| huannd9x.wap.sh/ | 54.36.158.42 | | 523 B |
IP54.36.158.42:0
File typeHTML document, ASCII text Hashdfb7d91b3b59ecf4f7ccd85272c1066e f73b48d6a106c04848ced21376d86e56d625178c 9b684f230bf45555747c7ed5fd050f7bec2d5aeaf12591deb33607bbdb4ee8de
GET / HTTP/1.1
Host: huannd9x.wap.sh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 May 2024 01:20:15 GMT
Vary: Host,Accept-Encoding
Set-Cookie: XT_transfer_interstitial=1; expires=Thu, 09-May-2024 01:20:15 GMT; Max-Age=86400; path=/; domain=.huannd9x.wap.sh
refresh: 5; url=https://huannd9x.sextgem.com/
Content-Encoding: gzip
Content-Length: 523
Content-Type: text/html; charset=UTF-8
|
|
| huannd9x.wap.sh/favicon.ico | 54.36.158.42 | | 0 B |
URL huannd9x.wap.sh/favicon.ico IP54.36.158.42:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: huannd9x.wap.sh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://huannd9x.wap.sh/
Cookie: XT_transfer_interstitial=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Wed, 08 May 2024 01:20:16 GMT
Location: https://huannd9x.sextgem.com/favicon.ico
Content-Length: 0
Content-Type: text/html; charset=UTF-8
|
|
| huannd9x.sextgem.com/favicon.ico | 54.36.158.42 | | 0 B |
URL huannd9x.sextgem.com/favicon.ico IP54.36.158.42:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: huannd9x.sextgem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://huannd9x.wap.sh/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 404 Not Found
Date: Wed, 08 May 2024 01:20:16 GMT
Content-Length: 0
Content-Type: text/html; charset=UTF-8
Connection: keep-alive
|
|
| huannd9x.sextgem.com/ | 54.36.158.42 | | 12 kB |
IP54.36.158.42:0
File typeHTML document, Unicode text, UTF-8 (with BOM) text, with very long lines (34450), with CRLF, LF line terminators Hash033fde5ac6410dce307992814d272c4b b91773a0d4221f5f00e00b2bb645cce351397494 31d9341e8630c63dbd9a48778c74eb95b1b8c3d5c5d81a5bd7dd05f8d0844dfe
GET / HTTP/1.1
Host: huannd9x.sextgem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 May 2024 01:20:21 GMT
Vary: Host,Accept-Encoding
Set-Cookie: _xta_uid=76a3bb295e04ff68d4deab39e85f07e2; expires=Fri, 08-May-2026 01:20:21 GMT; Max-Age=63072000; path=/; domain=.sextgem.com; httponly
_xta_vid=a5814987e1698992fb31ad6b0c326010-1715131221; expires=Wed, 08-May-2024 01:50:21 GMT; Max-Age=1800; path=/; domain=.sextgem.com; httponly
Cache-Control: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
Pragma: no-cache
Expires: Wed, 17 Sep 1975 21:32:10 GMT
Content-Encoding: gzip
Content-Length: 11855
Content-Type: text/html;charset=UTF-8
|
|
| huannd9x.sextgem.com/css/blog.css | 54.36.158.42 | | 5.7 kB |
URL huannd9x.sextgem.com/css/blog.css IP54.36.158.42:0
File typeHTML document, Unicode text, UTF-8 text, with very long lines (777), with CRLF, LF line terminators Hash77de3b8124234a081a36b005164dd141 e36d591f4cf9a3ee7b7c3882483794a26b48b4fc 02fbf78021d308bf263b2886cd916fb005a0ba25193c0119190ef402cf28f65b
GET /css/blog.css HTTP/1.1
Host: huannd9x.sextgem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://huannd9x.sextgem.com/
Cookie: _xta_uid=76a3bb295e04ff68d4deab39e85f07e2; _xta_vid=a5814987e1698992fb31ad6b0c326010-1715131221
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 404 Not Found
Date: Wed, 08 May 2024 01:20:21 GMT
Vary: Host,Accept-Encoding
Set-Cookie: _xta_uid=76a3bb295e04ff68d4deab39e85f07e2; expires=Fri, 08-May-2026 01:20:21 GMT; Max-Age=63072000; path=/; domain=.sextgem.com; httponly
_xta_vid=a5814987e1698992fb31ad6b0c326010-1715131221; expires=Wed, 08-May-2024 01:50:21 GMT; Max-Age=1800; path=/; domain=.sextgem.com; httponly
Content-Encoding: gzip
Content-Length: 5720
Content-Type: text/html; charset=UTF-8
Connection: keep-alive
|
|
| huannd9x.sextgem.com/images/iconArmy2.png | 54.36.158.42 | | 636 B |
URL huannd9x.sextgem.com/images/iconArmy2.png IP54.36.158.42:0
File typePNG image data, 32 x 32, 8-bit colormap, non-interlaced Hash9503fad3d8658ef25b27bb7b3ffa83c2 9b71e15287f900a6285d49b96198094a1678de4c b5350475a721667bd43cb5ba6eafb7e38055ae8728acdde7125d096f83eec26e
GET /images/iconArmy2.png HTTP/1.1
Host: huannd9x.sextgem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://huannd9x.sextgem.com/
Cookie: _xta_uid=76a3bb295e04ff68d4deab39e85f07e2; _xta_vid=a5814987e1698992fb31ad6b0c326010-1715131221
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 May 2024 01:20:21 GMT
Set-Cookie: _xta_uid=76a3bb295e04ff68d4deab39e85f07e2; expires=Fri, 08-May-2026 01:20:21 GMT; Max-Age=63072000; path=/; domain=.sextgem.com; httponly
Cache-Control: max-age=2592000
Expires: Fri, 07 Jun 2024 01:20:21 GMT
X-Ngz: 1
Content-Length: 636
Content-Type: image/png
|
|
| dangcapnd.wap.sh/images/logo.png | 54.36.158.42 | | 0 B |
URL dangcapnd.wap.sh/images/logo.png IP54.36.158.42:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/logo.png HTTP/1.1
Host: dangcapnd.wap.sh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Wed, 08 May 2024 01:20:22 GMT
Location: https://dangcapnd.sextgem.com/images/logo.png
X-Ngz: 1
Content-Length: 0
Content-Type: text/html; charset=UTF-8
|
|
| huannd9x.wap.sh/images/icon%20tai%20xuong.png | 54.36.158.41 | | 0 B |
URL huannd9x.wap.sh/images/icon%20tai%20xuong.png IP54.36.158.41:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/icon%20tai%20xuong.png HTTP/1.1
Host: huannd9x.wap.sh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Wed, 08 May 2024 01:20:22 GMT
Location: https://huannd9x.sextgem.com/images/icon tai xuong.png
X-Ngz: 1
Content-Length: 0
Content-Type: text/html; charset=UTF-8
|
|
| filedangcapnd1.wap.sh/images/vuon+thuy+cung.png | 54.36.158.42 | | 1.9 kB |
URL filedangcapnd1.wap.sh/images/vuon+thuy+cung.png IP54.36.158.42:0
File typePNG image data, 48 x 48, 8-bit colormap, non-interlaced Hashddecdd8037589f43bc594da0ae308cc0 959569f0e757301b947fb110e32723ba87456211 40b2e9c40507951d42e76f22c19382fa34032bf9ee39896f60355b3a640cf5cf
GET /images/vuon+thuy+cung.png HTTP/1.1
Host: filedangcapnd1.wap.sh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 May 2024 01:20:22 GMT
Set-Cookie: _xta_uid=5e1f82e64317f2f04624855454ca5a7a; expires=Fri, 08-May-2026 01:20:22 GMT; Max-Age=63072000; path=/; domain=.wap.sh; httponly
Cache-Control: max-age=2592000
Expires: Fri, 07 Jun 2024 01:20:22 GMT
X-Ngz: 1
Content-Length: 1943
Content-Type: image/png
|
|
| cif.images.xtstatic.com/tp.gif | 141.94.172.213 | | 42 B |
URL cif.images.xtstatic.com/tp.gif IP141.94.172.213:0
File typeGIF image data, version 89a, 1 x 1 Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /tp.gif HTTP/1.1
Host: cif.images.xtstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://huannd9x.sextgem.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 May 2024 01:20:22 GMT
Last-Modified: Sat, 16 Nov 2019 11:03:28 GMT
ETag: "2a-59774aa04e000"
Accept-Ranges: bytes
Content-Length: 42
Cache-Control: max-age=2592000
Expires: Fri, 07 Jun 2024 01:20:22 GMT
Content-Type: image/gif
|
|
| filedangcapnd.wap.sh/images/thonglinhthienha.png | 54.36.158.42 | | 2.8 kB |
URL filedangcapnd.wap.sh/images/thonglinhthienha.png IP54.36.158.42:0
File typePNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced Hashca18d676edaa77422a5190dc95a0f822 5247771d3262cea8aac29cd48505143c47225f2f d07b89cf0474d0066ddf6e91fdc21ed5502df063426ce655981a86ca60724ebd
GET /images/thonglinhthienha.png HTTP/1.1
Host: filedangcapnd.wap.sh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 May 2024 01:20:22 GMT
Set-Cookie: _xta_uid=7d880a9f07784edde8ff0a999ec34495; expires=Fri, 08-May-2026 01:20:22 GMT; Max-Age=63072000; path=/; domain=.wap.sh; httponly
Cache-Control: max-age=2592000
Expires: Fri, 07 Jun 2024 01:20:22 GMT
X-Ngz: 1
Content-Length: 2812
Content-Type: image/png
|
|
| filedangcapnd1.wap.sh/images/trachanhquan.png | 54.36.158.42 | | 731 B |
URL filedangcapnd1.wap.sh/images/trachanhquan.png IP54.36.158.42:0
File typePNG image data, 32 x 32, 8-bit colormap, non-interlaced Hashe1f79486e68c2b18af4760c9661abc94 2bdeb1a116adf82398530015ab8705b90c45857e cff78d77f5667464e3faa105548e626c5ac43cd3b8817c849e43c676e8e31d22
GET /images/trachanhquan.png HTTP/1.1
Host: filedangcapnd1.wap.sh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 May 2024 01:20:22 GMT
Set-Cookie: _xta_uid=3428790a68144c449bc57f8ce457c6dd; expires=Fri, 08-May-2026 01:20:22 GMT; Max-Age=63072000; path=/; domain=.wap.sh; httponly
Cache-Control: max-age=2592000
Expires: Fri, 07 Jun 2024 01:20:22 GMT
X-Ngz: 1
Content-Length: 731
Content-Type: image/png
|
|
| filedangcapnd.wap.sh/images/autoclick.png | 54.36.158.42 | | 980 B |
URL filedangcapnd.wap.sh/images/autoclick.png IP54.36.158.42:0
File typeGIF image data, version 89a, 48 x 48 Hash73bb05288a4ed4a70f132f7b9b0b62ed a23198012ca6c5425fbdd2c2530f85575306beff c4354342122b43a5304426b02453f43f3eea6c50caf8931c42f8c3a8843a59b9
GET /images/autoclick.png HTTP/1.1
Host: filedangcapnd.wap.sh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 May 2024 01:20:22 GMT
Set-Cookie: _xta_uid=898cdac7cee421c694d509436c93676f; expires=Fri, 08-May-2026 01:20:22 GMT; Max-Age=63072000; path=/; domain=.wap.sh; httponly
Cache-Control: max-age=2592000
Expires: Fri, 07 Jun 2024 01:20:22 GMT
X-Ngz: 1
Content-Length: 980
Content-Type: image/gif
|
|
| filedangcapnd.wap.sh/images/ionline.png | 54.36.158.42 | | 2.7 kB |
URL filedangcapnd.wap.sh/images/ionline.png IP54.36.158.42:0
File typePNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced Hashc36e1665f581cbe013336890bb5d8d61 ad049a6588251167a85f8658fd4532b6f1bf0159 62a6598874901b4064d1f2b463d62634219f388a5a67cb0ae96dd3e5309b2301
GET /images/ionline.png HTTP/1.1
Host: filedangcapnd.wap.sh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 May 2024 01:20:22 GMT
Set-Cookie: _xta_uid=e9a30f85c3b0cd9ff343cab9a5a5fef1; expires=Fri, 08-May-2026 01:20:22 GMT; Max-Age=63072000; path=/; domain=.wap.sh; httponly
Cache-Control: max-age=2592000
Expires: Fri, 07 Jun 2024 01:20:22 GMT
X-Ngz: 1
Content-Length: 2653
Content-Type: image/png
|
|
| enif.images.xtstatic.com/tp.gif | 141.94.172.213 | | 42 B |
URL enif.images.xtstatic.com/tp.gif IP141.94.172.213:0
File typeGIF image data, version 89a, 1 x 1 Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /tp.gif HTTP/1.1
Host: enif.images.xtstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://huannd9x.sextgem.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 May 2024 01:20:22 GMT
Last-Modified: Sat, 16 Nov 2019 11:03:28 GMT
ETag: "2a-59774aa04e000"
Accept-Ranges: bytes
Content-Length: 42
Cache-Control: max-age=2592000
Expires: Fri, 07 Jun 2024 01:20:22 GMT
Content-Type: image/gif
|
|
| filedangcapnd1.wap.sh/images/tri+thong+minh+nhan+tao.png | 54.36.158.42 | | 1.6 kB |
URL filedangcapnd1.wap.sh/images/tri+thong+minh+nhan+tao.png IP54.36.158.42:0
File typePNG image data, 46 x 48, 8-bit colormap, non-interlaced Hash9338b8a3a8ec068663f7cf73c9cf53e6 f8ec697e702535daa4ef5212d024ca08764bd6cf aa40df8be343b0463e56d089d3b45daa2da704c96e09d8c7d12bd9f80f806873
GET /images/tri+thong+minh+nhan+tao.png HTTP/1.1
Host: filedangcapnd1.wap.sh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 May 2024 01:20:22 GMT
Set-Cookie: _xta_uid=cf85d71d042366ad67e5a317945d43bc; expires=Fri, 08-May-2026 01:20:22 GMT; Max-Age=63072000; path=/; domain=.wap.sh; httponly
Cache-Control: max-age=2592000
Expires: Fri, 07 Jun 2024 01:20:22 GMT
X-Ngz: 1
Content-Length: 1584
Content-Type: image/png
|
|
| xtgem.com/images/xtvid/sunnyleonewap.jpg | 141.94.172.213 | | 7.7 kB |
URL xtgem.com/images/xtvid/sunnyleonewap.jpg IP141.94.172.213:0
File typeJPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 320x50, components 3 Hash8e0dddf6bcbe232ac643e4dd40de6101 b958077b6d3871c2bd5088561235c8c825a3f72f 04f14d4e1099434b5486bddb58c0a71ba246e2d2248718e84d7643537ad600d8
GET /images/xtvid/sunnyleonewap.jpg HTTP/1.1
Host: xtgem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 May 2024 01:20:22 GMT
Last-Modified: Sat, 16 Nov 2019 11:03:28 GMT
ETag: "1e0a-59774aa04e000"
Accept-Ranges: bytes
Content-Length: 7690
Cache-Control: max-age=2592000
Expires: Fri, 07 Jun 2024 01:20:22 GMT
X-Ngz: 1
Content-Type: image/jpeg
|
|
| huannd9x.sextgem.com/images/Avatar%20icon.png | 54.36.158.42 | | 23 kB |
URL huannd9x.sextgem.com/images/Avatar%20icon.png IP54.36.158.42:0
Hash5588edc2e692d535327cc62f2bd43bb2 fd84a5676b9499cb9ec6bc4b687b89a1cba59b50 f6151cffc1c50372a38d164add6475a5279c508db3d90f5c29d391bb898d423f
GET /images/Avatar%20icon.png HTTP/1.1
Host: huannd9x.sextgem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://huannd9x.sextgem.com/
Cookie: _xta_uid=76a3bb295e04ff68d4deab39e85f07e2; _xta_vid=a5814987e1698992fb31ad6b0c326010-1715131221
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 404 Not Found
Date: Wed, 08 May 2024 01:20:21 GMT
Set-Cookie: _xta_uid=76a3bb295e04ff68d4deab39e85f07e2; expires=Fri, 08-May-2026 01:20:21 GMT; Max-Age=63072000; path=/; domain=.sextgem.com; httponly
_xta_vid=a5814987e1698992fb31ad6b0c326010-1715131221; expires=Wed, 08-May-2024 01:50:21 GMT; Max-Age=1800; path=/; domain=.sextgem.com; httponly
X-Ngz: 1
Content-Type: text/html; charset=UTF-8
|
|
| huannd9x.sextgem.com/images/icon%20tai%20xuong.png | 54.36.158.42 | | 270 B |
URL huannd9x.sextgem.com/images/icon%20tai%20xuong.png IP54.36.158.42:0
File typePNG image data, 10 x 9, 8-bit/color RGB, non-interlaced Hash0edc2bd13575e223ec1f90100bc9722b fd8bf9e12d2113107f1cac917cfbfbbd9789ed27 3985571c46eb4eecada27e64ace257568802f10964683d4a3e68742222d828d0
GET /images/icon%20tai%20xuong.png HTTP/1.1
Host: huannd9x.sextgem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: _xta_uid=76a3bb295e04ff68d4deab39e85f07e2; _xta_vid=a5814987e1698992fb31ad6b0c326010-1715131221; test
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 May 2024 01:20:22 GMT
Set-Cookie: _xta_uid=76a3bb295e04ff68d4deab39e85f07e2; expires=Fri, 08-May-2026 01:20:22 GMT; Max-Age=63072000; path=/; domain=.sextgem.com; httponly
Cache-Control: max-age=2592000
Expires: Fri, 07 Jun 2024 01:20:22 GMT
X-Ngz: 1
Content-Length: 270
Content-Type: image/png
|
|
| filehuannd.wap.sh/images/chienthan.png | 54.36.158.41 | | 2.6 kB |
URL filehuannd.wap.sh/images/chienthan.png IP54.36.158.41:0
File typePNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced Hasha535e70599d76a1d5379e3a8dbab5deb f5cccf47fa0c186836419dce5856190227525e29 d8bb8010382289e0e77d4e55b6a32f8220540a81f2f380a11d82d6d25567535e
GET /images/chienthan.png HTTP/1.1
Host: filehuannd.wap.sh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 May 2024 01:20:22 GMT
Set-Cookie: _xta_uid=c29ba0632fb210436ae505b289a155fc; expires=Fri, 08-May-2026 01:20:22 GMT; Max-Age=63072000; path=/; domain=.wap.sh; httponly
Cache-Control: max-age=2592000
Expires: Fri, 07 Jun 2024 01:20:22 GMT
X-Ngz: 1
Content-Length: 2604
Content-Type: image/png
|
|
| filehuannd.wap.sh/images/facebook.png | 54.36.158.41 | | 204 B |
URL filehuannd.wap.sh/images/facebook.png IP54.36.158.41:0
File typePNG image data, 15 x 15, 4-bit colormap, non-interlaced Hash2c9246715486bdcb502aade25e6705b5 9454f2229f4d9b86ad16a0668d2f266712949be2 5016d158556a8dce00d914321c99e8d6bd69b9def242650a243a551be9ae93aa
GET /images/facebook.png HTTP/1.1
Host: filehuannd.wap.sh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 May 2024 01:20:22 GMT
Set-Cookie: _xta_uid=87045c21d3e02cd065ea2265183b8c20; expires=Fri, 08-May-2026 01:20:22 GMT; Max-Age=63072000; path=/; domain=.wap.sh; httponly
Cache-Control: max-age=2592000
Expires: Fri, 07 Jun 2024 01:20:22 GMT
X-Ngz: 1
Content-Length: 204
Content-Type: image/png
|
|
| filedangcapnd1.wap.sh/images/GT+Racing+2.png | 54.36.158.42 | | 2.4 kB |
URL filedangcapnd1.wap.sh/images/GT+Racing+2.png IP54.36.158.42:0
File typePNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced Hashd3c5e1835f82c96f43bca007f04b61ab 01441bc18622a087ee2757740814ed28151766f5 f9a32ae532510244f39dd4914ae4c5df35633ed5cd7f1a02b40b4d9d1986970d
GET /images/GT+Racing+2.png HTTP/1.1
Host: filedangcapnd1.wap.sh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 May 2024 01:20:22 GMT
Set-Cookie: _xta_uid=217a1f12d6de6b8fd909e79ed08064fb; expires=Fri, 08-May-2026 01:20:22 GMT; Max-Age=63072000; path=/; domain=.wap.sh; httponly
Cache-Control: max-age=2592000
Expires: Fri, 07 Jun 2024 01:20:22 GMT
X-Ngz: 1
Content-Length: 2379
Content-Type: image/png
|
|
| filedangcapnd1.wap.sh/images/doi+canh+rong.png | 54.36.158.42 | | 837 B |
URL filedangcapnd1.wap.sh/images/doi+canh+rong.png IP54.36.158.42:0
File typePNG image data, 42 x 29, 8-bit colormap, non-interlaced Hash4b820d5a110e012770b0c5eab80c8d9c 8e378121baac2db14b57e26d773967a77cd94958 42b7028cb13d1cb8ef6204191b26d891b8c85871834af509f7e81058667ed0b6
GET /images/doi+canh+rong.png HTTP/1.1
Host: filedangcapnd1.wap.sh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 May 2024 01:20:22 GMT
Set-Cookie: _xta_uid=d0428ca5e26d1bdd04c567534f949cbd; expires=Fri, 08-May-2026 01:20:22 GMT; Max-Age=63072000; path=/; domain=.wap.sh; httponly
Cache-Control: max-age=2592000
Expires: Fri, 07 Jun 2024 01:20:22 GMT
X-Ngz: 1
Content-Length: 837
Content-Type: image/png
|
|
| filedangcapnd.wap.sh/images/ninja-school.png | 54.36.158.42 | | 743 B |
URL filedangcapnd.wap.sh/images/ninja-school.png IP54.36.158.42:0
File typePNG image data, 32 x 32, 8-bit colormap, non-interlaced Hash77a9b0d50597beb0695e8312339de61f de357e76654f231a4d348d1e4de08d3da1364b5e d5cf528578305c28c0ad95d8f0fd4cbd5584ac02cbd3651a0a0e2b93fe179fc1
GET /images/ninja-school.png HTTP/1.1
Host: filedangcapnd.wap.sh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 May 2024 01:20:22 GMT
Set-Cookie: _xta_uid=cf85d71d042366ad67e5a317945d43bc; expires=Fri, 08-May-2026 01:20:22 GMT; Max-Age=63072000; path=/; domain=.wap.sh; httponly
Cache-Control: max-age=2592000
Expires: Fri, 07 Jun 2024 01:20:22 GMT
X-Ngz: 1
Content-Length: 743
Content-Type: image/png
|
|
| filedangcapnd.wap.sh/images/UC+87.png | 54.36.158.42 | | 2.0 kB |
URL filedangcapnd.wap.sh/images/UC+87.png IP54.36.158.42:0
File typePNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced Hash2e02b17c66144de15cbb8b323e7c7faa 71c74e1231723f4505d03b308ffc8f972fe8187e ba88358376e5e356e43e391d190d6265353f31ef7a19c698c801b90296c542d2
GET /images/UC+87.png HTTP/1.1
Host: filedangcapnd.wap.sh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 May 2024 01:20:22 GMT
Set-Cookie: _xta_uid=9af6b5259b53d3254d60b4b0bc6e7179; expires=Fri, 08-May-2026 01:20:22 GMT; Max-Age=63072000; path=/; domain=.wap.sh; httponly
Cache-Control: max-age=2592000
Expires: Fri, 07 Jun 2024 01:20:22 GMT
X-Ngz: 1
Content-Length: 1960
Content-Type: image/png
|
|
| huannd9x.wap.sh/images/i_thumb.PNG | 54.36.158.41 | | 0 B |
URL huannd9x.wap.sh/images/i_thumb.PNG IP54.36.158.41:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/i_thumb.PNG HTTP/1.1
Host: huannd9x.wap.sh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Wed, 08 May 2024 01:20:22 GMT
Location: https://huannd9x.sextgem.com/images/i_thumb.PNG
X-Ngz: 1
Content-Length: 0
Content-Type: text/html; charset=UTF-8
|
|
| filedangcapnd.wap.sh/images/danh+ram.png | 54.36.158.42 | | 2.6 kB |
URL filedangcapnd.wap.sh/images/danh+ram.png IP54.36.158.42:0
File typePNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced Hash59234968d7b7fd1c2572c8931bc96295 6f2b80af8eb6c3cc81b554598f3df9f43c235125 8daf3695f020037e8ffffc0220a37fbded501357ccfc07d110ed2c3612ff9bc9
GET /images/danh+ram.png HTTP/1.1
Host: filedangcapnd.wap.sh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 May 2024 01:20:22 GMT
Set-Cookie: _xta_uid=4135df8f7d46ed355692bfe59410d071; expires=Fri, 08-May-2026 01:20:22 GMT; Max-Age=63072000; path=/; domain=.wap.sh; httponly
Cache-Control: max-age=2592000
Expires: Fri, 07 Jun 2024 01:20:22 GMT
X-Ngz: 1
Content-Length: 2556
Content-Type: image/png
|
|
| filehuannd.wap.sh/images/doremon.png | 54.36.158.41 | | 2.6 kB |
URL filehuannd.wap.sh/images/doremon.png IP54.36.158.41:0
File typePNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced Hash8e950028b088b9f5dc52bc6e2a366e98 a55a56e26915db7774732f3d109ade4fb39758d0 7f6487ac2a75ab4767f39d8c44f9e182485918f2394b29bcc9599367b428a8e5
GET /images/doremon.png HTTP/1.1
Host: filehuannd.wap.sh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 May 2024 01:20:22 GMT
Set-Cookie: _xta_uid=281cb2e157329d3e2c747b2ee396a951; expires=Fri, 08-May-2026 01:20:22 GMT; Max-Age=63072000; path=/; domain=.wap.sh; httponly
Cache-Control: max-age=2592000
Expires: Fri, 07 Jun 2024 01:20:22 GMT
X-Ngz: 1
Content-Length: 2560
Content-Type: image/png
|
|
| filehuannd.wap.sh/images/socbay.png | 54.36.158.41 | | 2.0 kB |
URL filehuannd.wap.sh/images/socbay.png IP54.36.158.41:0
File typePNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced Hash6febb4f1f26bd0b4a244b35986e40152 6caa637d97aaf792747332ce0a54a6d729c7fb33 6737d4ef541effcdd85cfd065789b0cb2bc342b6aa464b3c86bc6f5b8b1edab2
GET /images/socbay.png HTTP/1.1
Host: filehuannd.wap.sh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 May 2024 01:20:22 GMT
Set-Cookie: _xta_uid=2575ed6eb9563f2f165ff0d807e0f738; expires=Fri, 08-May-2026 01:20:22 GMT; Max-Age=63072000; path=/; domain=.wap.sh; httponly
Cache-Control: max-age=2592000
Expires: Fri, 07 Jun 2024 01:20:22 GMT
X-Ngz: 1
Content-Length: 1999
Content-Type: image/png
|
|
| xtgem.com/__xt_authbar?data=eyJ1cmwiOiJodHRwOlwvXC9odWFubmQ5eC53YXAuc2hcL2luZGV4IiwibG9nZ2VkX2luIjpmYWxzZSwiZG9tYWluIjoiaHVhbm5kOXguc2V4dGdlbS5jb20iLCJwb3NpdGlvbiI6eyJhYnNvbHV0ZSI6ImZpeGVkIn19 | 141.94.172.213 | | 2.8 kB |
URL xtgem.com/__xt_authbar?data=eyJ1cmwiOiJodHRwOlwvXC9odWFubmQ5eC53YXAuc2hcL2luZGV4IiwibG9nZ2VkX2luIjpmYWxzZSwiZG9tYWluIjoiaHVhbm5kOXguc2V4dGdlbS5jb20iLCJwb3NpdGlvbiI6eyJhYnNvbHV0ZSI6ImZpeGVkIn19 IP141.94.172.213:0
File typeHTML document, ASCII text, with very long lines (464) Hash884e0c309a916b777c5784693889f212 489de9585a155a264f6a0a5e3e5a47d597a2dcc6 94bc3890295b2daed50af26aabae6f09ffc0810ab8d40cb8ad68f54b773c6911
GET /__xt_authbar?data=eyJ1cmwiOiJodHRwOlwvXC9odWFubmQ5eC53YXAuc2hcL2luZGV4IiwibG9nZ2VkX2luIjpmYWxzZSwiZG9tYWluIjoiaHVhbm5kOXguc2V4dGdlbS5jb20iLCJwb3NpdGlvbiI6eyJhYnNvbHV0ZSI6ImZpeGVkIn19 HTTP/1.1
Host: xtgem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://huannd9x.sextgem.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 May 2024 01:20:22 GMT
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: session=w2~04ciet79qnj02h0a281f4orqs2; expires=Thu, 09-May-2024 01:20:22 GMT; Max-Age=86400; path=/; domain=.xtgem.com; httponly
__template=web; expires=Fri, 07-Jun-2024 01:20:22 GMT; Max-Age=2592000; path=/
__lang=us; expires=Fri, 07-Jun-2024 01:20:22 GMT; Max-Age=2592000; path=/
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2751
Content-Type: text/html; charset=UTF-8
|
|
| dangcapnd.sextgem.com/images/logo.png | 54.36.158.42 | | 4.5 kB |
URL dangcapnd.sextgem.com/images/logo.png IP54.36.158.42:0
File typePNG image data, 214 x 29, 8-bit/color RGBA, non-interlaced Hash3c537d0666d1763b08cc222a64c8996c 9f0a2d64c407dda135b433d4e9c3c0eb6156f0e4 3d07b5f0177f528e62bfdd0a56cd598e67b9944627ac4896fd1e29c8b35a070e
GET /images/logo.png HTTP/1.1
Host: dangcapnd.sextgem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: _xta_uid=76a3bb295e04ff68d4deab39e85f07e2; _xta_vid=a5814987e1698992fb31ad6b0c326010-1715131221
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 May 2024 01:20:22 GMT
Set-Cookie: _xta_uid=76a3bb295e04ff68d4deab39e85f07e2; expires=Fri, 08-May-2026 01:20:22 GMT; Max-Age=63072000; path=/; domain=.sextgem.com; httponly
Cache-Control: max-age=2592000
Expires: Fri, 07 Jun 2024 01:20:22 GMT
X-Ngz: 1
Last-Modified: Mon, 24 Mar 2014 12:49:25 GMT
ETag: "1175-4f559aa4e5f40"
Content-Length: 4469
Content-Type: image/png
|
|
| tieuquya7.xtgem.com/images/3.gif | 54.36.158.42 | | 5.0 kB |
URL tieuquya7.xtgem.com/images/3.gif IP54.36.158.42:0
File typeGIF image data, version 89a, 150 x 290 Hash777dc87c65fe96158de899f0953a6a87 a66440bd01f7f0d86d8e42cd52ecd86be91a713e 0f45932c7fa5f448a53650988053b3115bdcd3f602e0ecc21f0058614fe77033
GET /images/3.gif HTTP/1.1
Host: tieuquya7.xtgem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 May 2024 01:20:22 GMT
Set-Cookie: _xta_uid=5ba407134faeafc8c15e5de912e47102; expires=Fri, 08-May-2026 01:20:22 GMT; Max-Age=63072000; path=/; domain=.xtgem.com; httponly
Cache-Control: max-age=2592000
Expires: Fri, 07 Jun 2024 01:20:22 GMT
X-Ngz: 1
Last-Modified: Mon, 18 Apr 2011 04:14:37 GMT
ETag: "139d-4a129a1324540"
Content-Length: 5021
Content-Type: image/gif
|
|
| huannd9x.sextgem.com/images/i_thumb.PNG | 54.36.158.42 | | 1.6 kB |
URL huannd9x.sextgem.com/images/i_thumb.PNG IP54.36.158.42:0
File typePNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced Hashbd1f930a3eed640c47b41fb19d0e4984 7598087be448d4ba9d135c0a3250859f2c47d8f9 7443ef1efd33b13daf95900e73cce475f85f6afe9ee39e6d72c47055679bf171
GET /images/i_thumb.PNG HTTP/1.1
Host: huannd9x.sextgem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: _xta_uid=76a3bb295e04ff68d4deab39e85f07e2; _xta_vid=a5814987e1698992fb31ad6b0c326010-1715131221; test
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 May 2024 01:20:22 GMT
Set-Cookie: _xta_uid=76a3bb295e04ff68d4deab39e85f07e2; expires=Fri, 08-May-2026 01:20:22 GMT; Max-Age=63072000; path=/; domain=.sextgem.com; httponly
Cache-Control: max-age=2592000
Expires: Fri, 07 Jun 2024 01:20:22 GMT
X-Ngz: 1
Content-Length: 1607
Content-Type: image/png
|
|
| pl13048200.trustedcpmrevenue.com/e2/68/30/e2683001b51a3e369fb2d16165c07e07.js | 172.240.108.76 | | 31 kB |
URL pl13048200.trustedcpmrevenue.com/e2/68/30/e2683001b51a3e369fb2d16165c07e07.js IP172.240.108.76:0
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hashb24691a617241b675121a0b22e813c3c b091e1cd537411dce9b2bcb7118a35fd7f9bff52 2b96ca060ef5509b465d15b09ee1058215604978f6a6b1c4f9a5c85891142454
GET /e2/68/30/e2683001b51a3e369fb2d16165c07e07.js HTTP/1.1
Host: pl13048200.trustedcpmrevenue.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://huannd9x.sextgem.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 08 May 2024 01:20:22 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a0241ea89ef19c85b33f576b4c408435
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| ocsp.r2m03.amazontrust.com/ | 3.164.222.26 | | 471 B |
URL ocsp.r2m03.amazontrust.com/ IP3.164.222.26:0
Hash3a1e61864f6877260287982fa7e36085 6d426b2327915af4f120ff6b18ebd20ed03c2a2b 9ee2ee3f0b60937becb4aa057c348332dd277e32b268f5c0ea260c0d2a2af498
POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Wed, 08 May 2024 01:20:23 GMT
Last-Modified: Wed, 08 May 2024 00:14:25 GMT
Server: ECAcc (ska/F775)
X-Cache: Miss from cloudfront
Via: 1.1 2641ce37a88af457fa707094ebf66736.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: ARN53-P1
X-Amz-Cf-Id: q371q7mOBH9r0AZs8wu-stAkhOuttvsWyUVC3XE50QeCGywlJiepSg==
Age: 3958
|
|
| xtgem.com/images/close2.png?v=0.01 | 141.94.172.213 | | 564 B |
URL xtgem.com/images/close2.png?v=0.01 IP141.94.172.213:0
File typePNG image data, 32 x 32, 8-bit colormap, non-interlaced Hash865dce1b2a4002b9a85f75ea622f4000 f56c8218b5ca721a9e5a3daec742a6f38c33c075 bc5dcb35fc074321d66b9d7809e286e4afe72c7b08d1e799672126c92150ecd3
GET /images/close2.png?v=0.01 HTTP/1.1
Host: xtgem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://huannd9x.sextgem.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 May 2024 01:20:23 GMT
Last-Modified: Sat, 16 Nov 2019 11:03:28 GMT
ETag: "234-59774aa04e000"
Accept-Ranges: bytes
Content-Length: 564
Cache-Control: max-age=2592000
Expires: Fri, 07 Jun 2024 01:20:23 GMT
X-Ngz: 1
Content-Type: image/png
|
|
| proftrafficcounter.com/stats | 52.58.212.182 | | 40 B |
URL proftrafficcounter.com/stats IP52.58.212.182:0
File typeASCII text, with no line terminators Hash5ee51a58f90007163b6a152f70f2671b eef1aadba46082b5fe84f667f15ebfb707f4f991 079c2c55a23ff6b9e587894750cbf394bf742960663a1928201e8a95a529d43e
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://huannd9x.sextgem.com
DNT: 1
Connection: keep-alive
Referer: https://huannd9x.sextgem.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 08 May 2024 01:20:23 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://huannd9x.sextgem.com
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=7f43d40c-cec8-478f-8d64-f6a9d216b8ec:1:1; expires=Sat, 06 May 2034 01:20:23 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| astronomybreathlessmisunderstand.com/pixel/purst?dl=0&th=0&sc=0&rs=1761&rd=1761&fd=1375&bv=24.5.6485&tmpl=70 | 172.240.127.234 | | 0 B |
URL astronomybreathlessmisunderstand.com/pixel/purst?dl=0&th=0&sc=0&rs=1761&rd=1761&fd=1375&bv=24.5.6485&tmpl=70 IP172.240.127.234:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pixel/purst?dl=0&th=0&sc=0&rs=1761&rd=1761&fd=1375&bv=24.5.6485&tmpl=70 HTTP/1.1
Host: astronomybreathlessmisunderstand.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://huannd9x.sextgem.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 08 May 2024 01:20:23 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| capaciousdrewreligion.com/advertisers.js | 172.240.127.234 | | 0 B |
URL capaciousdrewreligion.com/advertisers.js IP172.240.127.234:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /advertisers.js HTTP/1.1
Host: capaciousdrewreligion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://huannd9x.sextgem.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 08 May 2024 01:20:23 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 694602426f717ccde58bede9dc55a12f
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| | 0.0.0.0 | | 0 B |
IP0.0.0.0:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: dangcapnd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
|
|