Report - mixdrop.my/f/xw0qgozmbr06vj

Report Overview

Visited public
2025-05-08 23:04:27
Tags
URL
mixdrop.my/f/xw0qgozmbr06vj
Finishing URL
mixdrop.my/f/xw0qgozmbr06vj
IP / ASN
104.21.15.238
#13335 CLOUDFLARENET
Title
MixDrop - Download HeLivesHereNow(Demo)

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
fonts.gstatic.com	unknown	2008-02-11	2014-04-02	2025-05-07	2.2 kB	131 kB	142.250.74.35
adsco.re	8541	2017-02-14	2017-04-03	2025-05-08	440 B	1.8 kB	162.252.214.5
www.gstatic.com	unknown	2008-02-11	2012-05-29	2025-05-07	2.4 kB	2.0 MB	142.250.178.99
4.adsco.re	19179	2017-02-14	2021-01-04	2025-05-08	841 B	856 B	162.252.214.5
pubtrky.com	unknown	2023-11-21	2023-11-21	2025-05-04	477 B	566 B	172.67.188.110
uqohomcgxhtjr.space	unknown	2025-05-02	2025-05-08	2025-05-08	432 B	82 kB	172.67.202.218
mrbi65kvflrv.s4.adsco.re	unknown	2017-02-14	2025-05-08	2025-05-08	452 B	463 B	185.200.116.60
mixdrop.my	unknown	unknown	2025-05-08	2025-05-08	8.4 kB	336 kB	172.67.208.161
www.xadsmart.com	151441	2020-04-18	2020-04-18	2025-05-04	448 B	38 kB	95.173.205.14
xadsmart.com	85874	2020-04-18	2020-04-19	2025-05-04	1.8 kB	257 B	104.153.197.251
c.adsco.re	16577	2017-02-14	2017-11-29	2025-05-08	507 B	80 kB	104.17.166.186
www.google.com	7	1997-09-15	2015-05-10	2025-05-07	1.8 kB	77 kB	172.217.21.164
fonts.googleapis.com	8877	2005-01-25	2012-05-23	2025-05-07	469 B	19 kB	142.250.74.10
xx.apptdinsteps.com	unknown	2025-04-14	2025-05-08	2025-05-08	425 B	1.6 kB	23.109.170.59
6.adsco.re	17812	2017-02-14	2018-01-15	2025-05-08	841 B	989 B	104.17.166.186
mrbi65kvflrv.l4.adsco.re	unknown	unknown	No data	No data	452 B	463 B	185.200.118.62
mrbi65kvflrv.n4.adsco.re	unknown	2017-02-14	2025-05-08	2025-05-08	452 B	463 B	38.132.109.126
code.jquery.com	634	2005-12-10	2012-05-21	2025-05-07	893 B	346 kB	151.101.66.137
mdstats.info	unknown	2024-02-08	2024-02-09	2025-05-08	884 B	3.1 kB	104.21.80.1

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2025-05-08 23:04:07	low	Client IP	185.200.118.90	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2025-05-08 23:04:07	low	Client IP	38.132.109.186	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2025-05-08 23:04:07	low	Client IP	185.200.116.90	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2025-05-08 23:04:07	low	Client IP	185.200.118.90	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2025-05-08 23:04:07	low	Client IP	38.132.109.186	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2025-05-08 23:04:07	low	Client IP	185.200.116.90	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2025-05-08 23:04:08	low	Client IP	185.200.118.90	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2025-05-08 23:04:08	low	Client IP	38.132.109.186	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2025-05-08 23:04:08	low	Client IP	185.200.116.90	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2025-05-08 23:04:08	low	Client IP	185.200.118.90	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2025-05-08 23:04:08	low	Client IP	38.132.109.186	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2025-05-08 23:04:08	low	Client IP	185.200.116.90	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2025-05-08 23:04:09	low	Client IP	185.200.118.90	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2025-05-08 23:04:09	low	Client IP	38.132.109.186	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2025-05-08 23:04:09	low	Client IP	185.200.116.90	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2025-05-08 23:04:10	low	Client IP	185.200.118.90	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2025-05-08 23:04:10	low	Client IP	38.132.109.186	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2025-05-08 23:04:10	low	Client IP	185.200.116.90	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2025-05-08 23:04:14	low	Client IP	185.200.118.90	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2025-05-08 23:04:14	low	Client IP	38.132.109.186	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2025-05-08 23:04:14	low	Client IP	185.200.116.90	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-05-08	medium	uqohomcgxhtjr.space	Sinkholed
2025-05-08	medium	apptdinsteps.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (32)

	URL	From	Size	First Seen	Last Seen
	www.google.com/recaptcha/api2/anchor?ar=1&k=6LetXaoUAAAAAB6axgg4WLG9oZ_6QLTsFXZj-5sd&co=aHR0cHM6Ly9taXhkcm9wLm15OjQ0Mw..&hl=en&v=Hi8UmRMnhdOBM3IuViTkapUP&size=invisible&cb=5koq9bbquch2	Eval	64 B	2025-05-01	2025-05-18
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LetXaoUAAAAAB6axgg4WLG9oZ_6QLTsFXZj-5sd&co=aHR0cHM6Ly9taXhkcm9wLm15OjQ0Mw..&hl=en&v=Hi8UmRMnhdOBM3IuViTkapUP&size=invisible&cb=5koq9bbquch2 IP 172.217.21.164 ASN #15169 GOOGLE Introduced by eval Embedded in HTML false Observations First Seen2025-05-01 07:13 Last Seen2025-05-18 05:19 Times Seen1236 Hash aa27a93c4dfa6b0fc15c1f4a75685067 ce164b10036dd6b89f995cc5e1d3410662c952d8 9c6cec1e59e492f7450187c43aa7f89714ce6ce23e1c7c9c10077acaccffcffe Loading...

	xx.apptdinsteps.com/sBq05a7a7j1Yhgl/117018	ScriptElement	6 B	2023-03-07	2025-06-18
Pretty URL xx.apptdinsteps.com/sBq05a7a7j1Yhgl/117018 IP 23.109.170.59 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:31 Last Seen2025-06-18 05:51 Times Seen8635 Hash 4fc71bf68a1d477bd1523733e34d1e90 15119105cffbe108b6cf290146ab02c9aa8517ba 74c1971a5c7f3f1cfb81b7a0a8717cee5a45841844104566e00bbfca271943ce Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LetXaoUAAAAAB6axgg4WLG9oZ_6QLTsFXZj-5sd&co=aHR0cHM6Ly9taXhkcm9wLm15OjQ0Mw..&hl=en&v=Hi8UmRMnhdOBM3IuViTkapUP&size=invisible&cb=5koq9bbquch2	Eval	22 kB	2025-05-08	2025-05-08
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LetXaoUAAAAAB6axgg4WLG9oZ_6QLTsFXZj-5sd&co=aHR0cHM6Ly9taXhkcm9wLm15OjQ0Mw..&hl=en&v=Hi8UmRMnhdOBM3IuViTkapUP&size=invisible&cb=5koq9bbquch2 IP 172.217.21.164 ASN #15169 GOOGLE Introduced by eval Embedded in HTML false Observations First Seen2025-05-08 23:04 Last Seen2025-05-08 23:04 Times Seen1 Hash 034720e34a91c797a838cf3cf48d80d2 8ee689cb1907fd562d9b400591ec84097fe6fe33 8860ecffa94968efac1c8d57809db743d0410f08126b45ddb1a0dc6875201260 Loading...

	mixdrop.my/js/modal/modal.js?v=2.0.1	ScriptElement	1.3 kB	2023-03-07	2025-06-18
Pretty URL mixdrop.my/js/modal/modal.js?v=2.0.1 IP 172.67.208.161 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03 Last Seen2025-06-18 02:54 Times Seen959 Hash 573d34f6e62f2141b8e8219727b43056 92cc987fbdfba9c8930ad253a09bd956f774fd78 51d0e7a42e0d4a0d00388563ab6472e9880280a3f6e16b9692da6f69ac7cae70 Loading...

	mixdrop.my/js/jquery-upload/js/jquery.fileupload.js?v=2.0.1	ScriptElement	19 kB	2023-03-07	2025-06-18
Pretty URL mixdrop.my/js/jquery-upload/js/jquery.fileupload.js?v=2.0.1 IP 172.67.208.161 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03 Last Seen2025-06-18 02:54 Times Seen959 Hash a4281f84f3fd3ab075827471357a7347 7c52a9c48a24ce48c0acd916fa431aebe79eb1b7 09649459c938dca393b14fb99c361752ec9c065c3a077d95d5901e6ed9757d83 Loading...

	mixdrop.my/f/xw0qgozmbr06vj	ScriptElement	216 kB	2025-05-08	2025-05-08
Pretty URL mixdrop.my/f/xw0qgozmbr06vj IP 172.67.208.161 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-05-08 23:04 Last Seen2025-05-08 23:04 Times Seen1 Hash fcff32ad447c886c7f2d215920c35111 89304ceff13327d17f978c62020ad66fe6a95e72 e4d4a45c3be54530677f9e2f40e70c1e034add1bf7323b823592d6ab26239a59 Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LetXaoUAAAAAB6axgg4WLG9oZ_6QLTsFXZj-5sd&co=aHR0cHM6Ly9taXhkcm9wLm15OjQ0Mw..&hl=en&v=Hi8UmRMnhdOBM3IuViTkapUP&size=invisible&cb=5koq9bbquch2	ScriptElement	69 B	2023-03-07	2025-06-18
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LetXaoUAAAAAB6axgg4WLG9oZ_6QLTsFXZj-5sd&co=aHR0cHM6Ly9taXhkcm9wLm15OjQ0Mw..&hl=en&v=Hi8UmRMnhdOBM3IuViTkapUP&size=invisible&cb=5koq9bbquch2 IP 172.217.21.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-06-18 06:43 Times Seen121095 Hash 45ecf7458f42da80ac248ad42d610372 a5b3edf8328769bc754e6e616a957ceed4fdadd7 75867e75b209895995014b43c3d711476e3437481e5fbec91a4da674302558bf Loading...

	www.google.com/recaptcha/api.js?render=6LetXaoUAAAAAB6axgg4WLG9oZ_6QLTsFXZj-5sd	ScriptElement	945 B	2025-05-08	2025-05-12
Pretty URL www.google.com/recaptcha/api.js?render=6LetXaoUAAAAAB6axgg4WLG9oZ_6QLTsFXZj-5sd IP 172.217.21.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-08 12:55 Last Seen2025-05-12 02:41 Times Seen4 Hash 92b6fda7698894be11e2028332171177 71df55f9b98d76e4ec650ef768d00aa28e5f4bcf 955e85a7a25ad6a2cb438b07065f8701ab897ef4865fe873b42b5e187f98918b Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LetXaoUAAAAAB6axgg4WLG9oZ_6QLTsFXZj-5sd&co=aHR0cHM6Ly9taXhkcm9wLm15OjQ0Mw..&hl=en&v=Hi8UmRMnhdOBM3IuViTkapUP&size=invisible&cb=5koq9bbquch2	Eval	19 kB	2025-05-01	2025-05-18
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LetXaoUAAAAAB6axgg4WLG9oZ_6QLTsFXZj-5sd&co=aHR0cHM6Ly9taXhkcm9wLm15OjQ0Mw..&hl=en&v=Hi8UmRMnhdOBM3IuViTkapUP&size=invisible&cb=5koq9bbquch2 IP 172.217.21.164 ASN #15169 GOOGLE Introduced by eval Embedded in HTML false Observations First Seen2025-05-01 07:13 Last Seen2025-05-18 05:19 Times Seen1236 Hash 17218950cd7596cf7f41f2a6fa4ae371 0ac8621375d598d1a5ca3c403b4944a61a9a227a ea45dacf24a18ec24e05d54bb4eac8430e7f86692e17b74b14aa0357e28d7aa3 Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LetXaoUAAAAAB6axgg4WLG9oZ_6QLTsFXZj-5sd&co=aHR0cHM6Ly9taXhkcm9wLm15OjQ0Mw..&hl=en&v=Hi8UmRMnhdOBM3IuViTkapUP&size=invisible&cb=5koq9bbquch2	Eval	22 B	2025-05-01	2025-05-18
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LetXaoUAAAAAB6axgg4WLG9oZ_6QLTsFXZj-5sd&co=aHR0cHM6Ly9taXhkcm9wLm15OjQ0Mw..&hl=en&v=Hi8UmRMnhdOBM3IuViTkapUP&size=invisible&cb=5koq9bbquch2 IP 172.217.21.164 ASN #15169 GOOGLE Introduced by eval Embedded in HTML false Observations First Seen2025-05-01 07:13 Last Seen2025-05-18 05:19 Times Seen1236 Hash d9c4ae503fe6ed2a23a7eceaa6487331 7e4a70d87abcc6dd4d150a182742914e2debe492 6f75c091b1b2122fb7b0462b916a170ba823095b808092ec9adc93e9b550811a Loading...

	mixdrop.my/js/script.v2.min.js?v=2.0.1	ScriptElement	9.2 kB	2023-06-17	2025-06-18
Pretty URL mixdrop.my/js/script.v2.min.js?v=2.0.1 IP 172.67.208.161 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-17 07:31 Last Seen2025-06-18 02:54 Times Seen955 Hash ded641abc54bc5f08c092018a28d6018 c35baf1ef0e8116f26e97430eba028325c88eb0e d08e4e80bd87159988c3220670cebd0616f789f07d02c1104d408809a2b07ff3 Loading...

	mixdrop.my/js/jquery-upload/js/jquery.iframe-transport.js?v=2.0.1	ScriptElement	2.3 kB	2023-03-07	2025-06-18
Pretty URL mixdrop.my/js/jquery-upload/js/jquery.iframe-transport.js?v=2.0.1 IP 172.67.208.161 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03 Last Seen2025-06-18 02:54 Times Seen959 Hash f77830c3579ddb6e4eda9c71102aef16 ec096d3bf06961d157a17977e5b3377d1288e466 e40d7519371bd17aba9b17f301ca3c7598fe8408baefd9cdebd2283944ac405f Loading...

	mixdrop.my/js/circular-progress/circle-progress.min.js?v=2.0.1	ScriptElement	4.4 kB	2023-03-07	2025-06-18
Pretty URL mixdrop.my/js/circular-progress/circle-progress.min.js?v=2.0.1 IP 172.67.208.161 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03 Last Seen2025-06-18 02:54 Times Seen959 Hash 481511eb62925e0a61fd380fa47a1e53 20bde42f09f827b4cfbe960fa51ae204328ab611 ae6109f5fd770666f0daef12209ffdba676f437dc5952881b20c04ccb36a1749 Loading...

	code.jquery.com/ui/1.13.2/jquery-ui.min.js	ScriptElement	255 kB	2023-03-07	2025-06-18
Pretty URL code.jquery.com/ui/1.13.2/jquery-ui.min.js IP 151.101.66.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 18:39 Last Seen2025-06-18 02:54 Times Seen5022 Hash 1e2047978946a1d271356d0b557a84a3 5f29a324c8affb1fdb26ad4564b1e044372beed2 9528ca634fecad433d044ddd3e6f9ce1f068d5d932dafdbb19d8e6daea1968bd Loading...

	code.jquery.com/jquery-3.6.4.min.js	ScriptElement	90 kB	2023-03-26	2025-06-18
Pretty URL code.jquery.com/jquery-3.6.4.min.js IP 151.101.66.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 04:59 Last Seen2025-06-18 04:24 Times Seen7992 Hash 641dd14370106e992d352166f5a07e99 eda46747c71d38a880bee44f9a439c3858bb8f99 a0fe8723dcf55da64d06b25446d0a8513e52527c45afcb37073465f9c6f352af Loading...

