Report - www.primewire.tf/links/go/DSrtJ

Report Overview

Visited public
2024-12-26 17:18:21
Tags
URL
www.primewire.tf/links/go/DSrtJ
Finishing URL
dood.re/d/c1uvr0y9insu
IP / ASN
104.21.64.1
#13335 CLOUDFLARENET
Title
creature commandos s01e01 1080p web h264-successfulcrab - DoodStream

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
dood.re	unknown	2022-02-04	2022-02-05	2024-12-07	2.9 kB	140 kB	104.26.4.50
pringed.space	227872	2021-06-07	2021-06-11	2024-12-22	548 B	33 kB	54.225.185.110
d1f05vr3sjsuy7.cloudfront.net	unknown	2008-04-25	2020-12-01	2024-12-20	409 B	107 kB	54.230.241.143
img.doodcdn.co	unknown	2022-04-23	2022-05-04	2024-12-22	431 B	105 kB	104.22.5.11
shakingtacklingunpeeled.com	unknown	2024-05-20	2024-07-01	2024-12-18	428 B	148 kB	94.242.247.24
i.doodcdn.co	unknown	2022-04-23	2022-05-04	2024-12-18	3.6 kB	383 kB	104.22.5.11
et.vizierspavan.com	unknown	2024-11-11	2024-12-02	2024-12-23	408 B	1.5 kB	23.109.170.127
dood.watch	177561	2020-02-19	2020-04-06	2024-12-13	481 B	7.7 kB	172.67.154.55
fonts.googleapis.com	8877	2005-01-25	2012-05-23	2024-12-25	476 B	19 kB	142.250.74.106
www.primewire.tf	unknown	2022-03-07	2022-06-12	2024-12-09	485 B	1.3 kB	104.21.80.1
bullionglidingscuttle.com	unknown	2024-05-17	2024-05-17	2024-12-23	1.4 kB	229 kB	94.242.247.20
betotodilea.com	52465	2021-08-09	2021-08-17	2024-12-16	393 B	154 kB	139.45.197.104
boodiecawquaw.top	unknown	2024-12-23	2024-12-24	2024-12-24	404 B	1.5 kB	212.117.186.252
fastlycdn.com	unknown	2024-10-24	2021-01-29	2024-12-22	432 B	91 kB	104.21.48.1
static.doodcdn.co	unknown	2022-04-23	2024-01-08	2024-12-26	398 B	114 kB	104.22.5.11
cdnjs.cloudflare.com	235	2009-02-17	2012-05-23	2024-12-25	2.2 kB	200 kB	104.17.25.14

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2024-12-26 17:17:57	medium	212.117.186.252	Client IP	ET INFO Observed ZeroSSL Certificate for Suspicious TLD (.top)
2024-12-26 17:17:57	low	212.117.186.252	Client IP	ET INFO Observed ZeroSSL SSL/TLS Certificate

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-12-26	medium	boodiecawquaw.top	Sinkholed
2024-12-26	medium	vizierspavan.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (12)

	URL	From	Size	First Seen	Last Seen
	cdnjs.cloudflare.com/ajax/libs/jquery-cookie/1.4.1/jquery.cookie.min.js	ScriptElement	1.3 kB	2023-03-07	2025-06-17
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery-cookie/1.4.1/jquery.cookie.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14 Last Seen2025-06-17 03:00 Times Seen7057 Hash 4412bf8023109ee9eb1f1f226d391329 c273960aa874a87dd022b5e597887142f1b8e34f d40efcac911d8964f3728eaa767de281306ff55ba9377435a3364d4d1e1613f6 Loading...

	dood.re/d/c1uvr0y9insu	ScriptElement	128 B	2023-03-07	2025-06-17
Pretty URL dood.re/d/c1uvr0y9insu IP 104.26.4.50 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 13:23 Last Seen2025-06-17 00:01 Times Seen365 Hash 31388edfefb21eb72db4bf8d374ee88e 4ccfa08807e09b3aaba086c40e9ae24878688ae2 73e1a4176b0dcad5a9bfa024a1e97761cef43a334be237e44149bc2889bf6096 Loading...

	bullionglidingscuttle.com/lv/esnk/1841675/code.js	ScriptElement	164 kB	2024-12-26	2025-01-09
Pretty URL bullionglidingscuttle.com/lv/esnk/1841675/code.js IP 94.242.247.20 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-12-26 17:18 Last Seen2025-01-09 15:02 Times Seen6 Hash d808d80d2980815cd54783779dde3a38 0b0907fc822e9f1626fc69bf96a91baeee397c32 12215a70fb6314a02cb0ea36a16242897b154d3fb4e094899e94bca604281978 Loading...

	bullionglidingscuttle.com/check.html	ScriptElement	0 B	0001-01-01	2025-06-17
Pretty URL bullionglidingscuttle.com/check.html IP 94.242.247.20 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-06-17 03:11 Times Seen4985317 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js	ScriptElement	88 kB	2023-03-07	2025-06-17
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-06-17 03:08 Times Seen70066 Hash 220afd743d9e9643852e31a135a9f3ae 88523924351bac0b5d560fe0c5781e2556e7693d 0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a Loading...

	dood.re/sw.js	ScriptElement	101 kB	2023-03-07	2025-01-05
Pretty URL dood.re/sw.js IP 104.26.4.50 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:23 Last Seen2025-01-05 11:59 Times Seen51 Hash a3b19e0f1a400f3ba23056585d6b302b 479d1a856952c570a0f09065a95ea6b7bacb3548 1a38fa21b9f532624acc45112374c352cb1170099c76eea2b17a8a081dae3ac8 Loading...

	dood.re/d/c1uvr0y9insu	ScriptElement	173 B	2023-03-07	2025-06-17
Pretty URL dood.re/d/c1uvr0y9insu IP 104.26.4.50 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 13:23 Last Seen2025-06-17 00:01 Times Seen331 Hash 6eb327087de85a2001e5a79b52341faf a34825f7d4187da0f6e56af2e160b7ff7ff4ade1 11006b5a78900a80067ab5aae6edaae78495535b3a261a7a6cd92929c5c64b73 Loading...

	dood.re/d/c1uvr0y9insu	ScriptElement	923 B	2024-12-26	2024-12-26
Pretty URL dood.re/d/c1uvr0y9insu IP 104.26.4.50 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-12-26 17:18 Last Seen2024-12-26 17:18 Times Seen1 Hash 6b194984562aee81b038c558c89ca672 2ac6c43f050a172fa17c3e4e8165477ed3e8aaa3 a1e556595ea7821ff16c46b1c40c11cd8526bcb0360bd543482815d1322afd94 Loading...

	bullionglidingscuttle.com/lv/esnk/1841678/code.js	ScriptElement	164 kB	2024-12-26	2025-01-09
Pretty URL bullionglidingscuttle.com/lv/esnk/1841678/code.js IP 94.242.247.20 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-12-26 17:18 Last Seen2025-01-09 15:02 Times Seen6 Hash b8aa6dbe589972ec89e02881feb716a8 837c06834240a6e18fade242d2584d25c4c7b8c6 8f9735aadaa15f64ab932cdbf0e19f4c5e2f0a490c203d45c35e803951099f5f Loading...

	unknown	ScriptElement	236 B	2024-12-26	2024-12-26
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-12-26 17:18 Last Seen2024-12-26 17:18 Times Seen1 Hash 0daac570dacc03226a6e5c63a53915f0 96c2b4fe9e2182120e28306f3c3d979fa7158897 55bf16b94fd181a6ed198c7ba7a61d6e9d9947f2c46dd8938c7f5b13afb6f5f1 Loading...

	betotodilea.com/400/4857535	ScriptElement	99 kB	2024-12-26	2024-12-26
Pretty URL betotodilea.com/400/4857535 IP 139.45.197.104 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2024-12-26 17:18 Last Seen2024-12-26 17:18 Times Seen1 Hash 8efae733032b1bf61c918933851fa04e aa6d427a3af337e961673a6e236d46b583afa78c c7bc9cb3e504998a43b091bf66937565647963b2d6047d1e016e300b44cf520b Loading...

		Size	First Seen	Last Seen
	#1 Eval - 73497a37c3561adbd8ce84e4f017b368	9 B	2023-03-07 01:03	2025-06-17 00:01
Pretty Observations First Seen2023-03-07 01:03 Last Seen2025-06-17 00:01 Times Seen3376 Hash 73497a37c3561adbd8ce84e4f017b368 9193ae73cb3dd2833be8c942714d5544bfb628c9 9312a1adbbf0a4c05fc296d158ec3bd39acfe50e9e98ff02688139aad6fc3351 Loading...

HTTP Transactions (34)

URL IP Response Size

www.primewire.tf/links/go/DSrtJ

104.21.80.1

301 Moved Permanently

242 B

URL User Request GET HTTP/2
www.primewire.tf/links/go/DSrtJ
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectprimewire.tf
FingerprintFD:D6:E9:CF:B1:3F:BA:3E:C8:1B:7D:6D:3D:E3:0A:50:5A:71:10:A4
ValidityThu, 19 Dec 2024 15:45:24 GMT - Wed, 19 Mar 2025 16:44:00 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
242 B (242 bytes)
Hash
c17279cf61496fae60ee56f87f22b883
95b8b76ecb6f0f76967d5985505e091f9930f75b
69edf0f66c251759873ccddca9e13c23fcd36e6e00dabe86a3358ad4948ce748

HTTP Headers

GET /links/go/DSrtJ HTTP/1.1
Host: www.primewire.tf
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
date: Thu, 26 Dec 2024 17:17:55 GMT
content-type: text/html; charset=utf-8
location: https://dood.watch/d/c1uvr0y9insu
cache-control: max-age=0, private, must-revalidate
cross-origin-window-policy: deny
x-content-type-options: nosniff
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-request-id: GBTJpt-EmViBamwFBKsD
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fLGWDN%2FiLSuyScSqtdOjCcqbVvCTevRPcFdV8%2B2J88qfAY%2FRBJZxNCunZH6uQWamOBFBzuewlC2lyMLP0oMijklnq%2BVc49rPaSg3Gc7NRQBsSAansk4%2BzdXlI2TsPKb8zV0C"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8f82ba2279cc0b65-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=5862&min_rtt=425&rtt_var=10891&sent=7&recv=11&lost=0&retrans=0&sent_bytes=3199&recv_bytes=1129&delivery_rate=8029574&cwnd=253&unsent_bytes=0&cid=beaf951c7b9efaba&ts=107&x=0"
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js

104.17.25.14

200 OK

28 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dood.re/d/c1uvr0y9insu
Certificate
IssuerGoogle Trust Services
Subjectcdnjs.cloudflare.com
Fingerprint64:3F:50:40:E0:BD:89:CB:A9:C8:BE:E5:74:F6:9E:D6:2E:1A:32:02
ValidityTue, 26 Nov 2024 07:25:18 GMT - Mon, 24 Feb 2025 07:25:17 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
28 kB (27748 bytes)
Hash
220afd743d9e9643852e31a135a9f3ae
88523924351bac0b5d560fe0c5781e2556e7693d
0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a

HTTP Headers

GET /ajax/libs/jquery/3.4.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dood.re/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 26 Dec 2024 17:17:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 27748
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-15851"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 622445
expires: Tue, 16 Dec 2025 17:17:55 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6fEao%2Feerq3%2BjDXnbrzrTm00FDL8aCiW11ByBmphkrYs%2BBuZG8Kl%2BG6dSFGoeqGMadEJYf8RueG2ZueBEd8UxQfGUktcCVulvpyaXpwws8nYh7BMc7rwkL8br2LCBAfXCSk2A5U8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8f82ba286c3656c0-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/jquery-cookie/1.4.1/jquery.cookie.min.js

104.17.25.14

200 OK

591 B

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/jquery-cookie/1.4.1/jquery.cookie.min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dood.re/d/c1uvr0y9insu
Certificate
IssuerGoogle Trust Services
Subjectcdnjs.cloudflare.com
Fingerprint64:3F:50:40:E0:BD:89:CB:A9:C8:BE:E5:74:F6:9E:D6:2E:1A:32:02
ValidityTue, 26 Nov 2024 07:25:18 GMT - Mon, 24 Feb 2025 07:25:17 GMT

File type
JavaScript source, ASCII text, with very long lines (1266)
Size
591 B (591 bytes)
Hash
4412bf8023109ee9eb1f1f226d391329
c273960aa874a87dd022b5e597887142f1b8e34f
d40efcac911d8964f3728eaa767de281306ff55ba9377435a3364d4d1e1613f6

HTTP Headers

GET /ajax/libs/jquery-cookie/1.4.1/jquery.cookie.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dood.re/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 26 Dec 2024 17:17:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 591
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec1-514"
last-modified: Mon, 04 May 2020 16:11:45 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 477251
expires: Tue, 16 Dec 2025 17:17:55 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NRQkNpgWZLXA7y3p%2BPNPdH42ln0sDm%2Fb7tZ3rKpB5NnpsjfmLqvFPcYZgvSWPSqzb0m7oY25vrgZU821NcAgbcyUEJ2zR7hwrS%2BsOOti2PKedoVJwU21uKQGZyl1L8t0zSLFOCjq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8f82ba288c7356c0-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

i.doodcdn.co/theme_2/css/style.css?v=0.1

104.22.5.11

200 OK

41 kB

URL GET HTTP/2
i.doodcdn.co/theme_2/css/style.css?v=0.1
IP
104.22.5.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dood.re/d/c1uvr0y9insu
Certificate
IssuerGoogle Trust Services
Subjectdoodcdn.co
Fingerprint85:F9:AC:F1:05:04:E4:B0:96:10:9B:E5:E8:9B:D9:5C:A5:D3:93:16
ValidityTue, 26 Nov 2024 19:05:57 GMT - Mon, 24 Feb 2025 19:05:56 GMT

File type
ASCII text
Size
41 kB (40748 bytes)
Hash
59b293159a38ec92d8bd5fa4d09f8d59
7167b460de2cb4d2534163de707b0aa0e84b73cf
3f81f845eb11d647c4bd80b76d7af054203e52eab24bc359ddd5cb4f33efddd4

HTTP Headers

GET /theme_2/css/style.css?v=0.1 HTTP/1.1
Host: i.doodcdn.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dood.re/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 26 Dec 2024 17:17:56 GMT
content-type: text/css
content-length: 40748
last-modified: Mon, 03 Jan 2022 15:43:40 GMT
cache-control: public, max-age=2592000
expires: Fri, 26 Dec 2025 01:29:18 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
access-control-allow-origin: *
cf-cache-status: HIT
age: 49337
accept-ranges: bytes
server: cloudflare
cf-ray: 8f82ba28ff6cb529-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

i.doodcdn.co/theme_2/css/bootstrap.min.css

104.22.5.11

200 OK

24 kB

URL GET HTTP/2
i.doodcdn.co/theme_2/css/bootstrap.min.css
IP
104.22.5.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dood.re/d/c1uvr0y9insu
Certificate
IssuerGoogle Trust Services
Subjectdoodcdn.co
Fingerprint85:F9:AC:F1:05:04:E4:B0:96:10:9B:E5:E8:9B:D9:5C:A5:D3:93:16
ValidityTue, 26 Nov 2024 19:05:57 GMT - Mon, 24 Feb 2025 19:05:56 GMT

File type
ASCII text, with very long lines (65324)
Size
24 kB (23688 bytes)
Hash
7cc40c199d128af6b01e74a28c5900b0
d305110fb79113a961394b433d851a3410342b8c
2ff5b959fa9f6b4b1d04d20a37d706e90039176ab1e2a202994d9580baeebfd6

HTTP Headers

GET /theme_2/css/bootstrap.min.css HTTP/1.1
Host: i.doodcdn.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dood.re/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 26 Dec 2024 17:17:56 GMT
content-type: text/css
content-length: 23688
last-modified: Mon, 03 Jan 2022 15:43:40 GMT
cache-control: public, max-age=2592000
expires: Fri, 26 Dec 2025 05:40:44 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
access-control-allow-origin: *
cf-cache-status: HIT
age: 35570
accept-ranges: bytes
server: cloudflare
cf-ray: 8f82ba28ff5db529-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

i.doodcdn.co/img/no_video_3.svg

104.22.5.11

200 OK

2.8 kB

URL GET HTTP/2
i.doodcdn.co/img/no_video_3.svg
IP
104.22.5.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dood.re/d/c1uvr0y9insu
Certificate
IssuerGoogle Trust Services
Subjectdoodcdn.co
Fingerprint85:F9:AC:F1:05:04:E4:B0:96:10:9B:E5:E8:9B:D9:5C:A5:D3:93:16
ValidityTue, 26 Nov 2024 19:05:57 GMT - Mon, 24 Feb 2025 19:05:56 GMT

File type
SVG Scalable Vector Graphics image
Size
2.8 kB (2812 bytes)
Hash
077bfdaa49ae4877a42611b739ec4752
a2f9e1222b7af9abc05122411ab8902efcc08ead
70d6a17097a8c27edfaad6740e11359d9363f3f04bff1b93483e29c25609fa6c

HTTP Headers

GET /img/no_video_3.svg HTTP/1.1
Host: i.doodcdn.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dood.re/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 26 Dec 2024 17:17:56 GMT
content-type: image/svg+xml
content-length: 2812
last-modified: Mon, 03 Jan 2022 15:38:36 GMT
etag: "61d3187c-afc"
expires: Fri, 24 Jan 2025 04:40:25 GMT
cache-control: public, max-age=2592000, no-transform
access-control-allow-origin: *
cf-cache-status: HIT
age: 47694
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 8f82ba28ff63b529-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

dood.re/sw.js

104.26.4.50

200 OK

40 kB

URL GET HTTP/3
dood.re/sw.js
IP
104.26.4.50:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dood.re/d/c1uvr0y9insu
Certificate
IssuerGoogle Trust Services
Subjectdood.re
FingerprintA3:EB:B9:E2:68:13:10:EB:8B:B7:E6:3F:34:1A:54:9E:C4:B2:61:65
ValidityTue, 26 Nov 2024 11:28:23 GMT - Mon, 24 Feb 2025 11:28:22 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
40 kB (40219 bytes)
Hash
a3b19e0f1a400f3ba23056585d6b302b
479d1a856952c570a0f09065a95ea6b7bacb3548
1a38fa21b9f532624acc45112374c352cb1170099c76eea2b17a8a081dae3ac8

HTTP Headers

GET /sw.js HTTP/1.1
Host: dood.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dood.re/d/c1uvr0y9insu
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 26 Dec 2024 17:17:55 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=102634
access-control-allow-origin: *
cache-control: public, max-age=2592000
expires: Wed, 05 Nov 2025 04:51:17 GMT
last-modified: Mon, 03 Jan 2022 15:43:40 GMT
vary: Accept-Encoding,User-Agent
cf-cache-status: HIT
age: 2084797
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TfeOt7IGaGxItWa2HoiXLQ0vtllkJNbJodBZvf%2BJvIhMjZK8J%2FP4aRG8P4%2BkH82c9SouF9JMK9QL2m%2BUNO1U1RFZnjK7P%2FT4xMCbfC8wrDP1iN%2Bq6sfS%2Fvtp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8f82ba284da91c06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=27555&min_rtt=2255&rtt_var=18917&sent=11&recv=6&lost=0&retrans=0&sent_bytes=4081&recv_bytes=1068&delivery_rate=284684&cwnd=12000&unsent_bytes=0&cid=cfc402cdea80fb01&ts=510&x=1", cfExtPri, cfHdrFlush;dur=0

dood.re/d/c1uvr0y9insu

104.26.4.50

200 OK

2.5 kB

URL User Request GET HTTP/2
dood.re/d/c1uvr0y9insu
IP
104.26.4.50:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectdood.re
FingerprintA3:EB:B9:E2:68:13:10:EB:8B:B7:E6:3F:34:1A:54:9E:C4:B2:61:65
ValidityTue, 26 Nov 2024 11:28:23 GMT - Mon, 24 Feb 2025 11:28:22 GMT

File type
HTML document, ASCII text, with very long lines (6734), with no line terminators
Size
2.5 kB (2538 bytes)
Hash
ced852eabb60560badcd5d49e04a3c7b
ddc0e9a092775df4793ebdd2569b9ddf11df6c4b
c5c0834e433e2656653187294338be05685705961e6dc600285994af24664fe1

HTTP Headers

GET /d/c1uvr0y9insu HTTP/1.1
Host: dood.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 26 Dec 2024 17:17:55 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
expires: Wed, 25 Dec 2024 17:17:55 GMT
set-cookie: lang=1; domain=.dood.re; path=/; HttpOnly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hnyUxiGNzWphb0ixAl9OpMiaOvm7nYoRTNuWEDHdECxQ8wufaz1qXALAShetwObZeYZ71VBubehId2i403Je7T0cGkR67IDdCRb183UaBLrWtyqYBVGxErUy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8f82ba248e3fb4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1480&min_rtt=517&rtt_var=1964&sent=7&recv=10&lost=0&retrans=0&sent_bytes=3161&recv_bytes=1121&delivery_rate=8150093&cwnd=253&unsent_bytes=0&cid=ab2d1c8d80668394&ts=125&x=0"
X-Firefox-Spdy: h2

i.doodcdn.co/theme_2/fonts/avertastd-regular-webfont.woff2

104.22.5.11

200 OK

24 kB

URL GET HTTP/3
i.doodcdn.co/theme_2/fonts/avertastd-regular-webfont.woff2
IP
104.22.5.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dood.re/d/c1uvr0y9insu
Certificate
IssuerGoogle Trust Services
Subjectdoodcdn.co
Fingerprint85:F9:AC:F1:05:04:E4:B0:96:10:9B:E5:E8:9B:D9:5C:A5:D3:93:16
ValidityTue, 26 Nov 2024 19:05:57 GMT - Mon, 24 Feb 2025 19:05:56 GMT

File type
Web Open Font Format (Version 2), TrueType, length 23812, version 1.524
Size
24 kB (23812 bytes)
Hash
eb586e5a1b86dbf1c866e3ed80f9d18e
280ee78d19c017ab9335f769595e5157d3c4a343
714e70103deac0d67f52a6285c5fabee6088ce4d710ce7e74353503837038baf

HTTP Headers

GET /theme_2/fonts/avertastd-regular-webfont.woff2 HTTP/1.1
Host: i.doodcdn.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dood.re
DNT: 1
Connection: keep-alive
Referer: https://i.doodcdn.co/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 26 Dec 2024 17:17:56 GMT
content-type: font/woff2
content-length: 23812
last-modified: Mon, 03 Jan 2022 15:43:40 GMT
cache-control: max-age=2592000
expires: Sat, 25 Jan 2025 05:26:31 GMT
vary: User-Agent,Accept-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 34192
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 8f82ba2c3e0b569b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

i.doodcdn.co/theme_2/css/fontawesome/webfonts/fa-duotone-900.woff2

104.22.5.11

200 OK

184 kB

URL GET HTTP/3
i.doodcdn.co/theme_2/css/fontawesome/webfonts/fa-duotone-900.woff2
IP
104.22.5.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dood.re/d/c1uvr0y9insu
Certificate
IssuerGoogle Trust Services
Subjectdoodcdn.co
Fingerprint85:F9:AC:F1:05:04:E4:B0:96:10:9B:E5:E8:9B:D9:5C:A5:D3:93:16
ValidityTue, 26 Nov 2024 19:05:57 GMT - Mon, 24 Feb 2025 19:05:56 GMT

File type
Web Open Font Format (Version 2), TrueType, length 184476, version 330.-16253
Size
184 kB (184476 bytes)
Hash
2a6dec1227f9970376f578270a642d06
150a6a7ffdec6e2e2ff4c712d7cee8bd9b930284
e228b909313044a18dec1a674cfd4935071c36eb3eb6a0cd38a45afac6ae3996

HTTP Headers

GET /theme_2/css/fontawesome/webfonts/fa-duotone-900.woff2 HTTP/1.1
Host: i.doodcdn.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dood.re
DNT: 1
Connection: keep-alive
Referer: https://i.doodcdn.co/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 26 Dec 2024 17:17:56 GMT
content-type: font/woff2
content-length: 184476
last-modified: Mon, 03 Jan 2022 15:43:40 GMT
cache-control: max-age=2592000
expires: Fri, 24 Jan 2025 05:34:39 GMT
vary: User-Agent,Accept-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 83833
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 8f82ba2c3e0e569b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

i.doodcdn.co/theme_2/fonts/avertastd-bold-webfont.woff2

104.22.5.11

200 OK

24 kB

URL GET HTTP/3
i.doodcdn.co/theme_2/fonts/avertastd-bold-webfont.woff2
IP
104.22.5.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dood.re/d/c1uvr0y9insu
Certificate
IssuerGoogle Trust Services
Subjectdoodcdn.co
Fingerprint85:F9:AC:F1:05:04:E4:B0:96:10:9B:E5:E8:9B:D9:5C:A5:D3:93:16
ValidityTue, 26 Nov 2024 19:05:57 GMT - Mon, 24 Feb 2025 19:05:56 GMT

File type
Web Open Font Format (Version 2), TrueType, length 23604, version 1.0
Size
24 kB (23604 bytes)
Hash
e9133fd11f14c09a2e4556c395a0ef7d
00fad09605f3342df5c9aeba130156fe19ade8b0
06244cc9cd0c998581b1bf93f5222deee7d2d0b09299190e163961afa973ba91

HTTP Headers

GET /theme_2/fonts/avertastd-bold-webfont.woff2 HTTP/1.1
Host: i.doodcdn.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dood.re
DNT: 1
Connection: keep-alive
Referer: https://i.doodcdn.co/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 26 Dec 2024 17:17:56 GMT
content-type: font/woff2
content-length: 23604
last-modified: Mon, 03 Jan 2022 15:43:40 GMT
cache-control: max-age=2592000
expires: Sat, 25 Jan 2025 08:05:57 GMT
vary: User-Agent,Accept-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 7076
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 8f82ba2c3e10569b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

bullionglidingscuttle.com/lv/esnk/1841675/code.js

94.242.247.20

200 OK

61 kB

URL GET HTTP/2
bullionglidingscuttle.com/lv/esnk/1841675/code.js
IP
94.242.247.20:443
ASN
#0

Requested by
https://dood.re/d/c1uvr0y9insu
Certificate
IssuerBuypass AS-983163327
Subject
Fingerprint39:89:95:6A:B7:37:26:25:25:88:F7:F4:3B:A6:49:C6:FE:3D:D3:24
ValidityFri, 20 Sep 2024 14:22:17 GMT - Tue, 18 Mar 2025 22:59:00 GMT

File type
gzip compressed data, max speed, from Unix
Size
61 kB (61001 bytes)
Hash
6475a93bab8c3c2e05165324ebdc935a
532b96b4e8fe3dd7b44ed27ad92317894411963e
71c31fdd24bc50088f0128d0b9d81b76dc08ef8931eab3ccaab446bf24fd3abb

HTTP Headers

GET /lv/esnk/1841675/code.js HTTP/1.1
Host: bullionglidingscuttle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dood.re/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 26 Dec 2024 17:17:56 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 24 Dec 2024 15:33:50 GMT
vary: Accept-Encoding
etag: W/"676ad45e-281ec"
x-js-ab2: current
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
content-encoding: gzip
X-Firefox-Spdy: h2

bullionglidingscuttle.com/lv/esnk/1841678/code.js

94.242.247.20

200 OK

60 kB

URL GET HTTP/2
bullionglidingscuttle.com/lv/esnk/1841678/code.js
IP
94.242.247.20:443
ASN
#0

Requested by
https://dood.re/d/c1uvr0y9insu
Certificate
IssuerBuypass AS-983163327
Subject
Fingerprint39:89:95:6A:B7:37:26:25:25:88:F7:F4:3B:A6:49:C6:FE:3D:D3:24
ValidityFri, 20 Sep 2024 14:22:17 GMT - Tue, 18 Mar 2025 22:59:00 GMT

File type
gzip compressed data, max speed, from Unix
Size
60 kB (60429 bytes)
Hash
32b155bee2a3522e5a8c2ef265bfdd09
64185be1342287046354fd672b43745c21a34ea4
69eee3ddcfeca9cf6a57d2d3c78b173c4e564b8f743e320596c04b5467a619c0

HTTP Headers

GET /lv/esnk/1841678/code.js HTTP/1.1
Host: bullionglidingscuttle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dood.re/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 26 Dec 2024 17:17:56 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 24 Dec 2024 15:33:50 GMT
vary: Accept-Encoding
etag: W/"676ad45e-281ec"
x-js-ab2: current
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
content-encoding: gzip
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/jquery/3.5.1/jquery.min.js

104.17.25.14

200 OK

28 kB

URL GET HTTP/3
cdnjs.cloudflare.com/ajax/libs/jquery/3.5.1/jquery.min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dood.re/e/c1uvr0y9insu
Certificate
IssuerGoogle Trust Services
Subjectcdnjs.cloudflare.com
Fingerprint64:3F:50:40:E0:BD:89:CB:A9:C8:BE:E5:74:F6:9E:D6:2E:1A:32:02
ValidityTue, 26 Nov 2024 07:25:18 GMT - Mon, 24 Feb 2025 07:25:17 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
28 kB (27958 bytes)
Hash
dc5e7f18c8d36ac1d3d4753a87c98d0a
c8e1c8b386dc5b7a9184c763c88d19a346eb3342
f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d

HTTP Headers

GET /ajax/libs/jquery/3.5.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dood.re/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 26 Dec 2024 17:17:56 GMT
content-type: application/javascript; charset=utf-8
content-length: 27958
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb09ed3-15d84"
last-modified: Mon, 04 May 2020 23:01:39 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 574255
expires: Tue, 16 Dec 2025 17:17:56 GMT
accept-ranges: bytes
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uBMYDr%2Bg4TewTx86SS5jfil4WFkaUZ5AtrpC23X%2Bs50938eHP9eSv8UYlKL1vb57GLzhzNkk9knEExfAhz3EDIbNlru4gOGZeoF3Oc%2BODvJ2bLk5E5%2FCejB5jna5IBdv%2BlADiSLA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8f82ba2dcb13b4f3-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

cdnjs.cloudflare.com/ajax/libs/video.js/7.21.5/video.min.js

104.17.25.14

200 OK

137 kB

URL GET HTTP/3
cdnjs.cloudflare.com/ajax/libs/video.js/7.21.5/video.min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dood.re/e/c1uvr0y9insu
Certificate
IssuerGoogle Trust Services
Subjectcdnjs.cloudflare.com
Fingerprint64:3F:50:40:E0:BD:89:CB:A9:C8:BE:E5:74:F6:9E:D6:2E:1A:32:02
ValidityTue, 26 Nov 2024 07:25:18 GMT - Mon, 24 Feb 2025 07:25:17 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (48459)
Size
137 kB (137405 bytes)
Hash
d7fdaaab43bc993b85290c713fd2d289
46bf3d27b2cf38b0e999d3b0a7613011181c87f9
c9535ea3a4e0af22e960ac1e32d363a71029f31aa96b29fc894e111fee49329e

HTTP Headers

GET /ajax/libs/video.js/7.21.5/video.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dood.re/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 26 Dec 2024 17:17:56 GMT
content-type: application/javascript; charset=utf-8
content-length: 137405
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "64bb5c88-218bd"
last-modified: Sat, 22 Jul 2023 04:35:20 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 396547
expires: Tue, 16 Dec 2025 17:17:56 GMT
accept-ranges: bytes
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=miV1ecrPU%2FIdEk%2BVpiAyC%2FKyV9oLrh8pA36SpDDyFfyQOM1XEZ4RiUHTEd7NpLdWGLibZg5MnYW%2B%2BLam041xBGiRcrHP9x7ZrDbawgKst87mXJFR47lYPfrd27O0NrD0u8UXiNc6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8f82ba2dcb27b4f3-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

cdnjs.cloudflare.com/ajax/libs/videojs-hotkeys/0.2.28/videojs.hotkeys.min.js

104.17.25.14

200 OK

1.6 kB

URL GET HTTP/3
cdnjs.cloudflare.com/ajax/libs/videojs-hotkeys/0.2.28/videojs.hotkeys.min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dood.re/e/c1uvr0y9insu
Certificate
IssuerGoogle Trust Services
Subjectcdnjs.cloudflare.com
Fingerprint64:3F:50:40:E0:BD:89:CB:A9:C8:BE:E5:74:F6:9E:D6:2E:1A:32:02
ValidityTue, 26 Nov 2024 07:25:18 GMT - Mon, 24 Feb 2025 07:25:17 GMT

File type
JavaScript source, ASCII text, with very long lines (4505)
Size
1.6 kB (1571 bytes)
Hash
f2ecb2bd8a424c8e8cf507ce8bd933c2
3cbc08ca052ea25c3b0834b9291a3ca1e9122e26
4c0745052abbb26087a707bb0a043b43c393674055ba2d4452ac89e6923eb099

HTTP Headers

GET /ajax/libs/videojs-hotkeys/0.2.28/videojs.hotkeys.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dood.re/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 26 Dec 2024 17:17:56 GMT
content-type: application/javascript; charset=utf-8
content-length: 1571
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "630ad3e5-623"
last-modified: Sun, 28 Aug 2022 02:33:09 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 482904
expires: Tue, 16 Dec 2025 17:17:56 GMT
accept-ranges: bytes
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0VDx%2BngEY6aYgoMePcVGksMRyemyum9gD1MRot5AzR1sJVNOwrUo3g5n%2BsMz%2FejAVvN%2BjGu8PJ%2BZGxsBGk2MBbHeOjduS8TqET8JUsgYb5eYFZJ7kS%2BFUmC63EJLaqLokHMVv1UN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8f82ba2ddb30b4f3-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

betotodilea.com/400/4857535

139.45.197.104

200 OK

153 kB

URL GET HTTP/2
betotodilea.com/400/4857535
IP
139.45.197.104:443
ASN
#9002 RETN Limited

Requested by
https://dood.re/d/c1uvr0y9insu
Certificate
IssuerLet's Encrypt
Subjectbetotodilea.com
Fingerprint00:DD:5B:C1:7D:73:CC:29:E0:D8:A9:8A:D3:7E:D7:F4:AE:A2:ED:BD
ValidityWed, 11 Dec 2024 19:36:43 GMT - Tue, 11 Mar 2025 19:36:42 GMT

File type
gzip compressed data, max speed, from Unix
Size
153 kB (153432 bytes)
Hash
51a05b885b122c97f8781f2c0ff72302
eb6acfe66ec3bdfebd9adf8592d8a010b9536e3a
5da90855fa1d7962ad2065836aef7b349cc2acfd6dea257c12454265a907bb43

HTTP Headers

GET /400/4857535 HTTP/1.1
Host: betotodilea.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dood.re/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 26 Dec 2024 17:17:56 GMT
content-type: application/javascript
x-trace-id: fcf3eeffb2d55a9d2defb67d175234eb
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
set-cookie: OAID=03013ee202374be3fc03b8ad77a35828; expires=Fri, 26 Dec 2025 17:17:56 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

bullionglidingscuttle.com/check.html

94.242.247.20

200 OK

105 kB

URL GET HTTP/2
bullionglidingscuttle.com/check.html
IP
94.242.247.20:443
ASN
#0

Requested by
https://dood.re/d/c1uvr0y9insu
Certificate
IssuerBuypass AS-983163327
Subject
Fingerprint39:89:95:6A:B7:37:26:25:25:88:F7:F4:3B:A6:49:C6:FE:3D:D3:24
ValidityFri, 20 Sep 2024 14:22:17 GMT - Tue, 18 Mar 2025 22:59:00 GMT

File type
gzip compressed data, max speed, from Unix
Size
105 kB (105336 bytes)
Hash
d493e3e4a4aa7e8d9be30e3327b1158d
1db82b7c83cddec3768f1067ac5a7e2d1426a31d
8fca8a75df8e9f843a1134ace4b3b9b15c84cacab4d71a17639d659b5b81e433

HTTP Headers

GET /check.html HTTP/1.1
Host: bullionglidingscuttle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dood.re/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 26 Dec 2024 17:17:56 GMT
content-type: text/html; charset=utf-8
last-modified: Tue, 17 Dec 2024 14:26:15 GMT
vary: Accept-Encoding
etag: W/"67618a07-39e"
x-js-ab: current
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
content-encoding: gzip
X-Firefox-Spdy: h2

dood.re/favicon.ico

104.26.4.50

200 OK

15 kB

URL GET HTTP/3
dood.re/favicon.ico
IP
104.26.4.50:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dood.re/d/c1uvr0y9insu
Certificate
IssuerGoogle Trust Services
Subjectdood.re
FingerprintA3:EB:B9:E2:68:13:10:EB:8B:B7:E6:3F:34:1A:54:9E:C4:B2:61:65
ValidityTue, 26 Nov 2024 11:28:23 GMT - Mon, 24 Feb 2025 11:28:22 GMT

File type
MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
Size
15 kB (15406 bytes)
Hash
30d3656f43c817e38c3e7d70b2bfbdad
1aa43b43755e7cba5e145d0978517f7bedad7da6
a558a4796f60f07743027eec96b538b2e7758cca8c544ed796ff745837478555

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: dood.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dood.re/d/c1uvr0y9insu
Cookie: lang=1; dref_url=none; UGVyc2lzdFN0b3JhZ2U=%7B%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 26 Dec 2024 17:17:57 GMT
content-type: image/x-icon
content-length: 15406
last-modified: Mon, 03 Jan 2022 15:38:36 GMT
etag: "61d3187c-3c2e"
expires: Wed, 08 Jan 2025 16:40:37 GMT
cache-control: public, max-age=2592000, no-transform
access-control-allow-origin: *
cf-cache-status: HIT
age: 1402323
accept-ranges: bytes
priority: u=6,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GuDp%2Btci9sAKNdbXl%2FYAl5xhS3eForYGmLemJyPd2kxnd4BX%2FRIYkzv8nZo5vA72MfC%2F1u%2BYG8I4dwKJe2Lt28I8uLtQgVnirYtvDqGuhW5byTNt9Hw4laeg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8f82ba2f9e7b1c06-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=9835&min_rtt=1347&rtt_var=12363&sent=90&recv=21&lost=0&retrans=0&sent_bytes=85432&recv_bytes=2752&delivery_rate=414768&cwnd=48000&unsent_bytes=0&cid=cfc402cdea80fb01&ts=1676&x=1", cfExtPri, cfHdrFlush;dur=0

pringed.space/ZmsxemcdSUINOBMZXVhdRANFDhcVUR5VAwkEVVQVA0RCDUkMGBNWRRUGV1hdV0cTCQoQSQtYU0hbE1ZFEgpWJQ4CSQtYXlRdCUhXREcTCRIENFgeVURRExxSAloISVAERgNJAwRGBRsBVUYIHFZWRgBOA1ZdCEpQB11TSEUb

54.225.185.110

200 OK

33 kB

URL GET HTTP/2
pringed.space/ZmsxemcdSUINOBMZXVhdRANFDhcVUR5VAwkEVVQVA0RCDUkMGBNWRRUGV1hdV0cTCQoQSQtYU0hbE1ZFEgpWJQ4CSQtYXlRdCUhXREcTCRIENFgeVURRExxSAloISVAERgNJAwRGBRsBVUYIHFZWRgBOA1ZdCEpQB11TSEUb
IP
54.225.185.110:443
ASN
#14618 AMAZON-AES

Requested by
https://dood.re/d/c1uvr0y9insu
Certificate
IssuerLet's Encrypt
Subjectpringed.space
Fingerprint04:D6:33:FE:CC:FA:EC:D1:DC:10:93:BD:49:F1:A3:3D:B3:2A:DB:AE
ValiditySun, 24 Nov 2024 09:09:33 GMT - Sat, 22 Feb 2025 09:09:32 GMT

File type
gzip compressed data, from Unix
Size
33 kB (32564 bytes)
Hash
33de415638a68027c360d7ca6ff52541
ad6cd8b77aeaecb438dcf7c5a721fbe44d530967
4e9a25ba0f9e3c6d86123e9907234649ba59552bde58263dd4bbe2573f9e9bc8

HTTP Headers

GET /ZmsxemcdSUINOBMZXVhdRANFDhcVUR5VAwkEVVQVA0RCDUkMGBNWRRUGV1hdV0cTCQoQSQtYU0hbE1ZFEgpWJQ4CSQtYXlRdCUhXREcTCRIENFgeVURRExxSAloISVAERgNJAwRGBRsBVUYIHFZWRgBOA1ZdCEpQB11TSEUb HTTP/1.1
Host: pringed.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dood.re/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
set-cookie: 68a91dc454234c4cb3c10ffea52383d2=1; Max-Age=604800
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-methods: GET, POST
access-control-allow-headers: X-Requested-With,content-type
etag: W/"f913-bdWb4AU9FqC5rxzY0Vr6Jy1Muaw"
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2

boodiecawquaw.top/r676c9c8176951/70849

212.117.186.252

200 OK

20 B

URL GET HTTP/1.1
boodiecawquaw.top/r676c9c8176951/70849
IP
212.117.186.252:443
ASN
#7979 SERVERS-COM

Requested by
https://dood.re/e/c1uvr0y9insu
Certificate
IssuerZeroSSL
Subjectboodiecawquaw.top
Fingerprint6D:3C:DD:53:15:C5:7B:13:CC:CC:15:AF:65:FD:2A:77:D6:4B:B9:31
ValidityMon, 23 Dec 2024 00:00:00 GMT - Sun, 23 Mar 2025 23:59:59 GMT

File type
gzip compressed data, from Unix
Size
20 B (20 bytes)
Hash
7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /r676c9c8176951/70849 HTTP/1.1
Host: boodiecawquaw.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dood.re/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Dec 2024 17:17:57 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://dood.re
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for, x-requested-with, cache-control, pragma, expires
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
Set-Cookie: GL_UI4=eJw9jUtug0AQRPljJ4akJQ7gIxgUjL3MJivfAQ0zDZ4Ypq1mjJ3bZxIp2dUrPVV5nhcUL%2BAvyRrCm6hhe1R9s5dYojyUVVW%2BHSrZ151o%2BlJVTVnvYK3n1opuRBvBap4E29YuEWwGNMhatpIUZvDqrL%2FmYuhuIog7FkZlEE%2FOGDNIO6b7jFyEEBkxIaQfmrGnhzPEJzEEx72L2rjo7yCguQjzJ4hP2twe%2BSbx8jzx4Pk6CtsTT61WDuOBhULw32ElhcWB%2BAtShfPF0hWARtX%2B%2B7%2Bf8fizBonCRUuHZM%2FI38wATrY%3D; expires=Fri, 27-Dec-2024 17:17:57 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJwViE0KgzAUBvMeJVAqhY96AE%2BQamsXbmuXRReewGopgZBIEvtz%2B%2BpiBmaEEJwmYD0hqQpV5ao8qeJSgl7gpgUPFrJx%2FtP%2FQB6cn8HeYtcG47LazTYuf8BmbZDG%2Fmr0N%2BucmaN2NoAXtnX%2FMM%2FjrbuDJkng6FaHMRWgtzz8AV7hHdE%3D; expires=Fri, 27-Dec-2024 17:17:57 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff

et.vizierspavan.com/fnWM0kwI7wCwkEF/111551

23.109.170.127

200 OK

26 B

URL GET HTTP/1.1
et.vizierspavan.com/fnWM0kwI7wCwkEF/111551
IP
23.109.170.127:443
ASN
#7979 SERVERS-COM

Requested by
https://dood.re/e/c1uvr0y9insu
Certificate
IssuerLet's Encrypt
Subjectet.vizierspavan.com
Fingerprint2A:00:04:75:26:76:2F:ED:74:28:78:F2:B7:AA:18:BD:DB:CB:C5:86
ValidityMon, 11 Nov 2024 07:56:24 GMT - Sun, 09 Feb 2025 07:56:23 GMT

File type
ASCII text, with no line terminators
Size
26 B (26 bytes)
Hash
4fc71bf68a1d477bd1523733e34d1e90
15119105cffbe108b6cf290146ab02c9aa8517ba
74c1971a5c7f3f1cfb81b7a0a8717cee5a45841844104566e00bbfca271943ce

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /fnWM0kwI7wCwkEF/111551 HTTP/1.1
Host: et.vizierspavan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dood.re/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Dec 2024 17:17:57 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://dood.re
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for, x-requested-with, cache-control, pragma, expires
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
X-Frame-Options: SAMEORIGIN
Set-Cookie: GL_UI4=eJw9jUtug0AQRPljJ4akJQ7gIxgUjL3MJivfAQ0zDZ4Ypq1mjJ3bZxIp2dUrPVV5nhcUL%2BAvyRrCm6hhe1R9s5dYojyUVVW%2BHSrZ151o%2BlJVTVnvYK3n1opuRBvBap4E29YuEWwGNMhatpIUZvDqrL%2FmYuhuIog7FkZlEE%2FOGDNIO6b7jFyEEBkxIaQfmrGnhzPEJzEEx72L2rjo7yCguQjzJ4hP2twe%2BSbx8jzx4Pk6CtsTT61WDuOBhULw32ElhcWB%2BAtShfPF0hWARtX%2B%2B7%2Bf8fizBonCRUuHZM%2FI38wATrY%3D; expires=Fri, 27-Dec-2024 17:17:57 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJwViE0KgzAUBvMeJVAqhY96AE%2BQamsXbmuXRReewGopgZBIEvtz%2B%2BpiBmaEEJwmYD0hqQpV5ao8qeJSgl7gpgUPFrJx%2FtP%2FQB6cn8HeYtcG47LazTYuf8BmbZDG%2Fmr0N%2BucmaN2NoAXtnX%2FMM%2FjrbuDJkng6FaHMRWgtzz8AV7hHdE%3D; expires=Fri, 27-Dec-2024 17:17:57 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff

d1f05vr3sjsuy7.cloudfront.net/?srvfd=908056

54.230.241.143

200 OK

107 kB

URL GET HTTP/2
d1f05vr3sjsuy7.cloudfront.net/?srvfd=908056
IP
54.230.241.143:443
ASN
#16509 AMAZON-02

Requested by
https://dood.re/e/c1uvr0y9insu
Certificate
IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (38488)
Size
107 kB (106645 bytes)
Hash
8ded6e3df597396e4555b904e25355ec
5d91a38e077f0d6f0663f799f17bcfb9f712b80c
4bbb876ec9a97f029c9c4df9c684779b8cf120e06dad5f7aea2c37e670b4df75

HTTP Headers

GET /?srvfd=908056 HTTP/1.1
Host: d1f05vr3sjsuy7.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dood.re/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-length: 106645
date: Thu, 26 Dec 2024 17:17:57 GMT
access-control-allow-origin: *
cache-control: no-store, no-cache, proxy-revalidate, must-revalidate, private, no-transform
content-encoding: gzip
pragma: no-cache
x-cache: Miss from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: T6q7LJSpwX3VGK6TlkTroI_T9gzvlSkn5iXIQuSuip7dQzafKaZnKw==
X-Firefox-Spdy: h2

dood.re/e/c1uvr0y9insu

104.26.4.50

200 OK

59 kB

URL GET HTTP/3
dood.re/e/c1uvr0y9insu
IP
104.26.4.50:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dood.re/d/c1uvr0y9insu
Certificate
IssuerGoogle Trust Services
Subjectdood.re
FingerprintA3:EB:B9:E2:68:13:10:EB:8B:B7:E6:3F:34:1A:54:9E:C4:B2:61:65
ValidityTue, 26 Nov 2024 11:28:23 GMT - Mon, 24 Feb 2025 11:28:22 GMT

File type
HTML document, ASCII text, with very long lines (65536), with no line terminators
Size
59 kB (58682 bytes)
Hash
c16100aa4f35f713738c188aeedb2a9c
21c0f37660e835015450dc841bd26f42c29daa51
b525d45bff39bf8bd49f3d872eb79a1d155c353cb9c7bec23bec39c1e3fc7b62

HTTP Headers

GET /e/c1uvr0y9insu HTTP/1.1
Host: dood.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dood.re/d/c1uvr0y9insu
Cookie: lang=1; dref_url=none
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 26 Dec 2024 17:17:56 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
expires: Wed, 25 Dec 2024 17:17:56 GMT
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9Fb6DPPv8DNvSxBcNgnD8TEJnKcUS%2BUstBcufEkkGZwRNBC8ssD9EdgXjHYcyyQWMHRIHckiAzrWT0W9AW1LQS%2Fv%2BQlOICuJUEMaLxISFXI3WUPI8iOezorA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8f82ba2b699c1c06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=24875&min_rtt=2255&rtt_var=12352&sent=46&recv=10&lost=0&retrans=0&sent_bytes=44358&recv_bytes=1537&delivery_rate=269110&cwnd=48000&unsent_bytes=0&cid=cfc402cdea80fb01&ts=1064&x=1", cfExtPri, cfHdrFlush;dur=0

i.doodcdn.co/css/embed.css

104.22.5.11

200 OK

80 kB

URL GET HTTP/3
i.doodcdn.co/css/embed.css
IP
104.22.5.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dood.re/e/c1uvr0y9insu
Certificate
IssuerGoogle Trust Services
Subjectdoodcdn.co
Fingerprint85:F9:AC:F1:05:04:E4:B0:96:10:9B:E5:E8:9B:D9:5C:A5:D3:93:16
ValidityTue, 26 Nov 2024 19:05:57 GMT - Mon, 24 Feb 2025 19:05:56 GMT

File type

Size
80 kB (79890 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /css/embed.css HTTP/1.1
Host: i.doodcdn.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dood.re/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 26 Dec 2024 17:17:56 GMT
content-type: text/css
last-modified: Mon, 03 Jan 2022 15:38:36 GMT
vary: Accept-Encoding
etag: W/"61d3187c-13812"
expires: Fri, 24 Jan 2025 07:15:30 GMT
cache-control: public, max-age=2592000, no-transform
access-control-allow-origin: *
content-encoding: gzip
cf-cache-status: HIT
age: 55274
priority: u=2,i=?0
server: cloudflare
cf-ray: 8f82ba2dc99c56bf-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

dood.watch/d/c1uvr0y9insu

172.67.154.55

302 Found

6.7 kB

URL User Request GET HTTP/2
dood.watch/d/c1uvr0y9insu
IP
172.67.154.55:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectdood.watch
FingerprintEF:1A:48:FC:B0:01:06:AA:0F:E0:93:7F:FC:2B:53:BC:DD:ED:5B:CE
ValiditySun, 15 Dec 2024 14:05:56 GMT - Sat, 15 Mar 2025 15:04:03 GMT

File type

Size
6.7 kB (6734 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /d/c1uvr0y9insu HTTP/1.1
Host: dood.watch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Thu, 26 Dec 2024 17:17:55 GMT
content-type: text/html
content-length: 143
location: https://dood.re/d/c1uvr0y9insu
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mHtYRG0uj92LoRqkS4ekJ8w31YdnpqM1M47cY%2FipecnZZIwF3deihXjVCMEamKJlGisE2o2XPn3IsjC8uIoMwPK1YbP%2BWmQIluWwMzqvNKRJaLvenXGwXqym6E7J"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8f82ba23e9e5b4f9-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=544&min_rtt=453&rtt_var=215&sent=7&recv=10&lost=0&retrans=0&sent_bytes=3194&recv_bytes=1123&delivery_rate=7215946&cwnd=251&unsent_bytes=0&cid=ee5c2356d8dad618&ts=32&x=0"
X-Firefox-Spdy: h2

fastlycdn.com/ajax/libs/react/18.3.1/cjs/react.production.min.js

104.21.48.1

200 OK

90 kB

URL GET HTTP/2
fastlycdn.com/ajax/libs/react/18.3.1/cjs/react.production.min.js
IP
104.21.48.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dood.re/e/c1uvr0y9insu
Certificate
IssuerGoogle Trust Services
Subjectfastlycdn.com
FingerprintA7:41:83:91:20:BA:C4:A5:A6:03:58:CB:E5:A3:A1:51:F7:16:44:10
ValiditySun, 22 Dec 2024 03:19:32 GMT - Sat, 22 Mar 2025 04:19:29 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
90 kB (89809 bytes)
Hash
4f6bfb70659c4e69a8c64b0ab5d91654
6c71a1ed4086f1f8bd3480c75d45eeae4605220b
384aade1bb638dac512359c28e335e8d7f930d87229c54230aca5d22dfd17583

HTTP Headers

GET /ajax/libs/react/18.3.1/cjs/react.production.min.js HTTP/1.1
Host: fastlycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dood.re/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 26 Dec 2024 17:17:57 GMT
content-type: text/javascript
etag: W/"4f6bfb70659c4e69a8c64b0ab5d91654"
last-modified: Thu, 24 Oct 2024 11:13:26 GMT
vary: Accept-Encoding
cache-control: max-age=86400
cf-cache-status: HIT
age: 10767
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=j7DQhUH4ANMoz2xMwam2PI4rIsrPlSKMAvpQ0x6dSRYXySJSac9tD%2BkK6Z9xRp4IOxUba%2BTFtdrbmhBmY5WFdF1swyXBW5aBHEh7yb9UoSZpOewpePKR3Cu4yiVEea5J"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8f82ba2fbb17568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1171&min_rtt=513&rtt_var=1249&sent=7&recv=11&lost=0&retrans=0&sent_bytes=3262&recv_bytes=1205&delivery_rate=7985294&cwnd=254&unsent_bytes=0&cid=0f20d2db6ece0623&ts=247&x=0"
X-Firefox-Spdy: h2

img.doodcdn.co/splash/ta6bdlmn1jfrzvtt.jpg

104.22.5.11

200 OK

105 kB

URL GET HTTP/3
img.doodcdn.co/splash/ta6bdlmn1jfrzvtt.jpg
IP
104.22.5.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dood.re/e/c1uvr0y9insu
Certificate
IssuerGoogle Trust Services
Subjectdoodcdn.co
Fingerprint85:F9:AC:F1:05:04:E4:B0:96:10:9B:E5:E8:9B:D9:5C:A5:D3:93:16
ValidityTue, 26 Nov 2024 19:05:57 GMT - Mon, 24 Feb 2025 19:05:56 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1264x715, components 3
Size
105 kB (104829 bytes)
Hash
2e44d111be592a80962e8ece157157a9
f6d2c50f43174e6142d5d6c7f6072d09deb04289
7d9ee3372c43bfb6c74614915101ce3b95d9010067ee6f82f2258e480ed2a652

HTTP Headers

GET /splash/ta6bdlmn1jfrzvtt.jpg HTTP/1.1
Host: img.doodcdn.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dood.re/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 26 Dec 2024 17:17:56 GMT
content-type: image/jpeg
content-length: 104829
access-control-allow-origin: *
cache-control: max-age=1209600
cf-bgj: imgq:100,h2pri
cf-polished: origSize=106394
etag: "6762c0ea-19f9a"
expires: Thu, 09 Jan 2025 16:08:16 GMT
last-modified: Wed, 18 Dec 2024 12:32:42 GMT
cf-cache-status: HIT
accept-ranges: bytes
priority: u=4,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 8f82ba2dd9ac56bf-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

fonts.googleapis.com/css?family=Nunito:200,300,300i,400,600,600i,700,700i,800,900&display=swap

142.250.74.106

200 OK

18 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Nunito:200,300,300i,400,600,600i,700,700i,800,900&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://dood.re/d/c1uvr0y9insu
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint30:E5:7E:29:A5:A1:81:DB:C8:A8:49:80:67:40:12:AB:30:C0:34:8D
ValidityMon, 02 Dec 2024 08:36:58 GMT - Mon, 24 Feb 2025 08:36:57 GMT

File type
ASCII text
Size
18 kB (18255 bytes)
Hash
16d769de72b66648b48ea896755da441
28e1c4468bc980bb8b9bfdab5bd256acb0b6dcf4
c3482415177813410f604787dd9f27ba54bea4f4eca78f83cc2afaebd7b56392

HTTP Headers

GET /css?family=Nunito:200,300,300i,400,600,600i,700,700i,800,900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dood.re/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 26 Dec 2024 17:17:56 GMT
date: Thu, 26 Dec 2024 17:17:56 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

dood.re/cdn-cgi/challenge-platform/scripts/jsd/main.js

104.26.4.50

302 Found

8.7 kB

URL GET HTTP/3
dood.re/cdn-cgi/challenge-platform/scripts/jsd/main.js
IP
104.26.4.50:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dood.re/d/c1uvr0y9insu
Certificate
IssuerGoogle Trust Services
Subjectdood.re
FingerprintA3:EB:B9:E2:68:13:10:EB:8B:B7:E6:3F:34:1A:54:9E:C4:B2:61:65
ValidityTue, 26 Nov 2024 11:28:23 GMT - Mon, 24 Feb 2025 11:28:22 GMT

File type

Size
8.7 kB (8739 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: dood.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: lang=1; dref_url=none
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 302 Found
date: Thu, 26 Dec 2024 17:17:56 GMT
content-length: 0
location: /cdn-cgi/challenge-platform/h/b/scripts/jsd/787bc399e22f/main.js?
cache-control: max-age=300, stale-if-error=10800, stale-while-revalidate=10800, public
access-control-allow-origin: *
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1wiIke%2F30a%2BhhGlRUTFcz5FmDkdbDNvyXXT8IQDaLaez%2B5LSdk8rzqPjgbUWLVUYyJfxKQRRJ8gtOXq1GlIXNiHtyDK7PHpBjZzUCCx1HcaBywB93bLpOpMe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8f82ba2c1a561c06-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=12316&min_rtt=1347&rtt_var=14349&sent=82&recv=17&lost=0&retrans=0&sent_bytes=79795&recv_bytes=2058&delivery_rate=9776868&cwnd=48000&unsent_bytes=0&cid=cfc402cdea80fb01&ts=1120&x=1", cfExtPri, cfHdrFlush;dur=0

i.doodcdn.co/ads/ad.js

104.22.5.11

200 OK

20 B

URL GET HTTP/3
i.doodcdn.co/ads/ad.js
IP
104.22.5.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dood.re/e/c1uvr0y9insu
Certificate
IssuerGoogle Trust Services
Subjectdoodcdn.co
Fingerprint85:F9:AC:F1:05:04:E4:B0:96:10:9B:E5:E8:9B:D9:5C:A5:D3:93:16
ValidityTue, 26 Nov 2024 19:05:57 GMT - Mon, 24 Feb 2025 19:05:56 GMT

File type
ASCII text, with no line terminators
Size
20 B (20 bytes)
Hash
69a305bcdc8e061bbd43294a477a3678
506582a1d912d546f5942d95ffae95ec7f4c37ce
8964d85afd6d5d84b97872464646809c952ab900cdf5c5d7c3b7b4bdb74202fa

HTTP Headers

GET /ads/ad.js HTTP/1.1
Host: i.doodcdn.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dood.re/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 26 Dec 2024 17:17:56 GMT
content-type: application/javascript
content-length: 20
last-modified: Mon, 03 Jan 2022 15:38:36 GMT
cache-control: public, max-age=2592000
expires: Fri, 26 Dec 2025 03:53:28 GMT
vary: User-Agent,Accept-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 36741
accept-ranges: bytes
priority: u=2,i=?0
server: cloudflare
cf-ray: 8f82ba2dc99656bf-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

shakingtacklingunpeeled.com/aas/r45d/vki/1999414/3dc25ad5.js

94.242.247.24

200 OK

148 kB

URL GET HTTP/2
shakingtacklingunpeeled.com/aas/r45d/vki/1999414/3dc25ad5.js
IP
94.242.247.24:443
ASN
#0

Requested by
https://dood.re/e/c1uvr0y9insu
Certificate
IssuerBuypass AS-983163327
Subject
Fingerprint4D:79:44:BF:B1:21:6E:06:AE:F6:CB:C3:96:AB:03:90:80:2B:CF:E6
ValidityFri, 20 Sep 2024 14:45:34 GMT - Tue, 18 Mar 2025 22:59:00 GMT

File type
JavaScript source, ASCII text, with very long lines (64970)
Size
148 kB (147666 bytes)
Hash
15dd6ea42cde2b8a78fcf06d90a9fee6
2dd5a21309dc419e6e363b1be83b27814486e09a
8600c0155868ca1daf5fbb4a834d560e482462c6a98d7dec797d984f02e11ccb

HTTP Headers

GET /aas/r45d/vki/1999414/3dc25ad5.js HTTP/1.1
Host: shakingtacklingunpeeled.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dood.re/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 26 Dec 2024 17:17:57 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 24 Dec 2024 15:33:50 GMT
vary: Accept-Encoding
etag: W/"676ad45e-24176"
x-js-ab2: current
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
content-encoding: gzip
X-Firefox-Spdy: h2

dood.re/cdn-cgi/challenge-platform/h/b/scripts/jsd/787bc399e22f/main.js?

104.26.4.50

200 OK

8.7 kB

URL GET HTTP/3
dood.re/cdn-cgi/challenge-platform/h/b/scripts/jsd/787bc399e22f/main.js?
IP
104.26.4.50:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dood.re/d/c1uvr0y9insu
Certificate
IssuerGoogle Trust Services
Subjectdood.re
FingerprintA3:EB:B9:E2:68:13:10:EB:8B:B7:E6:3F:34:1A:54:9E:C4:B2:61:65
ValidityTue, 26 Nov 2024 11:28:23 GMT - Mon, 24 Feb 2025 11:28:22 GMT

File type
JavaScript source, ASCII text, with very long lines (8739), with no line terminators
Size
8.7 kB (8739 bytes)
Hash
08b592e6786b4f4fc48c0c0190eb45c6
fc1218e1b64299d8fcbe6e13733297facb4e739f
2958f93012826ee137424a0e7592c122fba77fcb5f8a639f9383df14667bc036

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/scripts/jsd/787bc399e22f/main.js? HTTP/1.1
Host: dood.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: lang=1; dref_url=none; UGVyc2lzdFN0b3JhZ2U=%7B%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 26 Dec 2024 17:17:56 GMT
content-type: application/javascript; charset=UTF-8
cache-control: max-age=14400, stale-if-error=10800, stale-while-revalidate=10800, public
x-content-type-options: nosniff
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uPW52Fnjdi9MtqLI8R3yrG6PISzvlVqTNAWJ3YfLrWpWThODy2lKmuuEhxziXKs8cZvY1Y7HVKs7GOCO7SDonyRK0QBXD7W6%2BElU3YaqCSh8xLRI%2FZFpHl0u"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8f82ba2d4bbd1c06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=10978&min_rtt=1347&rtt_var=13436&sent=84&recv=19&lost=0&retrans=0&sent_bytes=80538&recv_bytes=2396&delivery_rate=26144&cwnd=48000&unsent_bytes=0&cid=cfc402cdea80fb01&ts=1310&x=1", cfExtPri, cfHdrFlush;dur=0

static.doodcdn.co/js/embed3.js

104.22.5.11

200 OK

113 kB

URL GET HTTP/3
static.doodcdn.co/js/embed3.js
IP
104.22.5.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dood.re/e/c1uvr0y9insu
Certificate
IssuerGoogle Trust Services
Subjectdoodcdn.co
Fingerprint85:F9:AC:F1:05:04:E4:B0:96:10:9B:E5:E8:9B:D9:5C:A5:D3:93:16
ValidityTue, 26 Nov 2024 19:05:57 GMT - Mon, 24 Feb 2025 19:05:56 GMT

File type

Size
113 kB (112944 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /js/embed3.js HTTP/1.1
Host: static.doodcdn.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dood.re/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 26 Dec 2024 17:17:56 GMT
content-type: application/javascript
content-length: 112944
last-modified: Sun, 04 Feb 2024 08:20:24 GMT
etag: "65bf48c8-1b930"
expires: Fri, 24 Jan 2025 05:20:29 GMT
cache-control: public, max-age=2592000, no-transform
access-control-allow-origin: *
cf-cache-status: HIT
age: 56889
accept-ranges: bytes
priority: u=3,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 8f82ba2e3a2a56bf-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (12)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL