2024 07:59:25 GMT
cache-control: private, max-age=900
last-modified: Sat, 20 Apr 2024 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 73381
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 | 216.58.207.227 | 200 OK | 7.8 kB |
URL GET HTTP/2fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 IP216.58.207.227:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 7816, version 1.0 Hash25b0e113ca7cce3770d542736db26368 cb726212d5d525021752a1d8470a0fb593e0c49e 9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526
GET /s/poppins/v21/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.rndtechnosoft.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 20:25:17 GMT
expires: Tue, 15 Apr 2025 20:25:17 GMT
cache-control: public, max-age=31536000
age: 387248
last-modified: Fri, 22 Mar 2024 00:00:32 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 | 216.58.207.227 | 200 OK | 7.7 kB |
URL GET HTTP/2fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 IP216.58.207.227:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 7748, version 1.0 Hasha09f2fccfee35b7247b08a1a266f0328 0da2d17e738f46d2a09e6fb7969da451719a9820 cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446
GET /s/poppins/v21/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.rndtechnosoft.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 03:25:26 GMT
expires: Wed, 16 Apr 2025 03:25:26 GMT
cache-control: public, max-age=31536000
age: 362039
last-modified: Fri, 22 Mar 2024 00:01:14 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtm.js?id=GTM-NZP4MQXS | 142.250.74.168 | 200 OK | 63 kB |
URL GET HTTP/3www.googletagmanager.com/gtm.js?id=GTM-NZP4MQXS IP142.250.74.168:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (2165) Hash6c43ea70c05ade7aaba16c2e3c263552 ced8063fffe490b495eed887566bc168907650f7 fa2a421624b8997a1f108e53cfce6fb52764935eb3f9cde13cf51a8ce0680cd8
GET /gtm.js?id=GTM-NZP4MQXS HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 20 Apr 2024 07:59:25 GMT
expires: Sat, 20 Apr 2024 07:59:25 GMT
cache-control: private, max-age=900
last-modified: Sat, 20 Apr 2024 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 63371
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.googletagmanager.com/gtm.js?id=GTM-PGF8QBW | 142.250.74.168 | 200 OK | 83 kB |
URL GET HTTP/3www.googletagmanager.com/gtm.js?id=GTM-PGF8QBW IP142.250.74.168:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (2212) Hash135ec2aaffe65b14df61b9367496b099 7c1a6d7bf2bfecf6a989584e30b8faf3ccb80b92 cde2263968f3d77007b2b58788a9232dba85f847c46e0ff033a82d984066c83f
GET /gtm.js?id=GTM-PGF8QBW HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 20 Apr 2024 07:59:25 GMT
expires: Sat, 20 Apr 2024 07:59:25 GMT
cache-control: private, max-age=900
last-modified: Sat, 20 Apr 2024 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 82851
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.googletagmanager.com/gtag/js?id=G-TVHYLDE4P1&l=dataLayer&cx=c | 142.250.74.168 | 200 OK | 97 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=G-TVHYLDE4P1&l=dataLayer&cx=c IP142.250.74.168:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (5955) Hash03e6c0d2e10938fd8286bee127874446 57b0f5d7020da674ecb0b0c9577b7396394983ac d035f73499895761a51f8e35f06e5c5434fc615dea5a962b03d3660b124b3bcd
GET /gtag/js?id=G-TVHYLDE4P1&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 20 Apr 2024 07:59:25 GMT
expires: Sat, 20 Apr 2024 07:59:25 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 97302
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.rndtechnosoft.com/admin/images/logo/loader.gif | 103.191.208.92 | 200 OK | 167 kB |
URL GET HTTP/3www.rndtechnosoft.com/admin/images/logo/loader.gif IP103.191.208.92:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerLet's Encrypt Subjectcpanel.rndtechnosoft.com Fingerprint23:34:71:78:70:6B:66:28:84:02:9D:09:57:DE:18:6C:96:D2:9B:29 ValidityWed, 17 Apr 2024 01:09:10 GMT - Tue, 16 Jul 2024 01:09:09 GMT
File typeGIF image data, version 89a, 300 x 300 Size167 kB (166589 bytes) Hashfabaa60bd14b5523dc5ae8bbe6072ec1 1f46ac5e62dfb78d88dfb1df8e0101a96daa8164 4c05015d7abf4a65e88ab3d6631b2b5d687f2dd576ab47bc27f7e63387a73272
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /admin/images/logo/loader.gif HTTP/1.1
Host: www.rndtechnosoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/404.php
Cookie: PHPSESSID=8991b1a8599f785b24b33ecb29c92a43; _ga_VQ9S55LZTK=GS1.1.1713599964.1.0.1713599964.0.0.0; _ga=GA1.1.550048247.1713599964
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Sun, 20 Apr 2025 07:59:25 GMT
content-type: image/gif
last-modified: Mon, 14 Jun 2021 09:50:24 GMT
accept-ranges: bytes
content-length: 166589
date: Sat, 20 Apr 2024 07:59:25 GMT
server: LiteSpeed
vary: User-Agent
|
|
| www.googletagmanager.com/gtag/js?id=AW-11428680380&l=dataLayer&cx=c | 142.250.74.168 | 200 OK | 98 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=AW-11428680380&l=dataLayer&cx=c IP142.250.74.168:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (5945) Hash66708a3d1fee1345b803375e9e732531 1399403f626756d4d2127abb07016603999c7f82 0ff5e655f943512f67d8a9dcc90b150311cba8951aaf68aeefc8af239d99511a
GET /gtag/js?id=AW-11428680380&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 20 Apr 2024 07:59:26 GMT
expires: Sat, 20 Apr 2024 07:59:26 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 98280
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.googletagmanager.com/gtag/destination?id=AW-11428680380&l=dataLayer&cx=c | 142.250.74.168 | 200 OK | 98 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/destination?id=AW-11428680380&l=dataLayer&cx=c IP142.250.74.168:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (5945) Hash83c24e9d696eb277101ae2edf9589911 f4792b6028af9d1941c94cae07c5740b39077f45 d948a8c3cc01679df849e6b15486855d991939a18cf6d78c4ef122403eb30e34
GET /gtag/destination?id=AW-11428680380&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 20 Apr 2024 07:59:26 GMT
expires: Sat, 20 Apr 2024 07:59:26 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 98374
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.rndtechnosoft.com/img/parallax/footer_bg.png | 103.191.208.92 | 200 OK | 285 kB |
URL GET HTTP/3www.rndtechnosoft.com/img/parallax/footer_bg.png IP103.191.208.92:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerLet's Encrypt Subjectcpanel.rndtechnosoft.com Fingerprint23:34:71:78:70:6B:66:28:84:02:9D:09:57:DE:18:6C:96:D2:9B:29 ValidityWed, 17 Apr 2024 01:09:10 GMT - Tue, 16 Jul 2024 01:09:09 GMT
File typePNG image data, 1920 x 700, 8-bit colormap, non-interlaced Size285 kB (284716 bytes) Hasha902dae91a77b913f4fffb107d5b26d3 6a8df5c3e5181803496bbf832a8e3a8ff6b87a8d 66744f7e63876f3d90b2356d9ed328e6c2d0ac97a51273f14364d3a1bc5b586d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /img/parallax/footer_bg.png HTTP/1.1
Host: www.rndtechnosoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/css/main.css
Cookie: PHPSESSID=8991b1a8599f785b24b33ecb29c92a43; _ga_VQ9S55LZTK=GS1.1.1713599964.1.0.1713599964.0.0.0; _ga=GA1.1.550048247.1713599964
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Sun, 20 Apr 2025 07:59:25 GMT
content-type: image/png
last-modified: Mon, 24 Aug 2020 05:50:20 GMT
accept-ranges: bytes
content-length: 284716
date: Sat, 20 Apr 2024 07:59:25 GMT
server: LiteSpeed
vary: User-Agent
|
|
| www.rndtechnosoft.com/img/404.jpg | 103.191.208.92 | 200 OK | 1.4 MB |
URL GET HTTP/3www.rndtechnosoft.com/img/404.jpg IP103.191.208.92:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerLet's Encrypt Subjectcpanel.rndtechnosoft.com Fingerprint23:34:71:78:70:6B:66:28:84:02:9D:09:57:DE:18:6C:96:D2:9B:29 ValidityWed, 17 Apr 2024 01:09:10 GMT - Tue, 16 Jul 2024 01:09:09 GMT
File typeJPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=1300, bps=158, PhotometricInterpretation=RGB, orientation=upper-left, width=1920], baseline, precision 8, 1920x1300, components 3 Size1.4 MB (1427165 bytes) Hashd0b9c5446ad8c08f426942e2eb452753 4030400ca503c7d300cb2ded6ddcf6b4519c675d 7f556eaa676c06b2e7eaf579f5a4c10b929380718d60b8fe55132a92ab59aeda
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /img/404.jpg HTTP/1.1
Host: www.rndtechnosoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/css/main.css
Cookie: PHPSESSID=8991b1a8599f785b24b33ecb29c92a43; _ga_VQ9S55LZTK=GS1.1.1713599964.1.0.1713599964.0.0.0; _ga=GA1.1.550048247.1713599964
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Sun, 20 Apr 2025 07:59:25 GMT
content-type: image/jpeg
last-modified: Tue, 06 Nov 2018 14:04:44 GMT
accept-ranges: bytes
content-length: 1427165
date: Sat, 20 Apr 2024 07:59:25 GMT
server: LiteSpeed
vary: User-Agent
|
|
| www.rndtechnosoft.com/img/texture_dark.jpg | 103.191.208.92 | 200 OK | 132 kB |
URL GET HTTP/3www.rndtechnosoft.com/img/texture_dark.jpg IP103.191.208.92:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerLet's Encrypt Subjectcpanel.rndtechnosoft.com Fingerprint23:34:71:78:70:6B:66:28:84:02:9D:09:57:DE:18:6C:96:D2:9B:29 ValidityWed, 17 Apr 2024 01:09:10 GMT - Tue, 16 Jul 2024 01:09:09 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1920x1575, components 3 Size132 kB (132349 bytes) Hashe1fd63a942f683d1c872cd1b294eea7f f7729fb210371904b50c9fb2cb572d0b563bb6d3 f51c7c5a328c95c2fd191e262a3f1d9d3d302aa88fb4bd826d1dca7e46429a28
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /img/texture_dark.jpg HTTP/1.1
Host: www.rndtechnosoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/css/main.css
Cookie: PHPSESSID=8991b1a8599f785b24b33ecb29c92a43; _ga_VQ9S55LZTK=GS1.1.1713599964.1.0.1713599964.0.0.0; _ga=GA1.1.550048247.1713599964
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Sun, 20 Apr 2025 07:59:25 GMT
content-type: image/jpeg
last-modified: Mon, 24 Aug 2020 05:57:02 GMT
accept-ranges: bytes
content-length: 132349
date: Sat, 20 Apr 2024 07:59:25 GMT
server: LiteSpeed
vary: User-Agent
|
|
| www.rndtechnosoft.com/fonts/fontawesome-webfont-v=4.7.0.woff2 | 103.191.208.92 | 200 OK | 77 kB |
URL GET HTTP/3www.rndtechnosoft.com/fonts/fontawesome-webfont-v=4.7.0.woff2 IP103.191.208.92:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerLet's Encrypt Subjectcpanel.rndtechnosoft.com Fingerprint23:34:71:78:70:6B:66:28:84:02:9D:09:57:DE:18:6C:96:D2:9B:29 ValidityWed, 17 Apr 2024 01:09:10 GMT - Tue, 16 Jul 2024 01:09:09 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 77160, version 4.459 Hashaf7ae505a9eed503f8b8e6982036873e d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c 2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /fonts/fontawesome-webfont-v=4.7.0.woff2 HTTP/1.1
Host: www.rndtechnosoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/css/font-awesome.css
Cookie: PHPSESSID=8991b1a8599f785b24b33ecb29c92a43; _ga_VQ9S55LZTK=GS1.1.1713599964.1.0.1713599964.0.0.0; _ga=GA1.1.550048247.1713599964
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Sat, 27 Apr 2024 07:59:25 GMT
content-type: font/woff2
last-modified: Tue, 06 Nov 2018 14:04:30 GMT
accept-ranges: bytes
content-length: 77160
date: Sat, 20 Apr 2024 07:59:25 GMT
server: LiteSpeed
vary: User-Agent
|
|
| www.rndtechnosoft.com/img/parallax/copyright_bg.jpg | 103.191.208.92 | 200 OK | 62 kB |
URL GET HTTP/3www.rndtechnosoft.com/img/parallax/copyright_bg.jpg IP103.191.208.92:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerLet's Encrypt Subjectcpanel.rndtechnosoft.com Fingerprint23:34:71:78:70:6B:66:28:84:02:9D:09:57:DE:18:6C:96:D2:9B:29 ValidityWed, 17 Apr 2024 01:09:10 GMT - Tue, 16 Jul 2024 01:09:09 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1920x800, components 3 Hashad4f22d28adb7f7b466f60602c245306 908fa1c18cba97b782bc24eff776cbaeda544892 c3d65a726ac390fecf0d6af5547d14fa4156a19106f84d3f2ab4b69a9d08a26b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /img/parallax/copyright_bg.jpg HTTP/1.1
Host: www.rndtechnosoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/css/main.css
Cookie: PHPSESSID=8991b1a8599f785b24b33ecb29c92a43; _ga_VQ9S55LZTK=GS1.1.1713599964.1.0.1713599964.0.0.0; _ga=GA1.1.550048247.1713599964
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Sun, 20 Apr 2025 07:59:25 GMT
content-type: image/jpeg
last-modified: Mon, 24 Aug 2020 06:02:30 GMT
accept-ranges: bytes
content-length: 62448
date: Sat, 20 Apr 2024 07:59:25 GMT
server: LiteSpeed
vary: User-Agent
|
|
| www.google.com/pagead/1p-conversion/11428680380/?random=1713599966159&cv=11&fst=1713599966159&bg=ffffff&guid=ON&async=1>m=45be44h0v9172240245z8810191683za201&gcd=13l3l3l2l1&dma_cps=sypham&dma=1&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.rndtechnosoft.com%2F404.php&label=ukpHCIa1yP4YELylz8kq&hn=www.google.com&frm=0&value=0&bttype=purchase&npa=1&pscdl=noapi&auid=368927344.1713599966&fdr=SA&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4 | 142.250.74.164 | 200 OK | 1.6 kB |
URL GET HTTP/3www.google.com/pagead/1p-conversion/11428680380/?random=1713599966159&cv=11&fst=1713599966159&bg=ffffff&guid=ON&async=1>m=45be44h0v9172240245z8810191683za201&gcd=13l3l3l2l1&dma_cps=sypham&dma=1&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.rndtechnosoft.com%2F404.php&label=ukpHCIa1yP4YELylz8kq&hn=www.google.com&frm=0&value=0&bttype=purchase&npa=1&pscdl=noapi&auid=368927344.1713599966&fdr=SA&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4 IP142.250.74.164:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT
File typeJavaScript source, ASCII text, with very long lines (2598), with no line terminators Hash97dfef6c321d2cf8e55ac712acf1fef3 0aa7796c9f4365f220ae2dcf889feafe7e40e437 43530c25a5c000b649e0f4343fc0bd3748e0f0b77f1e1c63aeee4baea3f627f5
GET /pagead/1p-conversion/11428680380/?random=1713599966159&cv=11&fst=1713599966159&bg=ffffff&guid=ON&async=1>m=45be44h0v9172240245z8810191683za201&gcd=13l3l3l2l1&dma_cps=sypham&dma=1&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.rndtechnosoft.com%2F404.php&label=ukpHCIa1yP4YELylz8kq&hn=www.google.com&frm=0&value=0&bttype=purchase&npa=1&pscdl=noapi&auid=368927344.1713599966&fdr=SA&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 20 Apr 2024 07:59:26 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1575
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js | 142.250.74.35 | 200 OK | 206 kB |
URL GET HTTP/2www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js IP142.250.74.35:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeJavaScript source, ASCII text, with very long lines (597) Size206 kB (206057 bytes) Hash8326c23d6b3eed35bc3e62f3294587fd edda17e74e53e85073e5eac9cb6be2163dbfa23c 57f03d3ba66117edc152646341120dd3a1d7d71b9a98a3723af5a8ae61bcb3ab
GET /recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.rndtechnosoft.com
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 206057
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 23:55:24 GMT
expires: Tue, 15 Apr 2025 23:55:24 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Apr 2024 02:01:04 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 374642
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.rndtechnosoft.com/admin/images/header/Favicon-76160_favicon%20white%20background.png | 103.191.208.92 | 200 OK | 19 kB |
URL GET HTTP/3www.rndtechnosoft.com/admin/images/header/Favicon-76160_favicon%20white%20background.png IP103.191.208.92:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerLet's Encrypt Subjectcpanel.rndtechnosoft.com Fingerprint23:34:71:78:70:6B:66:28:84:02:9D:09:57:DE:18:6C:96:D2:9B:29 ValidityWed, 17 Apr 2024 01:09:10 GMT - Tue, 16 Jul 2024 01:09:09 GMT
File typePNG image data, 284 x 284, 8-bit/color RGBA, non-interlaced Hashddf6426165f9042f40cc466a5a1d8fa4 691c40cbb0843f814f45232c7843a847fad861d7 c9270bf9996780d8fd7eba99d2c6c3eed00b5580291d3610f9d895fbe80e088a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /admin/images/header/Favicon-76160_favicon%20white%20background.png HTTP/1.1
Host: www.rndtechnosoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/404.php
Cookie: PHPSESSID=8991b1a8599f785b24b33ecb29c92a43; _ga_VQ9S55LZTK=GS1.1.1713599964.1.0.1713599964.0.0.0; _ga=GA1.1.550048247.1713599964; _ga_3HD2DLK7TE=GS1.1.1713599965.1.0.1713599965.0.0.0; _ga_TVHYLDE4P1=GS1.1.1713599965.1.0.1713599965.0.0.0; _gcl_au=1.1.368927344.1713599966; _ga_VW4PQRSMYF=GS1.1.1713599966.1.0.1713599966.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Sun, 20 Apr 2025 07:59:26 GMT
content-type: image/png
last-modified: Sat, 25 Sep 2021 06:11:10 GMT
accept-ranges: bytes
content-length: 18736
date: Sat, 20 Apr 2024 07:59:26 GMT
server: LiteSpeed
vary: User-Agent
|
|
| static.getbutton.io/widget/bundle.js | 172.67.74.247 | 200 OK | 123 kB |
URL GET HTTP/2static.getbutton.io/widget/bundle.js IP172.67.74.247:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerGoogle Trust Services LLC Subjectgetbutton.io Fingerprint54:E4:32:AA:1C:CC:59:4A:FE:D2:A5:DF:9C:B1:67:EC:70:40:D9:80 ValidityTue, 12 Mar 2024 02:23:32 GMT - Mon, 10 Jun 2024 02:23:31 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65475) Size123 kB (123314 bytes) Hash47527f5be5b465d2d3fdbdb9779c397a adaf5f878c26d7801f895677166a21bfa635dc6f 9b1dc76101401add4413d1476e5a5dac5a038a2dff56aba37287874a1503ea9f
GET /widget/bundle.js HTTP/1.1
Host: static.getbutton.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rndtechnosoft.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 20 Apr 2024 07:59:25 GMT
content-type: application/javascript
last-modified: Thu, 18 Apr 2024 11:06:25 GMT
etag: W/"6620feb1-68d7a"
expires: Sat, 20 Apr 2024 08:09:23 GMT
cache-control: max-age=14400
access-control-allow-origin: *
cf-cache-status: HIT
age: 10202
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xgnFF9GQ4z%2BmUPPp64u7wkl%2F42tGo%2F7XFRDbPfipfLD2A1SRd6nDK7C4VgkVuBFXgz9pTJkuGZZWxhvIZb6oCnBmRmi6zLPaL%2BuiomWhsxJ6qnMTfIRwTvp%2Bhx%2B2d7ITLvM35j0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8773984aff7656c5-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.google.no/pagead/1p-conversion/11428680380/?random=1465426461&cv=11&fst=1713599966159&bg=ffffff&guid=ON&async=1>m=45be44h0v9172240245z8810191683za201&gcd=13l3l3l2l1&dma_cps=sypham&dma=1&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.rndtechnosoft.com%2F404.php&label=ukpHCIa1yP4YELylz8kq&hn=www.google.com&frm=0&value=0&npa=1&pscdl=noapi&auid=368927344.1713599966&fdr=SA&gcp=2&sscte=1&ct_cookie_present=1&fmt=3&ct_cookie_present=false&sscte=1&crd=CLHBsQIIsMGxAgi5wbECCJjBsQI&eitems=ChAI8M-NsQYQh-u3r6P2kOg0Eh0A2yzU0oJNiZnw65e9lXI0AXfgxIt1lXheYM3yrg&pscrd=IhMI_vK1qqnQhQMVh8g7Ah0YAQrZMgIIAzICCAQyAggHMgIICDICCAkyAggKMgIIAjICCAs6Hmh0dHBzOi8vd3d3LnJuZHRlY2hub3NvZnQuY29tLw&ipr=y | 142.250.74.163 | 200 OK | 42 B |
URL GET HTTP/2www.google.no/pagead/1p-conversion/11428680380/?random=1465426461&cv=11&fst=1713599966159&bg=ffffff&guid=ON&async=1>m=45be44h0v9172240245z8810191683za201&gcd=13l3l3l2l1&dma_cps=sypham&dma=1&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.rndtechnosoft.com%2F404.php&label=ukpHCIa1yP4YELylz8kq&hn=www.google.com&frm=0&value=0&npa=1&pscdl=noapi&auid=368927344.1713599966&fdr=SA&gcp=2&sscte=1&ct_cookie_present=1&fmt=3&ct_cookie_present=false&sscte=1&crd=CLHBsQIIsMGxAgi5wbECCJjBsQI&eitems=ChAI8M-NsQYQh-u3r6P2kOg0Eh0A2yzU0oJNiZnw65e9lXI0AXfgxIt1lXheYM3yrg&pscrd=IhMI_vK1qqnQhQMVh8g7Ah0YAQrZMgIIAzICCAQyAggHMgIICDICCAkyAggKMgIIAjICCAs6Hmh0dHBzOi8vd3d3LnJuZHRlY2hub3NvZnQuY29tLw&ipr=y IP142.250.74.163:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerGoogle Trust Services LLC Subject*.google.no Fingerprint4E:BD:F9:72:97:67:A2:4B:EE:E4:B0:03:CD:C8:F3:30:53:27:53:1D ValidityMon, 18 Mar 2024 20:50:06 GMT - Mon, 10 Jun 2024 20:50:05 GMT
File typeGIF image data, version 89a, 1 x 1 Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-conversion/11428680380/?random=1465426461&cv=11&fst=1713599966159&bg=ffffff&guid=ON&async=1>m=45be44h0v9172240245z8810191683za201&gcd=13l3l3l2l1&dma_cps=sypham&dma=1&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.rndtechnosoft.com%2F404.php&label=ukpHCIa1yP4YELylz8kq&hn=www.google.com&frm=0&value=0&npa=1&pscdl=noapi&auid=368927344.1713599966&fdr=SA&gcp=2&sscte=1&ct_cookie_present=1&fmt=3&ct_cookie_present=false&sscte=1&crd=CLHBsQIIsMGxAgi5wbECCJjBsQI&eitems=ChAI8M-NsQYQh-u3r6P2kOg0Eh0A2yzU0oJNiZnw65e9lXI0AXfgxIt1lXheYM3yrg&pscrd=IhMI_vK1qqnQhQMVh8g7Ah0YAQrZMgIIAzICCAQyAggHMgIICDICCAkyAggKMgIIAjICCAs6Hmh0dHBzOi8vd3d3LnJuZHRlY2hub3NvZnQuY29tLw&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rndtechnosoft.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 20 Apr 2024 07:59:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| embed.tawk.to/_s/v4/app/660e2260004/js/twk-runtime.js | 104.22.25.131 | 200 OK | 15 kB |
URL GET HTTP/3embed.tawk.to/_s/v4/app/660e2260004/js/twk-runtime.js IP104.22.25.131:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerGoogle Trust Services LLC Subjecttawk.to Fingerprint83:4E:6B:81:26:A0:67:FF:06:8D:D3:DC:E5:70:3F:A3:4B:08:C5:F5 ValidityThu, 28 Mar 2024 00:13:59 GMT - Wed, 26 Jun 2024 00:13:58 GMT
File typeJavaScript source, ASCII text, with very long lines (2306), with no line terminators Hash44fd6460256eed06d411cfcd6e73561b bbe5f331b1827fa44a41b4b1aec99213d7bd5e4e 2d1cdc5e3baad1b8d46ca182e036848b57aa19fa4ea5eb66187ac15c3aaad284
GET /_s/v4/app/660e2260004/js/twk-runtime.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.rndtechnosoft.com
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:59:27 GMT
content-type: application/javascript
last-modified: Thu, 04 Apr 2024 03:46:14 GMT
etag: W/"44fd6460256eed06d411cfcd6e73561b"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 877398527aecb52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-4fe9d5dd.js | 104.22.25.131 | 200 OK | 56 kB |
URL GET HTTP/3embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-4fe9d5dd.js IP104.22.25.131:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerGoogle Trust Services LLC Subjecttawk.to Fingerprint83:4E:6B:81:26:A0:67:FF:06:8D:D3:DC:E5:70:3F:A3:4B:08:C5:F5 ValidityThu, 28 Mar 2024 00:13:59 GMT - Wed, 26 Jun 2024 00:13:58 GMT
File typeJavaScript source, ASCII text, with very long lines (906), with no line terminators Hash1c5ecf371149feca23bd895ba9dfec4d 6f6213ae4c63d959441572d232f0425467ed05de fb193c2bcf1a14030cea8d72baa20ab7b1cf88f9e90adb31895279beedf6bf84
GET /_s/v4/app/660e2260004/js/twk-chunk-4fe9d5dd.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:59:32 GMT
content-type: application/javascript
last-modified: Thu, 04 Apr 2024 03:46:14 GMT
etag: W/"1c5ecf371149feca23bd895ba9dfec4d"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: MISS
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 1397081
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87739873edbf569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-2d0b383d.js | 104.22.25.131 | 200 OK | 42 kB |
URL GET HTTP/3embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-2d0b383d.js IP104.22.25.131:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerGoogle Trust Services LLC Subjecttawk.to Fingerprint83:4E:6B:81:26:A0:67:FF:06:8D:D3:DC:E5:70:3F:A3:4B:08:C5:F5 ValidityThu, 28 Mar 2024 00:13:59 GMT - Wed, 26 Jun 2024 00:13:58 GMT
File typeJavaScript source, ASCII text, with very long lines (699), with no line terminators Hash838903127a65ec440893b4945c40ca4a 827f3e5341f56fa4473d53b788af41ec6bf21b8b 89f08c4a66c9a737c6155b8313e87b36687fe65bfc9a1ba1783aeace487bcde3
GET /_s/v4/app/660e2260004/js/twk-chunk-2d0b383d.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:59:32 GMT
content-type: application/javascript
last-modified: Thu, 04 Apr 2024 03:46:14 GMT
etag: W/"838903127a65ec440893b4945c40ca4a"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: MISS
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 1397082
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87739873ddaf569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| embed.tawk.to/_s/v4/assets/fonts/tawk-font-icon-2.woff2?55755728= | 104.22.25.131 | 200 OK | 10 kB |
URL GET HTTP/3embed.tawk.to/_s/v4/assets/fonts/tawk-font-icon-2.woff2?55755728= IP104.22.25.131:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerGoogle Trust Services LLC Subjecttawk.to Fingerprint83:4E:6B:81:26:A0:67:FF:06:8D:D3:DC:E5:70:3F:A3:4B:08:C5:F5 ValidityThu, 28 Mar 2024 00:13:59 GMT - Wed, 26 Jun 2024 00:13:58 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 10520, version 1.0 Hash054b3b66812d0a4b87ffc6776f0a42f1 683eb11f2439b9edc3290899fb47806166b5182e f4d4fcb3cdd9f021bca50bedb83de05b77fd23b3c98ad36b103fea8c0744ea71
GET /_s/v4/assets/fonts/tawk-font-icon-2.woff2?55755728= HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.rndtechnosoft.com
DNT: 1
Connection: keep-alive
Referer: https://embed.tawk.to/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:59:32 GMT
content-type: font/woff2
content-length: 10520
last-modified: Sat, 22 May 2021 07:25:13 GMT
etag: "054b3b66812d0a4b87ffc6776f0a42f1"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 877398752d1cb52d-OSL
alt-svc: h3=":443"; ma=86400
|
|
| embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-common.js | 104.22.25.131 | 200 OK | 50 kB |
URL GET HTTP/3embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-common.js IP104.22.25.131:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerGoogle Trust Services LLC Subjecttawk.to Fingerprint83:4E:6B:81:26:A0:67:FF:06:8D:D3:DC:E5:70:3F:A3:4B:08:C5:F5 ValidityThu, 28 Mar 2024 00:13:59 GMT - Wed, 26 Jun 2024 00:13:58 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65458) Hash00600786ca50d48a5a4a55f2d48ca09c cdb5b6b1952065e30f3d7bfa6acb282c5d7f42cd b0b620cc047e7bff01fc82ed63b6854d1dbd5b528fdd14c7959837dd59adb30e
GET /_s/v4/app/660e2260004/js/twk-chunk-common.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.rndtechnosoft.com
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:59:27 GMT
content-type: application/javascript
last-modified: Thu, 04 Apr 2024 03:46:14 GMT
etag: W/"00600786ca50d48a5a4a55f2d48ca09c"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 877398527aeab52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| tawk.link/avatar/male-09.svg | 172.67.162.230 | | 13 kB |
URL GET tawk.link/avatar/male-09.svg IP172.67.162.230:0
Requested byhttps://www.rndtechnosoft.com/404.php
File typeSVG Scalable Vector Graphics image Hash64dda06540f22ad6691a2884ee29c5ad de01d14d1098cce664b0ec58bb66fe31049d592b eaa3d6c4a12cdcf9768586031f5b9c8dc2d31244215c492e2d21cf7e1b5b383a
GET /avatar/male-09.svg HTTP/1.1
Host: tawk.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 20 Apr 2024 07:59:44 GMT
content-type: image/svg+xml
x-powered-by: Express
cache-control: public, max-age=2592000, immutable
last-modified: Thu, 04 Apr 2024 12:42:21 GMT
etag: W/"1404-18ea921b28e"
strict-transport-security: max-age=600
cf-cache-status: HIT
age: 688561
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=answABFxWdseobLH1k5FfVOm%2FFwN3GC1ACLWqHEte5tAm3ZKO1Ocrgz%2BjBxMA4MVCQEA66NG%2FsScVOdWg2c9esIJ3gO3yZQ6QWSdRhCd6e9rgtzgCEMLxV09i4A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 877398bd0e94712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-9294da6c.js | 104.22.25.131 | 200 OK | 18 kB |
URL GET HTTP/3embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-9294da6c.js IP104.22.25.131:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerGoogle Trust Services LLC Subjecttawk.to Fingerprint83:4E:6B:81:26:A0:67:FF:06:8D:D3:DC:E5:70:3F:A3:4B:08:C5:F5 ValidityThu, 28 Mar 2024 00:13:59 GMT - Wed, 26 Jun 2024 00:13:58 GMT
File typeJavaScript source, ASCII text, with very long lines (18229), with no line terminators Hash34171aeb4a8a2b1a28add18e27dfce02 f410acdae61158f940e9dd1b0eed87dcd7c6dee0 266550a7339062b1f111b38963a74d39b33d18710cf58cb06f5c7850d6faa163
GET /_s/v4/app/660e2260004/js/twk-chunk-9294da6c.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:59:32 GMT
content-type: application/javascript
last-modified: Thu, 04 Apr 2024 03:46:14 GMT
etag: W/"34171aeb4a8a2b1a28add18e27dfce02"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: MISS
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 1397082
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87739873ad92569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-24d8db78.js | 104.22.25.131 | 200 OK | 113 kB |
URL GET HTTP/3embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-24d8db78.js IP104.22.25.131:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerGoogle Trust Services LLC Subjecttawk.to Fingerprint83:4E:6B:81:26:A0:67:FF:06:8D:D3:DC:E5:70:3F:A3:4B:08:C5:F5 ValidityThu, 28 Mar 2024 00:13:59 GMT - Wed, 26 Jun 2024 00:13:58 GMT
File typeJavaScript source, ASCII text, with very long lines (65464) Size113 kB (113007 bytes) Hashd67e8e92f153ef2b6332e4a84051896e 46076321b1ef81d170a664e6fb452e5a4070bb62 befa5027d9afa506072bde391860033cd8d96041767287585ddd5462810f9db8
GET /_s/v4/app/660e2260004/js/twk-chunk-24d8db78.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:59:32 GMT
content-type: application/javascript
last-modified: Thu, 04 Apr 2024 03:46:14 GMT
etag: W/"d67e8e92f153ef2b6332e4a84051896e"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: MISS
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 1397081
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87739873fdcc569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| embed.tawk.to/_s/v4/app/660e2260004/css/max-widget.css | 104.22.25.131 | 200 OK | 78 kB |
URL GET HTTP/3embed.tawk.to/_s/v4/app/660e2260004/css/max-widget.css IP104.22.25.131:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerGoogle Trust Services LLC Subjecttawk.to Fingerprint83:4E:6B:81:26:A0:67:FF:06:8D:D3:DC:E5:70:3F:A3:4B:08:C5:F5 ValidityThu, 28 Mar 2024 00:13:59 GMT - Wed, 26 Jun 2024 00:13:58 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hashaa429d098305efeb3d236b3872f2da79 e0d6e416eb7c1c8f10ec76f835eda23d5c1d0ab0 5285275760ce24f97fc85a2aa7a705e2bfcdebe875a6028441382d2ca36b3f1c
GET /_s/v4/app/660e2260004/css/max-widget.css HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:59:32 GMT
content-type: text/css
cache-control: public, max-age=2592000, immutable
cf-bgj: minify
cf-polished: origSize=78232
access-control-allow-origin: *
etag: W/"05d886069cda40a8e20243d226b04764"
last-modified: Thu, 04 Apr 2024 03:46:14 GMT
strict-transport-security: max-age=0; includeSubDomains; preload
x-cache-status: MISS
cf-cache-status: HIT
age: 1397080
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87739874de96569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| ems.rndtechnosoft.com/websites/650ef17c6c903/connect.js | 103.191.208.92 | 500 Internal Server Error | 0 B |
URL GET HTTP/2ems.rndtechnosoft.com/websites/650ef17c6c903/connect.js IP103.191.208.92:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerLet's Encrypt Subjectems.rndtechnosoft.com FingerprintD3:BB:F8:AE:D4:85:26:A0:48:77:D7:5C:82:1E:BA:67:57:E5:E3:32 ValidityFri, 19 Apr 2024 16:10:22 GMT - Thu, 18 Jul 2024 16:10:21 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /websites/650ef17c6c903/connect.js HTTP/1.1
Host: ems.rndtechnosoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 500 Internal Server Error
x-powered-by: PHP/7.4.33
cache-control: no-cache, private
content-type: text/html; charset=UTF-8
set-cookie: XSRF-TOKEN=eyJpdiI6IkczcnVhVzV1V0dmQ1BEdDFDOG5FdlE9PSIsInZhbHVlIjoiQzJyTndoREw3Y1Zkb1B0MnZ0ZE1EdlVhWXpYS0JzOVVTOE82bktKL1Zad2t4NGQxZU04K096TnZta3Rkd29NTFROUFlFeG5WbGVCcVlldGQ2Y0hMMW1sNkVsMDdnMGdVaVJjcEZzVXA0cWp6cUkvOExadjBJQ1prZms4SnFiTmwiLCJtYWMiOiJhMDAyYjVmYTY1MDQ5ZDdhZTAzZjE0ZTQzMDI2M2ViZjZhODg4YmIwNzUwMzA1MzlkMTRhMzFkNjE3NWIxNGQwIiwidGFnIjoiIn0%3D; expires=Sat, 20-Apr-2024 09:59:25 GMT; Max-Age=7200; path=/; samesite=lax; secure
acelle_session=eyJpdiI6IlkrZEJaa0ZqU2p4bHE0QTZOVWo2OWc9PSIsInZhbHVlIjoiRXVzYlpzYkxha0lzMStwN2J3T1BHM2txQkpERDlSYTNUeEtaT01IK2lORHBxandaRmhkY1dkMEZCbU9UcmNreXRJcTZmWjNMc09qUHdWZzVWUjE5bWthQVhHSFcyRnJSWXVyY2hUa1plU2QzSXBUd0xzS1VzTHY0ZytzajJZem0iLCJtYWMiOiIyOTgyZGZkNThjNDQ4ODY4MGYzZjY3OWMzYmVjZDhhY2E2NjBiMGYxYTgzZjZmYjJiNjc1NzU5Yjc2Y2Y1NTYwIiwidGFnIjoiIn0%3D; expires=Sat, 20-Apr-2024 09:59:25 GMT; Max-Age=7200; path=/; httponly; samesite=lax; secure
content-encoding: br
vary: Accept-Encoding
date: Sat, 20 Apr 2024 07:59:25 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
|
|
| embed.tawk.to/_s/v4/app/660e2260004/css/bubble-widget.css | 104.22.25.131 | 200 OK | 14 kB |
URL GET HTTP/3embed.tawk.to/_s/v4/app/660e2260004/css/bubble-widget.css IP104.22.25.131:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerGoogle Trust Services LLC Subjecttawk.to Fingerprint83:4E:6B:81:26:A0:67:FF:06:8D:D3:DC:E5:70:3F:A3:4B:08:C5:F5 ValidityThu, 28 Mar 2024 00:13:59 GMT - Wed, 26 Jun 2024 00:13:58 GMT
File typeASCII text, with very long lines (13521), with no line terminators Hash950518e32fd92957181f766f08d3cf98 9fe20c86b818d3576e9d70e6ed091964cb8b7427 2f56f47d64037d5aa3a96b50c840580e5549fee6f9fafff8af3d1821d189fa5c
GET /_s/v4/app/660e2260004/css/bubble-widget.css HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:59:32 GMT
content-type: text/css
cache-control: public, max-age=2592000, immutable
cf-bgj: minify
cf-polished: origSize=13594
access-control-allow-origin: *
etag: W/"ce7913b80c763449b3895d46419f7a6b"
last-modified: Thu, 04 Apr 2024 03:46:14 GMT
strict-transport-security: max-age=0; includeSubDomains; preload
x-cache-status: HIT
cf-cache-status: HIT
age: 1397081
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87739874ae64569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| static.getbutton.io/widget-send-button/js/init.js | 172.67.74.247 | 302 Found | 429 kB |
URL GET HTTP/2static.getbutton.io/widget-send-button/js/init.js IP172.67.74.247:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerGoogle Trust Services LLC Subjectgetbutton.io Fingerprint54:E4:32:AA:1C:CC:59:4A:FE:D2:A5:DF:9C:B1:67:EC:70:40:D9:80 ValidityTue, 12 Mar 2024 02:23:32 GMT - Mon, 10 Jun 2024 02:23:31 GMT
Size429 kB (429434 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /widget-send-button/js/init.js HTTP/1.1
Host: static.getbutton.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Sat, 20 Apr 2024 07:59:25 GMT
content-type: text/html
location: https://static.getbutton.io/widget/bundle.js
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Hm80%2BbVJLBGU5PjJKRPW2Cwy%2FUigH5IMyJfzPblyzo8hhHuHRYzfyu1iTo0h3vyVrXzy%2B7bzU0obvhuBL6ff9VXfqg79BLV5B243q7g0cUBaP6p0bUkGJum8FhY%2BrBSVwEMEzS4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87739849be3f56c5-OSL
X-Firefox-Spdy: h2
|
|
| va.tawk.to/v1/session/start | 104.22.25.131 | 200 OK | 0 B |
URL OPTIONS HTTP/3va.tawk.to/v1/session/start IP104.22.25.131:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerGoogle Trust Services LLC Subjecttawk.to Fingerprint83:4E:6B:81:26:A0:67:FF:06:8D:D3:DC:E5:70:3F:A3:4B:08:C5:F5 ValidityThu, 28 Mar 2024 00:13:59 GMT - Wed, 26 Jun 2024 00:13:58 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /v1/session/start HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.rndtechnosoft.com/
Origin: https://www.rndtechnosoft.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:59:27 GMT
content-type: text/html; charset=utf-8
x-served-by: visitor-application-preemptive-mvbx
access-control-allow-origin: https://www.rndtechnosoft.com
access-control-allow-credentials: true
access-control-max-age: 3600
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
cache-control: public, s-maxage=600, max-age=600
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 877398567da6b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| embed.tawk.to/_s/v4/app/660e2260004/css/message-preview.css | 104.22.25.131 | 200 OK | 41 kB |
URL GET HTTP/3embed.tawk.to/_s/v4/app/660e2260004/css/message-preview.css IP104.22.25.131:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerGoogle Trust Services LLC Subjecttawk.to Fingerprint83:4E:6B:81:26:A0:67:FF:06:8D:D3:DC:E5:70:3F:A3:4B:08:C5:F5 ValidityThu, 28 Mar 2024 00:13:59 GMT - Wed, 26 Jun 2024 00:13:58 GMT
File typeASCII text, with very long lines (40772), with no line terminators Hash96be1f6983c01fe07004e163e0c6ce8a 46334521ca7c554fb7608e4e93cba4c6fac72f77 26c00c91aa26f8a81dc41fe7ca0db1dfd849180200596138437f2ca57357dd0f
GET /_s/v4/app/660e2260004/css/message-preview.css HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:59:32 GMT
content-type: text/css
cache-control: public, max-age=2592000, immutable
cf-bgj: minify
cf-polished: origSize=40905
access-control-allow-origin: *
etag: W/"7060c2e317491c949f29253a1286dad2"
last-modified: Thu, 04 Apr 2024 03:46:14 GMT
strict-transport-security: max-age=0; includeSubDomains; preload
x-cache-status: MISS
cf-cache-status: HIT
age: 1397081
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87739874ae68569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| embed.tawk.to/_s/v4/app/660e2260004/js/twk-vendor.js | 104.22.25.131 | 200 OK | 83 kB |
URL GET HTTP/3embed.tawk.to/_s/v4/app/660e2260004/js/twk-vendor.js IP104.22.25.131:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerGoogle Trust Services LLC Subjecttawk.to Fingerprint83:4E:6B:81:26:A0:67:FF:06:8D:D3:DC:E5:70:3F:A3:4B:08:C5:F5 ValidityThu, 28 Mar 2024 00:13:59 GMT - Wed, 26 Jun 2024 00:13:58 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /_s/v4/app/660e2260004/js/twk-vendor.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.rndtechnosoft.com
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:59:27 GMT
content-type: application/javascript
last-modified: Thu, 04 Apr 2024 03:46:14 GMT
etag: W/"3b341e35b39f6195793ecaf5db7c1d63"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 877398526adbb52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-48f3b594.js | 104.22.25.131 | 200 OK | 19 kB |
URL GET HTTP/3embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-48f3b594.js IP104.22.25.131:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerGoogle Trust Services LLC Subjecttawk.to Fingerprint83:4E:6B:81:26:A0:67:FF:06:8D:D3:DC:E5:70:3F:A3:4B:08:C5:F5 ValidityThu, 28 Mar 2024 00:13:59 GMT - Wed, 26 Jun 2024 00:13:58 GMT
File typeJavaScript source, ASCII text, with very long lines (18963), with no line terminators Hasheef7f2f4cac5d7366ee947ab6d9ccaa6 1ee4496c42c0abd1bb905b45acfc1ed9c9d1b586 2872298ae965ac31b7c24d05243960848a3ac0937386b08a019f1a48e2cb9e5f
GET /_s/v4/app/660e2260004/js/twk-chunk-48f3b594.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:59:32 GMT
content-type: application/javascript
last-modified: Thu, 04 Apr 2024 03:46:14 GMT
etag: W/"eef7f2f4cac5d7366ee947ab6d9ccaa6"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 1397081
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87739873ddb1569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| vsa29.tawk.to/s/?k=662375e25625d7d34e3dcd1d&cver=0&pop=false&asver=109&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI2MzBkY2M0YjM3ODk4OTEyZTk2NjIwZDYiLCJ2aWQiOiI2MzBkY2M0YjM3ODk4OTEyZTk2NjIwZDYtc25UOTRJaGQyaGdXZDBXQjBLcThpIiwic2lkIjoiNjYyMzc1ZTI1NjI1ZDdkMzRlM2RjZDFkIiwiaWF0IjoxNzEzNTk5OTcxLCJleHAiOjE3MTM2MDE3NzEsImp0aSI6Ilp0WUpzbEJNbWpnWnVId3N0R0M0NSJ9.z9GXcH9cTr-2VvKFQXuSxAPR9vdAiILRC860Pfj6ZQKp6LnMun9b4_7ISdn9q7uoQRbCgS9n7N2FhkH4Gqapdw&EIO=3&transport=websocket&__t=OxwX8H8 | 104.22.24.131 | 101 Switching Protocols | 0 B |
URL GET HTTP/1.1vsa29.tawk.to/s/?k=662375e25625d7d34e3dcd1d&cver=0&pop=false&asver=109&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI2MzBkY2M0YjM3ODk4OTEyZTk2NjIwZDYiLCJ2aWQiOiI2MzBkY2M0YjM3ODk4OTEyZTk2NjIwZDYtc25UOTRJaGQyaGdXZDBXQjBLcThpIiwic2lkIjoiNjYyMzc1ZTI1NjI1ZDdkMzRlM2RjZDFkIiwiaWF0IjoxNzEzNTk5OTcxLCJleHAiOjE3MTM2MDE3NzEsImp0aSI6Ilp0WUpzbEJNbWpnWnVId3N0R0M0NSJ9.z9GXcH9cTr-2VvKFQXuSxAPR9vdAiILRC860Pfj6ZQKp6LnMun9b4_7ISdn9q7uoQRbCgS9n7N2FhkH4Gqapdw&EIO=3&transport=websocket&__t=OxwX8H8 IP104.22.24.131:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerGoogle Trust Services LLC Subjecttawk.to Fingerprint83:4E:6B:81:26:A0:67:FF:06:8D:D3:DC:E5:70:3F:A3:4B:08:C5:F5 ValidityThu, 28 Mar 2024 00:13:59 GMT - Wed, 26 Jun 2024 00:13:58 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s/?k=662375e25625d7d34e3dcd1d&cver=0&pop=false&asver=109&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI2MzBkY2M0YjM3ODk4OTEyZTk2NjIwZDYiLCJ2aWQiOiI2MzBkY2M0YjM3ODk4OTEyZTk2NjIwZDYtc25UOTRJaGQyaGdXZDBXQjBLcThpIiwic2lkIjoiNjYyMzc1ZTI1NjI1ZDdkMzRlM2RjZDFkIiwiaWF0IjoxNzEzNTk5OTcxLCJleHAiOjE3MTM2MDE3NzEsImp0aSI6Ilp0WUpzbEJNbWpnWnVId3N0R0M0NSJ9.z9GXcH9cTr-2VvKFQXuSxAPR9vdAiILRC860Pfj6ZQKp6LnMun9b4_7ISdn9q7uoQRbCgS9n7N2FhkH4Gqapdw&EIO=3&transport=websocket&__t=OxwX8H8 HTTP/1.1
Host: vsa29.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www.rndtechnosoft.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: CsQTgdsKtl+3Ch9cBaIkbQ==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Sat, 20 Apr 2024 07:59:33 GMT
Connection: upgrade
upgrade: websocket
sec-websocket-accept: Yyfyi8SAffCR2Oj5ElcBVZ49GyY=
sec-websocket-extensions: permessage-deflate
strict-transport-security: max-age=0; includeSubDomains; preload
CF-Cache-Status: DYNAMIC
X-Content-Type-Options: nosniff
Server: cloudflare
CF-RAY: 87739874db735697-OSL
alt-svc: h3=":443"; ma=86400
|
|
| embed.tawk.to/_s/v4/app/660e2260004/js/twk-main.js | 104.22.25.131 | 200 OK | 121 B |
URL GET HTTP/2embed.tawk.to/_s/v4/app/660e2260004/js/twk-main.js IP104.22.25.131:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerGoogle Trust Services LLC Subjecttawk.to Fingerprint83:4E:6B:81:26:A0:67:FF:06:8D:D3:DC:E5:70:3F:A3:4B:08:C5:F5 ValidityThu, 28 Mar 2024 00:13:59 GMT - Wed, 26 Jun 2024 00:13:58 GMT
File typeASCII text, with no line terminators Hash3b41342f7e3be590563e8e3b5ff770c7 c9ca54d23ea78b320f080b76e22bb6b4e704d55f ef04d89daeed55613a63a4af62c147ce86e4a7f22c8ce700dd6bdb11ab187e43
GET /_s/v4/app/660e2260004/js/twk-main.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.rndtechnosoft.com
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 20 Apr 2024 07:59:27 GMT
content-type: application/javascript
last-modified: Thu, 04 Apr 2024 03:46:14 GMT
etag: W/"da5bb1dc647470204df0e49f5afac2de"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 877398524c2b569f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| embed.tawk.to/_s/v4/app/660e2260004/js/twk-app.js | 104.22.25.131 | 200 OK | 151 B |
URL GET HTTP/3embed.tawk.to/_s/v4/app/660e2260004/js/twk-app.js IP104.22.25.131:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerGoogle Trust Services LLC Subjecttawk.to Fingerprint83:4E:6B:81:26:A0:67:FF:06:8D:D3:DC:E5:70:3F:A3:4B:08:C5:F5 ValidityThu, 28 Mar 2024 00:13:59 GMT - Wed, 26 Jun 2024 00:13:58 GMT
File typeASCII text, with no line terminators Hash04a9862af6efaf787bc8fb8e99ba6987 a57bb8f258eb1a60dc3b288a608ad8ef9fbecef3 ecc74c329a700e3e6ca29aed5ffe3c166cf39670c8b11573fa7f837f79a71b5c
GET /_s/v4/app/660e2260004/js/twk-app.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.rndtechnosoft.com
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:59:27 GMT
content-type: application/javascript
last-modified: Thu, 04 Apr 2024 03:46:14 GMT
etag: W/"e736e189edb5d0d9d5b8e7f23dd9114a"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 877398527aefb52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.googleapis.com/css?family=Poppins:100,200,300,400,500,600,700,800,900 | 142.250.74.106 | 200 OK | 6.7 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Poppins:100,200,300,400,500,600,700,800,900 IP142.250.74.106:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typeASCII text, with very long lines (6838), with no line terminators Hash2016e22e6f4f03740a17b4b80a2d67b2 6a7ef7c27102282560111488c0dd76dcaf2a6b4e 9664e8764e767340eee10e27be239fb1f700e9a7a155952a071039b77ee8ba57
GET /css?family=Poppins:100,200,300,400,500,600,700,800,900 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 20 Apr 2024 07:59:24 GMT
date: Sat, 20 Apr 2024 07:59:24 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| embed.tawk.to/_s/v4/app/660e2260004/css/min-widget.css | 104.22.25.131 | 200 OK | 25 kB |
URL GET HTTP/3embed.tawk.to/_s/v4/app/660e2260004/css/min-widget.css IP104.22.25.131:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerGoogle Trust Services LLC Subjecttawk.to Fingerprint83:4E:6B:81:26:A0:67:FF:06:8D:D3:DC:E5:70:3F:A3:4B:08:C5:F5 ValidityThu, 28 Mar 2024 00:13:59 GMT - Wed, 26 Jun 2024 00:13:58 GMT
File typeASCII text, with very long lines (24751), with no line terminators Hashd4f9ad34fae3ba64cbc48057dc47e968 f8d0d55dc6e9b5d53f74b0b8bfc5e2edbdb0618d 2b5b9f68ace12b789b1371204754547021dcbf3e9df630e7e22b49ee56e05b8c
GET /_s/v4/app/660e2260004/css/min-widget.css HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:59:32 GMT
content-type: text/css
cache-control: public, max-age=2592000, immutable
cf-bgj: minify
cf-polished: origSize=24831
access-control-allow-origin: *
etag: W/"5742a34aaab2a5983c7c11cdeef1c0ee"
last-modified: Thu, 04 Apr 2024 03:46:14 GMT
strict-transport-security: max-age=0; includeSubDomains; preload
x-cache-status: HIT
cf-cache-status: HIT
age: 1397081
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 877398747e33569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js | 151.101.193.229 | 200 OK | 303 kB |
URL GET HTTP/2cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js IP151.101.193.229:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
Size303 kB (302554 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /emojione/2.2.7/lib/js/emojione.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
etag: W/"49dda-cp9vjKV4fYl0Ow7X6yf9dkBr+YU"
content-encoding: br
accept-ranges: bytes
date: Sat, 20 Apr 2024 07:59:32 GMT
age: 9148624
x-served-by: cache-fra-eddf8230136-FRA, cache-hel1410029-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 41275
X-Firefox-Spdy: h2
|
|
| va.tawk.to/log-performance/v3 | 104.22.25.131 | 200 OK | 5 B |
URL POST HTTP/3va.tawk.to/log-performance/v3 IP104.22.25.131:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerGoogle Trust Services LLC Subjecttawk.to Fingerprint83:4E:6B:81:26:A0:67:FF:06:8D:D3:DC:E5:70:3F:A3:4B:08:C5:F5 ValidityThu, 28 Mar 2024 00:13:59 GMT - Wed, 26 Jun 2024 00:13:58 GMT
File typeASCII text, with no line terminators Hash38a8a3e3b4b6a6e4f295b2e0f899b1f0 474f5fac3d23afbaf16c5a31c98dfcd956e4c186 7652c7891ed06bce4174ab00a6ee9721daf6a4286929213ecb7daf42cd866615
POST /log-performance/v3 HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rndtechnosoft.com/
Content-Type: application/json; charset=utf-8
Content-Length: 95
Origin: https://www.rndtechnosoft.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:59:34 GMT
content-type: text/html; charset=utf-8
x-served-by: visitor-application-preemptive-4mll
access-control-allow-origin: https://www.rndtechnosoft.com
access-control-allow-credentials: true
access-control-max-age: 3600
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8773987cdd59569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.rndtechnosoft.com/404.php | 103.191.208.92 | 200 OK | 18 kB |
URL User Request GET HTTP/2www.rndtechnosoft.com/404.php IP103.191.208.92:443
CertificateIssuerLet's Encrypt Subjectcpanel.rndtechnosoft.com Fingerprint23:34:71:78:70:6B:66:28:84:02:9D:09:57:DE:18:6C:96:D2:9B:29 ValidityWed, 17 Apr 2024 01:09:10 GMT - Tue, 16 Jul 2024 01:09:09 GMT
File typeJavaScript source, ASCII text, with CRLF, LF line terminators Hashf71fe5fa610ad01d1307d0c255874c9b 10e4d5d4a31ab45a7a8009ac8b06b01aa1b55bdb 22f23e7649bdd77116542fa574bece16959d0159406e54f9d8995c00f54e7022
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /404.php HTTP/1.1
Host: www.rndtechnosoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-powered-by: PHP/7.4.33
set-cookie: PHPSESSID=8991b1a8599f785b24b33ecb29c92a43; path=/; secure
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-type: text/html;charset=UTF-8
content-encoding: br
vary: Accept-Encoding,User-Agent
date: Sat, 20 Apr 2024 07:59:24 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| va.tawk.to/v1/widget-settings?propertyId=630dcc4b37898912e96620d6&widgetId=1gbmuc2sq&sv=null | 104.22.25.131 | 200 OK | 3.7 kB |
URL GET HTTP/3va.tawk.to/v1/widget-settings?propertyId=630dcc4b37898912e96620d6&widgetId=1gbmuc2sq&sv=null IP104.22.25.131:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerGoogle Trust Services LLC Subjecttawk.to Fingerprint83:4E:6B:81:26:A0:67:FF:06:8D:D3:DC:E5:70:3F:A3:4B:08:C5:F5 ValidityThu, 28 Mar 2024 00:13:59 GMT - Wed, 26 Jun 2024 00:13:58 GMT
File typetroff or preprocessor input, Unicode text, UTF-8 text, with very long lines (4294), with no line terminators Hash846e3e82b810eb78276ce42ac5108bef 89edbc691761809746d91908e24366a49473d8ff f9674f9919e65962957ec9c5e23a39e47af11301d733b23a2749b8302487e68f
GET /v1/widget-settings?propertyId=630dcc4b37898912e96620d6&widgetId=1gbmuc2sq&sv=null HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rndtechnosoft.com/
Origin: https://www.rndtechnosoft.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:59:28 GMT
content-type: application/json
x-served-by: visitor-application-preemptive-pffs
access-control-allow-origin: *
access-control-max-age: 3600
access-control-allow-methods: GET,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
cache-control: public, max-age=7200, s-maxage=1800
etag: W/"2-26-0"
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
x-content-type-options: nosniff
server: cloudflare
cf-ray: 877398566da0b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-2c776523.js | 104.22.25.131 | 200 OK | 9.9 kB |
URL GET HTTP/3embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-2c776523.js IP104.22.25.131:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerGoogle Trust Services LLC Subjecttawk.to Fingerprint83:4E:6B:81:26:A0:67:FF:06:8D:D3:DC:E5:70:3F:A3:4B:08:C5:F5 ValidityThu, 28 Mar 2024 00:13:59 GMT - Wed, 26 Jun 2024 00:13:58 GMT
File typeJavaScript source, ASCII text, with very long lines (10730), with no line terminators Hash2ed46b3171b0456fda29f3bfda5f846e 0c4834c6f96e8640bcdd46c48396a1f1f7d287b2 0c9f49f27e34e05a7e4159648875b32880d3d986ee2d70d78d6138df5e9f1654
GET /_s/v4/app/660e2260004/js/twk-chunk-2c776523.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:59:32 GMT
content-type: application/javascript
last-modified: Thu, 04 Apr 2024 03:46:14 GMT
etag: W/"70aec2dd89cac4933594c25b71d61f46"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: MISS
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 1397082
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87739873ad8f569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-vendors.js | 104.22.25.131 | 200 OK | 217 kB |
URL GET HTTP/3embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-vendors.js IP104.22.25.131:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerGoogle Trust Services LLC Subjecttawk.to Fingerprint83:4E:6B:81:26:A0:67:FF:06:8D:D3:DC:E5:70:3F:A3:4B:08:C5:F5 ValidityThu, 28 Mar 2024 00:13:59 GMT - Wed, 26 Jun 2024 00:13:58 GMT
Size217 kB (217197 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /_s/v4/app/660e2260004/js/twk-chunk-vendors.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.rndtechnosoft.com
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:59:27 GMT
content-type: application/javascript
last-modified: Thu, 04 Apr 2024 03:46:14 GMT
etag: W/"1c73b4eb89bbe24ecf154b671ddbcafc"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 877398527ae8b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-2d0b9454.js | 104.22.25.131 | 200 OK | 535 B |
URL GET HTTP/3embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-2d0b9454.js IP104.22.25.131:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerGoogle Trust Services LLC Subjecttawk.to Fingerprint83:4E:6B:81:26:A0:67:FF:06:8D:D3:DC:E5:70:3F:A3:4B:08:C5:F5 ValidityThu, 28 Mar 2024 00:13:59 GMT - Wed, 26 Jun 2024 00:13:58 GMT
File typeJavaScript source, ASCII text, with very long lines (557), with no line terminators Hash3f4a6312d60391bda06462d7321ffcdc 9f09295297840a36d2ac95344b39b0af1a729f82 28d61df22c079e51c45b6f87db516f03cb85cf3f2c3a970be369944c3f91bcf1
GET /_s/v4/app/660e2260004/js/twk-chunk-2d0b9454.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:59:32 GMT
content-type: application/javascript
last-modified: Thu, 04 Apr 2024 03:46:14 GMT
etag: W/"c506281367048d4a134c9affbc68c8c6"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: MISS
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 1397081
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87739873edc4569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| embed.tawk.to/630dcc4b37898912e96620d6/1gbmuc2sq | 104.22.25.131 | 200 OK | 2.1 kB |
URL GET HTTP/2embed.tawk.to/630dcc4b37898912e96620d6/1gbmuc2sq IP104.22.25.131:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerGoogle Trust Services LLC Subjecttawk.to Fingerprint83:4E:6B:81:26:A0:67:FF:06:8D:D3:DC:E5:70:3F:A3:4B:08:C5:F5 ValidityThu, 28 Mar 2024 00:13:59 GMT - Wed, 26 Jun 2024 00:13:58 GMT
File typeJavaScript source, ASCII text, with very long lines (2310), with no line terminators Hashb3ffdd9b4fb159294af502e57c2c48ae f31f1fb2e6e6ef7e5e3032eb0fb86aa7add1f3f5 89c174bb54ac599146fe2d5e6c30b627a3c146a1515bfbb6300e82eefc93b6fe
GET /630dcc4b37898912e96620d6/1gbmuc2sq HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.rndtechnosoft.com
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 20 Apr 2024 07:59:26 GMT
content-type: application/x-javascript
access-control-allow-origin: *
cache-control: public, max-age=7200, s-maxage=3600
etag: W/"stable-v4-660e2260004"
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87739849ad45569f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| va.tawk.to/log-performance/v3 | 104.22.25.131 | 200 OK | 0 B |
URL OPTIONS HTTP/3va.tawk.to/log-performance/v3 IP104.22.25.131:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerGoogle Trust Services LLC Subjecttawk.to Fingerprint83:4E:6B:81:26:A0:67:FF:06:8D:D3:DC:E5:70:3F:A3:4B:08:C5:F5 ValidityThu, 28 Mar 2024 00:13:59 GMT - Wed, 26 Jun 2024 00:13:58 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /log-performance/v3 HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.rndtechnosoft.com/
Origin: https://www.rndtechnosoft.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:59:33 GMT
content-type: text/html; charset=utf-8
x-served-by: visitor-application-preemptive-tc2t
access-control-allow-origin: https://www.rndtechnosoft.com
access-control-allow-credentials: true
access-control-max-age: 3600
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
cache-control: public, s-maxage=600, max-age=600
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87739878a9b6569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.google.com/recaptcha/api.js | 142.250.74.164 | 200 OK | 850 B |
URL GET HTTP/2www.google.com/recaptcha/api.js IP142.250.74.164:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerGoogle Trust Services LLC Subjectwww.google.com FingerprintCD:48:2A:0C:60:1D:37:5A:D4:D5:A9:F7:DE:A0:2B:5E:2F:29:76:73 ValidityMon, 18 Mar 2024 20:38:49 GMT - Mon, 10 Jun 2024 20:38:48 GMT
File typeJavaScript source, ASCII text, with very long lines (850), with no line terminators Hash7c792e0e26e2bd74f8e53c7da0d6b8a2 a43099555724ee257f66ca05de55cb56a14c8fca d782a59ef4bab02833ce95b5e9c9bd622f328683659f43a34f1dbcf54f1d4443
GET /recaptcha/api.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
expires: Sat, 20 Apr 2024 07:59:24 GMT
date: Sat, 20 Apr 2024 07:59:24 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-f1565420.js | 104.22.25.131 | 200 OK | 11 kB |
URL GET HTTP/3embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-f1565420.js IP104.22.25.131:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerGoogle Trust Services LLC Subjecttawk.to Fingerprint83:4E:6B:81:26:A0:67:FF:06:8D:D3:DC:E5:70:3F:A3:4B:08:C5:F5 ValidityThu, 28 Mar 2024 00:13:59 GMT - Wed, 26 Jun 2024 00:13:58 GMT
File typeJavaScript source, ASCII text, with very long lines (11139), with no line terminators Hash63c6e2590e1cbc9c6098bd422232fcc6 bc333c909e3ade0408528d73dc29c249a12f917b 2ddb45ffe9fe95232c05138dccb4076e28d78fb105f2cd5ca6dee0f85bcbdb6f
GET /_s/v4/app/660e2260004/js/twk-chunk-f1565420.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:59:32 GMT
content-type: application/javascript
last-modified: Thu, 04 Apr 2024 03:46:14 GMT
etag: W/"63c6e2590e1cbc9c6098bd422232fcc6"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: MISS
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 1397082
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87739873bda4569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| embed.tawk.to/_s/v4/assets/images/attention-grabbers/168-r-br.svg | 104.22.25.131 | 200 OK | 22 kB |
URL GET HTTP/3embed.tawk.to/_s/v4/assets/images/attention-grabbers/168-r-br.svg IP104.22.25.131:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerGoogle Trust Services LLC Subjecttawk.to Fingerprint83:4E:6B:81:26:A0:67:FF:06:8D:D3:DC:E5:70:3F:A3:4B:08:C5:F5 ValidityThu, 28 Mar 2024 00:13:59 GMT - Wed, 26 Jun 2024 00:13:58 GMT
File typeSVG Scalable Vector Graphics image Hashf66e029841759471d2ec78b86760dca7 d9db67738984efee3dd63cb144759ac0521c7dda 5108ef00c54e1f6ce859852834135447457cf19ee19aa7b0fb55b64b425cb526
GET /_s/v4/assets/images/attention-grabbers/168-r-br.svg HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:59:32 GMT
content-type: image/svg+xml
last-modified: Sat, 22 May 2021 07:25:19 GMT
etag: W/"f66e029841759471d2ec78b86760dca7"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: MISS
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 2158923
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 877398751edd569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.google.com/pagead/1p-conversion/11428680380/?random=1465426461&cv=11&fst=1713599966159&bg=ffffff&guid=ON&async=1>m=45be44h0v9172240245z8810191683za201&gcd=13l3l3l2l1&dma_cps=sypham&dma=1&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.rndtechnosoft.com%2F404.php&label=ukpHCIa1yP4YELylz8kq&hn=www.google.com&frm=0&value=0&npa=1&pscdl=noapi&auid=368927344.1713599966&fdr=SA&gcp=2&sscte=1&ct_cookie_present=1&fmt=3&ct_cookie_present=false&sscte=1&crd=CLHBsQIIsMGxAgi5wbECCJjBsQI&eitems=ChAI8M-NsQYQh-u3r6P2kOg0Eh0A2yzU0oJNiZnw65e9lXI0AXfgxIt1lXheYM3yrg&pscrd=IhMI_vK1qqnQhQMVh8g7Ah0YAQrZMgIIAzICCAQyAggHMgIICDICCAkyAggKMgIIAjICCAs6Hmh0dHBzOi8vd3d3LnJuZHRlY2hub3NvZnQuY29tLw | 142.250.74.164 | 302 Found | 42 B |
URL GET HTTP/3www.google.com/pagead/1p-conversion/11428680380/?random=1465426461&cv=11&fst=1713599966159&bg=ffffff&guid=ON&async=1>m=45be44h0v9172240245z8810191683za201&gcd=13l3l3l2l1&dma_cps=sypham&dma=1&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.rndtechnosoft.com%2F404.php&label=ukpHCIa1yP4YELylz8kq&hn=www.google.com&frm=0&value=0&npa=1&pscdl=noapi&auid=368927344.1713599966&fdr=SA&gcp=2&sscte=1&ct_cookie_present=1&fmt=3&ct_cookie_present=false&sscte=1&crd=CLHBsQIIsMGxAgi5wbECCJjBsQI&eitems=ChAI8M-NsQYQh-u3r6P2kOg0Eh0A2yzU0oJNiZnw65e9lXI0AXfgxIt1lXheYM3yrg&pscrd=IhMI_vK1qqnQhQMVh8g7Ah0YAQrZMgIIAzICCAQyAggHMgIICDICCAkyAggKMgIIAjICCAs6Hmh0dHBzOi8vd3d3LnJuZHRlY2hub3NvZnQuY29tLw IP142.250.74.164:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/1p-conversion/11428680380/?random=1465426461&cv=11&fst=1713599966159&bg=ffffff&guid=ON&async=1>m=45be44h0v9172240245z8810191683za201&gcd=13l3l3l2l1&dma_cps=sypham&dma=1&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.rndtechnosoft.com%2F404.php&label=ukpHCIa1yP4YELylz8kq&hn=www.google.com&frm=0&value=0&npa=1&pscdl=noapi&auid=368927344.1713599966&fdr=SA&gcp=2&sscte=1&ct_cookie_present=1&fmt=3&ct_cookie_present=false&sscte=1&crd=CLHBsQIIsMGxAgi5wbECCJjBsQI&eitems=ChAI8M-NsQYQh-u3r6P2kOg0Eh0A2yzU0oJNiZnw65e9lXI0AXfgxIt1lXheYM3yrg&pscrd=IhMI_vK1qqnQhQMVh8g7Ah0YAQrZMgIIAzICCAQyAggHMgIICDICCAkyAggKMgIIAjICCAs6Hmh0dHBzOi8vd3d3LnJuZHRlY2hub3NvZnQuY29tLw HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 20 Apr 2024 07:59:26 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/pagead/1p-conversion/11428680380/?random=1465426461&cv=11&fst=1713599966159&bg=ffffff&guid=ON&async=1>m=45be44h0v9172240245z8810191683za201&gcd=13l3l3l2l1&dma_cps=sypham&dma=1&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.rndtechnosoft.com%2F404.php&label=ukpHCIa1yP4YELylz8kq&hn=www.google.com&frm=0&value=0&npa=1&pscdl=noapi&auid=368927344.1713599966&fdr=SA&gcp=2&sscte=1&ct_cookie_present=1&fmt=3&ct_cookie_present=false&sscte=1&crd=CLHBsQIIsMGxAgi5wbECCJjBsQI&eitems=ChAI8M-NsQYQh-u3r6P2kOg0Eh0A2yzU0oJNiZnw65e9lXI0AXfgxIt1lXheYM3yrg&pscrd=IhMI_vK1qqnQhQMVh8g7Ah0YAQrZMgIIAzICCAQyAggHMgIICDICCAkyAggKMgIIAjICCAs6Hmh0dHBzOi8vd3d3LnJuZHRlY2hub3NvZnQuY29tLw&ipr=y
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| embed.tawk.to/_s/v4/app/660e2260004/languages/en.js | 104.22.25.131 | 200 OK | 17 kB |
URL GET HTTP/3embed.tawk.to/_s/v4/app/660e2260004/languages/en.js IP104.22.25.131:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerGoogle Trust Services LLC Subjecttawk.to Fingerprint83:4E:6B:81:26:A0:67:FF:06:8D:D3:DC:E5:70:3F:A3:4B:08:C5:F5 ValidityThu, 28 Mar 2024 00:13:59 GMT - Wed, 26 Jun 2024 00:13:58 GMT
File typeJavaScript source, ASCII text, with CRLF, LF line terminators Hash7f37a030886ec7fce1d065ec482789ee 661ad608ac1513e2ccdec4cd55eb552a8604c8f6 75b20e74e3effa00e4b62b9da6df7d7542d91cb4b50078b8365112d556a73a7e
GET /_s/v4/app/660e2260004/languages/en.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:59:28 GMT
content-type: application/javascript
last-modified: Thu, 04 Apr 2024 03:46:15 GMT
etag: W/"7f37a030886ec7fce1d065ec482789ee"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: MISS
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 1397078
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8773985e1ab1569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js | 151.101.193.229 | 200 OK | 303 kB |
URL GET HTTP/2cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js IP151.101.193.229:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
Size303 kB (302554 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /emojione/2.2.7/lib/js/emojione.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rndtechnosoft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
etag: W/"49dda-cp9vjKV4fYl0Ow7X6yf9dkBr+YU"
content-encoding: br
accept-ranges: bytes
date: Sat, 20 Apr 2024 07:59:32 GMT
age: 9148624
x-served-by: cache-fra-eddf8230136-FRA, cache-hel1410029-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 41275
X-Firefox-Spdy: h2
|
|
| va.tawk.to/v1/session/start | 104.22.25.131 | 200 OK | 1.1 kB |
URL POST HTTP/3va.tawk.to/v1/session/start IP104.22.25.131:443
Requested byhttps://www.rndtechnosoft.com/404.php CertificateIssuerGoogle Trust Services LLC Subjecttawk.to Fingerprint83:4E:6B:81:26:A0:67:FF:06:8D:D3:DC:E5:70:3F:A3:4B:08:C5:F5 ValidityThu, 28 Mar 2024 00:13:59 GMT - Wed, 26 Jun 2024 00:13:58 GMT
File typetroff or preprocessor input, ASCII text, with very long lines (1189), with no line terminators Hash8de455ea5dded2f0fe587d7413e63971 49378072d8875e91febbfdccac9528f00f242a9e 233f2a4af41afe83bb2e290d61614d0274f15dc23c6b0e231a825cf35c84ce9f
POST /v1/session/start HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rndtechnosoft.com/
Content-Type: application/json; charset=utf-8
Content-Length: 190
Origin: https://www.rndtechnosoft.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:59:32 GMT
content-type: application/json
x-served-by: visitor-application-preemptive-tc2t
access-control-allow-origin: https://www.rndtechnosoft.com
access-control-allow-credentials: true
access-control-max-age: 3600
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87739857ce9cb52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|