	mixdrop.my/f/xw0qgozmbr06vj	Eval	10 kB	2025-05-08	2025-05-08
Pretty URL mixdrop.my/f/xw0qgozmbr06vj IP 172.67.208.161 ASN #13335 CLOUDFLARENET Introduced by eval Embedded in HTML false Observations First Seen2025-05-08 23:04 Last Seen2025-05-08 23:04 Times Seen1 Hash ede0dfde7e3e4168534f75e7fb25599e c99bc2a587deedac74ddfc2a80d03beb68ad4361 3cfcf23a44299d57e41a311d5c42df0a7794974789bcf13b59b88aeaf139be18 Loading...

	mixdrop.my/js/slidebars/slidebars.min.js?v=2.0.1	ScriptElement	3.4 kB	2023-03-07	2025-06-18
Pretty URL mixdrop.my/js/slidebars/slidebars.min.js?v=2.0.1 IP 172.67.208.161 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03 Last Seen2025-06-18 02:54 Times Seen997 Hash c1753c151e33bcb2899033de50cd2eeb 8561a520777caf49d0afdc412873b229fa0a2be1 f6f14db0996436aee72c823029e3dcc6cc363ec3a46757044b6b63640b5ff144 Loading...

	mixdrop.my/js/jquery-upload/js/main.js?v=2.0.1	ScriptElement	311 B	2023-03-07	2025-06-18
Pretty URL mixdrop.my/js/jquery-upload/js/main.js?v=2.0.1 IP 172.67.208.161 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03 Last Seen2025-06-18 02:54 Times Seen959 Hash 1f7968edcaf43f9b2ebd58d74311ff7c f53ca538e9a2c0cd87b51babe9d03d2f91cf6d2c be076d81c5a67334d5f78a5b77db41b966fb7d254586b483ac5d1f155e89a91f Loading...

	www.gstatic.com/recaptcha/releases/Hi8UmRMnhdOBM3IuViTkapUP/recaptcha__en.js	ScriptElement	653 kB	2025-04-30	2025-06-08
Pretty URL www.gstatic.com/recaptcha/releases/Hi8UmRMnhdOBM3IuViTkapUP/recaptcha__en.js IP 142.250.178.99 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-30 21:26 Last Seen2025-06-08 09:34 Times Seen3129 Hash cded17fc3b606bf50119ef5425541a3a e11985d3bbce813e0349e732e24cd757b5a8ea2f 31ab798a14c43a7608cd4eaa6026f4cf209371762263b6d1b0e562a264c00f4c Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LetXaoUAAAAAB6axgg4WLG9oZ_6QLTsFXZj-5sd&co=aHR0cHM6Ly9taXhkcm9wLm15OjQ0Mw..&hl=en&v=Hi8UmRMnhdOBM3IuViTkapUP&size=invisible&cb=5koq9bbquch2	Eval	22 B	2025-05-01	2025-05-18
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LetXaoUAAAAAB6axgg4WLG9oZ_6QLTsFXZj-5sd&co=aHR0cHM6Ly9taXhkcm9wLm15OjQ0Mw..&hl=en&v=Hi8UmRMnhdOBM3IuViTkapUP&size=invisible&cb=5koq9bbquch2 IP 172.217.21.164 ASN #15169 GOOGLE Introduced by eval Embedded in HTML false Observations First Seen2025-05-01 07:13 Last Seen2025-05-18 05:19 Times Seen1236 Hash 42fe8d1b5bde44cc64f116b4c6dad766 79d5f00ef004d29257dea49c89ce793209c88d68 7dc385699450ea2ebecab15ba6b44e72a055514cc0d2405b3ccf61ca096d012a Loading...

	mdstats.info/js/script.js	ScriptElement	1.3 kB	2023-05-22	2025-06-18
Pretty URL mdstats.info/js/script.js IP 104.21.80.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-22 17:22 Last Seen2025-06-18 02:54 Times Seen5019 Hash abd4e2373b2e8c4dac2e80159641c5f1 e273656e58ca934d873204e68dd35670fde657ed 021f0fd27042b279a49e982215c6dc3c3ab84e95b35553a119dfdbd50af6be94 Loading...

	www.xadsmart.com/DnGr/RtlIpv/yjss.min.js	ScriptElement	37 kB	2025-05-08	2025-05-08
Pretty URL www.xadsmart.com/DnGr/RtlIpv/yjss.min.js IP 95.173.205.14 ASN #60068 Datacamp Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-08 23:04 Last Seen2025-05-08 23:04 Times Seen1 Hash 48e1915e30d8f66d052e4c62ffffec7b 596846a1436d2aa550bb42e4d6276b6b31a436bf a646bd51d00c6b0b682e98b123bee7178d90049382b93adf60f9f3ab41345af5 Loading...

	mixdrop.my/f/xw0qgozmbr06vj	ScriptElement	1.0 kB	2025-05-08	2025-05-08
Pretty URL mixdrop.my/f/xw0qgozmbr06vj IP 172.67.208.161 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-05-08 23:04 Last Seen2025-05-08 23:04 Times Seen1 Hash 781770ab712b55ebe5dda510a0fecf65 4107855efd6a63bab523abb949cfaba551ff7abf 9f8d33378a9a3a15a603fcbe408a26e591e905302c85bbdc10226c42c7a884f8 Loading...

	mixdrop.my/js/ads.js	ScriptElement	50 B	2023-03-07	2025-06-18
Pretty URL mixdrop.my/js/ads.js IP 172.67.208.161 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:41 Last Seen2025-06-18 02:54 Times Seen1151 Hash 170cb502f8f209ca64ca4c271c7041e2 bdce5bceee905dacef001063aa1d9c5f3c8f693c 789581e03b9915bd79ea82a241817dcbbdeb1c240e540e9470fabf1998b41a6b Loading...

	uqohomcgxhtjr.space/script/ut.js?cb=1746745445024	ScriptElement	81 kB	2025-04-30	2025-06-17
Pretty URL uqohomcgxhtjr.space/script/ut.js?cb=1746745445024 IP 172.67.202.218 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-30 16:49 Last Seen2025-06-17 00:40 Times Seen104 Hash eaa11c5f044a59ec54c82e06a8beba81 afb33a13f1b0b1163ae1d5f98703c9eacd35bee3 b05b9df2027483a401c352424c15d0adff42dbe771c52b71333e5b4e68f1260c Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LetXaoUAAAAAB6axgg4WLG9oZ_6QLTsFXZj-5sd&co=aHR0cHM6Ly9taXhkcm9wLm15OjQ0Mw..&hl=en&v=Hi8UmRMnhdOBM3IuViTkapUP&size=invisible&cb=5koq9bbquch2	ScriptElement	64 kB	2025-05-08	2025-05-08
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LetXaoUAAAAAB6axgg4WLG9oZ_6QLTsFXZj-5sd&co=aHR0cHM6Ly9taXhkcm9wLm15OjQ0Mw..&hl=en&v=Hi8UmRMnhdOBM3IuViTkapUP&size=invisible&cb=5koq9bbquch2 IP 172.217.21.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2025-05-08 23:04 Last Seen2025-05-08 23:04 Times Seen1 Hash e416b675ed563deb8f0e798738e1945d 1e87e548d4d6ef8a8275d6c50e97ef7981132a3e 81abe35b87e7b137d0a5c9a91f2b7ba6ed02fbb725bad2205e8cda81a2331864 Loading...

	www.gstatic.com/recaptcha/releases/Hi8UmRMnhdOBM3IuViTkapUP/recaptcha__en.js	ScriptElement	653 kB	2025-04-30	2025-06-08
Pretty URL www.gstatic.com/recaptcha/releases/Hi8UmRMnhdOBM3IuViTkapUP/recaptcha__en.js IP 142.250.178.99 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-30 21:26 Last Seen2025-06-08 09:34 Times Seen3129 Hash cded17fc3b606bf50119ef5425541a3a e11985d3bbce813e0349e732e24cd757b5a8ea2f 31ab798a14c43a7608cd4eaa6026f4cf209371762263b6d1b0e562a264c00f4c Loading...

	xadsmart.com/zfrwtqmuuuggqyr?tEeAPOVX=BQOSAAAAAAAACZUAAtmedbbtL5nImd-q08Q2CdZORuxEgef2Lwmph9WDpabNhPxwwzXZYE76_lF6TIReqHNi-nJrvNsv3QehkBfql8-aaIfQpT_3ruxtuOuSVxYv8BcUGBhSmp2l0ZiJJk8UkPLtRmHKNm47ZtLZ5nuxjbgU3hkm78EH73h0P_dUfVCYABRaVG2HH61Ncw9a_8eboMoR5_HtRt0eN_RJ4fD47wsFajs5mhhrP5dowqu5JLaPjBDDKJ9WP-qFNtpCde19RRpQc_NJu38yPTLIHHmT_OmlPRud6F2wjf9LZP60ANkNIx_VJ1ox_rKjHu7Og1Kh50gJVvDqX24LfznamxgkbANgb7w0HcMQxUQTi5XT_bx14XvBdKXNwfra_gl13FvIHYhE3oy1Ql8NrC0cN0KuSDhF7M0t3nJfZ2jGTNC77uP_Qbgk0MRNWRK0oHnRMfhvBzUkuCKXoJV2P9L0-tIJ2EelFDK5HmNDkAC36KRzXsGDDPtESg5ThuE34XCgBeuXcV01dKyroZM3wASwgGg6wbtOA-CzJcskME6pmHBbsN-QPdpEOo_xYJt3fu1R-ySd2nAnFovx83-4LVzRkInTtJHLhUDK_mbPeAwShGXZsSz8PPPdasZ6LieCgOkcfRau0OmjDONQzrxiR630dy2GB1-SAWUEXBsLXxun3YOmywMu2sghPL4j4CCgynCDE7QxZcd2-ywAf-5CL-Yt7ve2HzPbjP_m4s5uLEfFqHbbH-oBPmHjrFx55873V7jYygsmu3Z4xLAWHLoV_7x7nLNGMuotQ9ShYLgNa-NNlPYL-5Zd6Ny49DZZbuSQEiI2JYnlV-bJsGCIU-7ndo3YNcGS6b7easximMnzFEJ7OKSc0WvMBOX6e2lWpj6pYTvxoMDgHxJWcoVGlwv-TcVgS6uIbuc4dZIInx19tZZy4cuLP032yalKpGqWs55ZkobjlI4q5m2S19SYxmyCoSZx9nJKRnmS9zoQN4RSiTIEvs6fIB051EHuQUHcjy8CE6vSPFJ3VUN7ugFGu7W9fHEsZkIEngNz__ZIO0Hi1zHMjRKDflvXerSRc9TbbTnpJym1vGgrIyEd-mNvdS6JAlcrNJpaI4_ly62_qXdA2NqGdh0Bi7YY7AskTVlR3EXf9z-Zpo48oV8NPJn3cTR7IUgXuPKVkVtQjrIgzQTiTO8_M1ZE4KhJERkZ4KNuaQE4oAyFmqhS_A&ZwaktYbm=4&XtWqPOUf=5090957&tEPbFKyL=&DwXIhRNj=0:1,0&VFCkxvKD=&psyQBeci=&s=1280,1024,1,1280,1024,0	ScriptElement	44 B	2023-03-07	2025-06-18
Pretty URL xadsmart.com/zfrwtqmuuuggqyr?tEeAPOVX=BQOSAAAAAAAACZUAAtmedbbtL5nImd-q08Q2CdZORuxEgef2Lwmph9WDpabNhPxwwzXZYE76_lF6TIReqHNi-nJrvNsv3QehkBfql8-aaIfQpT_3ruxtuOuSVxYv8BcUGBhSmp2l0ZiJJk8UkPLtRmHKNm47ZtLZ5nuxjbgU3hkm78EH73h0P_dUfVCYABRaVG2HH61Ncw9a_8eboMoR5_HtRt0eN_RJ4fD47wsFajs5mhhrP5dowqu5JLaPjBDDKJ9WP-qFNtpCde19RRpQc_NJu38yPTLIHHmT_OmlPRud6F2wjf9LZP60ANkNIx_VJ1ox_rKjHu7Og1Kh50gJVvDqX24LfznamxgkbANgb7w0HcMQxUQTi5XT_bx14XvBdKXNwfra_gl13FvIHYhE3oy1Ql8NrC0cN0KuSDhF7M0t3nJfZ2jGTNC77uP_Qbgk0MRNWRK0oHnRMfhvBzUkuCKXoJV2P9L0-tIJ2EelFDK5HmNDkAC36KRzXsGDDPtESg5ThuE34XCgBeuXcV01dKyroZM3wASwgGg6wbtOA-CzJcskME6pmHBbsN-QPdpEOo_xYJt3fu1R-ySd2nAnFovx83-4LVzRkInTtJHLhUDK_mbPeAwShGXZsSz8PPPdasZ6LieCgOkcfRau0OmjDONQzrxiR630dy2GB1-SAWUEXBsLXxun3YOmywMu2sghPL4j4CCgynCDE7QxZcd2-ywAf-5CL-Yt7ve2HzPbjP_m4s5uLEfFqHbbH-oBPmHjrFx55873V7jYygsmu3Z4xLAWHLoV_7x7nLNGMuotQ9ShYLgNa-NNlPYL-5Zd6Ny49DZZbuSQEiI2JYnlV-bJsGCIU-7ndo3YNcGS6b7easximMnzFEJ7OKSc0WvMBOX6e2lWpj6pYTvxoMDgHxJWcoVGlwv-TcVgS6uIbuc4dZIInx19tZZy4cuLP032yalKpGqWs55ZkobjlI4q5m2S19SYxmyCoSZx9nJKRnmS9zoQN4RSiTIEvs6fIB051EHuQUHcjy8CE6vSPFJ3VUN7ugFGu7W9fHEsZkIEngNz__ZIO0Hi1zHMjRKDflvXerSRc9TbbTnpJym1vGgrIyEd-mNvdS6JAlcrNJpaI4_ly62_qXdA2NqGdh0Bi7YY7AskTVlR3EXf9z-Zpo48oV8NPJn3cTR7IUgXuPKVkVtQjrIgzQTiTO8_M1ZE4KhJERkZ4KNuaQE4oAyFmqhS_A&ZwaktYbm=4&XtWqPOUf=5090957&tEPbFKyL=&DwXIhRNj=0:1,0&VFCkxvKD=&psyQBeci=&s=1280,1024,1,1280,1024,0 IP 104.153.197.251 ASN #53334 TUT-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:17 Last Seen2025-06-18 05:51 Times Seen9916 Hash d5f0a25e4d3522d56d48ce7bc3e518fb 86794caff58f7fee6e684c2ba7195f970a8d6f4c 9d781128a8ece413b003d5612b8398bf9340ef7f5b751d12bd125ba523d3ceb5 Loading...

	about:blank	JavascriptURL	5 B	2023-03-07	2025-06-18
Pretty URL about:blank IP 0.0.0.0 ASN #0 Introduced by javascriptURL Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-06-18 06:30 Times Seen27704 Hash 68934a3e9455fa72420237eb05902327 7cb6efb98ba5972a9b5090dc2e517fe14d12cb04 fcbcf165908dd18a9e49f7ff27810176db8e9f63b4352213741664245224f8aa Loading...

	mixdrop.my/panel/js/scroll/perfect-scrollbar.min.js?v=2.0.1	ScriptElement	18 kB	2023-03-07	2025-06-18
Pretty URL mixdrop.my/panel/js/scroll/perfect-scrollbar.min.js?v=2.0.1 IP 172.67.208.161 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03 Last Seen2025-06-18 02:54 Times Seen2077 Hash 4a10bcfa0a9c9fa9d503b5a498cac31e c4f6c403e99fb37cb496c3844b332823db7c5837 a4ec9d558eeb7bc7359fe7c4820deea2c951fdd8bd34cb0e15727412c7f6c634 Loading...

	c.adsco.re/#0.7203417083216987	ScriptElement	486 B	2023-03-07	2025-06-18
Pretty URL c.adsco.re/#0.7203417083216987 IP 104.17.166.186 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:03 Last Seen2025-06-18 05:51 Times Seen1118 Hash 77c8287be10ff4b66a8490ca4d999917 7fccb364c5e22958503bcd8b92cdb648d5c4c96e c2d43195d015b5856873b3b0c6e717ee21599ca3f03f820b7c325f27b9b6a31d Loading...

	mixdrop.my/f/xw0qgozmbr06vj	ScriptElement	6.5 kB	2025-05-08	2025-05-08
Pretty URL mixdrop.my/f/xw0qgozmbr06vj IP 172.67.208.161 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-05-08 23:04 Last Seen2025-05-08 23:04 Times Seen1 Hash 1dc965b159314ae4ecd5c11839c80dfe 0cec13f11d228da710b7b761ba858de5e61b6509 a94283729c8139f8262d9bf28624197a5952a8bf0cb79102194e4cd817a483ef Loading...

HTTP Transactions (48)

URL IP Response Size

fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

142.250.74.35

200 OK

48 kB

URL GET
fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://mixdrop.my/f/xw0qgozmbr06vj
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint62:05:36:C2:8E:4C:CD:95:1E:1C:75:06:44:A3:57:E5:C0:17:02:80
ValidityMon, 31 Mar 2025 08:55:35 GMT - Mon, 23 Jun 2025 08:55:34 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48236, version 1.0
Size
48 kB (48236 bytes)
Hash
015c126a3520c9a8f6a27979d0266e96
2acf956561d44434a6d84204670cf849d3215d5f
3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa

HTTP Headers

GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mixdrop.my
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 May 2025 10:12:20 GMT
expires: Fri, 08 May 2026 10:12:20 GMT
cache-control: public, max-age=31536000
age: 46305
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.gstatic.com/recaptcha/api2/logo_48.png

142.250.178.99

200 OK

2.2 kB

URL GET
www.gstatic.com/recaptcha/api2/logo_48.png
IP
142.250.178.99:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LetXaoUAAAAAB6axgg4WLG9oZ_6QLTsFXZj-5sd&co=aHR0cHM6Ly9taXhkcm9wLm15OjQ0Mw..&hl=en&v=Hi8UmRMnhdOBM3IuViTkapUP&size=invisible&cb=5koq9bbquch2
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint62:05:36:C2:8E:4C:CD:95:1E:1C:75:06:44:A3:57:E5:C0:17:02:80
ValidityMon, 31 Mar 2025 08:55:35 GMT - Mon, 23 Jun 2025 08:55:34 GMT

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced
Size
2.2 kB (2228 bytes)
Hash
ef9941290c50cd3866e2ba6b793f010d
4736508c795667dcea21f8d864233031223b7832
1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a

HTTP Headers

GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/Hi8UmRMnhdOBM3IuViTkapUP/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 May 2025 17:58:48 GMT
expires: Thu, 15 May 2025 17:58:48 GMT
cache-control: public, max-age=604800
age: 18320
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

mixdrop.my/imgs/v2/i-download.png

172.67.208.161

200 OK

783 B

URL GET
mixdrop.my/imgs/v2/i-download.png
IP
172.67.208.161:443
ASN
#13335 CLOUDFLARENET

Requested by
https://mixdrop.my/f/xw0qgozmbr06vj
Certificate
IssuerGoogle Trust Services
Subjectmixdrop.my
FingerprintEE:EC:18:05:37:E7:FE:BF:35:03:C8:B9:38:9F:92:78:4C:B9:10:3B
ValidityWed, 23 Apr 2025 21:25:33 GMT - Tue, 22 Jul 2025 22:21:38 GMT

File type
PNG image data, 39 x 34, 8-bit colormap, non-interlaced
Size
783 B (783 bytes)
Hash
5af3f83ce6b22ea50970519ae0ec134f
1c5a9d608640c591e544d032036c72fcfa83879f
7e153d22b140a3b6d102e72fadd344368879281f84d1c1ca1a285d5c196436d3

HTTP Headers

GET /imgs/v2/i-download.png HTTP/1.1
Host: mixdrop.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mixdrop.my/f/xw0qgozmbr06vj
Cookie: PHPSESSID=sogop8i0k0e4rmhdojlgc25ump
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 08 May 2025 23:04:04 GMT
content-type: image/png
content-length: 783
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rijJ5YQ5bennQ5QW%2BSJOmrTkIS3hs0kxl41gob8%2FzEqYDawopq57nwhycblZyhlPU%2Ba6Ptw737gqw7vSgBCmGV5UcJdAD58LXKsGT%2BkxSVSqjcoqI020WWt%2FD6aR"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 10 May 2023 11:24:56 GMT
etag: "645b7f08-30f"
expires: Thu, 05 Jun 2025 13:23:04 GMT
cache-control: public, max-age=2592000
accept-ranges: bytes
age: 207660
cf-cache-status: HIT
cf-ray: 93cc9813fda9712b-OSL
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4357&min_rtt=859&rtt_var=2941&sent=89&recv=114&lost=0&retrans=0&sent_bytes=9822&recv_bytes=10365&delivery_rate=2190&cwnd=12000&unsent_bytes=0&cid=b97ec619d463d25c&ts=312&x=16"

mixdrop.my/js/jquery-upload/js/jquery.fileupload.js?v=2.0.1

172.67.208.161

200 OK

19 kB

URL GET
mixdrop.my/js/jquery-upload/js/jquery.fileupload.js?v=2.0.1
IP
172.67.208.161:443
ASN
#13335 CLOUDFLARENET

Requested by
https://mixdrop.my/f/xw0qgozmbr06vj
Certificate
IssuerGoogle Trust Services
Subjectmixdrop.my
FingerprintEE:EC:18:05:37:E7:FE:BF:35:03:C8:B9:38:9F:92:78:4C:B9:10:3B
ValidityWed, 23 Apr 2025 21:25:33 GMT - Tue, 22 Jul 2025 22:21:38 GMT

File type
JavaScript source, ASCII text, with very long lines (18868)
Size
19 kB (18869 bytes)
Hash
a4281f84f3fd3ab075827471357a7347
7c52a9c48a24ce48c0acd916fa431aebe79eb1b7
09649459c938dca393b14fb99c361752ec9c065c3a077d95d5901e6ed9757d83

HTTP Headers

GET /js/jquery-upload/js/jquery.fileupload.js?v=2.0.1 HTTP/1.1
Host: mixdrop.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mixdrop.my/f/xw0qgozmbr06vj
Cookie: PHPSESSID=sogop8i0k0e4rmhdojlgc25ump
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 08 May 2025 23:04:04 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Rq6lcY9QAUVw6wwx%2BRnTC4AMG19pRXWp9oHgFzwbxyKopAi4NQGXvI38i2j3h1d8jBglIcJP2dHCfhelVCC%2BDTj0g76%2B%2FvM588q6woclH1WuxcCiyfqvSpEk8Kew"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 19 Sep 2018 14:48:31 GMT
etag: W/"5ba261bf-49b5"
expires: Thu, 05 Jun 2025 13:23:04 GMT
cache-control: public, max-age=2592000
content-encoding: gzip
age: 207659
cf-cache-status: HIT
cf-ray: 93cc98140db0712b-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3843&min_rtt=859&rtt_var=2594&sent=109&recv=116&lost=0&retrans=0&sent_bytes=27877&recv_bytes=10457&delivery_rate=1620486&cwnd=24000&unsent_bytes=0&cid=b97ec619d463d25c&ts=319&x=16"

www.xadsmart.com/DnGr/RtlIpv/yjss.min.js

95.173.205.14

200 OK

37 kB

URL GET
www.xadsmart.com/DnGr/RtlIpv/yjss.min.js
IP
95.173.205.14:443
ASN
#60068 Datacamp Limited

Requested by
https://mixdrop.my/f/xw0qgozmbr06vj
Certificate
IssuerLet's Encrypt
Subject1376341044.rsc.cdn77.org
Fingerprint0B:6C:90:13:86:63:9E:9A:77:0E:59:C0:5B:FC:BF:83:A0:EB:98:F3
ValidityWed, 16 Apr 2025 02:51:46 GMT - Tue, 15 Jul 2025 02:51:45 GMT

File type
JavaScript source, ASCII text, with very long lines (1568)
Size
37 kB (37168 bytes)
Hash
48e1915e30d8f66d052e4c62ffffec7b
596846a1436d2aa550bb42e4d6276b6b31a436bf
a646bd51d00c6b0b682e98b123bee7178d90049382b93adf60f9f3ab41345af5

HTTP Headers

GET /DnGr/RtlIpv/yjss.min.js HTTP/1.1
Host: www.xadsmart.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mixdrop.my
DNT: 1
Connection: keep-alive
Referer: https://mixdrop.my/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 08 May 2025 23:04:05 GMT
content-type: application/x-javascript
popads-node: wb6
expires: Thu, 15 May 2025 22:45:56 GMT
access-control-allow-origin: https://mixdrop.my
link: <https://xadsmart.com/>;rel=preconnect
cache-control: public, max-age=604800
x-77-nzt: EwgBX63NDQFBDAG5TAoTAfc6BAAADAHDta8CAbcHAAAA
x-77-nzt-ray: 2a494a153f26a31c8a381d6876fcb908
x-77-cache: HIT
x-77-age: 1082
vary: Accept-Encoding, Origin
content-encoding: gzip
server: CDN77-Turbo
x-77-pop: osloNO
X-Firefox-Spdy: h2

4.adsco.re:2087/

162.252.214.5

200 OK

45 B

URL GET
4.adsco.re:2087/
IP
162.252.214.5:2087
ASN
#53334 TUT-AS

Requested by
https://mixdrop.my/f/xw0qgozmbr06vj
Certificate
IssuerSectigo Limited
Subject*.adsco.re
Fingerprint3B:64:1C:DA:8C:64:22:01:36:0F:54:7A:99:6E:AD:26:C2:EF:59:8B
ValidityMon, 23 Sep 2024 00:00:00 GMT - Mon, 29 Sep 2025 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
45 B (45 bytes)
Hash
5b41cb22f84f645a103acc7bfbf084ff
bac3967b26d5ec4a0d09a580714e8219796816bd
709f0a0dfab9f9e074f4a4a348dcb09150838284d21e75cfb9e5ceaeeb2054bc

HTTP Headers

GET / HTTP/1.1
Host: 4.adsco.re:2087
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mixdrop.my
DNT: 1
Connection: keep-alive
Referer: https://mixdrop.my/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 08 May 2025 23:04:07 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Origin: https://mixdrop.my
Access-Control-Max-Age: 2592000
Cache-Control: private, max-age=5
Content-Encoding: gzip

www.gstatic.com/recaptcha/releases/Hi8UmRMnhdOBM3IuViTkapUP/styles__ltr.css

142.250.178.99

200 OK

79 kB

URL GET
www.gstatic.com/recaptcha/releases/Hi8UmRMnhdOBM3IuViTkapUP/styles__ltr.css
IP
142.250.178.99:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LetXaoUAAAAAB6axgg4WLG9oZ_6QLTsFXZj-5sd&co=aHR0cHM6Ly9taXhkcm9wLm15OjQ0Mw..&hl=en&v=Hi8UmRMnhdOBM3IuViTkapUP&size=invisible&cb=5koq9bbquch2
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint62:05:36:C2:8E:4C:CD:95:1E:1C:75:06:44:A3:57:E5:C0:17:02:80
ValidityMon, 31 Mar 2025 08:55:35 GMT - Mon, 23 Jun 2025 08:55:34 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
79 kB (78627 bytes)
Hash
a68364262d4277632ec1d9f977ca653b
25cba53a73d4284e72688d399cba28403abc2fd3
b38e21e62209b1249673c8b40c2a5e00330f5f22b77dc94fb6ea261408e2abc1

HTTP Headers

GET /recaptcha/releases/Hi8UmRMnhdOBM3IuViTkapUP/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
timing-allow-origin: *
content-length: 42056
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 May 2025 17:21:38 GMT
expires: Thu, 07 May 2026 17:21:38 GMT
cache-control: public, max-age=31536000
age: 106949
last-modified: Tue, 29 Apr 2025 17:05:42 GMT
content-type: text/css
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

xadsmart.com/zfrwtqmuuuggqyr?tEeAPOVX=BQOSAAAAAAAACZUAAtmedbbtL5nImd-q08Q2CdZORuxEgef2Lwmph9WDpabNhPxwwzXZYE76_lF6TIReqHNi-nJrvNsv3QehkBfql8-aaIfQpT_3ruxtuOuSVxYv8BcUGBhSmp2l0ZiJJk8UkPLtRmHKNm47ZtLZ5nuxjbgU3hkm78EH73h0P_dUfVCYABRaVG2HH61Ncw9a_8eboMoR5_HtRt0eN_RJ4fD47wsFajs5mhhrP5dowqu5JLaPjBDDKJ9WP-qFNtpCde19RRpQc_NJu38yPTLIHHmT_OmlPRud6F2wjf9LZP60ANkNIx_VJ1ox_rKjHu7Og1Kh50gJVvDqX24LfznamxgkbANgb7w0HcMQxUQTi5XT_bx14XvBdKXNwfra_gl13FvIHYhE3oy1Ql8NrC0cN0KuSDhF7M0t3nJfZ2jGTNC77uP_Qbgk0MRNWRK0oHnRMfhvBzUkuCKXoJV2P9L0-tIJ2EelFDK5HmNDkAC36KRzXsGDDPtESg5ThuE34XCgBeuXcV01dKyroZM3wASwgGg6wbtOA-CzJcskME6pmHBbsN-QPdpEOo_xYJt3fu1R-ySd2nAnFovx83-4LVzRkInTtJHLhUDK_mbPeAwShGXZsSz8PPPdasZ6LieCgOkcfRau0OmjDONQzrxiR630dy2GB1-SAWUEXBsLXxun3YOmywMu2sghPL4j4CCgynCDE7QxZcd2-ywAf-5CL-Yt7ve2HzPbjP_m4s5uLEfFqHbbH-oBPmHjrFx55873V7jYygsmu3Z4xLAWHLoV_7x7nLNGMuotQ9ShYLgNa-NNlPYL-5Zd6Ny49DZZbuSQEiI2JYnlV-bJsGCIU-7ndo3YNcGS6b7easximMnzFEJ7OKSc0WvMBOX6e2lWpj6pYTvxoMDgHxJWcoVGlwv-TcVgS6uIbuc4dZIInx19tZZy4cuLP032yalKpGqWs55ZkobjlI4q5m2S19SYxmyCoSZx9nJKRnmS9zoQN4RSiTIEvs6fIB051EHuQUHcjy8CE6vSPFJ3VUN7ugFGu7W9fHEsZkIEngNz__ZIO0Hi1zHMjRKDflvXerSRc9TbbTnpJym1vGgrIyEd-mNvdS6JAlcrNJpaI4_ly62_qXdA2NqGdh0Bi7YY7AskTVlR3EXf9z-Zpo48oV8NPJn3cTR7IUgXuPKVkVtQjrIgzQTiTO8_M1ZE4KhJERkZ4KNuaQE4oAyFmqhS_A&ZwaktYbm=4&XtWqPOUf=5090957&tEPbFKyL=&DwXIhRNj=0:1,0&VFCkxvKD=&psyQBeci=&s=1280,1024,1,1280,1024,0

104.153.197.251

200 OK

44 B

URL GET
xadsmart.com/zfrwtqmuuuggqyr?tEeAPOVX=BQOSAAAAAAAACZUAAtmedbbtL5nImd-q08Q2CdZORuxEgef2Lwmph9WDpabNhPxwwzXZYE76_lF6TIReqHNi-nJrvNsv3QehkBfql8-aaIfQpT_3ruxtuOuSVxYv8BcUGBhSmp2l0ZiJJk8UkPLtRmHKNm47ZtLZ5nuxjbgU3hkm78EH73h0P_dUfVCYABRaVG2HH61Ncw9a_8eboMoR5_HtRt0eN_RJ4fD47wsFajs5mhhrP5dowqu5JLaPjBDDKJ9WP-qFNtpCde19RRpQc_NJu38yPTLIHHmT_OmlPRud6F2wjf9LZP60ANkNIx_VJ1ox_rKjHu7Og1Kh50gJVvDqX24LfznamxgkbANgb7w0HcMQxUQTi5XT_bx14XvBdKXNwfra_gl13FvIHYhE3oy1Ql8NrC0cN0KuSDhF7M0t3nJfZ2jGTNC77uP_Qbgk0MRNWRK0oHnRMfhvBzUkuCKXoJV2P9L0-tIJ2EelFDK5HmNDkAC36KRzXsGDDPtESg5ThuE34XCgBeuXcV01dKyroZM3wASwgGg6wbtOA-CzJcskME6pmHBbsN-QPdpEOo_xYJt3fu1R-ySd2nAnFovx83-4LVzRkInTtJHLhUDK_mbPeAwShGXZsSz8PPPdasZ6LieCgOkcfRau0OmjDONQzrxiR630dy2GB1-SAWUEXBsLXxun3YOmywMu2sghPL4j4CCgynCDE7QxZcd2-ywAf-5CL-Yt7ve2HzPbjP_m4s5uLEfFqHbbH-oBPmHjrFx55873V7jYygsmu3Z4xLAWHLoV_7x7nLNGMuotQ9ShYLgNa-NNlPYL-5Zd6Ny49DZZbuSQEiI2JYnlV-bJsGCIU-7ndo3YNcGS6b7easximMnzFEJ7OKSc0WvMBOX6e2lWpj6pYTvxoMDgHxJWcoVGlwv-TcVgS6uIbuc4dZIInx19tZZy4cuLP032yalKpGqWs55ZkobjlI4q5m2S19SYxmyCoSZx9nJKRnmS9zoQN4RSiTIEvs6fIB051EHuQUHcjy8CE6vSPFJ3VUN7ugFGu7W9fHEsZkIEngNz__ZIO0Hi1zHMjRKDflvXerSRc9TbbTnpJym1vGgrIyEd-mNvdS6JAlcrNJpaI4_ly62_qXdA2NqGdh0Bi7YY7AskTVlR3EXf9z-Zpo48oV8NPJn3cTR7IUgXuPKVkVtQjrIgzQTiTO8_M1ZE4KhJERkZ4KNuaQE4oAyFmqhS_A&ZwaktYbm=4&XtWqPOUf=5090957&tEPbFKyL=&DwXIhRNj=0:1,0&VFCkxvKD=&psyQBeci=&s=1280,1024,1,1280,1024,0
IP
104.153.197.251:443
ASN
#53334 TUT-AS

Requested by
https://mixdrop.my/f/xw0qgozmbr06vj
Certificate
IssuerSectigo Limited
Subjectxadsmart.com
Fingerprint57:60:97:0C:DC:E6:0F:0D:1B:04:5B:46:03:77:64:46:88:C5:CF:87
ValidityFri, 04 Apr 2025 00:00:00 GMT - Tue, 05 May 2026 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
d5f0a25e4d3522d56d48ce7bc3e518fb
86794caff58f7fee6e684c2ba7195f970a8d6f4c
9d781128a8ece413b003d5612b8398bf9340ef7f5b751d12bd125ba523d3ceb5

HTTP Headers

GET /zfrwtqmuuuggqyr?tEeAPOVX=BQOSAAAAAAAACZUAAtmedbbtL5nImd-q08Q2CdZORuxEgef2Lwmph9WDpabNhPxwwzXZYE76_lF6TIReqHNi-nJrvNsv3QehkBfql8-aaIfQpT_3ruxtuOuSVxYv8BcUGBhSmp2l0ZiJJk8UkPLtRmHKNm47ZtLZ5nuxjbgU3hkm78EH73h0P_dUfVCYABRaVG2HH61Ncw9a_8eboMoR5_HtRt0eN_RJ4fD47wsFajs5mhhrP5dowqu5JLaPjBDDKJ9WP-qFNtpCde19RRpQc_NJu38yPTLIHHmT_OmlPRud6F2wjf9LZP60ANkNIx_VJ1ox_rKjHu7Og1Kh50gJVvDqX24LfznamxgkbANgb7w0HcMQxUQTi5XT_bx14XvBdKXNwfra_gl13FvIHYhE3oy1Ql8NrC0cN0KuSDhF7M0t3nJfZ2jGTNC77uP_Qbgk0MRNWRK0oHnRMfhvBzUkuCKXoJV2P9L0-tIJ2EelFDK5HmNDkAC36KRzXsGDDPtESg5ThuE34XCgBeuXcV01dKyroZM3wASwgGg6wbtOA-CzJcskME6pmHBbsN-QPdpEOo_xYJt3fu1R-ySd2nAnFovx83-4LVzRkInTtJHLhUDK_mbPeAwShGXZsSz8PPPdasZ6LieCgOkcfRau0OmjDONQzrxiR630dy2GB1-SAWUEXBsLXxun3YOmywMu2sghPL4j4CCgynCDE7QxZcd2-ywAf-5CL-Yt7ve2HzPbjP_m4s5uLEfFqHbbH-oBPmHjrFx55873V7jYygsmu3Z4xLAWHLoV_7x7nLNGMuotQ9ShYLgNa-NNlPYL-5Zd6Ny49DZZbuSQEiI2JYnlV-bJsGCIU-7ndo3YNcGS6b7easximMnzFEJ7OKSc0WvMBOX6e2lWpj6pYTvxoMDgHxJWcoVGlwv-TcVgS6uIbuc4dZIInx19tZZy4cuLP032yalKpGqWs55ZkobjlI4q5m2S19SYxmyCoSZx9nJKRnmS9zoQN4RSiTIEvs6fIB051EHuQUHcjy8CE6vSPFJ3VUN7ugFGu7W9fHEsZkIEngNz__ZIO0Hi1zHMjRKDflvXerSRc9TbbTnpJym1vGgrIyEd-mNvdS6JAlcrNJpaI4_ly62_qXdA2NqGdh0Bi7YY7AskTVlR3EXf9z-Zpo48oV8NPJn3cTR7IUgXuPKVkVtQjrIgzQTiTO8_M1ZE4KhJERkZ4KNuaQE4oAyFmqhS_A&ZwaktYbm=4&XtWqPOUf=5090957&tEPbFKyL=&DwXIhRNj=0:1,0&VFCkxvKD=&psyQBeci=&s=1280,1024,1,1280,1024,0 HTTP/1.1
Host: xadsmart.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mixdrop.my/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
popads-node: wb9
access-control-allow-origin: *
asf: 9
popads-ec: ASB
content-type: text/javascript;charset=UTF-8
content-length: 44
date: Thu, 08 May 2025 23:04:08 GMT
X-Firefox-Spdy: h2

mixdrop.my/js/modal/modal.js?v=2.0.1

172.67.208.161

200 OK

1.3 kB

URL GET
mixdrop.my/js/modal/modal.js?v=2.0.1
IP
172.67.208.161:443
ASN
#13335 CLOUDFLARENET

Requested by
https://mixdrop.my/f/xw0qgozmbr06vj
Certificate
IssuerGoogle Trust Services
Subjectmixdrop.my
FingerprintEE:EC:18:05:37:E7:FE:BF:35:03:C8:B9:38:9F:92:78:4C:B9:10:3B
ValidityWed, 23 Apr 2025 21:25:33 GMT - Tue, 22 Jul 2025 22:21:38 GMT

File type
ASCII text, with CRLF line terminators
Size
1.3 kB (1333 bytes)
Hash
573d34f6e62f2141b8e8219727b43056
92cc987fbdfba9c8930ad253a09bd956f774fd78
51d0e7a42e0d4a0d00388563ab6472e9880280a3f6e16b9692da6f69ac7cae70

HTTP Headers

GET /js/modal/modal.js?v=2.0.1 HTTP/1.1
Host: mixdrop.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mixdrop.my/f/xw0qgozmbr06vj
Cookie: PHPSESSID=sogop8i0k0e4rmhdojlgc25ump
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 08 May 2025 23:04:04 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WZm%2F7JykZ6AS2VkkfwQp12LXiVmXWzGfEcIAG89WJotXJmo2eESX6qdniI1qh8zXeXFYHAnoR6LXG6h93DI72g61j1e4BdHAF1lhXL6iZMHSe%2BMChLnZ2EKiltR6"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 17 Oct 2018 14:32:53 GMT
etag: W/"5bc74815-535"
expires: Thu, 05 Jun 2025 13:23:04 GMT
cache-control: public, max-age=2592000
content-encoding: gzip
cf-cache-status: HIT
age: 207660
cf-ray: 93cc98140dab712b-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4357&min_rtt=859&rtt_var=2941&sent=99&recv=114&lost=0&retrans=0&sent_bytes=19366&recv_bytes=10365&delivery_rate=2190&cwnd=12000&unsent_bytes=0&cid=b97ec619d463d25c&ts=316&x=16"

6.adsco.re/

104.17.166.186

200 OK

45 B

URL GET
6.adsco.re/
IP
104.17.166.186:443
ASN
#13335 CLOUDFLARENET

Requested by
https://mixdrop.my/f/xw0qgozmbr06vj
Certificate
IssuerSectigo Limited
Subject*.adsco.re
Fingerprint3B:64:1C:DA:8C:64:22:01:36:0F:54:7A:99:6E:AD:26:C2:EF:59:8B
ValidityMon, 23 Sep 2024 00:00:00 GMT - Mon, 29 Sep 2025 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
45 B (45 bytes)
Hash
5b41cb22f84f645a103acc7bfbf084ff
bac3967b26d5ec4a0d09a580714e8219796816bd
709f0a0dfab9f9e074f4a4a348dcb09150838284d21e75cfb9e5ceaeeb2054bc

HTTP Headers

GET / HTTP/1.1
Host: 6.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mixdrop.my
DNT: 1
Connection: keep-alive
Referer: https://mixdrop.my/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 08 May 2025 23:04:07 GMT
content-type: text/plain;charset=UTF-8
content-length: 45
access-control-allow-origin: https://mixdrop.my
cache-control: private, max-age=10
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-max-age: 2592000
vary: Accept-Encoding
server: cloudflare
cf-ray: 93cc9823fe8f0b55-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.gstatic.com/recaptcha/releases/Hi8UmRMnhdOBM3IuViTkapUP/recaptcha__en.js

142.250.178.99

200 OK

653 kB

URL GET
www.gstatic.com/recaptcha/releases/Hi8UmRMnhdOBM3IuViTkapUP/recaptcha__en.js
IP
142.250.178.99:443
ASN
#15169 GOOGLE

Requested by
https://mixdrop.my/f/xw0qgozmbr06vj
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint62:05:36:C2:8E:4C:CD:95:1E:1C:75:06:44:A3:57:E5:C0:17:02:80
ValidityMon, 31 Mar 2025 08:55:35 GMT - Mon, 23 Jun 2025 08:55:34 GMT

File type
JavaScript source, ASCII text, with very long lines (671)
Size
653 kB (652680 bytes)
Hash
cded17fc3b606bf50119ef5425541a3a
e11985d3bbce813e0349e732e24cd757b5a8ea2f
31ab798a14c43a7608cd4eaa6026f4cf209371762263b6d1b0e562a264c00f4c

HTTP Headers

GET /recaptcha/releases/Hi8UmRMnhdOBM3IuViTkapUP/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mixdrop.my
DNT: 1
Connection: keep-alive
Referer: https://mixdrop.my/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
timing-allow-origin: *
content-length: 276859
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 May 2025 19:19:46 GMT
expires: Thu, 07 May 2026 19:19:46 GMT
cache-control: public, max-age=31536000
age: 99859
last-modified: Tue, 29 Apr 2025 17:05:42 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

mixdrop.my/js/slidebars/slidebars.min.js?v=2.0.1

172.67.208.161

200 OK

3.4 kB

URL GET
mixdrop.my/js/slidebars/slidebars.min.js?v=2.0.1
IP
172.67.208.161:443
ASN
#13335 CLOUDFLARENET

Requested by
https://mixdrop.my/f/xw0qgozmbr06vj
Certificate
IssuerGoogle Trust Services
Subjectmixdrop.my
FingerprintEE:EC:18:05:37:E7:FE:BF:35:03:C8:B9:38:9F:92:78:4C:B9:10:3B
ValidityWed, 23 Apr 2025 21:25:33 GMT - Tue, 22 Jul 2025 22:21:38 GMT

File type
JavaScript source, ASCII text, with very long lines (3122)
Size
3.4 kB (3399 bytes)
Hash
c1753c151e33bcb2899033de50cd2eeb
8561a520777caf49d0afdc412873b229fa0a2be1
f6f14db0996436aee72c823029e3dcc6cc363ec3a46757044b6b63640b5ff144

HTTP Headers

GET /js/slidebars/slidebars.min.js?v=2.0.1 HTTP/1.1
Host: mixdrop.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mixdrop.my/f/xw0qgozmbr06vj
Cookie: PHPSESSID=sogop8i0k0e4rmhdojlgc25ump
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 08 May 2025 23:04:04 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pEahuGy54MYDh%2BfayXiGHTys8elhlzMnGgLhZndzDCO9NskpQu3NTkFeB2xO5hHyIQ9q0PYdgDeIF6OlBpgZ2Cm7hd2gfP%2F5JyivfwgTTM7MX4TWSZpJZvkWt%2Fjq"}],"group":"cf-nel","max_age":604800}
last-modified: Fri, 24 Aug 2018 12:43:33 GMT
etag: W/"5b7ffd75-d47"
expires: Thu, 05 Jun 2025 13:23:04 GMT
cache-control: public, max-age=2592000
content-encoding: gzip
age: 207659
cf-cache-status: HIT
cf-ray: 93cc98140dac712b-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4182&min_rtt=859&rtt_var=2555&sent=104&recv=115&lost=0&retrans=0&sent_bytes=23458&recv_bytes=10410&delivery_rate=962731&cwnd=24000&unsent_bytes=0&cid=b97ec619d463d25c&ts=317&x=16"

mixdrop.my/js/jquery-upload/js/main.js?v=2.0.1

172.67.208.161

200 OK

311 B

URL GET
mixdrop.my/js/jquery-upload/js/main.js?v=2.0.1
IP
172.67.208.161:443
ASN
#13335 CLOUDFLARENET

Requested by
https://mixdrop.my/f/xw0qgozmbr06vj
Certificate
IssuerGoogle Trust Services
Subjectmixdrop.my
FingerprintEE:EC:18:05:37:E7:FE:BF:35:03:C8:B9:38:9F:92:78:4C:B9:10:3B
ValidityWed, 23 Apr 2025 21:25:33 GMT - Tue, 22 Jul 2025 22:21:38 GMT

File type
JavaScript source, ASCII text
Size
311 B (311 bytes)
Hash
1f7968edcaf43f9b2ebd58d74311ff7c
f53ca538e9a2c0cd87b51babe9d03d2f91cf6d2c
be076d81c5a67334d5f78a5b77db41b966fb7d254586b483ac5d1f155e89a91f

HTTP Headers

GET /js/jquery-upload/js/main.js?v=2.0.1 HTTP/1.1
Host: mixdrop.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mixdrop.my/f/xw0qgozmbr06vj
Cookie: PHPSESSID=sogop8i0k0e4rmhdojlgc25ump
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 08 May 2025 23:04:04 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YRsh%2FlS0%2BCmhXAZCUKsaCjfzss%2BcmpFdQcYM42EW8bmnT6Kr368rv344%2FFRgwyptk2kt7KCVMtI%2BR6zgdPXTdrNWQNtgT23wnC4haX2wIBwXFpY8H%2FkKblPP51x7"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 19 Sep 2018 17:23:35 GMT
etag: W/"5ba28617-137"
expires: Thu, 05 Jun 2025 13:23:04 GMT
cache-control: public, max-age=2592000
cf-cache-status: HIT
age: 207660
content-encoding: br
cf-ray: 93cc98140db1712b-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3735&min_rtt=859&rtt_var=2161&sent=125&recv=117&lost=0&retrans=0&sent_bytes=44221&recv_bytes=10504&delivery_rate=3370470&cwnd=24000&unsent_bytes=0&cid=b97ec619d463d25c&ts=322&x=16"

mixdrop.my/imgs/v2/favicon-16x16.png

172.67.208.161

200 OK

1.2 kB

URL GET
mixdrop.my/imgs/v2/favicon-16x16.png
IP
172.67.208.161:443
ASN
#13335 CLOUDFLARENET

Requested by
https://mixdrop.my/f/xw0qgozmbr06vj
Certificate
IssuerGoogle Trust Services
Subjectmixdrop.my
FingerprintEE:EC:18:05:37:E7:FE:BF:35:03:C8:B9:38:9F:92:78:4C:B9:10:3B
ValidityWed, 23 Apr 2025 21:25:33 GMT - Tue, 22 Jul 2025 22:21:38 GMT

File type
PNG image data, 16 x 16, 8-bit colormap, non-interlaced
Size
1.2 kB (1162 bytes)
Hash
e0f38ab405ae4403be29778964115abf
fe542f0fe2250a0b704b530fe232dfa07ba9f6a2
c2961fcd62ac75d2cbf83a25449e2b5728ef245e13e175e94c43626fa9463d5d

HTTP Headers

GET /imgs/v2/favicon-16x16.png HTTP/1.1
Host: mixdrop.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mixdrop.my/f/xw0qgozmbr06vj
Cookie: PHPSESSID=sogop8i0k0e4rmhdojlgc25ump
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 08 May 2025 23:04:05 GMT
content-type: image/png
content-length: 1162
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Jnb7P2ugFWcXZ6yPlbaDnos4rDpNdLHs67%2Bis2lM4SC1OAcXZG628cwhkOsP%2B8JeatZN6JVMF6%2BXIXgsblhXDf494FgVyIc2nbHaHioyPFFjkX7Oq7g%2B2nYy%2Fc5C"}],"group":"cf-nel","max_age":604800}
last-modified: Thu, 08 Jun 2023 12:41:50 GMT
etag: "6481cc8e-48a"
expires: Thu, 05 Jun 2025 13:27:50 GMT
cache-control: public, max-age=2592000
accept-ranges: bytes
age: 207374
cf-cache-status: HIT
cf-ray: 93cc981a5e0f712b-OSL
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4050&min_rtt=859&rtt_var=2043&sent=134&recv=121&lost=0&retrans=0&sent_bytes=50047&recv_bytes=10971&delivery_rate=4738348&cwnd=24000&unsent_bytes=0&cid=b97ec619d463d25c&ts=1324&x=16"

c.adsco.re/#0.7203417083216987

104.17.166.186

200 OK

79 kB

URL GET
c.adsco.re/#0.7203417083216987
IP
104.17.166.186:443
ASN
#13335 CLOUDFLARENET

Requested by
https://mixdrop.my/f/xw0qgozmbr06vj
Certificate
IssuerSectigo Limited
Subject*.adsco.re
Fingerprint3B:64:1C:DA:8C:64:22:01:36:0F:54:7A:99:6E:AD:26:C2:EF:59:8B
ValidityMon, 23 Sep 2024 00:00:00 GMT - Mon, 29 Sep 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (689)
Size
79 kB (79103 bytes)
Hash
f0e71ebb1e2c90b307c171052ca517d0
1a1950b1868c0bfb8629f6f81b81439160727a79
adbce95b9ac0da66ea3a1d707494d9c74876e1c9186c446b4b5a22d15adc1ee5

HTTP Headers

GET / HTTP/1.1
Host: c.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mixdrop.my/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 08 May 2025 23:04:07 GMT
content-type: text/html
cache-control: public, max-age=2678400
accept-ch: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
permissions-policy: ch-ua=(self "https://adsco.re"),ch-ua-mobile=(self "https://adsco.re"),ch-ua-full-version=(self "https://adsco.re"),ch-ua-platform=(self "https://adsco.re"),ch-ua-platform-version=(self "https://adsco.re"),ch-ua-arch=(self "https://adsco.re"),ch-ua-model=(self "https://adsco.re"),ch-device-memory=(self "https://adsco.re"),ch-downlink=(self "https://adsco.re"),ch-ect=(self "https://adsco.re"),ch-rtt=(self "https://adsco.re"),ch-width=(self "https://adsco.re"),ch-viewport-width=(self "https://adsco.re"),ch-dpr=(self "https://adsco.re")
link: <//6.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//4.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//adsco.re/>;rel=preconnect
expires: Sun, 08 Jun 2025 23:04:07 GMT
etag: W/"8Oceux4skLMHwXEFLKUX0A=="
cf-cache-status: HIT
age: 58
priority: u=4,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 93cc98246b610b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

mixdrop.my/imgs/v2/logo.png

172.67.208.161

200 OK

2.5 kB

URL GET
mixdrop.my/imgs/v2/logo.png
IP
172.67.208.161:443
ASN
#13335 CLOUDFLARENET

Requested by
https://mixdrop.my/f/xw0qgozmbr06vj
Certificate
IssuerGoogle Trust Services
Subjectmixdrop.my
FingerprintEE:EC:18:05:37:E7:FE:BF:35:03:C8:B9:38:9F:92:78:4C:B9:10:3B
ValidityWed, 23 Apr 2025 21:25:33 GMT - Tue, 22 Jul 2025 22:21:38 GMT

File type
PNG image data, 218 x 44, 8-bit colormap, non-interlaced
Size
2.5 kB (2467 bytes)
Hash
f1db9829c6906486e06097e6dfb1c401
101ca67c1ee9224c9f0ac0d67b0fba3f3f3de8ec
665001775253cf85e2b9c72c81eb54cd9fa883d3730a0264c2b27567441930bd

HTTP Headers

GET /imgs/v2/logo.png HTTP/1.1
Host: mixdrop.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mixdrop.my/f/xw0qgozmbr06vj
Cookie: PHPSESSID=sogop8i0k0e4rmhdojlgc25ump
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 08 May 2025 23:04:04 GMT
content-type: image/png
content-length: 2467
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=58HFGcNXB2sFhvZW2SR8J9WBCye81cY6LNzeTiBnajlDX7fKxlxD%2BG0%2BOaqwI8IqOvaNOWzFOQJc9NGKyjsg2qPgX0v32IYkzwgOPoUG3wzop5s9m0JJ%2BWuvac%2BI"}],"group":"cf-nel","max_age":604800}
last-modified: Fri, 21 Apr 2023 07:42:30 GMT
etag: "64423e66-9a3"
expires: Thu, 05 Jun 2025 13:23:04 GMT
cache-control: public, max-age=2592000
accept-ranges: bytes
age: 207660
cf-cache-status: HIT
cf-ray: 93cc9813fda7712b-OSL
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4357&min_rtt=859&rtt_var=2941&sent=98&recv=114&lost=0&retrans=0&sent_bytes=18948&recv_bytes=10365&delivery_rate=2190&cwnd=12000&unsent_bytes=0&cid=b97ec619d463d25c&ts=313&x=16"

mixdrop.my/panel/js/scroll/perfect-scrollbar.min.js?v=2.0.1

172.67.208.161

200 OK

18 kB

URL GET
mixdrop.my/panel/js/scroll/perfect-scrollbar.min.js?v=2.0.1
IP
172.67.208.161:443
ASN
#13335 CLOUDFLARENET

Requested by
https://mixdrop.my/f/xw0qgozmbr06vj
Certificate
IssuerGoogle Trust Services
Subjectmixdrop.my
FingerprintEE:EC:18:05:37:E7:FE:BF:35:03:C8:B9:38:9F:92:78:4C:B9:10:3B
ValidityWed, 23 Apr 2025 21:25:33 GMT - Tue, 22 Jul 2025 22:21:38 GMT

File type
JavaScript source, ASCII text, with very long lines (18216)
Size
18 kB (18291 bytes)
Hash
4a10bcfa0a9c9fa9d503b5a498cac31e
c4f6c403e99fb37cb496c3844b332823db7c5837
a4ec9d558eeb7bc7359fe7c4820deea2c951fdd8bd34cb0e15727412c7f6c634

HTTP Headers

GET /panel/js/scroll/perfect-scrollbar.min.js?v=2.0.1 HTTP/1.1
Host: mixdrop.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mixdrop.my/f/xw0qgozmbr06vj
Cookie: PHPSESSID=sogop8i0k0e4rmhdojlgc25ump
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 08 May 2025 23:04:04 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YiSpzXOOhvHzRAvyt7TSABMpS8ZiqDAa7VJhcG3ohPOD5xyrp2JuDzKx8QJ0PHbEwjyIp%2BeUE6CrvwfycsZZ1K4uyayierjw6tPR3fgGlHk%2B8FWzULtyEfKrs6yL"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 12 Sep 2018 11:51:16 GMT
etag: W/"5b98fdb4-4773"
expires: Thu, 05 Jun 2025 13:23:04 GMT
cache-control: public, max-age=2592000
content-encoding: gzip
age: 207659
cf-cache-status: HIT
cf-ray: 93cc98140db2712b-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3735&min_rtt=859&rtt_var=2161&sent=117&recv=117&lost=0&retrans=0&sent_bytes=36645&recv_bytes=10504&delivery_rate=3370470&cwnd=24000&unsent_bytes=0&cid=b97ec619d463d25c&ts=320&x=16"

mixdrop.my/imgs/v2/menu.png

172.67.208.161

200 OK

134 B

URL GET
mixdrop.my/imgs/v2/menu.png
IP
172.67.208.161:443
ASN
#13335 CLOUDFLARENET

Requested by
https://mixdrop.my/f/xw0qgozmbr06vj
Certificate
IssuerGoogle Trust Services
Subjectmixdrop.my
FingerprintEE:EC:18:05:37:E7:FE:BF:35:03:C8:B9:38:9F:92:78:4C:B9:10:3B
ValidityWed, 23 Apr 2025 21:25:33 GMT - Tue, 22 Jul 2025 22:21:38 GMT

File type
PNG image data, 32 x 32, 4-bit colormap, non-interlaced
Size
134 B (134 bytes)
Hash
56a3acde38cb23debf33736246bdea07
e8f892b89030ab6afba20eba377cefff18b52f63
bb238bc06e6addd814082d5947c5a671c3f79fcc253cf5165ae4b23897ce66b1

HTTP Headers

GET /imgs/v2/menu.png HTTP/1.1
Host: mixdrop.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mixdrop.my/f/xw0qgozmbr06vj
Cookie: PHPSESSID=sogop8i0k0e4rmhdojlgc25ump
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 08 May 2025 23:04:04 GMT
content-type: image/png
content-length: 134
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YlCYS%2Fh4nHVQtPBjY%2BlDgKG4CyXUzT8ScNKmKLf4xNglhurRbsUkUUQK881WofQ5laUDDv17O8ooVMhAnNFmx7qcJVmZAArtlIpAIkRy618F8RkNJX9H6wJj48%2FJ"}],"group":"cf-nel","max_age":604800}
last-modified: Tue, 25 Apr 2023 13:51:09 GMT
etag: "6447dacd-86"
expires: Fri, 06 Jun 2025 02:29:02 GMT
cache-control: public, max-age=2592000
accept-ranges: bytes
age: 160501
cf-cache-status: HIT
cf-ray: 93cc9813fda8712b-OSL
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4357&min_rtt=859&rtt_var=2941&sent=87&recv=113&lost=0&retrans=0&sent_bytes=8992&recv_bytes=10082&delivery_rate=2190&cwnd=12000&unsent_bytes=0&cid=b97ec619d463d25c&ts=311&x=16"

www.gstatic.com/recaptcha/releases/Hi8UmRMnhdOBM3IuViTkapUP/recaptcha__en.js

142.250.178.99

200 OK

653 kB

URL GET
www.gstatic.com/recaptcha/releases/Hi8UmRMnhdOBM3IuViTkapUP/recaptcha__en.js
IP
142.250.178.99:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LetXaoUAAAAAB6axgg4WLG9oZ_6QLTsFXZj-5sd&co=aHR0cHM6Ly9taXhkcm9wLm15OjQ0Mw..&hl=en&v=Hi8UmRMnhdOBM3IuViTkapUP&size=invisible&cb=5koq9bbquch2
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint62:05:36:C2:8E:4C:CD:95:1E:1C:75:06:44:A3:57:E5:C0:17:02:80
ValidityMon, 31 Mar 2025 08:55:35 GMT - Mon, 23 Jun 2025 08:55:34 GMT

File type
JavaScript source, ASCII text, with very long lines (671)
Size
653 kB (652680 bytes)
Hash
cded17fc3b606bf50119ef5425541a3a
e11985d3bbce813e0349e732e24cd757b5a8ea2f
31ab798a14c43a7608cd4eaa6026f4cf209371762263b6d1b0e562a264c00f4c

HTTP Headers

GET /recaptcha/releases/Hi8UmRMnhdOBM3IuViTkapUP/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
timing-allow-origin: *
content-length: 276859
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 May 2025 19:19:46 GMT
expires: Thu, 07 May 2026 19:19:46 GMT
cache-control: public, max-age=31536000
age: 99861
last-modified: Tue, 29 Apr 2025 17:05:42 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.google.com/recaptcha/api.js?render=6LetXaoUAAAAAB6axgg4WLG9oZ_6QLTsFXZj-5sd

172.217.21.164

200 OK

945 B

URL GET
www.google.com/recaptcha/api.js?render=6LetXaoUAAAAAB6axgg4WLG9oZ_6QLTsFXZj-5sd
IP
172.217.21.164:443
ASN
#15169 GOOGLE

Requested by
https://mixdrop.my/f/xw0qgozmbr06vj
Certificate
IssuerGoogle Trust Services
Subjectwww.google.com
FingerprintFD:1E:8C:23:6E:3E:CE:28:8F:BB:1E:C1:87:A0:77:5D:45:20:F7:03
ValidityMon, 31 Mar 2025 08:56:21 GMT - Mon, 23 Jun 2025 08:56:20 GMT

File type
JavaScript source, ASCII text, with very long lines (945), with no line terminators
Size
945 B (945 bytes)
Hash
92b6fda7698894be11e2028332171177
71df55f9b98d76e4ec650ef768d00aa28e5f4bcf
955e85a7a25ad6a2cb438b07065f8701ab897ef4865fe873b42b5e187f98918b

HTTP Headers

GET /recaptcha/api.js?render=6LetXaoUAAAAAB6axgg4WLG9oZ_6QLTsFXZj-5sd HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mixdrop.my/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
expires: Thu, 08 May 2025 23:04:04 GMT
date: Thu, 08 May 2025 23:04:04 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="coop_38fac9d5b82543fc4729580d18ff2d3d"
report-to: {"group":"coop_38fac9d5b82543fc4729580d18ff2d3d","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/38fac9d5b82543fc4729580d18ff2d3d"}]}
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

pubtrky.com/ut/hb.php?cb=0.4379265353926073&v=1

172.67.188.110

204 No Content

0 B

URL POST
pubtrky.com/ut/hb.php?cb=0.4379265353926073&v=1
IP
172.67.188.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://mixdrop.my/f/xw0qgozmbr06vj
Certificate
IssuerGoogle Trust Services
Subjectpubtrky.com
FingerprintD1:DF:C8:94:03:32:97:45:6F:1A:E3:AD:EE:EC:22:B8:E7:5C:6F:27
ValidityMon, 05 May 2025 10:34:21 GMT - Sun, 03 Aug 2025 11:31:29 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /ut/hb.php?cb=0.4379265353926073&v=1 HTTP/1.1
Host: pubtrky.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=utf-8
Content-Length: 922
Origin: https://mixdrop.my
DNT: 1
Connection: keep-alive
Referer: https://mixdrop.my/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
date: Thu, 08 May 2025 23:04:05 GMT
server: cloudflare
access-control-allow-origin: *
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=ireJfu7fnO%2BLkYOVXTJg24tOXcxHMKW0oXCOAUdi7mooEPDb%2Bb9Q7K5b2%2FZUMco8u4WJS%2BNEsdOdjktnqW9iso9%2BpILw%2FqGBcrVKaAZdjuiUA9wzU%2B5kzNX5VWs9XA%3D%3D"}]}
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
cf-ray: 93cc9819e844b4f1-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

142.250.74.35

200 OK

48 kB

URL GET
fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://mixdrop.my/f/xw0qgozmbr06vj
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint62:05:36:C2:8E:4C:CD:95:1E:1C:75:06:44:A3:57:E5:C0:17:02:80
ValidityMon, 31 Mar 2025 08:55:35 GMT - Mon, 23 Jun 2025 08:55:34 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48236, version 1.0
Size
48 kB (48236 bytes)
Hash
015c126a3520c9a8f6a27979d0266e96
2acf956561d44434a6d84204670cf849d3215d5f
3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa

HTTP Headers

GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mixdrop.my
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 May 2025 10:12:20 GMT
expires: Fri, 08 May 2026 10:12:20 GMT
cache-control: public, max-age=31536000
age: 46305
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.google.com/recaptcha/api2/anchor?ar=1&k=6LetXaoUAAAAAB6axgg4WLG9oZ_6QLTsFXZj-5sd&co=aHR0cHM6Ly9taXhkcm9wLm15OjQ0Mw..&hl=en&v=Hi8UmRMnhdOBM3IuViTkapUP&size=invisible&cb=5koq9bbquch2

172.217.21.164

200 OK

73 kB

URL GET
www.google.com/recaptcha/api2/anchor?ar=1&k=6LetXaoUAAAAAB6axgg4WLG9oZ_6QLTsFXZj-5sd&co=aHR0cHM6Ly9taXhkcm9wLm15OjQ0Mw..&hl=en&v=Hi8UmRMnhdOBM3IuViTkapUP&size=invisible&cb=5koq9bbquch2
IP
172.217.21.164:443
ASN
#15169 GOOGLE

Requested by
https://mixdrop.my/f/xw0qgozmbr06vj
Certificate
IssuerGoogle Trust Services
Subject*.google.com
Fingerprint7E:CD:6A:9E:9E:00:6A:42:52:CC:9D:14:81:1C:68:D4:B9:C4:A4:73
ValidityMon, 31 Mar 2025 08:54:29 GMT - Mon, 23 Jun 2025 08:54:28 GMT

File type
HTML document, ASCII text, with very long lines (56645)
Size
73 kB (73108 bytes)
Hash
be63cac03fbe2872fe27763ff41db0ca
a262af57158d66297efbdece4aa6d23d466d355e
0c966ad4aa78f88affeeb6db094f54109f9705e54a95c920adcdd933af0af456

HTTP Headers

GET /recaptcha/api2/anchor?ar=1&k=6LetXaoUAAAAAB6axgg4WLG9oZ_6QLTsFXZj-5sd&co=aHR0cHM6Ly9taXhkcm9wLm15OjQ0Mw..&hl=en&v=Hi8UmRMnhdOBM3IuViTkapUP&size=invisible&cb=5koq9bbquch2 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mixdrop.my/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}, {"group":"coop_38fac9d5b82543fc4729580d18ff2d3d","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/38fac9d5b82543fc4729580d18ff2d3d"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 08 May 2025 23:04:07 GMT
content-security-policy: script-src 'nonce-Y-nhdgGk_TC3MnyH6NYeDw' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
cross-origin-opener-policy-report-only: same-origin; report-to="coop_38fac9d5b82543fc4729580d18ff2d3d"
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

mixdrop.my/js/script.v2.min.js?v=2.0.1

172.67.208.161

200 OK

9.2 kB

URL GET
mixdrop.my/js/script.v2.min.js?v=2.0.1
IP
172.67.208.161:443
ASN
#13335 CLOUDFLARENET

Requested by
https://mixdrop.my/f/xw0qgozmbr06vj
Certificate
IssuerGoogle Trust Services
Subjectmixdrop.my
FingerprintEE:EC:18:05:37:E7:FE:BF:35:03:C8:B9:38:9F:92:78:4C:B9:10:3B
ValidityWed, 23 Apr 2025 21:25:33 GMT - Tue, 22 Jul 2025 22:21:38 GMT

File type
JavaScript source, ASCII text, with very long lines (763)
Size
9.2 kB (9218 bytes)
Hash
ded641abc54bc5f08c092018a28d6018
c35baf1ef0e8116f26e97430eba028325c88eb0e
d08e4e80bd87159988c3220670cebd0616f789f07d02c1104d408809a2b07ff3

HTTP Headers

GET /js/script.v2.min.js?v=2.0.1 HTTP/1.1
Host: mixdrop.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mixdrop.my/f/xw0qgozmbr06vj
Cookie: PHPSESSID=sogop8i0k0e4rmhdojlgc25ump
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 08 May 2025 23:04:04 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NbHsqlYrGb56hM9IJ9Xk5W0CPFHb4E5gCeNqkjp6WbUloneofiiGUFfa3GZeUvv93b5pdphaFAm2tsAD8NCX1P9RhSUGojaAa%2BT7VRVp4Go10qxqOloEFIi6Fh%2Bl"}],"group":"cf-nel","max_age":604800}
last-modified: Tue, 13 Jun 2023 08:47:38 GMT
etag: "64882d2a-2402"
expires: Fri, 06 Jun 2025 05:38:47 GMT
cache-control: public, max-age=2592000
content-encoding: gzip
age: 149116
cf-cache-status: HIT
cf-ray: 93cc98140db5712b-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3735&min_rtt=859&rtt_var=2161&sent=128&recv=117&lost=0&retrans=0&sent_bytes=45815&recv_bytes=10504&delivery_rate=3370470&cwnd=24000&unsent_bytes=0&cid=b97ec619d463d25c&ts=323&x=16"

fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2

142.250.74.35

200 OK

15 kB

URL GET
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LetXaoUAAAAAB6axgg4WLG9oZ_6QLTsFXZj-5sd&co=aHR0cHM6Ly9taXhkcm9wLm15OjQ0Mw..&hl=en&v=Hi8UmRMnhdOBM3IuViTkapUP&size=invisible&cb=5koq9bbquch2
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint62:05:36:C2:8E:4C:CD:95:1E:1C:75:06:44:A3:57:E5:C0:17:02:80
ValidityMon, 31 Mar 2025 08:55:35 GMT - Mon, 23 Jun 2025 08:55:34 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15344, version 1.0
Size
15 kB (15344 bytes)
Hash
5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc

HTTP Headers

GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 May 2025 09:35:39 GMT
expires: Fri, 08 May 2026 09:35:39 GMT
cache-control: public, max-age=31536000
age: 48509
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

uqohomcgxhtjr.space/script/ut.js?cb=1746745445024

172.67.202.218

200 OK

81 kB

URL GET
uqohomcgxhtjr.space/script/ut.js?cb=1746745445024
IP
172.67.202.218:443
ASN
#13335 CLOUDFLARENET

Requested by
https://mixdrop.my/f/xw0qgozmbr06vj
Certificate
IssuerGoogle Trust Services
Subjectuqohomcgxhtjr.space
FingerprintA4:B0:51:F3:0E:64:D4:B1:9B:75:09:7B:AB:A5:CB:CE:A0:F7:7D:12
ValidityFri, 02 May 2025 04:31:49 GMT - Thu, 31 Jul 2025 05:29:16 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65493), with no line terminators
Size
81 kB (81040 bytes)
Hash
eaa11c5f044a59ec54c82e06a8beba81
afb33a13f1b0b1163ae1d5f98703c9eacd35bee3
b05b9df2027483a401c352424c15d0adff42dbe771c52b71333e5b4e68f1260c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /script/ut.js?cb=1746745445024 HTTP/1.1
Host: uqohomcgxhtjr.space
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mixdrop.my/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 08 May 2025 23:04:05 GMT
content-type: text/javascript
x-guploader-uploadid: AAO2VwpEv3HeZSbX3C7-Dl0mG3vryVnh2oiMRP3ANmuk_0A7n9GeIl_7LOPtfeC2eJou90Shn_BZGTD3yipDQQ
x-goog-generation: 1746014128527462
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 81040
x-goog-hash: crc32c=I1uWZQ==, md5=6qEcXwRKWexUyC4GqL66gQ==
x-goog-storage-class: MULTI_REGIONAL
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=1iMVNia2jGsdb4j4wie08vyEJKf%2Bujh%2F4swYO9H7YeeH%2BVUPaMVDhD435tz1F1gjmg%2FDFZiqoLjc4baE5VFsn0PTXsAQfYht29usgg%2BLvj0AEdm5AgJw1jYn7JLwju9aiGav%2BhLf"}]}
access-control-allow-origin: *
server: cloudflare
expires: Thu, 08 May 2025 22:49:29 GMT
cache-control: public, max-age=14400
age: 1699
last-modified: Wed, 30 Apr 2025 11:55:28 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
cf-cache-status: HIT
etag: W/"eaa11c5f044a59ec54c82e06a8beba81"
content-encoding: br
cf-ray: 93cc9817da63b511-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

4.adsco.re/

162.252.214.5

200 OK

45 B

URL GET
4.adsco.re/
IP
162.252.214.5:443
ASN
#53334 TUT-AS

Requested by
https://mixdrop.my/f/xw0qgozmbr06vj
Certificate
IssuerSectigo Limited
Subject*.adsco.re
Fingerprint3B:64:1C:DA:8C:64:22:01:36:0F:54:7A:99:6E:AD:26:C2:EF:59:8B
ValidityMon, 23 Sep 2024 00:00:00 GMT - Mon, 29 Sep 2025 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
45 B (45 bytes)
Hash
5b41cb22f84f645a103acc7bfbf084ff
bac3967b26d5ec4a0d09a580714e8219796816bd
709f0a0dfab9f9e074f4a4a348dcb09150838284d21e75cfb9e5ceaeeb2054bc

HTTP Headers

GET / HTTP/1.1
Host: 4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mixdrop.my
DNT: 1
Connection: keep-alive
Referer: https://mixdrop.my/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 08 May 2025 23:04:07 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Origin: https://mixdrop.my
Access-Control-Max-Age: 2592000
Cache-Control: private, max-age=5
Content-Encoding: gzip

mrbi65kvflrv.l4.adsco.re/

185.200.118.62

200 OK

0 B

URL POST
mrbi65kvflrv.l4.adsco.re/
IP
185.200.118.62:443
ASN
#9009 M247 Europe SRL

Requested by
https://mixdrop.my/f/xw0qgozmbr06vj
Certificate
IssuerLet's Encrypt
Subject*.l4.adsco.re
Fingerprint76:AD:98:EA:A8:8F:6F:6D:58:92:36:07:6D:91:B6:67:41:97:C1:4E
ValiditySat, 19 Apr 2025 09:14:33 GMT - Fri, 18 Jul 2025 09:14:32 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST / HTTP/1.1
Host: mrbi65kvflrv.l4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://mixdrop.my
DNT: 1
Connection: keep-alive
Referer: https://mixdrop.my/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 08 May 2025 23:04:07 GMT
content-type: text/html
content-length: 0
last-modified: Fri, 02 Jun 2023 14:03:32 GMT
etag: "6479f6b4-0"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
accept-ranges: bytes
X-Firefox-Spdy: h2

mrbi65kvflrv.s4.adsco.re/

185.200.116.60

200 OK

0 B

URL POST
mrbi65kvflrv.s4.adsco.re/
IP
185.200.116.60:443
ASN
#9009 M247 Europe SRL

Requested by
https://mixdrop.my/f/xw0qgozmbr06vj
Certificate
IssuerLet's Encrypt
Subject*.s4.adsco.re
FingerprintAE:BB:65:20:B5:2F:2A:DA:30:73:84:C4:DC:5F:66:67:7C:1F:84:BB
ValiditySat, 19 Apr 2025 09:14:19 GMT - Fri, 18 Jul 2025 09:14:18 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST / HTTP/1.1
Host: mrbi65kvflrv.s4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://mixdrop.my
DNT: 1
Connection: keep-alive
Referer: https://mixdrop.my/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 08 May 2025 23:04:08 GMT
content-type: text/html
content-length: 0
last-modified: Tue, 03 Oct 2023 13:29:59 GMT
etag: "651c1757-0"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
accept-ranges: bytes
X-Firefox-Spdy: h2

mrbi65kvflrv.n4.adsco.re/

38.132.109.126

200 OK

0 B

URL POST
mrbi65kvflrv.n4.adsco.re/
IP
38.132.109.126:443
ASN
#9009 M247 Europe SRL

Requested by
https://mixdrop.my/f/xw0qgozmbr06vj
Certificate
IssuerLet's Encrypt
Subject*.n4.adsco.re
FingerprintEB:C6:B8:97:D3:9D:38:6F:22:4B:ED:17:B4:B6:9C:E0:30:A8:06:1E
ValiditySat, 19 Apr 2025 09:14:20 GMT - Fri, 18 Jul 2025 09:14:19 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST / HTTP/1.1
Host: mrbi65kvflrv.n4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://mixdrop.my
DNT: 1
Connection: keep-alive
Referer: https://mixdrop.my/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 08 May 2025 23:04:07 GMT
content-type: text/html
content-length: 0
last-modified: Fri, 16 Jun 2023 08:37:42 GMT
etag: "648c1f56-0"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
accept-ranges: bytes
X-Firefox-Spdy: h2

code.jquery.com/ui/1.13.2/jquery-ui.min.js

151.101.66.137

200 OK

255 kB

URL GET
code.jquery.com/ui/1.13.2/jquery-ui.min.js
IP
151.101.66.137:443
ASN
#54113 FASTLY

Requested by
https://mixdrop.my/f/xw0qgozmbr06vj
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintCD:B5:6E:05:85:0C:5A:AE:47:12:80:2A:5B:C6:E5:8F:11:72:E2:B5
ValidityTue, 25 Jun 2024 00:00:00 GMT - Wed, 25 Jun 2025 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (64399)
Size
255 kB (255084 bytes)
Hash
1e2047978946a1d271356d0b557a84a3
5f29a324c8affb1fdb26ad4564b1e044372beed2
9528ca634fecad433d044ddd3e6f9ce1f068d5d932dafdbb19d8e6daea1968bd

HTTP Headers

GET /ui/1.13.2/jquery-ui.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mixdrop.my
DNT: 1
Connection: keep-alive
Referer: https://mixdrop.my/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-3e46c"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 08 May 2025 23:04:04 GMT
age: 1432179
x-served-by: cache-lga13623-LGA, cache-hel1410028-HEL
x-cache: HIT, HIT
x-cache-hits: 67, 10894
x-timer: S1746745445.579526,VS0,VE0
vary: Accept-Encoding
content-length: 67628
X-Firefox-Spdy: h2

mdstats.info/api/event

104.21.80.1

202 Accepted

2 B

URL POST
mdstats.info/api/event
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://mixdrop.my/f/xw0qgozmbr06vj
Certificate
IssuerGoogle Trust Services
Subjectmdstats.info
Fingerprint5C:BE:8B:9C:89:5A:50:26:3B:C2:C8:97:BC:48:98:A6:CA:82:23:37
ValidityThu, 27 Mar 2025 11:52:29 GMT - Wed, 25 Jun 2025 12:50:16 GMT

File type
ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df

HTTP Headers

POST /api/event HTTP/1.1
Host: mdstats.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 86
Origin: https://mixdrop.my
DNT: 1
Connection: keep-alive
Referer: https://mixdrop.my/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 202 Accepted
date: Thu, 08 May 2025 23:04:05 GMT
content-type: text/plain; charset=utf-8
content-length: 2
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IyzHbiQSiYBgxl7JQvWbnrMERAu6sAfvSSm%2F%2BrMGOj9330khRLljmUIicQDY2ghYw5CI8S9NN0l%2Bc5TKIFsTXqqf4pbalRHA1VweUmHHCwxKaj7XdI9TFF5Ir6SyZWc%3D"}],"group":"cf-nel","max_age":604800}
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-expose-headers: 
cache-control: max-age=0, private, must-revalidate
x-request-id: GD2vul0CiIIDcAjjKqhC
cf-cache-status: DYNAMIC
cf-ray: 93cc98192f6d0b49-OSL
server: cloudflare
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4348&min_rtt=1272&rtt_var=2674&sent=13&recv=9&lost=0&retrans=0&sent_bytes=3833&recv_bytes=1324&delivery_rate=110423&cwnd=12000&unsent_bytes=0&cid=2382c47ae49478d3&ts=175&x=16"

fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

142.250.74.35

200 OK

16 kB

URL GET
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LetXaoUAAAAAB6axgg4WLG9oZ_6QLTsFXZj-5sd&co=aHR0cHM6Ly9taXhkcm9wLm15OjQ0Mw..&hl=en&v=Hi8UmRMnhdOBM3IuViTkapUP&size=invisible&cb=5koq9bbquch2
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint62:05:36:C2:8E:4C:CD:95:1E:1C:75:06:44:A3:57:E5:C0:17:02:80
ValidityMon, 31 Mar 2025 08:55:35 GMT - Mon, 23 Jun 2025 08:55:34 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15552, version 1.0
Size
16 kB (15552 bytes)
Hash
285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7

HTTP Headers

GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 May 2025 10:26:11 GMT
expires: Fri, 08 May 2026 10:26:11 GMT
cache-control: public, max-age=31536000
age: 45477
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

mixdrop.my/panel/js/scroll/perfect-scrollbar.css?v=2.0.1

172.67.208.161

200 OK

2.6 kB

URL GET
mixdrop.my/panel/js/scroll/perfect-scrollbar.css?v=2.0.1
IP
172.67.208.161:443
ASN
#13335 CLOUDFLARENET

Requested by
https://mixdrop.my/f/xw0qgozmbr06vj
Certificate
IssuerGoogle Trust Services
Subjectmixdrop.my
FingerprintEE:EC:18:05:37:E7:FE:BF:35:03:C8:B9:38:9F:92:78:4C:B9:10:3B
ValidityWed, 23 Apr 2025 21:25:33 GMT - Tue, 22 Jul 2025 22:21:38 GMT

File type
troff or preprocessor input, ASCII text
Size
2.6 kB (2598 bytes)
Hash
6f36b1309fbbde634a5d54dd1734274a
a94e730430930b2e048352996ff44bf28647669d
7b6508c9e8e04de8ebfec5de2ce1c4303bc46a0a279283eff7e248c1c900a91b

HTTP Headers

GET /panel/js/scroll/perfect-scrollbar.css?v=2.0.1 HTTP/1.1
Host: mixdrop.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mixdrop.my/f/xw0qgozmbr06vj
Cookie: PHPSESSID=sogop8i0k0e4rmhdojlgc25ump
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 08 May 2025 23:04:04 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qjMO5tk2PoqUU2Lqza%2B3tMKZP5H9xPLMapXNyYcaOwIgPF%2BDwrSdVoQeQHvz2Iger3BiaFoxofYYvclXL1XBE%2FsuNU68OA6oK30PdALjSGotS5XjoiWTzUF8%2BTlE"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 12 Sep 2018 11:51:24 GMT
etag: "5b98fdbc-a26"
expires: Fri, 06 Jun 2025 02:29:02 GMT
cache-control: public, max-age=2592000
content-encoding: gzip
age: 160501
cf-cache-status: HIT
cf-ray: 93cc98140db4712b-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3735&min_rtt=859&rtt_var=2161&sent=123&recv=117&lost=0&retrans=0&sent_bytes=42869&recv_bytes=10504&delivery_rate=3370470&cwnd=24000&unsent_bytes=0&cid=b97ec619d463d25c&ts=321&x=16"

6.adsco.re:2087/

104.17.166.186

200 OK

45 B

URL GET
6.adsco.re:2087/
IP
104.17.166.186:2087
ASN
#13335 CLOUDFLARENET

Requested by
https://mixdrop.my/f/xw0qgozmbr06vj
Certificate
IssuerSectigo Limited
Subject*.adsco.re
Fingerprint3B:64:1C:DA:8C:64:22:01:36:0F:54:7A:99:6E:AD:26:C2:EF:59:8B
ValidityMon, 23 Sep 2024 00:00:00 GMT - Mon, 29 Sep 2025 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
45 B (45 bytes)
Hash
5b41cb22f84f645a103acc7bfbf084ff
bac3967b26d5ec4a0d09a580714e8219796816bd
709f0a0dfab9f9e074f4a4a348dcb09150838284d21e75cfb9e5ceaeeb2054bc

HTTP Headers

GET / HTTP/1.1
Host: 6.adsco.re:2087
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mixdrop.my
DNT: 1
Connection: keep-alive
Referer: https://mixdrop.my/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 08 May 2025 23:04:07 GMT
content-type: text/plain;charset=UTF-8
content-length: 45
access-control-allow-origin: https://mixdrop.my
cache-control: private, max-age=10
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-max-age: 2592000
vary: Accept-Encoding
server: cloudflare
cf-ray: 93cc9823fdda56c9-OSL
alt-svc: h3=":2087"; ma=86400
X-Firefox-Spdy: h2

mixdrop.my/css/style.v2.0.2.min.css

172.67.208.161

200 OK

19 kB

URL GET
mixdrop.my/css/style.v2.0.2.min.css
IP
172.67.208.161:443
ASN
#13335 CLOUDFLARENET

Requested by
https://mixdrop.my/f/xw0qgozmbr06vj
Certificate
IssuerGoogle Trust Services
Subjectmixdrop.my
FingerprintEE:EC:18:05:37:E7:FE:BF:35:03:C8:B9:38:9F:92:78:4C:B9:10:3B
ValidityWed, 23 Apr 2025 21:25:33 GMT - Tue, 22 Jul 2025 22:21:38 GMT

File type
ASCII text, with very long lines (18763)
Size
19 kB (18764 bytes)
Hash
1e57d0fe7ccabda4e546d881916a7762
4fd1da9793ff1399abefc839ce5b09a83d8afeba
dadc388c0520bb815a6472df470b729773cf80e175a0c62e60cd9eac7d7fc979

HTTP Headers

GET /css/style.v2.0.2.min.css HTTP/1.1
Host: mixdrop.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mixdrop.my/f/xw0qgozmbr06vj
Cookie: PHPSESSID=sogop8i0k0e4rmhdojlgc25ump
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 08 May 2025 23:04:04 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jpKt5NkCvmcBQdD2FZWPw%2BE63TVOg%2BcYutQEOA9QGlNSoy0E3iu92%2FEzVk1VCohTD1G6j26OeXK6HpFtG%2BmsZy54Dr6WRblox7gCIRwNWD4F5jdodOk5CU1yJdx2"}],"group":"cf-nel","max_age":604800}
last-modified: Thu, 16 Nov 2023 18:45:13 GMT
etag: W/"65566339-494c"
expires: Fri, 06 Jun 2025 04:39:34 GMT
cache-control: public, max-age=2592000
content-encoding: gzip
cf-cache-status: HIT
age: 152670
cf-ray: 93cc9813eda6712b-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4357&min_rtt=859&rtt_var=2941&sent=87&recv=113&lost=0&retrans=0&sent_bytes=8992&recv_bytes=10082&delivery_rate=2190&cwnd=12000&unsent_bytes=0&cid=b97ec619d463d25c&ts=312&x=16"

www.google.com/recaptcha/api2/webworker.js?hl=en&v=Hi8UmRMnhdOBM3IuViTkapUP

172.217.21.164

200 OK

102 B

URL GET
www.google.com/recaptcha/api2/webworker.js?hl=en&v=Hi8UmRMnhdOBM3IuViTkapUP
IP
172.217.21.164:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LetXaoUAAAAAB6axgg4WLG9oZ_6QLTsFXZj-5sd&co=aHR0cHM6Ly9taXhkcm9wLm15OjQ0Mw..&hl=en&v=Hi8UmRMnhdOBM3IuViTkapUP&size=invisible&cb=5koq9bbquch2
Certificate
IssuerGoogle Trust Services
Subject*.google.com
Fingerprint7E:CD:6A:9E:9E:00:6A:42:52:CC:9D:14:81:1C:68:D4:B9:C4:A4:73
ValidityMon, 31 Mar 2025 08:54:29 GMT - Mon, 23 Jun 2025 08:54:28 GMT

File type
ASCII text, with no line terminators
Size
102 B (102 bytes)
Hash
1a68e7627d97797a90c2ffcb3d213036
4dcfa77ea7083b5d4185ff524f944def15c747f0
8ae36edae3521eb27294881730e3699c0787838eb7f427b4f283d8af896096cb

HTTP Headers

GET /recaptcha/api2/webworker.js?hl=en&v=Hi8UmRMnhdOBM3IuViTkapUP HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LetXaoUAAAAAB6axgg4WLG9oZ_6QLTsFXZj-5sd&co=aHR0cHM6Ly9taXhkcm9wLm15OjQ0Mw..&hl=en&v=Hi8UmRMnhdOBM3IuViTkapUP&size=invisible&cb=5koq9bbquch2
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/javascript; charset=utf-8
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}, {"group":"coop_38fac9d5b82543fc4729580d18ff2d3d","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/38fac9d5b82543fc4729580d18ff2d3d"}]}
expires: Thu, 08 May 2025 23:04:08 GMT
date: Thu, 08 May 2025 23:04:08 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: same-site
cross-origin-opener-policy-report-only: same-origin; report-to="coop_38fac9d5b82543fc4729580d18ff2d3d"
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/releases/Hi8UmRMnhdOBM3IuViTkapUP/recaptcha__en.js

142.250.178.99

200 OK

653 kB

URL GET
www.gstatic.com/recaptcha/releases/Hi8UmRMnhdOBM3IuViTkapUP/recaptcha__en.js
IP
142.250.178.99:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/webworker.js?hl=en&v=Hi8UmRMnhdOBM3IuViTkapUP
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint62:05:36:C2:8E:4C:CD:95:1E:1C:75:06:44:A3:57:E5:C0:17:02:80
ValidityMon, 31 Mar 2025 08:55:35 GMT - Mon, 23 Jun 2025 08:55:34 GMT

File type
JavaScript source, ASCII text, with very long lines (671)
Size
653 kB (652680 bytes)
Hash
cded17fc3b606bf50119ef5425541a3a
e11985d3bbce813e0349e732e24cd757b5a8ea2f
31ab798a14c43a7608cd4eaa6026f4cf209371762263b6d1b0e562a264c00f4c

HTTP Headers

GET /recaptcha/releases/Hi8UmRMnhdOBM3IuViTkapUP/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
timing-allow-origin: *
content-length: 276859
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 May 2025 19:19:46 GMT
expires: Thu, 07 May 2026 19:19:46 GMT
cache-control: public, max-age=31536000
age: 99862
last-modified: Tue, 29 Apr 2025 17:05:42 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

mdstats.info/js/script.js

104.21.80.1

200 OK

1.3 kB

URL GET
mdstats.info/js/script.js
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://mixdrop.my/f/xw0qgozmbr06vj
Certificate
IssuerGoogle Trust Services
Subjectmdstats.info
Fingerprint5C:BE:8B:9C:89:5A:50:26:3B:C2:C8:97:BC:48:98:A6:CA:82:23:37
ValidityThu, 27 Mar 2025 11:52:29 GMT - Wed, 25 Jun 2025 12:50:16 GMT

File type
JavaScript source, ASCII text, with very long lines (1346), with no line terminators
Size
1.3 kB (1346 bytes)
Hash
abd4e2373b2e8c4dac2e80159641c5f1
e273656e58ca934d873204e68dd35670fde657ed
021f0fd27042b279a49e982215c6dc3c3ab84e95b35553a119dfdbd50af6be94

HTTP Headers

GET /js/script.js HTTP/1.1
Host: mdstats.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mixdrop.my/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 08 May 2025 23:04:04 GMT
content-type: application/javascript
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
access-control-allow-origin: *
cache-control: public, max-age=86400, must-revalidate
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 59072
last-modified: Thu, 08 May 2025 06:39:32 GMT
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=GSvYv9DM6abXutwlm%2FYCpt9UqZpRrDK%2Fboi3rQkhsx7gcslBFiI%2B9w%2BzBMhgkdtismFW0%2Bg%2BZxt6BeyUOIGQdTzf1D8eO2J0gR1sxqwHfWMQjclI%2BjcYe6fMdm6ON7A%3D"}]}
content-encoding: br
cf-ray: 93cc98149de7712a-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Open+Sans:wght@300;400;700&display=swap

142.250.74.10

200 OK

18 kB

URL GET
fonts.googleapis.com/css2?family=Open+Sans:wght@300;400;700&display=swap
IP
142.250.74.10:443
ASN
#15169 GOOGLE

Requested by
https://mixdrop.my/f/xw0qgozmbr06vj
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint06:13:4C:49:F4:23:BB:58:C3:31:41:0E:F9:E0:C5:EF:74:A9:0C:67
ValidityMon, 31 Mar 2025 08:55:35 GMT - Mon, 23 Jun 2025 08:55:34 GMT

File type
ASCII text, with very long lines (1572)
Size
18 kB (18042 bytes)
Hash
3b561ec187f248d8ed60615b866be327
9d2fdf8b2f9ea537a638f3280656348ce4d0a44b
b419d993477ee546303f5f56d3a3a8f6b35ead8db1250ce6c5ec27a17466295c

HTTP Headers

GET /css2?family=Open+Sans:wght@300;400;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mixdrop.my/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 08 May 2025 23:04:04 GMT
date: Thu, 08 May 2025 23:04:04 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

mixdrop.my/js/slidebars/slidebars.css?v=0.1

172.67.208.161

200 OK

3.1 kB

URL GET
mixdrop.my/js/slidebars/slidebars.css?v=0.1
IP
172.67.208.161:443
ASN
#13335 CLOUDFLARENET

Requested by
https://mixdrop.my/f/xw0qgozmbr06vj
Certificate
IssuerGoogle Trust Services
Subjectmixdrop.my
FingerprintEE:EC:18:05:37:E7:FE:BF:35:03:C8:B9:38:9F:92:78:4C:B9:10:3B
ValidityWed, 23 Apr 2025 21:25:33 GMT - Tue, 22 Jul 2025 22:21:38 GMT

File type
ASCII text
Size
3.1 kB (3075 bytes)
Hash
1e9e9c76e3facb22f54e9707ab4c9f61
c73bd3dd59a2dcacc59f93207b6a635247d04516
ba37e57b3f0068f52e9af9d9ca3052aff6ef7abfd9dad7fcc22d9b00253d8746

HTTP Headers

GET /js/slidebars/slidebars.css?v=0.1 HTTP/1.1
Host: mixdrop.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mixdrop.my/f/xw0qgozmbr06vj
Cookie: PHPSESSID=sogop8i0k0e4rmhdojlgc25ump
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 08 May 2025 23:04:04 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QsYZ8tqr%2Bgc5VeChPR7PZbxtyV45RpCqiTWmD5AuwQhh2xLD7876RkLlEPEJaEzAf6OGsoLdx9hnRdO45bChRYX8s2KdcXQxSNfGbf3s00copwDZHjICj2fTuiy%2F"}],"group":"cf-nel","max_age":604800}
last-modified: Fri, 24 Aug 2018 12:43:34 GMT
etag: W/"5b7ffd76-c03"
expires: Thu, 05 Jun 2025 13:23:04 GMT
cache-control: public, max-age=2592000
content-encoding: gzip
age: 207660
cf-cache-status: HIT
cf-ray: 93cc9813eda5712b-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4357&min_rtt=859&rtt_var=2941&sent=84&recv=112&lost=0&retrans=0&sent_bytes=7314&recv_bytes=9786&delivery_rate=2190&cwnd=12000&unsent_bytes=0&cid=b97ec619d463d25c&ts=311&x=16"

xx.apptdinsteps.com/sBq05a7a7j1Yhgl/117018

23.109.170.59

200 OK

6 B

URL GET
xx.apptdinsteps.com/sBq05a7a7j1Yhgl/117018
IP
23.109.170.59:443
ASN
#7979 SERVERS-COM

Requested by
https://mixdrop.my/f/xw0qgozmbr06vj
Certificate
IssuerLet's Encrypt
Subjectxx.apptdinsteps.com
Fingerprint47:79:F8:1A:A9:FE:98:2A:A9:B6:59:81:FD:9C:E0:6A:C4:21:E4:A9
ValidityMon, 14 Apr 2025 06:59:51 GMT - Sun, 13 Jul 2025 06:59:50 GMT

File type
ASCII text, with no line terminators
Size
6 B (6 bytes)
Hash
4fc71bf68a1d477bd1523733e34d1e90
15119105cffbe108b6cf290146ab02c9aa8517ba
74c1971a5c7f3f1cfb81b7a0a8717cee5a45841844104566e00bbfca271943ce

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /sBq05a7a7j1Yhgl/117018 HTTP/1.1
Host: xx.apptdinsteps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mixdrop.my/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 May 2025 23:04:04 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 6
Connection: keep-alive
Keep-Alive: timeout=20
Vary: Origin
Access-Control-Expose-Headers: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Megageocheckolololo, X-Forwarded-For, X-Requested-With, Cache-Control, Pragma, Expires
Access-Control-Allow-Methods: GET, HEAD, POST, PUT, OPTIONS
Set-Cookie: GGI10=G/IAAASeD7dNK/dmKv8IjKne3vVF23LHD4p/239bRbcCCoMg63NMJOcmHtdgLENcdVb9C/8fcU22F4TMszPXDn3bi0JM1sszQtMiPRle3iuF+nW+PadvTJQWghuEE2erh7OxP8CGug0ouFXNMz9sX8bofOhPVVBMTsv72LAiF5aGU46qKWF8uZ1fb+RKCE0MoKV13JEH4pvoZXocf6ywyRddqbWmm1R6/v8=; max-age=3600000; path=/; secure; SameSite=None
GUI4=G+QDAMRQnU1rdNODldiBgqv9J4LR4ZIpRPc/t7oN0VCImdjuy+wOE62DRAneiIRM3OuEhP31y6YVJbGNd5yfKb+A/ldwn6BLwPFq5quUiRe51HmoJfe3H4dRl56c/6vehSdnnK51z1kQuvTReSmyu/HaMEgZOYmwPQoLsi1RLH8CB2OH3SGM/AMNs0Pip+lht4toGh0o86OyjEAQjQH4Akvr4IhjFQTf5lTBEaItEFwb4Vq+RfEBysqhKdr+YLn5Bg4QKJMX8tXanokZmqLWV9GJEi2sB9pYcjN1hQUhErlq8OjFyFxQvG8EppEj4nYyLukOPDIrH8U1B2cYbBVhpL32wMk7qFrk4pMjULT8KpJ8cg4bxzBdemtv5ZXeVrn3KEEBeJS385S2Oa1BDf+BhODMFlNJZcE7/hmtsVh3I8guO195dK69sOcyc+OFLNf3EPWGUmoiJiTR0kZbTUoSWRdq2koNWdWsMWUttv3gdjS7i8gyQ46sFH1Rz3hdguI/IAzHPDzYaorYGkoSAiTsSly95GrJiMxfVWoaG0GDiTBkrlooLk3GCrGWXqVgp8WyEs4gSdGlLGFXdlKiTmc6aZILlRW6bQ==; max-age=3600000; path=/; secure; SameSite=None
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff

mixdrop.my/js/circular-progress/circle-progress.min.js?v=2.0.1

172.67.208.161

200 OK

4.4 kB

URL GET
mixdrop.my/js/circular-progress/circle-progress.min.js?v=2.0.1
IP
172.67.208.161:443
ASN
#13335 CLOUDFLARENET

Requested by
https://mixdrop.my/f/xw0qgozmbr06vj
Certificate
IssuerGoogle Trust Services
Subjectmixdrop.my
FingerprintEE:EC:18:05:37:E7:FE:BF:35:03:C8:B9:38:9F:92:78:4C:B9:10:3B
ValidityWed, 23 Apr 2025 21:25:33 GMT - Tue, 22 Jul 2025 22:21:38 GMT

File type
JavaScript source, ASCII text, with very long lines (4395)
Size
4.4 kB (4396 bytes)
Hash
481511eb62925e0a61fd380fa47a1e53
20bde42f09f827b4cfbe960fa51ae204328ab611
ae6109f5fd770666f0daef12209ffdba676f437dc5952881b20c04ccb36a1749

HTTP Headers

GET /js/circular-progress/circle-progress.min.js?v=2.0.1 HTTP/1.1
Host: mixdrop.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mixdrop.my/f/xw0qgozmbr06vj
Cookie: PHPSESSID=sogop8i0k0e4rmhdojlgc25ump
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 08 May 2025 23:04:04 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=p6BzmveUZUnFPkBR4s7vbBWXeRKzJ9uX3Ice8L8EbbVTmD8VoXhnqjqlf8coMUTmKlMX5bIB9RHd99dlDlvBR%2F4jN%2FnHcCdXuALK6q7LSbN0ea1Kby53S2%2F5IoQC"}],"group":"cf-nel","max_age":604800}
last-modified: Fri, 12 Oct 2018 16:09:50 GMT
etag: W/"5bc0c74e-112c"
expires: Thu, 05 Jun 2025 13:23:04 GMT
cache-control: public, max-age=2592000
content-encoding: gzip
cf-cache-status: HIT
age: 207660
cf-ray: 93cc98140dad712b-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4182&min_rtt=859&rtt_var=2555&sent=104&recv=115&lost=0&retrans=0&sent_bytes=23458&recv_bytes=10410&delivery_rate=962731&cwnd=24000&unsent_bytes=0&cid=b97ec619d463d25c&ts=317&x=16"

mixdrop.my/js/jquery-upload/js/jquery.iframe-transport.js?v=2.0.1

172.67.208.161

200 OK

2.3 kB

URL GET
mixdrop.my/js/jquery-upload/js/jquery.iframe-transport.js?v=2.0.1
IP
172.67.208.161:443
ASN
#13335 CLOUDFLARENET

Requested by
https://mixdrop.my/f/xw0qgozmbr06vj
Certificate
IssuerGoogle Trust Services
Subjectmixdrop.my
FingerprintEE:EC:18:05:37:E7:FE:BF:35:03:C8:B9:38:9F:92:78:4C:B9:10:3B
ValidityWed, 23 Apr 2025 21:25:33 GMT - Tue, 22 Jul 2025 22:21:38 GMT

File type
JavaScript source, ASCII text, with very long lines (2321)
Size
2.3 kB (2322 bytes)
Hash
f77830c3579ddb6e4eda9c71102aef16
ec096d3bf06961d157a17977e5b3377d1288e466
e40d7519371bd17aba9b17f301ca3c7598fe8408baefd9cdebd2283944ac405f

HTTP Headers

GET /js/jquery-upload/js/jquery.iframe-transport.js?v=2.0.1 HTTP/1.1
Host: mixdrop.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mixdrop.my/f/xw0qgozmbr06vj
Cookie: PHPSESSID=sogop8i0k0e4rmhdojlgc25ump
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 08 May 2025 23:04:04 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nLjt9sjGhCiGL8SXgBMJ0lWoblVdfAuPLMj1WU%2FFICE05dSgq0v3xuhaGGxibcl1Yu5OydnJxo880Ob0CHbGfFuLzHxhLmTsJgXN8LUE5SZnm2niswarKwXq4dyu"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 19 Sep 2018 14:49:10 GMT
etag: W/"5ba261e6-912"
expires: Thu, 05 Jun 2025 13:23:04 GMT
cache-control: public, max-age=2592000
content-encoding: gzip
age: 207659
cf-cache-status: HIT
cf-ray: 93cc98140dae712b-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3843&min_rtt=859&rtt_var=2594&sent=109&recv=116&lost=0&retrans=0&sent_bytes=27877&recv_bytes=10457&delivery_rate=1620486&cwnd=24000&unsent_bytes=0&cid=b97ec619d463d25c&ts=319&x=16"

mixdrop.my/js/ads.js

172.67.208.161

200 OK

50 B

URL GET
mixdrop.my/js/ads.js
IP
172.67.208.161:443
ASN
#13335 CLOUDFLARENET

Requested by
https://mixdrop.my/f/xw0qgozmbr06vj
Certificate
IssuerGoogle Trust Services
Subjectmixdrop.my
FingerprintEE:EC:18:05:37:E7:FE:BF:35:03:C8:B9:38:9F:92:78:4C:B9:10:3B
ValidityWed, 23 Apr 2025 21:25:33 GMT - Tue, 22 Jul 2025 22:21:38 GMT

File type
ASCII text
Size
50 B (50 bytes)
Hash
170cb502f8f209ca64ca4c271c7041e2
bdce5bceee905dacef001063aa1d9c5f3c8f693c
789581e03b9915bd79ea82a241817dcbbdeb1c240e540e9470fabf1998b41a6b

HTTP Headers

GET /js/ads.js HTTP/1.1
Host: mixdrop.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mixdrop.my/f/xw0qgozmbr06vj
Cookie: PHPSESSID=sogop8i0k0e4rmhdojlgc25ump
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 08 May 2025 23:04:04 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Rd3P5t9lS6g2qFNxdxKH7DmSS8uEBb%2BYmJnNCkYUYVedff4OIb%2BlUeIUQekoPWQ%2BlIi4f6%2BpScO1ftF3a3fYp7TiHirxxs27Bk1sFP5dT2s1WnBAFO27JiD%2Ba7k9"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 03 Jul 2019 14:57:19 GMT
etag: W/"5d1cc24f-32"
expires: Thu, 05 Jun 2025 13:23:04 GMT
cache-control: public, max-age=2592000
cf-cache-status: HIT
age: 207660
content-encoding: br
cf-ray: 93cc98140db6712b-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3735&min_rtt=859&rtt_var=2161&sent=127&recv=117&lost=0&retrans=0&sent_bytes=45092&recv_bytes=10504&delivery_rate=3370470&cwnd=24000&unsent_bytes=0&cid=b97ec619d463d25c&ts=323&x=16"

adsco.re/p

162.252.214.5

200 OK

1.2 kB

URL POST
adsco.re/p
IP
162.252.214.5:443
ASN
#53334 TUT-AS

Requested by
https://mixdrop.my/f/xw0qgozmbr06vj
Certificate
IssuerSectigo Limited
Subject*.adsco.re
Fingerprint3B:64:1C:DA:8C:64:22:01:36:0F:54:7A:99:6E:AD:26:C2:EF:59:8B
ValidityMon, 23 Sep 2024 00:00:00 GMT - Mon, 29 Sep 2025 23:59:59 GMT

File type
ASCII text, with very long lines (1234), with no line terminators
Size
1.2 kB (1234 bytes)
Hash
2ca244358e52d8f97b1feff0fc3802f1
bc6a5f141988a4afb92f3f37fdabf46d3081f440
d4b102a9578c91eec92d734c3495bbd8c41fef739ba492f21d3a621974bf0602

HTTP Headers

POST /p HTTP/1.1
Host: adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 1702
Origin: https://mixdrop.my
DNT: 1
Connection: keep-alive
Referer: https://mixdrop.my/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 08 May 2025 23:04:08 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
AS-P-1: OK nyc123
AS-P-2: OK
AS-P-3: OK
Access-Control-Max-Age: 2592000
Cache-Control: no-transform
Accept-CH: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
Access-Control-Allow-Origin: https://mixdrop.my
Access-Control-Allow-Credentials: true
Content-Encoding: gzip

mixdrop.my/f/xw0qgozmbr06vj

172.67.208.161

200 OK

233 kB

URL User Request GET
mixdrop.my/f/xw0qgozmbr06vj
IP
172.67.208.161:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectmixdrop.my
FingerprintEE:EC:18:05:37:E7:FE:BF:35:03:C8:B9:38:9F:92:78:4C:B9:10:3B
ValidityWed, 23 Apr 2025 21:25:33 GMT - Tue, 22 Jul 2025 22:21:38 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (46405), with LF, NEL line terminators
Size
233 kB (232935 bytes)
Hash
755fff3867f898d40698dcf5814fdc14
2d4c253870ce7672a70962c831a3daf0b23eede4
c66388cfd558db8334ba597a3daa6dc627795e67f8e1ab9f60c900eec0dce43c

HTTP Headers

GET /f/xw0qgozmbr06vj HTTP/1.1
Host: mixdrop.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 08 May 2025 23:04:04 GMT
content-type: text/html; charset=UTF-8
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: accept-encoding
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
x-frame-options: SAMEORIGIN
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=W1%2B2OqYj%2FVmKvQm4Hx0amoLNqWFD2k1aXcQmmt0J7j%2FmYPYSrW7qeidcZQQwdcU1%2BNpvFO6m2paJx9f0hAyalai%2Fqsgc6iPPWw6BhZptnXezyBbXAkJO%2BRXzgHtY"}]}
cf-cache-status: DYNAMIC
content-encoding: br
set-cookie: PHPSESSID=sogop8i0k0e4rmhdojlgc25ump; SameSite=None; Secure; Path=/
cf-ray: 93cc981169ca56a5-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

code.jquery.com/jquery-3.6.4.min.js

151.101.66.137

200 OK

90 kB

URL GET
code.jquery.com/jquery-3.6.4.min.js
IP
151.101.66.137:443
ASN
#54113 FASTLY

Requested by
https://mixdrop.my/f/xw0qgozmbr06vj
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintCD:B5:6E:05:85:0C:5A:AE:47:12:80:2A:5B:C6:E5:8F:11:72:E2:B5
ValidityTue, 25 Jun 2024 00:00:00 GMT - Wed, 25 Jun 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
90 kB (89795 bytes)
Hash
641dd14370106e992d352166f5a07e99
eda46747c71d38a880bee44f9a439c3858bb8f99
a0fe8723dcf55da64d06b25446d0a8513e52527c45afcb37073465f9c6f352af

HTTP Headers

GET /jquery-3.6.4.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mixdrop.my
DNT: 1
Connection: keep-alive
Referer: https://mixdrop.my/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-15ec3"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 08 May 2025 23:04:04 GMT
age: 2099239
x-served-by: cache-lga21953-LGA, cache-hel1410028-HEL
x-cache: HIT, HIT
x-cache-hits: 104614, 25843
x-timer: S1746745445.531030,VS0,VE0
vary: Accept-Encoding
content-length: 31011
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (32)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML