Report - www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w

Report Overview

Visited public
2023-11-30 04:14:21
Tags
URL
www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Finishing URL
www.1024tera.com/sharing/link?surl=bNAvFxRe5UTo6OJK5N3W2w
IP / ASN
210.148.85.59
#2497 Internet Initiative Japan Inc.
Title
indha ponnu sammaya pool sappura but soothu veruchi oothukita du samma.mp4 - Share Files Online & Send Larges Files with TeraBox

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
sofire.bdstatic.com	90403	2011-12-26	2017-02-04 08:33:09	2023-11-29 06:14:22	422 B	296 kB	60.190.116.48
pl18043214.highperformancecpmgate.com	unknown	2022-11-01	2023-02-17 05:35:40	2023-11-28 04:42:03	467 B	10 kB	192.243.59.20
data.1024tera.com	unknown	2023-01-09	2023-05-01 04:00:19	2023-11-25 06:33:28	961 B	39 kB	111.108.51.87
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2023-11-29 07:17:12	1.1 kB	33 kB	216.58.207.227
www.1024tera.com	unknown	2023-01-09	2023-01-18 09:11:18	2023-11-29 05:09:46	62 kB	200 kB	210.148.85.59
static.line-scdn.net	38776	2015-05-01	2018-06-16 03:06:00	2023-11-28 05:09:42	428 B	115 kB	54.230.111.54
zodiacranbehalf.com	unknown	unknown	No data	No data	10 kB	29 kB	173.233.139.164
cdn.barscreative1.com	25648	2021-09-08	2021-09-16 13:14:42	2023-11-29 21:16:59	502 B	871 B	45.133.44.3
sofire.1024tera.com	unknown	2023-01-09	2023-04-12 19:18:02	2023-11-25 15:24:47	642 B	1.5 kB	210.148.85.53
s2.teraboxcdn.com	unknown	2021-03-17	2022-06-05 03:01:36	2023-11-29 06:14:21	12 kB	4.6 MB	90.84.161.16
ymg-api.terabox.com	unknown	2008-07-18	2022-06-05 03:01:40	2023-11-29 06:14:26	2.3 kB	2.5 kB	111.108.51.10
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2023-11-29 07:23:07	447 B	86 kB	142.250.74.168
banquetunarmedgrater.com	unknown	2022-08-04	2022-08-04 17:12:50	2023-11-29 05:24:54	426 B	845 B	172.67.219.12
firebase.googleapis.com	4897	2005-01-25	2018-10-19 11:09:59	2023-11-28 20:15:23	1.2 kB	1.2 kB	216.58.207.202
www.google.no	25607	2001-02-26	2016-04-05 21:50:59	2023-11-29 08:22:39	579 B	578 B	142.250.74.163
region1.analytics.google.com	unknown	1997-09-15	2022-03-17 12:26:33	2023-11-29 05:10:36	4.7 kB	2.2 kB	216.239.34.36
pl18427035.highcpmrevenuenetwork.com	unknown	2022-12-23	2023-05-01 23:46:14	2023-11-27 16:05:28	466 B	10 kB	192.243.61.227
friendshipmale.com	unknown	2022-10-21	2022-10-21 14:15:25	2023-11-30 01:36:15	426 B	28 kB	172.64.98.2
sofire.terabox.com	unknown	2008-07-18	2022-07-25 18:35:05	2023-11-28 05:09:45	502 B	665 B	210.148.85.32
pinefluencydiffuse.com	unknown	unknown	No data	No data	946 B	30 kB	192.243.61.225
v1.1024tera.com	unknown	2023-01-09	2023-10-24 06:25:04	2023-11-26 14:14:33	1.3 kB	616 kB	185.207.113.194
proftrafficcounter.com	unknown	2023-11-16	2023-11-21 09:55:14	2023-11-28 18:22:43	445 B	423 B	18.185.191.211
archaicin.com	unknown	unknown	No data	No data	493 B	467 B	173.233.137.44
cdn.cloudimagesb.com	23099	2020-10-06	2021-02-12 17:15:41	2023-11-29 19:28:10	1.9 kB	89 kB	45.133.44.9
midgetdeliveringsmartly.com	unknown	unknown	No data	No data	3.0 kB	6.9 kB	192.243.59.12
cdn.creative-bars1.com	unknown	2022-11-01	2022-11-15 17:46:22	2023-11-27 20:32:59	935 B	6.4 kB	172.64.109.10
accounts.google.com	81	1997-09-15	2016-03-20 13:44:49	2023-11-29 08:00:37	419 B	204 kB	64.233.162.84

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-11-30	medium	highperformancecpmgate.com	Sinkholed
2023-11-30	medium	highcpmrevenuenetwork.com	Sinkholed
2023-11-30	medium	pinefluencydiffuse.com	Sinkholed
2023-11-30	medium	pinefluencydiffuse.com	Sinkholed
2023-11-30	medium	zodiacranbehalf.com	Sinkholed
2023-11-30	medium	zodiacranbehalf.com	Sinkholed
2023-11-30	medium	archaicin.com	Sinkholed
2023-11-30	medium	zodiacranbehalf.com	Sinkholed
2023-11-30	medium	zodiacranbehalf.com	Sinkholed
2023-11-30	medium	zodiacranbehalf.com	Sinkholed
2023-11-30	medium	zodiacranbehalf.com	Sinkholed
2023-11-30	medium	zodiacranbehalf.com	Sinkholed
2023-11-30	medium	midgetdeliveringsmartly.com	Sinkholed
2023-11-30	medium	midgetdeliveringsmartly.com	Sinkholed
2023-11-30	medium	midgetdeliveringsmartly.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (73)

	URL	From	Size	First Seen	Last Seen
	accounts.google.com/gsi/client	ScriptElement	203 kB	2023-11-14	2023-12-01
Pretty URL accounts.google.com/gsi/client IP 64.233.162.84 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-14 23:35 Last Seen2023-12-01 01:00 Times Seen801 Hash c3380c070ac1310e24173b87bb4a694c d14f8e5389ed23aab49e62e5835486d84a7b8624 0435416104a28587f4dd1363390ae564b1734d4dac040dcc9df69a78945c8473 Loading...

	www.googletagmanager.com/gtag/js?l=dataLayer&id=G-06ZNKL8C2E	ScriptElement	246 kB	2023-11-30	2023-11-30
Pretty URL www.googletagmanager.com/gtag/js?l=dataLayer&id=G-06ZNKL8C2E IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-30 05:14 Last Seen2023-11-30 05:14 Times Seen1 Hash 23d753dffa73e46023146d94e06ac0b4 3b27b935989c1390bec7ca3f47e28f87bf528398 de19e1d8de75a484c444971f50ba3ce814a921e6af5d9408d8cbded618d6b7a1 Loading...

	s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-b20230be.0a893307.js	ScriptElement	106 kB	2023-09-04	2024-08-21
Pretty URL s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-b20230be.0a893307.js IP 90.84.161.16 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-04 18:45 Last Seen2024-08-21 07:30 Times Seen1678 Hash 9645b1094ee6ced6d005ae4e46fd7145 d6c139afeaaa82cf7485f1dfabee22cbd1e5da85 436704b0ce7ceea7ddf66f801e090af74db30768d6a4a7408b745877e5a592f4 Loading...

	pl18043214.highperformancecpmgate.com/5c8996e8e3cb5e10b7fd36115b800ac7/invoke.js	ScriptElement	25 kB	2023-11-30	2023-12-12
Pretty URL pl18043214.highperformancecpmgate.com/5c8996e8e3cb5e10b7fd36115b800ac7/invoke.js IP 192.243.59.20 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-30 05:14 Last Seen2023-12-12 10:36 Times Seen7 Hash 8aecfd49429139980d67f8d3fefc056f d3e587984e72fa7267b8e3c2e594dc946d9d8782 38e18d4617ec4d9bad4e0d2f35d3ae03a490cbdeb6f4a792884565cc8a0bbc08 Loading...

	www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w	ScriptElement	51 B	2023-05-09	2025-05-08
Pretty URL www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w IP 210.148.85.59 ASN #2497 Internet Initiative Japan Inc. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-09 16:09 Last Seen2025-05-08 12:21 Times Seen3093 Hash 5d36d072c2770c90bee2930c84ece536 92d8fcc0ad085e12985238631643efdb097e0d5b 57d986610fac14f9038e189e5a5ef9c1e950880ce383d189aaa304d62290a25b Loading...

	s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/share.b1ef9d14.js	ScriptElement	1.1 MB	2023-11-30	2024-08-20
Pretty URL s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/share.b1ef9d14.js IP 90.84.161.16 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-30 05:14 Last Seen2024-08-20 17:23 Times Seen95 Hash 4e77331ef0a81a5bab70cd78f96d89e3 a058f4def195825b624679dc36304dbdf89cbd4a ebcf1b6a119d2946c8b22559decececab3c9aec3fc458472f24896d72aefaf5e Loading...

	s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-2d225855.7faaefb6.js	ScriptElement	37 kB	2023-05-09	2024-08-21
Pretty URL s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-2d225855.7faaefb6.js IP 90.84.161.16 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-09 11:18 Last Seen2024-08-21 09:43 Times Seen1744 Hash 8b0f7f0b1d3875e84b572a4b8da14d5a 78079f8d4d5512d24244b0e2a3ba6a2880af5bc1 e635ce270e45d33ae75ee0b14f4598cfcd5c20c93abfd0bf562e952b95a35198 Loading...

	www.1024tera.com/ndbs/nd_bundle_430546.js	ScriptElement	282 kB	2023-07-10	2025-05-08
Pretty URL www.1024tera.com/ndbs/nd_bundle_430546.js IP 210.148.85.59 ASN #2497 Internet Initiative Japan Inc. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-10 16:18 Last Seen2025-05-08 12:21 Times Seen3378 Hash 436fa0a89c638bd9342f5a829e9cf258 cc055391fcda7a5fdbcf68159e52a2e72de6adcf f2a40adcd3e9d31bac735604670f0bc2ee617bc5fa78b4a5ceeef9e20d0937a5 Loading...

	pl18427035.highcpmrevenuenetwork.com/627e2f8a423975bc4bd7a76128c2d552/invoke.js	ScriptElement	25 kB	2023-11-30	2023-12-09
Pretty URL pl18427035.highcpmrevenuenetwork.com/627e2f8a423975bc4bd7a76128c2d552/invoke.js IP 192.243.61.227 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-30 05:14 Last Seen2023-12-09 18:51 Times Seen6 Hash 459dbf63f921e5b06febaa6ebe6dc1b7 6d12fd20b2195b3b3a18b4afe2b8f9358960a957 580b6522958f4ee940942ee5057628cfc3d4c822dbee93045573cb1c76d49099 Loading...

	moz-extension://94b86a3e-a8f5-4509-b451-a3e524e5069f/lib/shim_messaging_helper.js		1.7 kB	2023-05-05	2025-05-11
Pretty URL moz-extension://94b86a3e-a8f5-4509-b451-a3e524e5069f/lib/shim_messaging_helper.js IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-05-05 22:33 Last Seen2025-05-11 21:15 Times Seen54830 Hash 865f01cbb34eb505834e826380d7dc2e c239ccc37191f1be78dfaa6bb3f1da5d314fdf9e 30ed6392b8de4590bd974a4a797ee0b12b382f2141738115bfd2d692cfa6ec17 Loading...

	s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-94864b88.e650f8c9.js	ScriptElement	42 kB	2023-05-20	2024-08-21
Pretty URL s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-94864b88.e650f8c9.js IP 90.84.161.16 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-20 13:14 Last Seen2024-08-21 09:43 Times Seen1748 Hash b01f195e94b0848122ac3314f5395721 b87bc53a44a6234f7c089f3119066f9647d21903 09ae6d6c48f2c2b47426e8c362471444673201e2583c5525b442133a8b5c80cb Loading...

	s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/assets/libs/apple.min.js	ScriptElement	42 kB	2023-03-14	2025-04-06
Pretty URL s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/assets/libs/apple.min.js IP 90.84.161.16 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 01:44 Last Seen2025-04-06 19:52 Times Seen3414 Hash 145f660b8c47ed21cb0eafe05417a2f5 5a2fe1d653df966d31be73146bbea03d8c0570e3 0ae01bbacf7587e150b85bafc8e19cdccb1c194c3bb719fd5e0fc1a9c08ebd28 Loading...

	static.line-scdn.net/liff/edge/2/sdk.js	ScriptElement	114 kB	2023-11-30	2024-08-20
Pretty URL static.line-scdn.net/liff/edge/2/sdk.js IP 54.230.111.54 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-30 05:08 Last Seen2024-08-20 17:23 Times Seen449 Hash 7585f261b13d7e2a4b0fe18ee433b5de e8803083138e8a791d0fe18bacde7abc319ea9a2 fba477e147abcbaa29e32c2979b74238aae4a0bf04428083555ff5d9e5d9aa93 Loading...

	s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/assets/libs/facebook.min.js	ScriptElement	4.1 kB	2023-03-14	2025-04-06
Pretty URL s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/assets/libs/facebook.min.js IP 90.84.161.16 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 01:44 Last Seen2025-04-06 19:52 Times Seen3416 Hash 028c25d75f2d10cb97a0e14834311163 2635a29ecacfb9f5c00d2692086220c6f45199e7 6a16d62f109a23f5743f78c028ea9d732bf5222445ac800cb00741fe0cac60d1 Loading...

	s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/manifest.9defb41f.js	ScriptElement	41 kB	2023-11-30	2024-08-20
Pretty URL s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/manifest.9defb41f.js IP 90.84.161.16 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-30 05:14 Last Seen2024-08-20 17:23 Times Seen95 Hash eb548020c377271405123142a23a4cbd 9f9a1093329141f75f914aa132c8f895c7c719ca 6b43fd5af1ca9504f65d5fa33c5e3bbef2a8bc7bd64791c4ec376e5051d0c138 Loading...

	pinefluencydiffuse.com/1e/1b/bd/1e1bbdc937ccd35cd1897b4e58c7407b.js	ScriptElement	60 kB	2023-11-28	2023-12-03
Pretty URL pinefluencydiffuse.com/1e/1b/bd/1e1bbdc937ccd35cd1897b4e58c7407b.js IP 192.243.61.225 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-28 15:16 Last Seen2023-12-03 18:52 Times Seen4 Hash edaa8d48dc1e1fbb31c44d0207d63385 053dca0606177def5d41a8310a704239d031eb21 f4e84883dd399086e951b4d0559c4b29ef0d981c14d33b6bd49543c7227903dd Loading...

	www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w	ScriptElement	12 kB	2023-07-12	2024-08-21
Pretty URL www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w IP 210.148.85.59 ASN #2497 Internet Initiative Japan Inc. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-07-12 07:49 Last Seen2024-08-21 08:41 Times Seen1729 Hash 7c0832317239579b00fcabbe8092eaa4 4b6db5807b28ca9c2be3c06b6991d501a99e123f 11f4e5e1c2b74661efcd8a0ec72a04dc19ebfab1f8048bd528d9e64a6322a6ac Loading...

	s2.teraboxcdn.com/general-conf/ymg/2068/abclite-2068-s.js?v=0.7002451827249538	ScriptElement	100 kB	2023-04-29	2024-08-21
Pretty URL s2.teraboxcdn.com/general-conf/ymg/2068/abclite-2068-s.js?v=0.7002451827249538 IP 90.84.161.16 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-29 06:01 Last Seen2024-08-21 09:43 Times Seen1751 Hash 46ea1ae23faf5ae71c0045843eb433e9 16888edbe3dd7626386b04d43e37a89427f0aea8 dd8c44b26db60a31584a292ad74cd2325799a19c1c8e1d567d32c3dada94fb55 Loading...

	zodiacranbehalf.com/f1/95/e5/f195e5fa577c23352666448243864c68.js	ScriptElement	43 kB	2023-11-28	2023-11-30
Pretty URL zodiacranbehalf.com/f1/95/e5/f195e5fa577c23352666448243864c68.js IP 173.233.139.164 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-28 13:37 Last Seen2023-11-30 05:14 Times Seen2 Hash 2025aeea529ee8078fd6685fa5b38ea2 4ae522ee81a73562adc89aab69e4ca6e872a983b f85717b581365b0af5f7ec201b38dd1036337eda0e11c618face81aab207856f Loading...

	www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w	ScriptElement	964 B	2023-05-01	2024-08-21
Pretty URL www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w IP 210.148.85.59 ASN #2497 Internet Initiative Japan Inc. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-01 23:46 Last Seen2024-08-21 08:41 Times Seen1109 Hash 7b27509bdb439fa1dd4c6c18e008f894 038e7a88d74eaa5aaf49c8755d2ae903955d511b 0d534b01d5c660e04c091d531a49b5ed4223311b7b686a0f367c4f1a8055a0c3 Loading...

	s2.teraboxcdn.com/general-conf/fk/dfxaf3-598bbed9.js	ScriptElement	98 kB	2023-10-31	2024-08-20
Pretty URL s2.teraboxcdn.com/general-conf/fk/dfxaf3-598bbed9.js IP 90.84.161.16 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-31 19:07 Last Seen2024-08-20 21:37 Times Seen1355 Hash f9f67181d087b4e2eaf48554c501e065 6cec5b5096aea1211b5cbc22e0d99a803e47435f 6450c6d5ff118eb4938d2df5f68a23835eae99ca1c3fc0a7ae780589514d96f2 Loading...

	s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/cashier~failPay~goldCenter~landing~login~membership~oneAnniversary~other~recyclebin~share~shortLink~~a6807c0b.ebb98dba.js	ScriptElement	496 kB	2023-11-30	2024-08-20
Pretty URL s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/cashier~failPay~goldCenter~landing~login~membership~oneAnniversary~other~recyclebin~share~shortLink~~a6807c0b.ebb98dba.js IP 90.84.161.16 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-30 05:14 Last Seen2024-08-20 17:23 Times Seen95 Hash 494545c9926136b1893f41dddc90cf41 557f08bd8c1d9d2f3f558bff2351855cedec367d 35f29220e8b6a0e1a4d8b932fd18230a8ce6600f40a778b036202e3a9aa5c8c6 Loading...

	www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w	ScriptElement	385 B	2024-08-20	2024-08-20
Pretty URL www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w IP 210.148.85.59 ASN #2497 Internet Initiative Japan Inc. Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 17:23 Last Seen2024-08-20 17:23 Times Seen1 Hash e277665d3ba6593c85511eda04cf2064 faf3d747d52ddcfd6f1e9d2936751a1248f11ca4 3aa7a6059fc02c2c447222b1f952fb4716d394f8c732def794141756a067332b Loading...

	s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-vendors.0c91416b.js	ScriptElement	1.3 MB	2023-11-22	2024-08-20
Pretty URL s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-vendors.0c91416b.js IP 90.84.161.16 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-22 14:14 Last Seen2024-08-20 18:20 Times Seen268 Hash 6b597a065eb3fd699493955130b251cb 69175fcf8ec33ed63ba02847a051e8494f204383 5a8a7dcbeb9273942df07b08a9ebc4123248a8f6589b890f714c7e1ab9bee137 Loading...

	friendshipmale.com/sfp.js	ScriptElement	86 kB	2023-11-23	2024-08-20
Pretty URL friendshipmale.com/sfp.js IP 172.64.98.2 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-23 18:35 Last Seen2024-08-20 18:08 Times Seen6307 Hash 924e967bca1d599992556a8d139b1c5a 222b09dbf164ddc03d39100fd0524a22018d28b2 ac84c2f8288b59f8e04ba77287ce696052bfeee0d462a566d94dc305df646c95 Loading...

	banquetunarmedgrater.com/advertisers.js	ScriptElement	0 B	0001-01-01	2025-05-11
Pretty URL banquetunarmedgrater.com/advertisers.js IP 172.67.219.12 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen0001-01-01 00:00 Last Seen2025-05-11 21:31 Times Seen4657539 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w	ScriptElement	323 B	2024-08-20	2024-08-20
Pretty URL www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w IP 210.148.85.59 ASN #2497 Internet Initiative Japan Inc. Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 17:23 Last Seen2024-08-20 17:23 Times Seen1 Hash d76521e5fd5bc9d927e88301050943eb 85d0cd25dc80391ccb6c447760ec989a5b5250a8 c5c9a40eeeca57782a388c14dde982f8f4aeb887989cbbeb49f9f0c7476bd6dc Loading...

	s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/ud-i18n-en.e44e7bde.js	ScriptElement	1.9 kB	2023-05-09	2024-08-21
Pretty URL s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/ud-i18n-en.e44e7bde.js IP 90.84.161.16 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-09 11:18 Last Seen2024-08-21 09:43 Times Seen1726 Hash 0f251921a0f570de0f378e7d68986736 a50410f12c32bddce2f26b9f355db3a3da3128cc 236c5a06910151d7a591372a31fb35c28162e9d80a2c206628606c1c8bbe79e3 Loading...

	s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-1dcd7f8a.2b42216f.js	ScriptElement	16 kB	2023-05-09	2024-08-21
Pretty URL s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-1dcd7f8a.2b42216f.js IP 90.84.161.16 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-09 11:18 Last Seen2024-08-21 09:43 Times Seen1747 Hash 8334b653e31ffd870836904fa540f9ce 5b1fc5423940bd27d5df9f215ad9d4db6c666668 a6899ed227f04b484d74815a564fda0bc224c9c74fa35a6cd8febb416c7fced8 Loading...

	s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-3c39bfc4.baa0ab5e.js	ScriptElement	547 kB	2023-11-01	2024-08-20
Pretty URL s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-3c39bfc4.baa0ab5e.js IP 90.84.161.16 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-01 15:20 Last Seen2024-08-20 21:30 Times Seen791 Hash 2764dcbf25a6ea0bf611aaacbf6b9da0 389253266cacd6c84d2ed0c32310774fe8fc41eb 12b0c880cf8280ca373e2ad18c8828d13653edf9da57957415ad6d1648749654 Loading...

	www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w	ScriptElement	348 B	2024-08-20	2024-08-20
Pretty URL www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w IP 210.148.85.59 ASN #2497 Internet Initiative Japan Inc. Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 17:23 Last Seen2024-08-20 17:23 Times Seen1 Hash 093d7ff8355de8814c3c2878519499e0 1cd8e4974370f584fd82b686f8e6729efb6d993e f5a007d8e675a33bece02db630c54b72ce18514384dd322851d5e8a9a4c88030 Loading...

	s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-fdedac32.68a159c0.js	ScriptElement	66 kB	2023-08-16	2024-08-21
Pretty URL s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-fdedac32.68a159c0.js IP 90.84.161.16 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-16 08:50 Last Seen2024-08-21 08:36 Times Seen1706 Hash 7ef31ee9994bb8ea5f0546db9d84f5a2 96677ba8663e1a15b90a28b317a621c44288d4b4 a127c7a05c4834b7ccccedbb750031e366b1494bbb719a2f082c92eac19a9d50 Loading...

	s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/cashier~copyright-feedback~failPay~goldCenter~landing~login~membership~oneAnniversary~other~recycleb~fcf1883d.bb8d4903.js	ScriptElement	19 kB	2023-11-30	2024-08-20
Pretty URL s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/cashier~copyright-feedback~failPay~goldCenter~landing~login~membership~oneAnniversary~other~recycleb~fcf1883d.bb8d4903.js IP 90.84.161.16 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-30 05:14 Last Seen2024-08-20 17:23 Times Seen95 Hash c9429ffee912d3b6ebd548690e756370 0e11f7030c70f5f8dfd17b7334e9311927b6c2de f12bbad8ade5d92a204d676e4e787e2a3c06b856866d2012cee8cddcfd3e8a3f Loading...

	www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w	ScriptElement	266 B	2023-03-14	2024-09-19
Pretty URL www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w IP 210.148.85.59 ASN #2497 Internet Initiative Japan Inc. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-14 01:44 Last Seen2024-09-19 22:39 Times Seen1738 Hash 1bdb4f2ae952025dfec0934d6e8da1b3 da2df308c0048f79fdbfc8dfeaf9ab50b2ca3219 1e25a190998c0a84be3b71f1dda9b10a5b3518714cb1e5f406011be99ed735d2 Loading...

	www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w	ScriptElement	52 B	2023-03-14	2025-05-08
Pretty URL www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w IP 210.148.85.59 ASN #2497 Internet Initiative Japan Inc. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-14 01:44 Last Seen2025-05-08 12:21 Times Seen3256 Hash 5e66b47a4a0cda56d7e13e3959500572 5e166926dd222faabdd6899d0bb44942b988034b 8b94646ebebdce56480541aa74bdf7b2508c952afd755e93f4e4d4411de1d352 Loading...

	s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/main.9946d79e.js	ScriptElement	563 kB	2023-11-30	2024-08-20
Pretty URL s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/main.9946d79e.js IP 90.84.161.16 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-30 05:14 Last Seen2024-08-20 17:23 Times Seen95 Hash 3d933d166d47ea80f73445153ab3c619 143fe9d5408bc1a758017b97b34d65bccbd43382 a99be294dc0dae7aaf95c2af9f978bd1da7375297bbd59aeff6a3d21bcc1540e Loading...

	sofire.bdstatic.com/js/fsec-hd.js	ScriptElement	295 kB	2023-07-12	2025-04-06
Pretty URL sofire.bdstatic.com/js/fsec-hd.js IP 60.190.116.48 ASN #4134 Chinanet Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-12 16:55 Last Seen2025-04-06 11:53 Times Seen3350 Hash 834113d1867d8ec45fc41e3c692fdead d292eeadefb195296a6daf8cb607a74753ed8864 a97cd69480a0a2aec421ab52af71fe820b469aa382412c99948766333b2c534d Loading...

	s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-5e25226a.465bd8e2.js	ScriptElement	26 kB	2023-11-30	2024-08-20
Pretty URL s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-5e25226a.465bd8e2.js IP 90.84.161.16 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-30 05:14 Last Seen2024-08-20 17:23 Times Seen95 Hash 4ee7e4b92de06bb4fc7b1b01ee7ff6d9 ceeeaadf87976dc8c62c043a97b8c6bb1bdd3f19 6e586ec95e46f982074522768687d44a662e3adbfdcd4a7193ddbe1120cbef6c Loading...

	s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/assets/libs/kakao.min.js	ScriptElement	115 kB	2023-04-08	2025-04-06
Pretty URL s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/assets/libs/kakao.min.js IP 90.84.161.16 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-08 05:40 Last Seen2025-04-06 19:52 Times Seen3412 Hash 4383410c8f4f5c569c3dda6791ebfbef 780968b8c946939a82e4ace0906c52f333a5f421 4ddfaa5e4c3e19b2799ca4949ef4b2a0d7bdc2faa2be979560199805f568df85 Loading...

	connect.facebook.net/en_US/sdk.js?hash=390d93be92b611479cda9adbba1dfe38	ScriptElement	17 kB	2023-05-05	2025-05-11
Pretty URL connect.facebook.net/en_US/sdk.js?hash=390d93be92b611479cda9adbba1dfe38 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-05 22:33 Last Seen2025-05-11 20:51 Times Seen54229 Hash b938e0b835c600209bdaae9d8ccda6d7 d5ee79d277057e05f002a18381722b5eb75d3883 d1b95aeb57c3285042e1e24c00cc56a8560d16daf7ee5cdfd5c75296b21ac91b Loading...

		Size	First Seen	Last Seen
	#1 Eval - 7e9304dc7ca9f84af2281d5bdce54c2b	9 B	2023-03-08 15:29	2025-05-08 12:21
Pretty Observations First Seen2023-03-08 15:29 Last Seen2025-05-08 12:21 Times Seen3435 Hash 7e9304dc7ca9f84af2281d5bdce54c2b b9d4cd43a655cad4deb14e59896299b696eaa099 575ecac4c4c85ca6093a6b29f10bbb6bf05ff93c38ed5ec73d889dc5c94e6ef5 Loading...

	#2 Eval - cd66d8ac35b6ff2ee1a205d26665f806	46 B	2023-03-08 15:29	2025-05-08 12:21
Pretty Observations First Seen2023-03-08 15:29 Last Seen2025-05-08 12:21 Times Seen3435 Hash cd66d8ac35b6ff2ee1a205d26665f806 2aa9c95845b5f6438f57bc3c4a30d231f2620e9b 03c5681d47f37e712bb3f86db284bb551fd34921b6fc59f964135cfdb267d439 Loading...

	#3 Eval - 369e5f9d8b1fcb9e90a7c5c940f28c38	17 B	2023-03-08 15:29	2025-05-09 20:15
Pretty Observations First Seen2023-03-08 15:29 Last Seen2025-05-09 20:15 Times Seen3437 Hash 369e5f9d8b1fcb9e90a7c5c940f28c38 f8c6e938e9074a5f2a10f15aa3f7b473354f9f50 b908eb3294a9334e80603d18b514acbd9399e6ac1ec876ed23c8fbf58f85d06b Loading...

	#4 Eval - a1a52764e03a17665af5feafec6c566f	13 B	2023-03-08 15:29	2025-05-09 20:15
Pretty Observations First Seen2023-03-08 15:29 Last Seen2025-05-09 20:15 Times Seen3428 Hash a1a52764e03a17665af5feafec6c566f 1a280002e82a1813c3726c5a221659965f0b2dff 09a1217a6fb1b08d59a2ea941f45b719519f7838fd10f3b50f2ba3471456175d Loading...

	#5 Eval - 05434ea9fe8c0f80cb1751ca04bff970	17 B	2023-03-08 15:29	2025-05-09 20:15
Pretty Observations First Seen2023-03-08 15:29 Last Seen2025-05-09 20:15 Times Seen3434 Hash 05434ea9fe8c0f80cb1751ca04bff970 5cd9359b5a52ce01f866e9ceeccd5f744bf44119 d58390a62fe70e7b77e8adc4bc637d9c4c545a96a6361b6ce38f13541f7d0d77 Loading...

	#6 Eval - cca1055dca34c3e2743aa2f587c0be06	36 B	2023-03-08 15:29	2025-05-09 20:15
Pretty Observations First Seen2023-03-08 15:29 Last Seen2025-05-09 20:15 Times Seen3435 Hash cca1055dca34c3e2743aa2f587c0be06 3f94ebb002efb38f451253ab7c3ce2dfcdd34f43 16a5adbc67019e0319a27cd554032a0fe4b1cd60c236fe825e1a6f2e6c314645 Loading...

	#7 Eval - 16a0cb0c695ae63912a039ff24940c62	15 B	2023-03-08 15:29	2025-05-08 12:21
Pretty Observations First Seen2023-03-08 15:29 Last Seen2025-05-08 12:21 Times Seen3436 Hash 16a0cb0c695ae63912a039ff24940c62 3fdc333b7171f9ae1942a3007cd8c7e337f2c3d4 6dee66e8e9503f08893a14202c82b22f91a3d2f88855312fc44d3a9f9aa79cd4 Loading...

	#8 Eval - 6191f715c9fe1e34aa8f809859b06565	85 B	2023-03-08 15:29	2025-05-08 12:21
Pretty Observations First Seen2023-03-08 15:29 Last Seen2025-05-08 12:21 Times Seen3435 Hash 6191f715c9fe1e34aa8f809859b06565 8f213673a1ebd21d177ba64a451f94e2a09ec506 7f9d134ebbed87e9c253971f8956202ccfae0f78a8ec05aad42a420f2fec0afc Loading...

	#9 Eval - ad67988c26bb14f73da838c33d037c65	158 B	2023-07-10 16:18	2025-05-08 12:21
Pretty Observations First Seen2023-07-10 16:18 Last Seen2025-05-08 12:21 Times Seen3396 Hash ad67988c26bb14f73da838c33d037c65 61d308e21cbbc884739a362675cab9fe05a3eadb 6c2cc19d73f44d6093bcd2e7065b82259e6f009a3c0680ecb9bd40f2b2c2b748 Loading...

	#10 Eval - ec1050833fa3019cf7ecd392227995ad	233 B	2024-08-20 17:23	2024-08-20 17:23
Pretty Observations First Seen2024-08-20 17:23 Last Seen2024-08-20 17:23 Times Seen1 Hash ec1050833fa3019cf7ecd392227995ad 91ac0bcb171d9a2b4da7ebd05fa1cc01b5138136 be3595e5b820d363ed43fee1216ae3f6b4c0f03cc5e06ff1a0fc547ecc151776 Loading...

	#11 Eval - f4510576fda062ebae6e57de28c0421d	20 B	2023-03-07 12:55	2025-05-09 20:15
Pretty Observations First Seen2023-03-07 12:55 Last Seen2025-05-09 20:15 Times Seen4316 Hash f4510576fda062ebae6e57de28c0421d 572a221742b141bd1b756073b6dbe874cf6bed2a 6395e338a48619155621f777b374cfc9560bc1b361f05d79cffc24bd82899ff3 Loading...

	#12 Eval - aeed44b2acb52dff838fe2fc0577b331	19 B	2023-03-08 15:29	2025-05-09 20:15
Pretty Observations First Seen2023-03-08 15:29 Last Seen2025-05-09 20:15 Times Seen3430 Hash aeed44b2acb52dff838fe2fc0577b331 5d286027e91447c144d7b4f3db08711277b38614 d3dc30801dcbc9f73aa7a5d8f09a5db84a5c1f15e33c09c0d5f9c19417da2a5b Loading...

	#13 Eval - 4f3e3023d383dba789d355c54b400f17	43 B	2023-03-08 15:29	2025-05-09 20:15
Pretty Observations First Seen2023-03-08 15:29 Last Seen2025-05-09 20:15 Times Seen3435 Hash 4f3e3023d383dba789d355c54b400f17 20529e03a11f3bb9e1bae32f006f27bd07b9a741 3660dd89be06fb6e3c9d293541677b1b7d8eb933fa579b40d02f1c095fe188eb Loading...

	#14 Eval - a407e8f8a23e5cb125b976dbcd69966b	9 B	2023-03-08 15:29	2025-05-08 12:21
Pretty Observations First Seen2023-03-08 15:29 Last Seen2025-05-08 12:21 Times Seen3433 Hash a407e8f8a23e5cb125b976dbcd69966b 002d9db1b2c05f0903c07476081e38df8e34a789 91ce64a5efcfdfef0a044c2f9705d2a6d2394873007f54fd797f7382bb8b17ee Loading...

	#15 Eval - dde9bfe64c659bc54dd6e93de30c59ac	39 B	2023-03-14 01:44	2025-05-08 12:21
Pretty Observations First Seen2023-03-14 01:44 Last Seen2025-05-08 12:21 Times Seen3411 Hash dde9bfe64c659bc54dd6e93de30c59ac 322cfd214f1493f6d9755e444dd65b4a51f84ef9 21c26ca6da636b4a28283e21e2a2a232a35a3ee993b72496e14528541b01206d Loading...

	#16 Eval - d9d3c5ca49771c3b3da47f8120c62de2	50 B	2023-07-10 16:18	2025-05-08 12:21
Pretty Observations First Seen2023-07-10 16:18 Last Seen2025-05-08 12:21 Times Seen3390 Hash d9d3c5ca49771c3b3da47f8120c62de2 5e78e4bc81d2c73e3353f313f0b330b09a01db55 62c2e8b14450f5b39bf2c8fcad5f8e66c776a92aa6ab63312c84a5176355e513 Loading...

	#17 Eval - 2435c9164712e4eac303fbe2ea59383c	30 B	2023-03-08 15:29	2025-05-09 20:15
Pretty Observations First Seen2023-03-08 15:29 Last Seen2025-05-09 20:15 Times Seen3433 Hash 2435c9164712e4eac303fbe2ea59383c 3ec83a242cf063910bc1d3933773a94a0853a4dd 33ea8b680bfdabd2eeec090331d4f83ab21842713217c686616bdedcf3a2f518 Loading...

	#18 Eval - f05881d51c8e660a94849968b7ee9383	14 B	2023-03-08 15:29	2025-05-09 20:15
Pretty Observations First Seen2023-03-08 15:29 Last Seen2025-05-09 20:15 Times Seen3432 Hash f05881d51c8e660a94849968b7ee9383 5e09b6f2cccae7a173c38e649a1ab957f552738a 011f3bdf139afb9b5bc10f342ec14f57658cea58ca1da3c9517af9360e26ae2a Loading...

	#19 Eval - 62a9ef6b16a217146e6ffc85a2c53ded	21 B	2023-03-08 15:29	2025-05-08 12:21
Pretty Observations First Seen2023-03-08 15:29 Last Seen2025-05-08 12:21 Times Seen3434 Hash 62a9ef6b16a217146e6ffc85a2c53ded 75b5fa56255aec69da28b11b57de2d2e82376161 2861271a545f30b331c8dac9d90e4cfb7790c8c8810dd066c71ffc5220b0d471 Loading...

	#20 Eval - c374c4b5b9d59ada4befb006a504e654	33 B	2023-03-08 15:29	2025-05-09 20:15
Pretty Observations First Seen2023-03-08 15:29 Last Seen2025-05-09 20:15 Times Seen3431 Hash c374c4b5b9d59ada4befb006a504e654 d9ec4b8ab718b0bc0768f7b4aa6078fb3d4b97a1 106bec14cbb61bf2311638812b46cfd4f92a65ad5502cf08d4524b790bf18c52 Loading...

	#21 Eval - 22933aa386c82f60d24928140433a25c	20 B	2023-03-07 01:03	2025-05-11 21:11
Pretty Observations First Seen2023-03-07 01:03 Last Seen2025-05-11 21:11 Times Seen17059 Hash 22933aa386c82f60d24928140433a25c 2647ef5ffb1d8472d7547ec5dd7cde5b67216f6f 3f3d3b81e8706983e30a63da7389e8cd3e70bd7778063d63f748984c42007425 Loading...

	#22 Eval - 973d8c4080b7e39f04f550f8ba0e0508	23 B	2023-03-08 15:29	2025-05-09 20:15
Pretty Observations First Seen2023-03-08 15:29 Last Seen2025-05-09 20:15 Times Seen3435 Hash 973d8c4080b7e39f04f550f8ba0e0508 d57d74cd9cd0171912b7bc5647688cb98b0bd991 a5044a96efb488b2fd5cbe883b0df59a22f8b4329de52db589f55bfdc0256f56 Loading...

	#23 Eval - da10245c38edc680873958d343d0b649	55 B	2023-03-08 15:29	2025-05-09 20:15
Pretty Observations First Seen2023-03-08 15:29 Last Seen2025-05-09 20:15 Times Seen3421 Hash da10245c38edc680873958d343d0b649 000031a4050cb3212c1507ee55c7c1b42c39f49d 3681934b53610e68f03da82cd232bfcb2165c8274ccbb149b35125ce65c57150 Loading...

	#24 Eval - ed966f882dcacb4cafbfd9d4071214fa	24 B	2023-03-08 15:29	2025-05-09 20:15
Pretty Observations First Seen2023-03-08 15:29 Last Seen2025-05-09 20:15 Times Seen3429 Hash ed966f882dcacb4cafbfd9d4071214fa 2f89c4d490ab7ed6eb9113afbb5e24e620a99302 0f4962140a3cc2f9bd0316061c1b0c8ff34776739f57a3112c935197157d4629 Loading...

	#25 Eval - 0fb5b87bf267ae5fa34581ba6c5b85a3	13 B	2023-03-08 15:29	2025-05-09 20:15
Pretty Observations First Seen2023-03-08 15:29 Last Seen2025-05-09 20:15 Times Seen3434 Hash 0fb5b87bf267ae5fa34581ba6c5b85a3 5168fb9eb7f51f1881b83bda52e5768b0612d967 8bd1bf83b71e97f22946c95110473f0b38606f4eb7779c60abaef4824ccadf66 Loading...

	#26 Eval - ce5da63d2679ed5670ddf25d5c843e6e	121 B	2023-03-08 15:29	2025-05-08 12:21
Pretty Observations First Seen2023-03-08 15:29 Last Seen2025-05-08 12:21 Times Seen3432 Hash ce5da63d2679ed5670ddf25d5c843e6e a63a3521b11ec909b3aa7c8a5e1a21c153dd480a 25e440eaa058c2d72e1ad49f7523cd5ea444a174e2b4d042e5d90d6bfb10a445 Loading...

	#27 Eval - 4a45583b2a8d46bcd598ce35944f84ff	29 B	2023-03-08 15:29	2025-05-09 20:15
Pretty Observations First Seen2023-03-08 15:29 Last Seen2025-05-09 20:15 Times Seen3390 Hash 4a45583b2a8d46bcd598ce35944f84ff 424819409f265637ddf66c55a5637132de3e8b28 65b0a9a5b59660ed7e098d964145b0715a2cc7a10669912316df948b4bc4fc03 Loading...

	#28 Eval - 1e145c6dc3423947428e5185aa762634	17 B	2023-03-08 15:29	2025-05-09 20:15
Pretty Observations First Seen2023-03-08 15:29 Last Seen2025-05-09 20:15 Times Seen3434 Hash 1e145c6dc3423947428e5185aa762634 17e155a57fcbf35d27c5ebfdffac2bc7e8f13afe 137958f5a034ad7a6e39419708df9f59cf5fb6856e5fc46baa562a233c7ba0c2 Loading...

	#29 Eval - 5f2349ac5d9ae4a866e29ecbd50bb409	76 B	2023-03-08 15:29	2025-05-09 20:15
Pretty Observations First Seen2023-03-08 15:29 Last Seen2025-05-09 20:15 Times Seen3436 Hash 5f2349ac5d9ae4a866e29ecbd50bb409 a15be9aa2996cce63cef47b21b6f4cea9ca6de1a 3281b032310057570cf05dfa453f6bbcca7f686792f2134cbb1d6bfa453c10ba Loading...

	#30 Eval - 576c169f5284fca4b9e09d5be13635d2	36 B	2023-03-08 15:29	2025-05-08 12:21
Pretty Observations First Seen2023-03-08 15:29 Last Seen2025-05-08 12:21 Times Seen3433 Hash 576c169f5284fca4b9e09d5be13635d2 643ac6a1f2a0f1aa636e14501feb0ae40470d517 bf42f59a9ae0c96df3f56267e9526ea0514e39b69f1ef1650562e9dec3711b84 Loading...

	#31 Eval - 0bddb6f03a6e04ad67ee528545768ee3	59 B	2023-03-08 15:29	2025-05-08 12:21
Pretty Observations First Seen2023-03-08 15:29 Last Seen2025-05-08 12:21 Times Seen3435 Hash 0bddb6f03a6e04ad67ee528545768ee3 9777ff2729250e094671ea52dd42e3c3aa1f73a6 99261b075cd33b8c4fe44e7d02587dd850867840905d9363245d7f6fd2b77848 Loading...

	#32 Eval - 06ae13ba8722623f06a0f09b058e53dd	20 B	2023-03-08 15:29	2025-05-09 20:15
Pretty Observations First Seen2023-03-08 15:29 Last Seen2025-05-09 20:15 Times Seen3432 Hash 06ae13ba8722623f06a0f09b058e53dd a7c0681ef07a2ad2c94ca0a27f31732e17dde9b3 473656a680ee81df68dc288ae237c3ac43c2f6e43b52b0dac5e19a56473c856b Loading...

		Size	First Seen	Last Seen
	#1 Write - 60bb19ab2a56de37b11d04df681f6ee0	12 B	2023-03-07 12:23	2025-05-11 21:01
Pretty Observations First Seen2023-03-07 12:23 Last Seen2025-05-11 21:01 Times Seen4106 Hash 60bb19ab2a56de37b11d04df681f6ee0 cd5f38ca8d19989e372e1bb66130aade666ee63b 3f7af3768d0a5463f3cfd93c47864c3f654c8cdb65e4ca6b24d5772365e6dee4 Loading...

HTTP Transactions (129)

URL IP Response Size

www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w

210.148.85.59

200 OK

55 kB

URL User Request GET HTTP/1.1
www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (49405)
Size
55 kB (54611 bytes)
Hash
d41ae0eabc1332702bbdbc9f3cf99b51
20b0214b7f4b4e7e4a606655deaacf493bbb0e5f
32a687c538cb578a08b60c2443bc5c96b77f2a0b7a29ee1c455aa4b5ee544ed9

HTTP Headers

GET /sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Encoding: gzip
Content-Type: text/html; charset=utf-8
Date: Thu, 30 Nov 2023 04:13:59 GMT
Flow-Level: 3
Logid: 8887953364415043937
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
Set-Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; path=/
browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; path=/; max-age=5184000; expires=Mon, 29 Jan 2024 04:13:59 GMT; domain=.1024tera.com
lang=en; path=/; max-age=2592000; expires=Sat, 30 Dec 2023 04:13:59 GMT
TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; path=/; max-age=31536000; expires=Fri, 29 Nov 2024 04:13:59 GMT; domain=.1024tera.com
Strict-Transport-Security: max-age=172800
Vary: Accept-Encoding, Accept-Encoding
X-Conteneur-Nom: wrNOGgAfwpIFFhXCusOVwp7Dtw4qwo5abnPDo8O+w63DkQ1hw7PCsMO7w67DoALCmHDDi0cnXMKmd0bCrkIjMcKHOcOzw7kUBRPCnsOgwrHDqA==
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Flow-Level: 3
X-Frame-Options: SAMEORIGIN
X-Powered-By: TeraBox
X-Readtime: 221
X-Request-Id: 8887953364415043937
X-Xss-Protection: 1; mode=block
Yld: 8887953364415043937
Yme: ZIGW+Ss3QE0RYysHTGriq29Xvv4cVAPxqR5IwCqBmO6yfg==
Transfer-Encoding: chunked

s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/img/loading.e243875f.gif

90.84.161.16

200 OK

28 kB

URL GET HTTP/2
s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/img/loading.e243875f.gif
IP
90.84.161.16:443
ASN
#0

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert Inc
Subject*.teraboxcdn.com
Fingerprint4C:36:32:B9:A0:68:F6:C2:A7:95:E4:E6:DA:DA:D7:AF:7A:C3:41:44
ValidityTue, 28 Mar 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT

File type
GIF image data, version 89a, 70 x 54\012- data
Size
28 kB (28452 bytes)
Hash
e243875f171c9aa136826db37e1d7669
a754f14d0f5c88b01f0662390d1e5c937cc64427
0750b5649d371e7fbbc69ffd0778f23406aedd8b9ce788b5f90f4ee110aacd20

HTTP Headers

GET /fe-opera-static/node-static-v4/fe-webv4-main/img/loading.e243875f.gif HTTP/1.1
Host: s2.teraboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 30 Nov 2023 04:14:01 GMT
content-type: image/gif
content-length: 28452
server: openresty
content-md5: 4kOHXxccmqE2gm2zfh12aQ==
etag: "e243875f171c9aa136826db37e1d7669"
expires: Sun, 12 Feb 2023 11:38:15 GMT
last-modified: Thu, 09 Feb 2023 08:51:31 GMT
x-bce-content-crc32: 801554289
x-bce-debug-id: /KINSlT6SlR+UmSxSbl8+UR36BHA1qVKyD42hR/uOwOvlMbyG16mwQlkTlc0iHDE9rM0Zyk9MA4hMUZIVL5hfw==
x-bce-request-id: 67f0317e-0fcd-4380-870c-0f5ab08c67f9
x-bce-storage-class: STANDARD
x-ccdn-expires: 1560612
via: EU-GER-frankfurt-EDGE5-CACHE6[27],EU-GER-frankfurt-EDGE5-CACHE6[0,TCP_HIT,1],EU-GER-frankfurt-GLOBAL1-CACHE7[4],EU-GER-frankfurt-GLOBAL1-CACHE12[0,TCP_HIT,3]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 2592000
nginx-hit: 1
age: 24366593
accept-ranges: bytes
access-control-allow-origin: *
X-Firefox-Spdy: h2

www.1024tera.com/ndbs/nd_bundle_430546.js

210.148.85.59

200 OK

66 kB

URL GET HTTP/1.1
www.1024tera.com/ndbs/nd_bundle_430546.js
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (36757)
Size
66 kB (65747 bytes)
Hash
2be70342e4695e6c13d04f9906e47635
6f4596c9cd37089ead6715fd3553c0845f1158d3
f731296cced4c20e1f9e24e3080faa044bd0fad2f8f64adf026a75038adecce8

HTTP Headers

GET /ndbs/nd_bundle_430546.js HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Encoding: gzip
Content-Type: application/x-javascript
Date: Thu, 30 Nov 2023 04:14:00 GMT
Flow-Level: 3
Last-Modified: Mon, 10 Jul 2023 02:21:26 GMT
Logid: 8887953725210291392
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
Vary: Accept-Encoding
X-Powered-By: DuboxServer
Yld: 8887953725210291392
Yme: ZIGW+Ss3QE0WaSsESWLiq29Xvv4cVAX2tAJJySKDmOv1Chk/NBZx226if94Y
Transfer-Encoding: chunked

www.1024tera.com/api/analytics?type=web_firebase_init_success_key_way&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317646361

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?type=web_firebase_init_success_key_way&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317646361
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
2fc18d34403b6ce94eed92ba4ebb4c1a
61f070a10826701559654e7f51f77e57166d9326
2cb371e43dc2fe062cac0acf0a563c1befb88e8295c97aa97d0f3258760da6b5

HTTP Headers

GET /api/analytics?type=web_firebase_init_success_key_way&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317646361 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Thu, 30 Nov 2023 04:14:02 GMT
Flow-Level: 3
Logid: 8887954155717889246
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8887954155717889246
Yme: ZIGW+Ss3QE0WYisES27iq29Xvv4cVAPxoh5NwSGJmu22TXdkHDs+6xQm1FAY
Content-Length: 44

www.1024tera.com/api/analytics?clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&type=web_i18n_collect_info&i18nInfoId=ec9dca81-e3e9-4ffd-95f0-6d1edcc3c3c2&i18nIndex=0&i18nInfo=%7B%7D&t=1701317646424

210.148.85.59

200 OK

44 B

URL POST HTTP/1.1
www.1024tera.com/api/analytics?clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&type=web_i18n_collect_info&i18nInfoId=ec9dca81-e3e9-4ffd-95f0-6d1edcc3c3c2&i18nIndex=0&i18nInfo=%7B%7D&t=1701317646424
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
e33092c426f9636866102d2f7bf77a5b
3386b0aa0bf84c9859d6130fa21990c01f20c98e
e22b0d9fa9f014defad58d9f8bd0ea18d2ad10673f1476bdca1be230381f305b

HTTP Headers

POST /api/analytics?clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&type=web_i18n_collect_info&i18nInfoId=ec9dca81-e3e9-4ffd-95f0-6d1edcc3c3c2&i18nIndex=0&i18nInfo=%7B%7D&t=1701317646424 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.1024tera.com
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Content-Length: 0

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Thu, 30 Nov 2023 04:14:02 GMT
Flow-Level: 3
Logid: 8887954176167797358
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8887954176167797358
Yme: ZIGW+Ss3QE0WaCsESWPiq29Xvv4cVAPxqB5NwCGJmu2zR/c+fg==
Content-Length: 44

www.1024tera.com/api/analytics?domain=www.1024tera.com&type=web_domain_heart_beat&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317646681

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?domain=www.1024tera.com&type=web_domain_heart_beat&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317646681
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
26f6d7dcfbb932ccd9077bcddf4e0f72
b4dbd6008ea26395323fccc15a3e079b646ee450
f0100084f32de36e45b4d3dae2ad5339145465660c4f20b1a0ad7729077c8884

HTTP Headers

GET /api/analytics?domain=www.1024tera.com&type=web_domain_heart_beat&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317646681 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Thu, 30 Nov 2023 04:14:02 GMT
Flow-Level: 3
Logid: 8887954242221924731
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8887954242221924731
Yme: ZIGW+Ss3QE0WaCsET2riq29Xvv4cVAP2oh5OxCqBmO+x7z4=
Content-Length: 44

www.1024tera.com/api/shorturlinfo?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=C10AB00D6E61E57F9E931691514D6CD99943957C14CA8F1CE8A94D37DA7841969732C51BCE20E06E10F0BC0AF5E7AF79E5FF4B53EEF6BF3355753934EB8D6D0F13C24D46E3576C142E766BD524C82CB2F60084095BA2CFBEC07E047D746ADA80&dp-logid=40348000413485660001&shorturl=1bNAvFxRe5UTo6OJK5N3W2w&root=1&scene=

210.148.85.59

200 OK

874 B

URL GET HTTP/1.1
www.1024tera.com/api/shorturlinfo?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=C10AB00D6E61E57F9E931691514D6CD99943957C14CA8F1CE8A94D37DA7841969732C51BCE20E06E10F0BC0AF5E7AF79E5FF4B53EEF6BF3355753934EB8D6D0F13C24D46E3576C142E766BD524C82CB2F60084095BA2CFBEC07E047D746ADA80&dp-logid=40348000413485660001&shorturl=1bNAvFxRe5UTo6OJK5N3W2w&root=1&scene=
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with very long lines (2414), with no line terminators
Size
874 B (874 bytes)
Hash
1083c16c701f13e36d793c80f81a34b9
e46d2f4371470f7b367840f6e9d44188eebcb189
f064fd9470cc6235d8cfa8f5a66d493ad976a3fa3445201f647277afd61979a9

HTTP Headers

GET /api/shorturlinfo?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=C10AB00D6E61E57F9E931691514D6CD99943957C14CA8F1CE8A94D37DA7841969732C51BCE20E06E10F0BC0AF5E7AF79E5FF4B53EEF6BF3355753934EB8D6D0F13C24D46E3576C142E766BD524C82CB2F60084095BA2CFBEC07E047D746ADA80&dp-logid=40348000413485660001&shorturl=1bNAvFxRe5UTo6OJK5N3W2w&root=1&scene= HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Encoding: gzip
Content-Type: application/json; charset=UTF-8
Date: Thu, 30 Nov 2023 04:14:02 GMT
Flow-Level: 3
Logid: 8887954258392945687
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8887954258392945687
Yme: ZIGW+Ss3QEsTdTEDUmr/tG1MvuUZTBz2rwpNwyCDoAs=
Transfer-Encoding: chunked

ymg-api.terabox.com/abdr?_o=https%3A%2F%2Fwww.1024tera.com

111.108.51.10

200 OK

179 B

URL POST HTTP/1.1
ymg-api.terabox.com/abdr?_o=https%3A%2F%2Fwww.1024tera.com
IP
111.108.51.10:443
ASN
#2516 KDDI CORPORATION

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert Inc
Subject*.terabox.com
Fingerprint4F:30:79:83:60:E0:58:E8:DA:05:09:38:E1:6D:CD:F9:46:33:D6:5F
ValidityTue, 28 Mar 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
179 B (179 bytes)
Hash
ed691e66621e6866da935a28521ce5da
aa23e8131bc0cf5dd13c2a1c81788f0ff442aa4c
0dbf44b30237299d39ab71b7484e985528d6aea2b60e9e82cc2eb12849edd20f

HTTP Headers

POST /abdr?_o=https%3A%2F%2Fwww.1024tera.com HTTP/1.1
Host: ymg-api.terabox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 3552
Origin: https://www.1024tera.com
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 30 Nov 2023 04:14:02 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
yld: 8887954330961979646
Ab-Sr: 1.0.1_NjVjZTJlYmI4MmYyZjA1ZTI1MzllZmZjYmJjYzBhNjRkZGY2N2FmNmZiZjliNDRiZjk5M2M5Yjk4ZGNiNjIyN2Y0NTA4ZWY4YjZlNzIwNTkzMTZmYjY3ZmY5YjgxNmYyNzk4YWNlOTEzNmFmMGI4MDJiNDE2ZDA2Yjk3NzY2YzE3Y2E0NDFmZWJhZjhkOWY3ZWMxMDc4YjBlNTY5NzNlMA==
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Origin, Host, Content-Type, x-requested-with, X-Custom-Header
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE
Access-Control-Allow-Origin: https://www.1024tera.com
Access-Control-Expose-Headers: Ab-sr, Authentication
Access-Control-Max-Age: 3600
Authentication: e223fa64d88b09a8ce8950296cc35d7f59372f7666a19f03
P3P: CP=" OTI DSP COR IVA OUR IND COM "
yme: ZIGW+Ss3QE0WaSsESWjiq29Xvv4cVAP2ox5NxyqLn+uwdndkHDs+c0TZH+oY
Set-Cookie: ab_jid=fc4bb578c9d62b5b66d3215d4ff2add78be9; Path=/; Domain=ymg-api.terabox.com; Max-Age=2147483647; HttpOnly; Secure; SameSite=None
ab_bid=fc4bb578c9d62b5b66d3215d4ff2add78be9; Path=/; Domain=ymg-api.terabox.com; Max-Age=2147483647; HttpOnly; Secure; SameSite=None
ab_sr=1.0.1_NjVjZTJlYmI4MmYyZjA1ZTI1MzllZmZjYmJjYzBhNjRkZGY2N2FmNmZiZjliNDRiZjk5M2M5Yjk4ZGNiNjIyN2Y0NTA4ZWY4YjZlNzIwNTkzMTZmYjY3ZmY5YjgxNmYyNzk4YWNlOTEzNmFmMGI4MDJiNDE2ZDA2Yjk3NzY2YzE3Y2E0NDFmZWJhZjhkOWY3ZWMxMDc4YjBlNTY5NzNlMA==; Path=/; Domain=terabox.com; Max-Age=7200; HttpOnly; Secure; SameSite=None
Server: nginx
logid: 8887954330961979646
Flow-level: 3
Content-Encoding: gzip

s2.teraboxcdn.com/general-conf/fk/dfxaf3-598bbed9.js

90.84.161.16

200 OK

222 kB

URL GET HTTP/2
s2.teraboxcdn.com/general-conf/fk/dfxaf3-598bbed9.js
IP
90.84.161.16:443
ASN
#0

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert Inc
Subject*.teraboxcdn.com
Fingerprint4C:36:32:B9:A0:68:F6:C2:A7:95:E4:E6:DA:DA:D7:AF:7A:C3:41:44
ValidityTue, 28 Mar 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT

File type
C source, Unicode text, UTF-8 text, with very long lines (65532), with no line terminators
Size
222 kB (222237 bytes)
Hash
454ab8291b921a9eea7433d7941e0ac1
385fc5ee3c146e1172c1fe21d05ee3983723e692
b0ba9519d7c6336cce91f2ffb7cd356e220e972ce001945789a63f21090c0c8f

HTTP Headers

GET /general-conf/fk/dfxaf3-598bbed9.js HTTP/1.1
Host: s2.teraboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 30 Nov 2023 04:14:01 GMT
content-type: text/javascript
server: openresty
content-md5: +fZxgdCHtOLq9IVUxQHgZQ==
etag: W/"f9f67181d087b4e2eaf48554c501e065"
expires: Fri, 03 Nov 2023 12:27:55 GMT
last-modified: Tue, 31 Oct 2023 12:25:48 GMT
x-bce-content-crc32: 3748294646
x-bce-debug-id: aGEi7xHbLdU53XfCnCB+gn9IMUFfdLw+Ug2cTW1Uu0gn8LTbfsIrGzew5yl6vbcMd2PUBbSod+OrM3Z56BBUNg==
x-bce-flow-control-type: -1
x-bce-is-transition: false
x-bce-request-id: 8d78a03a-02bd-49e4-ba41-e617432a8b15
x-bce-storage-class: STANDARD
via: EU-GER-frankfurt-EDGE5-CACHE6[7],EU-GER-frankfurt-EDGE5-CACHE2[0,TCP_HIT,0],EU-GER-frankfurt-GLOBAL1-CACHE14[2],EU-GER-frankfurt-GLOBAL1-CACHE2[0,TCP_HIT,1]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 2592000
nginx-hit: 1
age: 2562365
x-ccdn-expires: 2041684
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

www.1024tera.com/rest/2.0/membership/proxy/user?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=C10AB00D6E61E57F9E931691514D6CD99943957C14CA8F1CE8A94D37DA7841969732C51BCE20E06E10F0BC0AF5E7AF79E5FF4B53EEF6BF3355753934EB8D6D0F13C24D46E3576C142E766BD524C82CB2F60084095BA2CFBEC07E047D746ADA80&dp-logid=40348000413485660002&client=web&pass_version=2.8&lang=en&clientfrom=h5&pcftoken=76356a6d5d62e942bb82a43b1d3c5f95&method=query&membership_version=1.0

210.148.85.59

200 OK

96 B

URL GET HTTP/1.1
www.1024tera.com/rest/2.0/membership/proxy/user?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=C10AB00D6E61E57F9E931691514D6CD99943957C14CA8F1CE8A94D37DA7841969732C51BCE20E06E10F0BC0AF5E7AF79E5FF4B53EEF6BF3355753934EB8D6D0F13C24D46E3576C142E766BD524C82CB2F60084095BA2CFBEC07E047D746ADA80&dp-logid=40348000413485660002&client=web&pass_version=2.8&lang=en&clientfrom=h5&pcftoken=76356a6d5d62e942bb82a43b1d3c5f95&method=query&membership_version=1.0
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
96 B (96 bytes)
Hash
71efb5017e80385829e562c734d5e6e6
e47325370d833f023ad115edb30577e3c476cfbd
ee649f39d4350c32aff3153888391e537e95260418bc70af78329a06e7ae5374

HTTP Headers

GET /rest/2.0/membership/proxy/user?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=C10AB00D6E61E57F9E931691514D6CD99943957C14CA8F1CE8A94D37DA7841969732C51BCE20E06E10F0BC0AF5E7AF79E5FF4B53EEF6BF3355753934EB8D6D0F13C24D46E3576C142E766BD524C82CB2F60084095BA2CFBEC07E047D746ADA80&dp-logid=40348000413485660002&client=web&pass_version=2.8&lang=en&clientfrom=h5&pcftoken=76356a6d5d62e942bb82a43b1d3c5f95&method=query&membership_version=1.0 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Encoding: gzip
Content-Type: application/json; charset=UTF-8
Date: Thu, 30 Nov 2023 04:14:03 GMT
Flow-Level: 3
Http-X-Isis-Logid: 8887954476296210729
Logid: 8887954476296210729
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
Vary: Accept-Encoding
Yld: 8887954476296210729
Yme: ZIGW+Ss3QEoadTcAUmr/tG1MvuUZSxz0qwpNwyKAEWErHnJOsv/eIfWl3A==
Content-Length: 96

www.1024tera.com/api/ad/getconfig?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=C10AB00D6E61E57F9E931691514D6CD99943957C14CA8F1CE8A94D37DA7841969732C51BCE20E06E10F0BC0AF5E7AF79E5FF4B53EEF6BF3355753934EB8D6D0F13C24D46E3576C142E766BD524C82CB2F60084095BA2CFBEC07E047D746ADA80&dp-logid=40348000413485660003

210.148.85.59

200 OK

85 B

URL GET HTTP/1.1
www.1024tera.com/api/ad/getconfig?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=C10AB00D6E61E57F9E931691514D6CD99943957C14CA8F1CE8A94D37DA7841969732C51BCE20E06E10F0BC0AF5E7AF79E5FF4B53EEF6BF3355753934EB8D6D0F13C24D46E3576C142E766BD524C82CB2F60084095BA2CFBEC07E047D746ADA80&dp-logid=40348000413485660003
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
85 B (85 bytes)
Hash
caf924212b430820aac89847cbd76d38
dabda3db03feb9935ba92745852de7ca07197b24
54d6208198c969a748de50d582796dda37cfc4acb574cf277f58fc728bf608ae

HTTP Headers

GET /api/ad/getconfig?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=C10AB00D6E61E57F9E931691514D6CD99943957C14CA8F1CE8A94D37DA7841969732C51BCE20E06E10F0BC0AF5E7AF79E5FF4B53EEF6BF3355753934EB8D6D0F13C24D46E3576C142E766BD524C82CB2F60084095BA2CFBEC07E047D746ADA80&dp-logid=40348000413485660003 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Encoding: gzip
Content-Type: application/json; charset=UTF-8
Date: Thu, 30 Nov 2023 04:14:03 GMT
Flow-Level: 3
Http-X-Isis-Logid: 8887954480030156407
Logid: 8887954480030156407
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
Vary: Accept-Encoding
Yld: 8887954480030156407
Yme: ZIGW+Ss3QEsXdTQCUmr/tG1MvuUYQxz0qQpNwyOK7OuwTig0Me8/lwom3A==
Content-Length: 85

s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-2d225855.7faaefb6.js

90.84.161.16

200 OK

25 kB

URL GET HTTP/2
s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-2d225855.7faaefb6.js
IP
90.84.161.16:443
ASN
#0

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert Inc
Subject*.teraboxcdn.com
Fingerprint4C:36:32:B9:A0:68:F6:C2:A7:95:E4:E6:DA:DA:D7:AF:7A:C3:41:44
ValidityTue, 28 Mar 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT

File type
gzip compressed data, from Unix\012- data
Size
25 kB (24985 bytes)
Hash
c5671fa6b9252b3bb3bed5e742a549ac
284428f4ec0687a3c869657035526b7d70aff0f7
9edffb78fa27b449f1bcc176cd9d5760540f7546ff7070283682dce3f0f589b7

HTTP Headers

GET /fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-2d225855.7faaefb6.js HTTP/1.1
Host: s2.teraboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 30 Nov 2023 04:14:03 GMT
content-type: application/javascript
server: openresty
content-md5: iw9/Cx04dehLVypLjaFNWg==
etag: W/"8b0f7f0b1d3875e84b572a4b8da14d5a"
expires: Fri, 12 May 2023 08:44:00 GMT
last-modified: Mon, 08 May 2023 12:32:41 GMT
x-bce-content-crc32: 2125762108
x-bce-debug-id: iB6onZAdB5cwEu/eon/SnJwxjW+yEqUyso3lZkAtI8tqGqTqF5hKti5HQUqq4Il08RRUnC4QmZj/Wzs2YTkdMg==
x-bce-request-id: 6c4f78e6-e6e6-495c-8abe-dec67424c79d
x-bce-storage-class: STANDARD
x-ccdn-expires: 577509
via: EU-GER-frankfurt-EDGE5-CACHE6[1],EU-GER-frankfurt-EDGE5-CACHE6[0,TCP_HIT,0],EU-GER-frankfurt-GLOBAL1-CACHE3[22],EU-GER-frankfurt-GLOBAL1-CACHE12[0,TCP_HIT,20]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 2592000
nginx-hit: 1
age: 17695582
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/fonts/iconfont.4f9f785d.woff

90.84.161.16

200 OK

26 kB

URL GET HTTP/2
s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/fonts/iconfont.4f9f785d.woff
IP
90.84.161.16:443
ASN
#0

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert Inc
Subject*.teraboxcdn.com
Fingerprint4C:36:32:B9:A0:68:F6:C2:A7:95:E4:E6:DA:DA:D7:AF:7A:C3:41:44
ValidityTue, 28 Mar 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT

File type
Web Open Font Format, TrueType, length 25804, version 1.0\012- data
Size
26 kB (25804 bytes)
Hash
4f9f785d98a8fa208e7f64023e124572
3e8714f56d480cfd66721447975613a1e56ca9e4
27f0ac9cff76f3925b4389a404d01e2fb525bae7b17cafb0c04e5e6bb20ca83b

HTTP Headers

GET /fe-opera-static/node-static-v4/fe-webv4-main/fonts/iconfont.4f9f785d.woff HTTP/1.1
Host: s2.teraboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.1024tera.com
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 30 Nov 2023 04:14:03 GMT
content-type: application/x-font-woff
content-length: 25804
server: openresty
access-control-allow-credentials: true
access-control-allow-methods: GET, HEAD, POST, PUT
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Length, x-bce-next-append-offset, x-bce-object-type, x-bce-request-id
access-control-max-age: 1800
content-md5: T594XZio+iCOf2QCPhJFcg==
etag: "4f9f785d98a8fa208e7f64023e124572"
expires: Thu, 09 Feb 2023 02:34:52 GMT
last-modified: Thu, 02 Feb 2023 12:40:59 GMT
x-bce-content-crc32: 4229721389
x-bce-debug-id: 7WiMWIwBpNvCI1l2DEy41X6CYQbfBDD/53hHCbNUgg3chFP5F6R09q6Ha3n+sFI1w5hrFozk3M8ehG3s5jYsKw==
x-bce-request-id: 8ed250a7-98cd-4add-b067-4212e4c8ecd6
x-bce-storage-class: STANDARD
x-ccdn-expires: 1552634
via: EU-GER-frankfurt-EDGE5-CACHE6[1],EU-GER-frankfurt-EDGE5-CACHE3[0,TCP_HIT,0],EU-GER-frankfurt-GLOBAL1-CACHE11[3],EU-GER-frankfurt-GLOBAL1-CACHE3[0,TCP_HIT,1]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 2592000
nginx-hit: 1
age: 24367500
accept-ranges: bytes
X-Firefox-Spdy: h2

www.1024tera.com/api/analytics?type=terabox_sharing_init_js_error_p2&sessionId=403480&productId=100810&clienttype=999&navigator=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&title=unhandledrejection%3A%7B%7D&from=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&msg=%7B%7D&stack=%5B%7B%22columnNumber%22%3A18998%2C%22lineNumber%22%3A10%2C%22fileName%22%3A%22https%3A%2F%2Fwww.1024tera.com%2Fndbs%2Fnd_bundle_430546.js%22%2C%22functionName%22%3A%22webGlInfo%22%2C%22source%22%3A%22webGlInfo%40https%3A%2F%2Fwww.1024tera.com%2Fndbs%2Fnd_bundle_430546.js%3A10%3A18998%22%7D%2C%7B%22columnNumber%22%3A21970%2C%22lineNumber%22%3A10%2C%22fileName%22%3A%22https%3A%2F%2Fwww.1024tera.com%2Fndbs%2Fnd_bundle_430546.js%22%2C%22source%22%3A%22%40https%3A%2F%2Fwww.1024tera.com%2Fndbs%2Fnd_bundle_430546.js%3A10%3A21970%22%7D%2C%7B%22columnNumber%22%3A20619%2C%22lineNumber%22%3A10%2C%22fileName%22%3A%22https%3A%2F%2Fwww.1024tera.com%2Fndbs%2Fnd_bundle_430546.js%22%2C%22functionName%22%3A%22promise%20callback*%22%2C%22source%22%3A%22promise%20callback*%40https%3A%2F%2Fwww.1024tera.com%2Fndbs%2Fnd_bundle_430546.js%3A10%3A20619%22%7D%5D

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?type=terabox_sharing_init_js_error_p2&sessionId=403480&productId=100810&clienttype=999&navigator=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&title=unhandledrejection%3A%7B%7D&from=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&msg=%7B%7D&stack=%5B%7B%22columnNumber%22%3A18998%2C%22lineNumber%22%3A10%2C%22fileName%22%3A%22https%3A%2F%2Fwww.1024tera.com%2Fndbs%2Fnd_bundle_430546.js%22%2C%22functionName%22%3A%22webGlInfo%22%2C%22source%22%3A%22webGlInfo%40https%3A%2F%2Fwww.1024tera.com%2Fndbs%2Fnd_bundle_430546.js%3A10%3A18998%22%7D%2C%7B%22columnNumber%22%3A21970%2C%22lineNumber%22%3A10%2C%22fileName%22%3A%22https%3A%2F%2Fwww.1024tera.com%2Fndbs%2Fnd_bundle_430546.js%22%2C%22source%22%3A%22%40https%3A%2F%2Fwww.1024tera.com%2Fndbs%2Fnd_bundle_430546.js%3A10%3A21970%22%7D%2C%7B%22columnNumber%22%3A20619%2C%22lineNumber%22%3A10%2C%22fileName%22%3A%22https%3A%2F%2Fwww.1024tera.com%2Fndbs%2Fnd_bundle_430546.js%22%2C%22functionName%22%3A%22promise%20callback*%22%2C%22source%22%3A%22promise%20callback*%40https%3A%2F%2Fwww.1024tera.com%2Fndbs%2Fnd_bundle_430546.js%3A10%3A20619%22%7D%5D
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
eac1fa752d829691c29366d6200cf584
ac09751e3c4cf0f2249e0216b04f928547b95140
52526c37063a971538c3516af4f2af2ca96222a3076f35692734e6fb5f2407b0

HTTP Headers

GET /api/analytics?type=terabox_sharing_init_js_error_p2&sessionId=403480&productId=100810&clienttype=999&navigator=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&title=unhandledrejection%3A%7B%7D&from=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&msg=%7B%7D&stack=%5B%7B%22columnNumber%22%3A18998%2C%22lineNumber%22%3A10%2C%22fileName%22%3A%22https%3A%2F%2Fwww.1024tera.com%2Fndbs%2Fnd_bundle_430546.js%22%2C%22functionName%22%3A%22webGlInfo%22%2C%22source%22%3A%22webGlInfo%40https%3A%2F%2Fwww.1024tera.com%2Fndbs%2Fnd_bundle_430546.js%3A10%3A18998%22%7D%2C%7B%22columnNumber%22%3A21970%2C%22lineNumber%22%3A10%2C%22fileName%22%3A%22https%3A%2F%2Fwww.1024tera.com%2Fndbs%2Fnd_bundle_430546.js%22%2C%22source%22%3A%22%40https%3A%2F%2Fwww.1024tera.com%2Fndbs%2Fnd_bundle_430546.js%3A10%3A21970%22%7D%2C%7B%22columnNumber%22%3A20619%2C%22lineNumber%22%3A10%2C%22fileName%22%3A%22https%3A%2F%2Fwww.1024tera.com%2Fndbs%2Fnd_bundle_430546.js%22%2C%22functionName%22%3A%22promise%20callback*%22%2C%22source%22%3A%22promise%20callback*%40https%3A%2F%2Fwww.1024tera.com%2Fndbs%2Fnd_bundle_430546.js%3A10%3A20619%22%7D%5D HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Thu, 30 Nov 2023 04:14:03 GMT
Flow-Level: 3
Logid: 8887954505494608534
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8887954505494608534
Yme: ZIGW+Ss3QE0WaSsNTnb+qnFLufkASwb0tANGySKDmOuvTV8wL2YTspj0yzY=
Content-Length: 44

www.1024tera.com/api/analytics?time=2323&type=web_share_page_show_FP_SECOND&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317647870

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?time=2323&type=web_share_page_show_FP_SECOND&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317647870
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
4dd5fbae8b7da069a168411afc5dbc92
3ee9086346a363a484a4ff8edb202cba3878ac74
e5ecf4b2b7672b0a84dddb594c76e1f59babb311df7d7b20b85c6c30141b3f49

HTTP Headers

GET /api/analytics?time=2323&type=web_share_page_show_FP_SECOND&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317647870 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Thu, 30 Nov 2023 04:14:03 GMT
Flow-Level: 3
Logid: 8887954566452939031
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8887954566452939031
Yme: ZIGW+Ss3QE0WaisHTmjiq29Xvv4cVAPxrh5NwyqBmO+wO0qMRFTn28h2mRkY
Content-Length: 44

www.1024tera.com/api/analytics?time=1668&type=web_share_page_show_FP_FIRST&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317647870

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?time=1668&type=web_share_page_show_FP_FIRST&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317647870
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
3bc907f60efdce92d5d6339d82865808
07b04030e5947c558db78cf0efa9a3b7b7350638
51d5dd282d4a214a6a9707d11416fedafa1dc7d2ff6ad450eadcca15715f76f8

HTTP Headers

GET /api/analytics?time=1668&type=web_share_page_show_FP_FIRST&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317647870 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Thu, 30 Nov 2023 04:14:03 GMT
Flow-Level: 3
Logid: 8887954568030405110
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8887954568030405110
Yme: ZIGW+Ss3QE0WaysMTHb+qnFLufkASwb2tARMySKDnO8=
Content-Length: 44

www.1024tera.com/api/analytics?time=5441&type=web_share_page_show_FCP&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317647871

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?time=5441&type=web_share_page_show_FCP&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317647871
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
710343ad79c5e8357e17917461c64b9f
0383636b3c23dc9040da6181de551cb03daa3831
46924296bea443382339ffb8b0cd7f280a3f9322d75c1892ff667fef08ac50d9

HTTP Headers

GET /api/analytics?time=5441&type=web_share_page_show_FCP&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317647871 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Thu, 30 Nov 2023 04:14:03 GMT
Flow-Level: 3
Logid: 8887954569689279630
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8887954569689279630
Yme: ZIGW+Ss3QE0WaSsCTHb+qnFLufkASwb8tAdMySKDnuyzR1w=
Content-Length: 44

www.1024tera.com/api/analytics?time=5444&type=web_share_page_show_TTI&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317647874

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?time=5444&type=web_share_page_show_TTI&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317647874
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
8bb354ba9782d128158836cfc755c97a
5f16ca276547de34136b32d8b2d069b08a4e67bd
792a0ee990d4fabd7a90c4a192fe5324793f03568c078ca47c73f25bf666d254

HTTP Headers

GET /api/analytics?time=5444&type=web_share_page_show_TTI&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317647874 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Thu, 30 Nov 2023 04:14:03 GMT
Flow-Level: 3
Logid: 8887954574641561763
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8887954574641561763
Yme: ZIGW+Ss3QE0WaisES2Liq29Xvv4cVAP2oh5NwyeJmu2xT1oxM28bY9R/EJAY
Content-Length: 44

www.1024tera.com/passport/getpubkey?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=C10AB00D6E61E57F9E931691514D6CD99943957C14CA8F1CE8A94D37DA7841969732C51BCE20E06E10F0BC0AF5E7AF79E5FF4B53EEF6BF3355753934EB8D6D0F13C24D46E3576C142E766BD524C82CB2F60084095BA2CFBEC07E047D746ADA80&dp-logid=40348000413485660006

210.148.85.59

200 OK

405 B

URL POST HTTP/1.1
www.1024tera.com/passport/getpubkey?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=C10AB00D6E61E57F9E931691514D6CD99943957C14CA8F1CE8A94D37DA7841969732C51BCE20E06E10F0BC0AF5E7AF79E5FF4B53EEF6BF3355753934EB8D6D0F13C24D46E3576C142E766BD524C82CB2F60084095BA2CFBEC07E047D746ADA80&dp-logid=40348000413485660006
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with very long lines (466), with no line terminators
Size
405 B (405 bytes)
Hash
f92ab54e2f078a8f37ca95fbe0fcb840
180ceb1611d69a0cafd434a5d9d6813d061b8d6a
5ee770c15ef89b7a2ccabbb038341064b2ba67de9c840b6a4ce63e494b035382

HTTP Headers

POST /passport/getpubkey?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=C10AB00D6E61E57F9E931691514D6CD99943957C14CA8F1CE8A94D37DA7841969732C51BCE20E06E10F0BC0AF5E7AF79E5FF4B53EEF6BF3355753934EB8D6D0F13C24D46E3576C142E766BD524C82CB2F60084095BA2CFBEC07E047D746ADA80&dp-logid=40348000413485660006 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
X-Requested-With: XMLHttpRequest
Content-Length: 91
Origin: https://www.1024tera.com
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Encoding: gzip
Content-Type: application/Json; charset=utf-8
Date: Thu, 30 Nov 2023 04:14:03 GMT
Flow-Level: 3
Logid: 8887954585567805208
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
Vary: Accept-Encoding
Yld: 8887954585567805208
Yme: ZIGW+Ss3QE0WbysES3b+qnFLufkASwb2tAFJyiqBmO+0
Content-Length: 405

s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-5e25226a.465bd8e2.js

90.84.161.16

200 OK

7.6 kB

URL GET HTTP/2
s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-5e25226a.465bd8e2.js
IP
90.84.161.16:443
ASN
#0

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert Inc
Subject*.teraboxcdn.com
Fingerprint4C:36:32:B9:A0:68:F6:C2:A7:95:E4:E6:DA:DA:D7:AF:7A:C3:41:44
ValidityTue, 28 Mar 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT

File type
gzip compressed data, from Unix\012- data
Size
7.6 kB (7600 bytes)
Hash
f9b1c7f5d88a89b443bb2a8855680d9a
997fa57321d1f4e5c23a7739a3b727930c8067af
c40b73166eb47ce4061fe129230654a996965574132d3a63562dbfb40d18d863

HTTP Headers

GET /fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-5e25226a.465bd8e2.js HTTP/1.1
Host: s2.teraboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 30 Nov 2023 04:14:03 GMT
content-type: application/javascript
server: openresty
content-md5: TufkuS3ga7T8exsB7n/22Q==
etag: W/"4ee7e4b92de06bb4fc7b1b01ee7ff6d9"
expires: Sat, 02 Dec 2023 09:09:03 GMT
last-modified: Wed, 29 Nov 2023 02:46:31 GMT
x-bce-content-crc32: 2993947461
x-bce-debug-id: CagYIrgO7KGP/3RPccXtXtlwWOaSAp/8Gy0Q1anKiEJrX+9TIt80icLtvZ+lW7obJ2/f/TY1QWhAd9JKsqyX8w==
x-bce-flow-control-type: -1
x-bce-is-transition: false
x-bce-request-id: 29a95732-2b4d-488d-ae6c-82956518a99b
x-bce-storage-class: STANDARD
via: EU-GER-frankfurt-EDGE5-CACHE6[2],EU-GER-frankfurt-EDGE5-CACHE4[0,TCP_HIT,0],EU-GER-frankfurt-GLOBAL1-CACHE11[435],EU-GER-frankfurt-GLOBAL1-CACHE4[194,TCP_MISS,432]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 2592000
nginx-hit: 1
age: 68699
x-ccdn-expires: 2524903
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

210.148.85.59

200 OK

15 kB

URL GET HTTP/1.1
www.1024tera.com/api/getsyscfg?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=C10AB00D6E61E57F9E931691514D6CD99943957C14CA8F1CE8A94D37DA7841969732C51BCE20E06E10F0BC0AF5E7AF79E5FF4B53EEF6BF3355753934EB8D6D0F13C24D46E3576C142E766BD524C82CB2F60084095BA2CFBEC07E047D746ADA80&dp-logid=40348000413485660004&language_type=en&cfg_category_keys=%5B%5D&version=0
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Size
15 kB (15116 bytes)
Hash
75825da3ceb28ec3f44c78f0eb64f725
1eb34ffefd1e9409e074a98437d8ced6ae96da5a
33c9c3292550100bfb15c7e49d4b39d1f7c504dad5195901460ed816c38b2065

HTTP Headers

GET /api/getsyscfg?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=C10AB00D6E61E57F9E931691514D6CD99943957C14CA8F1CE8A94D37DA7841969732C51BCE20E06E10F0BC0AF5E7AF79E5FF4B53EEF6BF3355753934EB8D6D0F13C24D46E3576C142E766BD524C82CB2F60084095BA2CFBEC07E047D746ADA80&dp-logid=40348000413485660004&language_type=en&cfg_category_keys=%5B%5D&version=0 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Encoding: gzip
Content-Type: application/json; charset=UTF-8
Date: Thu, 30 Nov 2023 04:14:03 GMT
Flow-Level: 3
Logid: 8887954573467058982
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
Vary: Accept-Encoding
X-Powered-By: DuboxServer
Yld: 8887954573467058982
Yme: ZIGW+Ss3QEsXdTQCUmr/tG1MvuUZTBz0owpNwyeG+oLeKStOVP+8fkNs3A==
Transfer-Encoding: chunked

210.148.85.59

200 OK

15 kB

URL GET HTTP/1.1
www.1024tera.com/api/getsyscfg?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=C10AB00D6E61E57F9E931691514D6CD99943957C14CA8F1CE8A94D37DA7841969732C51BCE20E06E10F0BC0AF5E7AF79E5FF4B53EEF6BF3355753934EB8D6D0F13C24D46E3576C142E766BD524C82CB2F60084095BA2CFBEC07E047D746ADA80&dp-logid=40348000413485660005&language_type=en&cfg_category_keys=%5B%5D&version=0
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Size
15 kB (15116 bytes)
Hash
d90ec7fb025259f9f3b34e0403a1a125
8faeb6e5aa8b06707b0bb5b1cda39af3a0f5116b
322daa6f4a63c8e08f9f46760e2f4c250431bdcbce76eba17be843f9371796ac

HTTP Headers

GET /api/getsyscfg?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=C10AB00D6E61E57F9E931691514D6CD99943957C14CA8F1CE8A94D37DA7841969732C51BCE20E06E10F0BC0AF5E7AF79E5FF4B53EEF6BF3355753934EB8D6D0F13C24D46E3576C142E766BD524C82CB2F60084095BA2CFBEC07E047D746ADA80&dp-logid=40348000413485660005&language_type=en&cfg_category_keys=%5B%5D&version=0 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Encoding: gzip
Content-Type: application/json; charset=UTF-8
Date: Thu, 30 Nov 2023 04:14:03 GMT
Flow-Level: 3
Logid: 8887954581317520391
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
Vary: Accept-Encoding
X-Powered-By: DuboxServer
Yld: 8887954581317520391
Yme: ZIGW+Ss3QEsWdTEBUmr/tG1MvuUZShz3rgpNwyCF
Transfer-Encoding: chunked

www.1024tera.com/share/webmaster/check?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=C10AB00D6E61E57F9E931691514D6CD99943957C14CA8F1CE8A94D37DA7841969732C51BCE20E06E10F0BC0AF5E7AF79E5FF4B53EEF6BF3355753934EB8D6D0F13C24D46E3576C142E766BD524C82CB2F60084095BA2CFBEC07E047D746ADA80&dp-logid=40348000413485660007&bdstoken=

210.148.85.59

200 OK

85 B

URL GET HTTP/1.1
www.1024tera.com/share/webmaster/check?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=C10AB00D6E61E57F9E931691514D6CD99943957C14CA8F1CE8A94D37DA7841969732C51BCE20E06E10F0BC0AF5E7AF79E5FF4B53EEF6BF3355753934EB8D6D0F13C24D46E3576C142E766BD524C82CB2F60084095BA2CFBEC07E047D746ADA80&dp-logid=40348000413485660007&bdstoken=
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text
Size
85 B (85 bytes)
Hash
fc65bf0bd5f404dc7bdde7a49faa664c
edd41f6740a8f7af9aca7d3fd1ab31fe5ae26b16
98d150635ffc8e06c16d0437538ab29b71531f2f87c4802767073ff714f650da

HTTP Headers

GET /share/webmaster/check?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=C10AB00D6E61E57F9E931691514D6CD99943957C14CA8F1CE8A94D37DA7841969732C51BCE20E06E10F0BC0AF5E7AF79E5FF4B53EEF6BF3355753934EB8D6D0F13C24D46E3576C142E766BD524C82CB2F60084095BA2CFBEC07E047D746ADA80&dp-logid=40348000413485660007&bdstoken= HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Encoding: gzip
Content-Type: application/json; charset=UTF-8
Date: Thu, 30 Nov 2023 04:14:03 GMT
Flow-Level: 3
Http-X-Isis-Logid: 8887954648602145986
Logid: 8887954648602145986
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
Vary: Accept-Encoding
Yld: 8887954648602145986
Yme: ZIGW+Ss3QE0WaisHT2riq29Xvv4cVAPxqB5NwSWJmu2ySiRdQhtq06TZq/MY
Content-Length: 85

www.1024tera.com/share/linkpaylistpurchaseorder?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=C10AB00D6E61E57F9E931691514D6CD99943957C14CA8F1CE8A94D37DA7841969732C51BCE20E06E10F0BC0AF5E7AF79E5FF4B53EEF6BF3355753934EB8D6D0F13C24D46E3576C142E766BD524C82CB2F60084095BA2CFBEC07E047D746ADA80&dp-logid=40348000413485660008&page=1&cnt=20

210.148.85.59

200 OK

86 B

URL GET HTTP/1.1
www.1024tera.com/share/linkpaylistpurchaseorder?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=C10AB00D6E61E57F9E931691514D6CD99943957C14CA8F1CE8A94D37DA7841969732C51BCE20E06E10F0BC0AF5E7AF79E5FF4B53EEF6BF3355753934EB8D6D0F13C24D46E3576C142E766BD524C82CB2F60084095BA2CFBEC07E047D746ADA80&dp-logid=40348000413485660008&page=1&cnt=20
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text
Size
86 B (86 bytes)
Hash
46206a00e4a5ade0df55e3e43a352956
562d2bd3dd621047f5505973db61fa19306962ec
2809c710427a31915664a5b626ec62146cc26ebc6ee067f5025e265b8d2b1660

HTTP Headers

GET /share/linkpaylistpurchaseorder?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=C10AB00D6E61E57F9E931691514D6CD99943957C14CA8F1CE8A94D37DA7841969732C51BCE20E06E10F0BC0AF5E7AF79E5FF4B53EEF6BF3355753934EB8D6D0F13C24D46E3576C142E766BD524C82CB2F60084095BA2CFBEC07E047D746ADA80&dp-logid=40348000413485660008&page=1&cnt=20 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Encoding: gzip
Content-Type: application/json; charset=UTF-8
Date: Thu, 30 Nov 2023 04:14:03 GMT
Flow-Level: 3
Http-X-Isis-Logid: 8887954656247505099
Logid: 8887954656247505099
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
Vary: Accept-Encoding
Yld: 8887954656247505099
Yme: ZIGW+Ss3QE0WYisHTnb+qnFLufkASwbztAJOySKDmO2S47PIxoijMOHR/TY=
Content-Length: 86

www.1024tera.com/rest/1.0/operation/pull?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=C10AB00D6E61E57F9E931691514D6CD99943957C14CA8F1CE8A94D37DA7841969732C51BCE20E06E10F0BC0AF5E7AF79E5FF4B53EEF6BF3355753934EB8D6D0F13C24D46E3576C142E766BD524C82CB2F60084095BA2CFBEC07E047D746ADA80&dp-logid=40348000413485660009&position=7&lang=en

210.148.85.59

200 OK

83 B

URL GET HTTP/1.1
www.1024tera.com/rest/1.0/operation/pull?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=C10AB00D6E61E57F9E931691514D6CD99943957C14CA8F1CE8A94D37DA7841969732C51BCE20E06E10F0BC0AF5E7AF79E5FF4B53EEF6BF3355753934EB8D6D0F13C24D46E3576C142E766BD524C82CB2F60084095BA2CFBEC07E047D746ADA80&dp-logid=40348000413485660009&position=7&lang=en
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
83 B (83 bytes)
Hash
da5aeb21aac5a33aef924989deb0ba01
78aa5f0b4fd75477c3b49dd805262fba63a09f6b
eb439679cd3a1d6916efe1ab846d1e89de3d5e60ced7c3afb3ce169657bab47e

HTTP Headers

GET /rest/1.0/operation/pull?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=C10AB00D6E61E57F9E931691514D6CD99943957C14CA8F1CE8A94D37DA7841969732C51BCE20E06E10F0BC0AF5E7AF79E5FF4B53EEF6BF3355753934EB8D6D0F13C24D46E3576C142E766BD524C82CB2F60084095BA2CFBEC07E047D746ADA80&dp-logid=40348000413485660009&position=7&lang=en HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Encoding: gzip
Content-Type: text/plain; charset=utf-8
Date: Thu, 30 Nov 2023 04:14:04 GMT
Flow-Level: 3
Http-X-Isis-Logid: 8887954673645549859
Logid: 8887954673645549859
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
Vary: Accept-Encoding
Yld: 8887954673645549859
Yme: ZIGW+Ss3QE0WYysHTWriq29Xvv4cVAPxqR5OwyGJmu2zTno=
Content-Length: 83

www.1024tera.com/api/analytics?errno=100003&error_code=100003&error_msg=Invalid%20Bduss&request_id=8887954476296210729&hasError=true&params=%7B%22client%22%3A%22web%22%2C%22pass_version%22%3A%222.8%22%2C%22lang%22%3A%22en%22%2C%22clientfrom%22%3A%22h5%22%2C%22pcftoken%22%3A%2276356a6d5d62e942bb82a43b1d3c5f95%22%2C%22method%22%3A%22query%22%2C%22membership_version%22%3A%221.0%22%7D&uk=0&type=%2Frest%2F2.0%2Fmembership%2Fproxy%2Fuser_web_interface_error&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317647995

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?errno=100003&error_code=100003&error_msg=Invalid%20Bduss&request_id=8887954476296210729&hasError=true&params=%7B%22client%22%3A%22web%22%2C%22pass_version%22%3A%222.8%22%2C%22lang%22%3A%22en%22%2C%22clientfrom%22%3A%22h5%22%2C%22pcftoken%22%3A%2276356a6d5d62e942bb82a43b1d3c5f95%22%2C%22method%22%3A%22query%22%2C%22membership_version%22%3A%221.0%22%7D&uk=0&type=%2Frest%2F2.0%2Fmembership%2Fproxy%2Fuser_web_interface_error&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317647995
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
8f1aeefedef8c5b85b94b1c8837d8c04
b5cbac3eb370ad90bfd6c5146722d49a907eeb22
d547053c429dce21a975cf7fc8553a649bfb346575c6a589726819b59f7b94dc

HTTP Headers

GET /api/analytics?errno=100003&error_code=100003&error_msg=Invalid%20Bduss&request_id=8887954476296210729&hasError=true&params=%7B%22client%22%3A%22web%22%2C%22pass_version%22%3A%222.8%22%2C%22lang%22%3A%22en%22%2C%22clientfrom%22%3A%22h5%22%2C%22pcftoken%22%3A%2276356a6d5d62e942bb82a43b1d3c5f95%22%2C%22method%22%3A%22query%22%2C%22membership_version%22%3A%221.0%22%7D&uk=0&type=%2Frest%2F2.0%2Fmembership%2Fproxy%2Fuser_web_interface_error&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317647995 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Thu, 30 Nov 2023 04:14:04 GMT
Flow-Level: 3
Logid: 8887954676983397547
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8887954676983397547
Yme: ZIGW+Ss3QEsUdTcCUmr/tG1MvuUZShz0owpNwyKF3bnoC0guI5dUKiSW3A==
Content-Length: 44

www.1024tera.com/api/analytics?errno=-6&newno=&request_id=8887954480030157000&show_msg=&hasError=true&params=undefined&uk=0&type=%2Fapi%2Fad%2Fgetconfig_web_interface_error&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317648005

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?errno=-6&newno=&request_id=8887954480030157000&show_msg=&hasError=true&params=undefined&uk=0&type=%2Fapi%2Fad%2Fgetconfig_web_interface_error&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317648005
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
5de260676246e9cb43e78aeb845eb7cf
8b130aea4b1d9b33f55a84d2b357d5848604cfd4
9cd81ca6663e8cd99cef02972f1038508d234905d987b799a294e7fed05bf9d8

HTTP Headers

GET /api/analytics?errno=-6&newno=&request_id=8887954480030157000&show_msg=&hasError=true&params=undefined&uk=0&type=%2Fapi%2Fad%2Fgetconfig_web_interface_error&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317648005 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Thu, 30 Nov 2023 04:14:04 GMT
Flow-Level: 3
Logid: 8887954728025467021
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8887954728025467021
Yme: ZIGW+Ss3QEsUdTQGUmr/tG1MvuUYQhz0rwpNwyKB
Content-Length: 44

www.1024tera.com/api/analytics?isLogin=false&surl=bNAvFxRe5UTo6OJK5N3W2w&downloadPullNewFlag=b&videoTrialPullNewFlag=a&isUserSelfLink=false&referrer=&channelSrc=&type=share_page_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317648511

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?isLogin=false&surl=bNAvFxRe5UTo6OJK5N3W2w&downloadPullNewFlag=b&videoTrialPullNewFlag=a&isUserSelfLink=false&referrer=&channelSrc=&type=share_page_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317648511
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
88eeb5f38f36c9aaa74835b36c686a09
1c0b224ce5f79c989edc6b17a7f5eee8d2fdb18e
996bd3abcf82a3b507b27e5bf67d658bd02d1b4836cb76628476d38bfd0ce1fd

HTTP Headers

GET /api/analytics?isLogin=false&surl=bNAvFxRe5UTo6OJK5N3W2w&downloadPullNewFlag=b&videoTrialPullNewFlag=a&isUserSelfLink=false&referrer=&channelSrc=&type=share_page_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317648511 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Thu, 30 Nov 2023 04:14:04 GMT
Flow-Level: 3
Logid: 8887954735136639813
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8887954735136639813
Yme: ZIGW+Ss3QE0WaysCTnb+qnFLufkASwH9tAdGySKDkO32Fh5qLCdrKbYBIjY=
Content-Length: 44

www.1024tera.com/api/analytics?errno=-6&newno=&request_id=8887954648602146000&show_msg=&hasError=true&params=%7B%22bdstoken%22%3A%22%22%7D&uk=0&type=%2Fshare%2Fwebmaster%2Fcheck_web_interface_error&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317648540

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?errno=-6&newno=&request_id=8887954648602146000&show_msg=&hasError=true&params=%7B%22bdstoken%22%3A%22%22%7D&uk=0&type=%2Fshare%2Fwebmaster%2Fcheck_web_interface_error&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317648540
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
5b843757bba4031ace19da7fc0b75050
a4e5b8afd968cfd06c39a2198dc162d371b5e39f
3256e44e4e62dbcf586d95a6356f607bd26c7d9afe07fe8f187a9b716e8e0c4f

HTTP Headers

GET /api/analytics?errno=-6&newno=&request_id=8887954648602146000&show_msg=&hasError=true&params=%7B%22bdstoken%22%3A%22%22%7D&uk=0&type=%2Fshare%2Fwebmaster%2Fcheck_web_interface_error&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317648540 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Thu, 30 Nov 2023 04:14:04 GMT
Flow-Level: 3
Logid: 8887954745300515902
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8887954745300515902
Yme: ZIGW+Ss3QE0RYisCTHb+qnFLufkASwb3tAFIwiqBmOu1
Content-Length: 44

www.1024tera.com/api/analytics?errno=-6&newno=&request_id=8887954656247505000&show_msg=&hasError=true&params=%7B%22page%22%3A1%2C%22cnt%22%3A20%7D&uk=0&type=%2Fshare%2Flinkpaylistpurchaseorder_web_interface_error&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317648545

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?errno=-6&newno=&request_id=8887954656247505000&show_msg=&hasError=true&params=%7B%22page%22%3A1%2C%22cnt%22%3A20%7D&uk=0&type=%2Fshare%2Flinkpaylistpurchaseorder_web_interface_error&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317648545
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
03236b9e8df97268cac9d23809d65156
31018b91a09ce55a2a2fb8206a64000454d25eba
6836459ff778758f60bc56646beff76985e934f377017bf6d866c41e445ebcd4

HTTP Headers

GET /api/analytics?errno=-6&newno=&request_id=8887954656247505000&show_msg=&hasError=true&params=%7B%22page%22%3A1%2C%22cnt%22%3A20%7D&uk=0&type=%2Fshare%2Flinkpaylistpurchaseorder_web_interface_error&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317648545 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Thu, 30 Nov 2023 04:14:04 GMT
Flow-Level: 3
Logid: 8887954742795312290
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8887954742795312290
Yme: ZIGW+Ss3QEsSdTYGUmr/tG1MvuUZTxz0qwpNwyKE
Content-Length: 44

sofire.terabox.com/edkey

210.148.85.32

200 OK

245 B

URL POST HTTP/1.1
sofire.terabox.com/edkey
IP
210.148.85.32:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert Inc
Subject*.terabox.com
Fingerprint4F:30:79:83:60:E0:58:E8:DA:05:09:38:E1:6D:CD:F9:46:33:D6:5F
ValidityTue, 28 Mar 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with very long lines (361), with no line terminators
Size
245 B (245 bytes)
Hash
18f623f437fe65e983f8be5cdb52dddf
01e1b9264fec41246dadc5001e3b1005d79942d7
14b15c2d9d49e695dab96917b15ffcf6b92f76ae2e4e9cc8b670ca844379d918

HTTP Headers

POST /edkey HTTP/1.1
Host: sofire.terabox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.1024tera.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 64
Origin: https://www.1024tera.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: openresty
Date: Thu, 30 Nov 2023 04:14:04 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
yld: 8887954750187837685
Access-Control-Allow-Origin: *
P3P: CP=" OTI DSP COR IVA OUR IND COM "
yme: ZIGW+Ss3QE0XaysET2riq29Xvv4cVAPxqR5NwCSJkO25T3GDfg==
logid: 8887954750187837685
Flow-level: 3
Content-Encoding: gzip

www.1024tera.com/api/analytics?errno=-6&errmsg=&data=null&logid=15470066346413343425&hasError=true&params=%7B%22position%22%3A7%2C%22lang%22%3A%22en%22%7D&uk=0&type=%2Frest%2F1.0%2Foperation%2Fpull_web_interface_error&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317648578

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?errno=-6&errmsg=&data=null&logid=15470066346413343425&hasError=true&params=%7B%22position%22%3A7%2C%22lang%22%3A%22en%22%7D&uk=0&type=%2Frest%2F1.0%2Foperation%2Fpull_web_interface_error&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317648578
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
396ee8ddbd9f379c55c41965149f88d1
e1650728791cf7ecdf34b0f63051ae568452b9c0
748b5c293cd0500e6060574d30e79251bf6b82795ac707e743b952f91b514431

HTTP Headers

GET /api/analytics?errno=-6&errmsg=&data=null&logid=15470066346413343425&hasError=true&params=%7B%22position%22%3A7%2C%22lang%22%3A%22en%22%7D&uk=0&type=%2Frest%2F1.0%2Foperation%2Fpull_web_interface_error&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317648578 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Thu, 30 Nov 2023 04:14:04 GMT
Flow-Level: 3
Logid: 8887954755977045959
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8887954755977045959
Yme: ZIGW+Ss3QE0RYysCRnb+qnFLufkASwH9tAFMySKDnuy0TF87OHsTQeSm5zY=
Content-Length: 44

www.1024tera.com/share/list?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=C10AB00D6E61E57F9E931691514D6CD99943957C14CA8F1CE8A94D37DA7841969732C51BCE20E06E10F0BC0AF5E7AF79E5FF4B53EEF6BF3355753934EB8D6D0F13C24D46E3576C142E766BD524C82CB2F60084095BA2CFBEC07E047D746ADA80&dp-logid=40348000413485660010&page=1&num=20&by=name&order=asc&site_referer=&shorturl=bNAvFxRe5UTo6OJK5N3W2w&root=1

210.148.85.59

200 OK

615 B

URL GET HTTP/1.1
www.1024tera.com/share/list?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=C10AB00D6E61E57F9E931691514D6CD99943957C14CA8F1CE8A94D37DA7841969732C51BCE20E06E10F0BC0AF5E7AF79E5FF4B53EEF6BF3355753934EB8D6D0F13C24D46E3576C142E766BD524C82CB2F60084095BA2CFBEC07E047D746ADA80&dp-logid=40348000413485660010&page=1&num=20&by=name&order=asc&site_referer=&shorturl=bNAvFxRe5UTo6OJK5N3W2w&root=1
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with very long lines (2049), with no line terminators
Size
615 B (615 bytes)
Hash
a258582d7b179c1894bb1c07e412b90b
4846355efad2ea4c6cb03b53c86ffc91056ea968
0f177d425190e6ed2b45ad8420b51b269a667b286e27b951d4549c5199997749

HTTP Headers

GET /share/list?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=C10AB00D6E61E57F9E931691514D6CD99943957C14CA8F1CE8A94D37DA7841969732C51BCE20E06E10F0BC0AF5E7AF79E5FF4B53EEF6BF3355753934EB8D6D0F13C24D46E3576C142E766BD524C82CB2F60084095BA2CFBEC07E047D746ADA80&dp-logid=40348000413485660010&page=1&num=20&by=name&order=asc&site_referer=&shorturl=bNAvFxRe5UTo6OJK5N3W2w&root=1 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Encoding: gzip
Content-Type: application/json; charset=UTF-8
Date: Thu, 30 Nov 2023 04:14:04 GMT
Flow-Level: 3
Logid: 8887954734945679425
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8887954734945679425
Yme: ZIGW+Ss3QE0WaCsESW7iq29Xvv4cVAPxrB5MxiqBmOq5
Transfer-Encoding: chunked

firebase.googleapis.com/v1alpha/projects/-/apps/1:866794485532:web:b9c33b0f122f89758a6cd9/webConfig

216.58.207.202

200 OK

0 B

URL OPTIONS HTTP/2
firebase.googleapis.com/v1alpha/projects/-/apps/1:866794485532:web:b9c33b0f122f89758a6cd9/webConfig
IP
216.58.207.202:443
ASN
#15169 GOOGLE

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /v1alpha/projects/-/apps/1:866794485532:web:b9c33b0f122f89758a6cd9/webConfig HTTP/1.1
Host: firebase.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-goog-api-key
Referer: https://www.1024tera.com/
Origin: https://www.1024tera.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: https://www.1024tera.com
vary: origin, referer, x-origin
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: x-goog-api-key
access-control-max-age: 3600
date: Thu, 30 Nov 2023 04:14:04 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

firebase.googleapis.com/v1alpha/projects/-/apps/1:866794485532:web:b9c33b0f122f89758a6cd9/webConfig

216.58.207.202

200 OK

223 B

URL OPTIONS HTTP/2
firebase.googleapis.com/v1alpha/projects/-/apps/1:866794485532:web:b9c33b0f122f89758a6cd9/webConfig
IP
216.58.207.202:443
ASN
#15169 GOOGLE

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
JSON data\012- , ASCII text
Size
223 B (223 bytes)
Hash
54c11162d6ef3c32b787d4d8a6a292f8
f1e88b95b9addbd7a1e170daf6da450ab93bdecb
263070732f0c9d00ac3e625982ff38a8d08bc25a2ac03c3e3d524557b09f616f

HTTP Headers

GET /v1alpha/projects/-/apps/1:866794485532:web:b9c33b0f122f89758a6cd9/webConfig HTTP/1.1
Host: firebase.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.1024tera.com/
x-goog-api-key: AIzaSyCAt5j0_j4UDEm5Nb4bNvQknuGZoMK_XK8
Origin: https://www.1024tera.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 30 Nov 2023 04:14:04 GMT
server: ESF
cache-control: private
content-length: 223
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.1024tera.com
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.1024tera.com/fe-opera-static/box-static/disk-system/images/favicon.ico

210.148.85.59

200 OK

1.7 kB

URL GET HTTP/1.1
www.1024tera.com/fe-opera-static/box-static/disk-system/images/favicon.ico
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
PNG image data, 64 x 64, 8-bit colormap, non-interlaced\012- data
Size
1.7 kB (1683 bytes)
Hash
85c3fafc35604bddb3171dee4c0aa6dc
4cb347df6fbedcf8b7e77c9b0673ff3667ed0266
fd68b8c59d5d564cb46519aaaf236ef2ffab9c79c4b1e3ea67a1a57a0120731e

HTTP Headers

GET /fe-opera-static/box-static/disk-system/images/favicon.ico HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Connection: keep-alive
Content-Type: image/x-icon
Date: Thu, 30 Nov 2023 04:14:04 GMT
Etag: "64783b7d-693"
Expires: Sat, 30 Dec 2023 04:14:04 GMT
Flow-Level: 3
Last-Modified: Thu, 01 Jun 2023 06:32:29 GMT
Logid: 8887954861734839673
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: TeraBox
Yld: 8887954861734839673
Yme: ZIGW+Ss3QEoadTcAUmr/tG1MvuUZTRz3rQpMwCmF
Transfer-Encoding: chunked

www.googletagmanager.com/gtag/js?l=dataLayer&id=G-06ZNKL8C2E

142.250.74.168

200 OK

85 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?l=dataLayer&id=G-06ZNKL8C2E
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type
Unicode text, UTF-8 text, with very long lines (3034)
Size
85 kB (85167 bytes)
Hash
23d753dffa73e46023146d94e06ac0b4
3b27b935989c1390bec7ca3f47e28f87bf528398
de19e1d8de75a484c444971f50ba3ce814a921e6af5d9408d8cbded618d6b7a1

HTTP Headers

GET /gtag/js?l=dataLayer&id=G-06ZNKL8C2E HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 30 Nov 2023 04:14:04 GMT
expires: Thu, 30 Nov 2023 04:14:04 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 85167
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.1024tera.com/share/querysurltransfer?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=C10AB00D6E61E57F9E931691514D6CD99943957C14CA8F1CE8A94D37DA7841969732C51BCE20E06E10F0BC0AF5E7AF79E5FF4B53EEF6BF3355753934EB8D6D0F13C24D46E3576C142E766BD524C82CB2F60084095BA2CFBEC07E047D746ADA80&dp-logid=40348000413485660011&bdstoken=

210.148.85.59

200 OK

86 B

URL POST HTTP/1.1
www.1024tera.com/share/querysurltransfer?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=C10AB00D6E61E57F9E931691514D6CD99943957C14CA8F1CE8A94D37DA7841969732C51BCE20E06E10F0BC0AF5E7AF79E5FF4B53EEF6BF3355753934EB8D6D0F13C24D46E3576C142E766BD524C82CB2F60084095BA2CFBEC07E047D746ADA80&dp-logid=40348000413485660011&bdstoken=
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text
Size
86 B (86 bytes)
Hash
eb7fafe8ac2740f7e47f6765fb58a910
6ed07d00ce38376211ddd7031085334532e419d2
ee8598f7cbdb4d6eedcd5f19609f07fdbf18d9fa193bf33413a4ae5252cda29b

HTTP Headers

POST /share/querysurltransfer?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=C10AB00D6E61E57F9E931691514D6CD99943957C14CA8F1CE8A94D37DA7841969732C51BCE20E06E10F0BC0AF5E7AF79E5FF4B53EEF6BF3355753934EB8D6D0F13C24D46E3576C142E766BD524C82CB2F60084095BA2CFBEC07E047D746ADA80&dp-logid=40348000413485660011&bdstoken= HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
X-Requested-With: XMLHttpRequest
Content-Length: 32
Origin: https://www.1024tera.com
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Encoding: gzip
Content-Type: application/json; charset=UTF-8
Date: Thu, 30 Nov 2023 04:14:04 GMT
Flow-Level: 3
Http-X-Isis-Logid: 8887954929255698868
Logid: 8887954929255698868
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
Vary: Accept-Encoding
Yld: 8887954929255698868
Yme: ZIGW+Ss3QE0WaisES2jiq29Xvv4cVAPxrB5OwCqBmO2x
Content-Length: 86

s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/assets/libs/facebook.min.js

90.84.161.16

200 OK

2.4 kB

URL GET HTTP/2
s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/assets/libs/facebook.min.js
IP
90.84.161.16:443
ASN
#0

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert Inc
Subject*.teraboxcdn.com
Fingerprint4C:36:32:B9:A0:68:F6:C2:A7:95:E4:E6:DA:DA:D7:AF:7A:C3:41:44
ValidityTue, 28 Mar 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT

File type
gzip compressed data, from Unix\012- data
Size
2.4 kB (2423 bytes)
Hash
479698a160e687148e9946d7dfef67dd
35d2bd60ce18a359ce7096644f3a38a88a1a5d1e
59f2f112dea3eabcf4d786534a4120842e2ce07a3e074ca9a056d52de1822790

HTTP Headers

GET /fe-opera-static/node-static-v4/fe-webv4-main/assets/libs/facebook.min.js HTTP/1.1
Host: s2.teraboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 30 Nov 2023 04:14:01 GMT
content-type: application/javascript
server: openresty
access-control-allow-credentials: true
access-control-allow-methods: GET, HEAD, POST, PUT
access-control-expose-headers: ETag, Content-Length, x-bce-next-append-offset, x-bce-object-type, x-bce-request-id
access-control-max-age: 1800
content-md5: Aowl118tEMuXoOFINDERYw==
etag: W/"028c25d75f2d10cb97a0e14834311163"
expires: Sat, 24 Sep 2022 06:46:06 GMT
last-modified: Wed, 21 Sep 2022 05:03:33 GMT
x-bce-content-crc32: 3600293201
x-bce-debug-id: drF3pXV387iC2EyFCn4G8jIjxuuDcbNW6JT4jDmhDeNosKMTV4jVPaeR4QxYWsldtHHLV0pqg9KhEHfx+45FOQ==
x-bce-request-id: 1e1dfa93-d4b6-4000-b380-bdf1ecb59464
x-bce-restore-cache: -
x-bce-restore-tier: -
x-bce-storage-class: STANDARD
x-ccdn-expires: 1729907
via: EU-GER-frankfurt-EDGE5-CACHE6[28],EU-GER-frankfurt-EDGE5-CACHE2[0,TCP_HIT,0],EU-GER-frankfurt-GLOBAL1-CACHE3[3],EU-GER-frankfurt-GLOBAL1-CACHE10[0,TCP_HIT,2],EA-SGP-GLOBAL1-CACHE9[4],EA-SGP-GLOBAL1-CACHE30[0,TCP_HIT,2]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 2592000
nginx-hit: 1
age: 24367498
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-06ZNKL8C2E&cid=90785484.1701317649&gtm=45je3b60v875375078&aip=1&dma=1&dma_cps=sypham&gcd=11l1l1l1l1&z=671192737

142.250.74.163

200 OK

42 B

URL GET HTTP/2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-06ZNKL8C2E&cid=90785484.1701317649&gtm=45je3b60v875375078&aip=1&dma=1&dma_cps=sypham&gcd=11l1l1l1l1&z=671192737
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.no
Fingerprint6E:E4:BC:4A:67:5E:46:6A:B3:E4:CA:61:A7:C0:97:AB:14:F0:34:32
ValidityMon, 23 Oct 2023 11:27:27 GMT - Mon, 15 Jan 2024 11:27:26 GMT

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-06ZNKL8C2E&cid=90785484.1701317649&gtm=45je3b60v875375078&aip=1&dma=1&dma_cps=sypham&gcd=11l1l1l1l1&z=671192737 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 30 Nov 2023 04:14:05 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/img/logo.2a229dfa.svg

90.84.161.16

200 OK

1.7 kB

URL GET HTTP/2
s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/img/logo.2a229dfa.svg
IP
90.84.161.16:443
ASN
#0

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert Inc
Subject*.teraboxcdn.com
Fingerprint4C:36:32:B9:A0:68:F6:C2:A7:95:E4:E6:DA:DA:D7:AF:7A:C3:41:44
ValidityTue, 28 Mar 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1713), with no line terminators
Size
1.7 kB (1713 bytes)
Hash
2a229dfa55348fc84be678f926330616
96ad6e5765a9847fd3f202aad6a88bf95dd9caf1
78055ff5570a46c5904129bfdd26d9cc327feded52e4feca75feaa8e2f180d5b

HTTP Headers

GET /fe-opera-static/node-static-v4/fe-webv4-main/img/logo.2a229dfa.svg HTTP/1.1
Host: s2.teraboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 30 Nov 2023 04:14:05 GMT
content-type: image/svg+xml
content-length: 1713
server: openresty
content-md5: KiKd+lU0j8hL5nj5JjMGFg==
etag: "2a229dfa55348fc84be678f926330616"
expires: Sat, 24 Sep 2022 06:46:17 GMT
last-modified: Wed, 21 Sep 2022 05:03:27 GMT
x-bce-content-crc32: 1353669740
x-bce-debug-id: NAe6EO3wT96ak0qPNr/yE8+RuLbHz64z8I5FDCDIACxRHRvP8Rcs1CH0CzIO18cwCQo293KSx7/0Hh+Zyx0VZQ==
x-bce-request-id: 3ccd90bb-d04d-43f8-a561-47d04dd6edbb
x-bce-restore-cache: -
x-bce-restore-tier: -
x-bce-storage-class: STANDARD
x-ccdn-expires: 1553448
via: EU-GER-frankfurt-EDGE5-CACHE6[2],EU-GER-frankfurt-EDGE5-CACHE2[0,TCP_HIT,0],EU-GER-frankfurt-GLOBAL1-CACHE4[19],EU-GER-frankfurt-GLOBAL1-CACHE14[0,TCP_HIT,17],EA-SGP-GLOBAL1-CACHE17[2],EA-SGP-GLOBAL1-CACHE26[0,TCP_HIT,2]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 2592000
nginx-hit: 1
age: 24367377
accept-ranges: bytes
access-control-allow-origin: *
X-Firefox-Spdy: h2

www.1024tera.com/api/analytics?errno=-6&newno=&request_id=8887954929255698000&show_msg=&hasError=true&data=%7B%22sid%22%3A1354979074%2C%22suk%22%3A4398913988060%7D&params=%7B%22bdstoken%22%3A%22%22%7D&uk=0&type=%2Fshare%2Fquerysurltransfer_interface_error&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317649552

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?errno=-6&newno=&request_id=8887954929255698000&show_msg=&hasError=true&data=%7B%22sid%22%3A1354979074%2C%22suk%22%3A4398913988060%7D&params=%7B%22bdstoken%22%3A%22%22%7D&uk=0&type=%2Fshare%2Fquerysurltransfer_interface_error&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317649552
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
3e066d7fa2b8427a1c47b06ff10bbcdf
b03316d3af831d49a713adf27a5115e63ed9f43d
21c45138a9808c7e2adf4d764be36ef90b2c2d9732bfaefe7f6835e81167233c

HTTP Headers

GET /api/analytics?errno=-6&newno=&request_id=8887954929255698000&show_msg=&hasError=true&data=%7B%22sid%22%3A1354979074%2C%22suk%22%3A4398913988060%7D&params=%7B%22bdstoken%22%3A%22%22%7D&uk=0&type=%2Fshare%2Fquerysurltransfer_interface_error&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317649552 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207; _ga_06ZNKL8C2E=GS1.1.1701317649.1.0.1701317649.60.0.0; _ga=GA1.1.90785484.1701317649
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Thu, 30 Nov 2023 04:14:05 GMT
Flow-Level: 3
Logid: 8887955013128942960
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8887955013128942960
Yme: ZIGW+Ss3QE0WaSsESWLiq29Xvv4cVAPxrh5OwiqBmOuzCRw2YgFi64tUf94Y
Content-Length: 44

www.1024tera.com/api/analytics?value=7126&type=web_sharing_link_tti&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317649556

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?value=7126&type=web_sharing_link_tti&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317649556
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
77528444f7d6c5999d6ac4eff16e4ae6
4db1443f0392cfcaff727f8d8528b99fee64d8fb
d542a20d0eddff5e1c90a91aa271801b578d05a603b2556283c7f4922c7b9b9e

HTTP Headers

GET /api/analytics?value=7126&type=web_sharing_link_tti&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317649556 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207; _ga_06ZNKL8C2E=GS1.1.1701317649.1.0.1701317649.60.0.0; _ga=GA1.1.90785484.1701317649
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Thu, 30 Nov 2023 04:14:05 GMT
Flow-Level: 3
Logid: 8887955015054048576
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8887955015054048576
Yme: ZIGW+Ss3QEsRdTcBUmr/tG1MvuUYQxzxrgpNwyGFmKUB3hU=
Content-Length: 44

www.1024tera.com/api/analytics?type=web_share_filelist_key_way&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317649555

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?type=web_share_filelist_key_way&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317649555
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
592ae6ea0d1c1542f832c43d14d1f77d
1e498cc809be44cc09d9697bda4a0cbb5eceb0eb
0d84ae3c709b3d0632908e4cab1b4c67181f122631700d6d50e5d15df992ffa8

HTTP Headers

GET /api/analytics?type=web_share_filelist_key_way&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317649555 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207; _ga_06ZNKL8C2E=GS1.1.1701317649.1.0.1701317649.60.0.0; _ga=GA1.1.90785484.1701317649
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Thu, 30 Nov 2023 04:14:05 GMT
Flow-Level: 3
Logid: 8887955014509862674
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8887955014509862674
Yme: ZIGW+Ss3QEsQdTQCUmr/tG1MvuUZSRzxrApNwyKA
Content-Length: 44

s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/fonts/yunfont.44acf892.ttf

90.84.161.16

200 OK

23 kB

URL GET HTTP/2
s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/fonts/yunfont.44acf892.ttf
IP
90.84.161.16:443
ASN
#0

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert Inc
Subject*.teraboxcdn.com
Fingerprint4C:36:32:B9:A0:68:F6:C2:A7:95:E4:E6:DA:DA:D7:AF:7A:C3:41:44
ValidityTue, 28 Mar 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT

File type
TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, yunfont \012- data
Size
23 kB (23268 bytes)
Hash
44acf8923466a31680d910d7cc4f0903
351d9f0d3e293ae4c4e4c28e67b09f5ab2a39983
cdec6bbf708df8fbb45cb6c8477254406972c90e28bf1bc7d265b9bd0a403cd9

HTTP Headers

GET /fe-opera-static/node-static-v4/fe-webv4-main/fonts/yunfont.44acf892.ttf HTTP/1.1
Host: s2.teraboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.1024tera.com
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 30 Nov 2023 04:14:05 GMT
content-type: application/x-font-ttf
content-length: 23268
server: openresty
access-control-allow-credentials: true
access-control-allow-methods: GET, HEAD, POST, PUT
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Length, x-bce-next-append-offset, x-bce-object-type, x-bce-request-id
access-control-max-age: 1800
content-md5: RKz4kjRmoxaA2RDXzE8JAw==
etag: "44acf8923466a31680d910d7cc4f0903"
expires: Sat, 24 Sep 2022 06:46:06 GMT
last-modified: Wed, 21 Sep 2022 05:03:25 GMT
x-bce-content-crc32: 848321786
x-bce-debug-id: NAe6EO3wT96ak0qPNr/yE8+RuLbHz64z8I5FDCDIACz1r140/OGU/0+MbMDWT1zTJqrTz/6OyWkOTO54TO+RgQ==
x-bce-request-id: bdfcbbdf-effe-4bb4-b741-0cdb160927f7
x-bce-restore-cache: -
x-bce-restore-tier: -
x-bce-storage-class: STANDARD
x-ccdn-expires: 817629
via: EU-GER-frankfurt-EDGE5-CACHE6[2],EU-GER-frankfurt-EDGE5-CACHE5[0,TCP_HIT,0],EU-GER-frankfurt-GLOBAL1-CACHE14[6],EU-GER-frankfurt-GLOBAL1-CACHE12[0,TCP_HIT,3],EA-SGP-GLOBAL1-CACHE11[3],EA-SGP-GLOBAL1-CACHE24[0,TCP_HIT,2]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 2592000
nginx-hit: 1
age: 4366522
accept-ranges: bytes
X-Firefox-Spdy: h2

www.1024tera.com/api/analytics?type=web_no_ad_share_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317649659

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?type=web_no_ad_share_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317649659
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
87f23e41c679001f7fc38d77d0af1432
2c27639889e50cebb3646a6604c1460957d8a99e
7270c57f56d6a05bac4f5af6f98b53351efb7a69cb14c5480b8d35f2bf55020f

HTTP Headers

GET /api/analytics?type=web_no_ad_share_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317649659 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207; _ga_06ZNKL8C2E=GS1.1.1701317649.1.0.1701317649.60.0.0; _ga=GA1.1.90785484.1701317649
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Thu, 30 Nov 2023 04:14:05 GMT
Flow-Level: 3
Logid: 8887955043201031099
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8887955043201031099
Yme: ZIGW+Ss3QEobdTEHUmr/tG1MvuUYQhz0rwpNwyKB9E3V
Content-Length: 44

www.1024tera.com/api/analytics?type=web_no_ad_share_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317649658

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?type=web_no_ad_share_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317649658
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
a6dbdff6295c1ae7f8496c912f3d875f
b11b8be91cc5e5da41394b3618143444546c68ac
e6eb42cf18900940f9d7fe6f6f6dec1051506b44d6af7bd53b2fa8db1ca328b0

HTTP Headers

GET /api/analytics?type=web_no_ad_share_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317649658 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207; _ga_06ZNKL8C2E=GS1.1.1701317649.1.0.1701317649.60.0.0; _ga=GA1.1.90785484.1701317649
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Thu, 30 Nov 2023 04:14:05 GMT
Flow-Level: 3
Logid: 8887955046505693458
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8887955046505693458
Yme: ZIGW+Ss3QEsRdTYFUmr/tG1MvuUZThzxqApNwyKE
Content-Length: 44

www.1024tera.com/api/analytics?type=play_video_page_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317649659

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?type=play_video_page_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317649659
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
91462bdce150e085f574b635a494f209
6786f756354879451c0d1c62c402d6d32e3e89cd
d92fc4810fa7ef57612b204f60d6309819f76be35ad6439910ae8db22d2e1436

HTTP Headers

GET /api/analytics?type=play_video_page_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317649659 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207; _ga_06ZNKL8C2E=GS1.1.1701317649.1.0.1701317649.60.0.0; _ga=GA1.1.90785484.1701317649
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Thu, 30 Nov 2023 04:14:05 GMT
Flow-Level: 3
Logid: 8887955044009196428
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8887955044009196428
Yme: ZIGW+Ss3QE0WaCsHTWLiq29Xvv4cVAPxrB5OwiqBmuu2Uouhfg==
Content-Length: 44

www.1024tera.com/api/analytics?type=web_pause_close_share_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317649659

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?type=web_pause_close_share_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317649659
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
25b25d53ebc43f7d701d8931f578c93a
4ca611284b8ff8da8aafac9c75b01d7e417b8aef
fbaefbad4b9cfda91c28fd95d1ebb2a1bcbdb81d64837f53ecea145fb7818dad

HTTP Headers

GET /api/analytics?type=web_pause_close_share_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317649659 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207; _ga_06ZNKL8C2E=GS1.1.1701317649.1.0.1701317649.60.0.0; _ga=GA1.1.90785484.1701317649
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Thu, 30 Nov 2023 04:14:05 GMT
Flow-Level: 3
Logid: 8887955047154902862
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8887955047154902862
Yme: ZIGW+Ss3QE0WaysMSHb+qnFLufkASwb3tAFLxiqBmO+yEQltZT7L76nODTY=
Content-Length: 44

www.1024tera.com/api/analytics?type=web_share_video_init_rate_1&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317649660

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?type=web_share_video_init_rate_1&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317649660
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
bad24cc0a2c55e60fd0e3960614b5d70
685ab43361d5ffa4757f4d93f9f88ef22f320de5
44a72445cee2ce6092b3c4ff2a9defdb027f0b01b304311399aadb4fc93dfa7c

HTTP Headers

GET /api/analytics?type=web_share_video_init_rate_1&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317649660 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207; _ga_06ZNKL8C2E=GS1.1.1701317649.1.0.1701317649.60.0.0; _ga=GA1.1.90785484.1701317649
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Thu, 30 Nov 2023 04:14:05 GMT
Flow-Level: 3
Logid: 8887955047680619834
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8887955047680619834
Yme: ZIGW+Ss3QE0RYysGSnb+qnFLufkASwH9tANMySKDnu7k
Content-Length: 44

region1.analytics.google.com/g/collect?v=2&tid=G-06ZNKL8C2E&gtm=45je3b60v875375078&_p=1701317649240&_gaz=1&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=90785484.1701317649&ul=en-us&sr=1280x1024&_s=1&sid=1701317649&sct=1&seg=0&dl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&dt=indha%20ponnu%20sammaya%20pool%20sappura%20but%20soothu%20veruchi%20oothukita%20du%20samma.mp4%20-%20Share%20Files%20Online%20%26%20Send%20Larges%20Files%20with%20TeraBox&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&ep.origin=firebase&tfd=7059

216.239.34.36

204 No Content

0 B

URL POST HTTP/2
region1.analytics.google.com/g/collect?v=2&tid=G-06ZNKL8C2E&gtm=45je3b60v875375078&_p=1701317649240&_gaz=1&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=90785484.1701317649&ul=en-us&sr=1280x1024&_s=1&sid=1701317649&sct=1&seg=0&dl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&dt=indha%20ponnu%20sammaya%20pool%20sappura%20but%20soothu%20veruchi%20oothukita%20du%20samma.mp4%20-%20Share%20Files%20Online%20%26%20Send%20Larges%20Files%20with%20TeraBox&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&ep.origin=firebase&tfd=7059
IP
216.239.34.36:443
ASN
#15169 GOOGLE

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-06ZNKL8C2E&gtm=45je3b60v875375078&_p=1701317649240&_gaz=1&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=90785484.1701317649&ul=en-us&sr=1280x1024&_s=1&sid=1701317649&sct=1&seg=0&dl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&dt=indha%20ponnu%20sammaya%20pool%20sappura%20but%20soothu%20veruchi%20oothukita%20du%20samma.mp4%20-%20Share%20Files%20Online%20%26%20Send%20Larges%20Files%20with%20TeraBox&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&ep.origin=firebase&tfd=7059 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.1024tera.com
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://www.1024tera.com
date: Thu, 30 Nov 2023 04:14:05 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.1024tera.com/api/getsyscfg?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=C10AB00D6E61E57F9E931691514D6CD99943957C14CA8F1CE8A94D37DA7841969732C51BCE20E06E10F0BC0AF5E7AF79E5FF4B53EEF6BF3355753934EB8D6D0F13C24D46E3576C142E766BD524C82CB2F60084095BA2CFBEC07E047D746ADA80&dp-logid=40348000413485660013&cfg_category_keys=%5B%7B%22cfg_category_key%22%3A%22web_video_play_patch_ad_area%22%2C%22cfg_version%22%3A1%7D%2C%7B%22cfg_category_key%22%3A%22web_share_ads_adsterra_config%22%2C%22cfg_version%22%3A1%7D%5D&version=0&language_type=en

210.148.85.59

200 OK

968 B

URL GET HTTP/1.1
www.1024tera.com/api/getsyscfg?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=C10AB00D6E61E57F9E931691514D6CD99943957C14CA8F1CE8A94D37DA7841969732C51BCE20E06E10F0BC0AF5E7AF79E5FF4B53EEF6BF3355753934EB8D6D0F13C24D46E3576C142E766BD524C82CB2F60084095BA2CFBEC07E047D746ADA80&dp-logid=40348000413485660013&cfg_category_keys=%5B%7B%22cfg_category_key%22%3A%22web_video_play_patch_ad_area%22%2C%22cfg_version%22%3A1%7D%2C%7B%22cfg_category_key%22%3A%22web_share_ads_adsterra_config%22%2C%22cfg_version%22%3A1%7D%5D&version=0&language_type=en
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with very long lines (3720), with no line terminators
Size
968 B (968 bytes)
Hash
d2314f881505f0cfce3fd007065ffdbd
1c2a1302d98e429b56fd5a5926e3934e8850c15c
014c04c057a969a80876c186b6c06308ab2a23a1879c008b02190085cf58d665

HTTP Headers

GET /api/getsyscfg?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=C10AB00D6E61E57F9E931691514D6CD99943957C14CA8F1CE8A94D37DA7841969732C51BCE20E06E10F0BC0AF5E7AF79E5FF4B53EEF6BF3355753934EB8D6D0F13C24D46E3576C142E766BD524C82CB2F60084095BA2CFBEC07E047D746ADA80&dp-logid=40348000413485660013&cfg_category_keys=%5B%7B%22cfg_category_key%22%3A%22web_video_play_patch_ad_area%22%2C%22cfg_version%22%3A1%7D%2C%7B%22cfg_category_key%22%3A%22web_share_ads_adsterra_config%22%2C%22cfg_version%22%3A1%7D%5D&version=0&language_type=en HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207; _ga_06ZNKL8C2E=GS1.1.1701317649.1.0.1701317649.60.0.0; _ga=GA1.1.90785484.1701317649
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Encoding: gzip
Content-Type: application/json; charset=UTF-8
Date: Thu, 30 Nov 2023 04:14:05 GMT
Flow-Level: 3
Logid: 8887955094148031264
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
Vary: Accept-Encoding
X-Powered-By: DuboxServer
Yld: 8887955094148031264
Yme: ZIGW+Ss3QEsQdTYHUmr/tG1MvuUZTxz3rApNwyKE
Transfer-Encoding: chunked

region1.analytics.google.com/g/collect?v=2&tid=G-06ZNKL8C2E&gtm=45je3b60v875375078&_p=1701317649240&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=90785484.1701317649&ul=en-us&sr=1280x1024&sid=1701317649&sct=1&seg=0&dl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&dt=indha%20ponnu%20sammaya%20pool%20sappura%20but%20soothu%20veruchi%20oothukita%20du%20samma.mp4%20-%20Share%20Files%20Online%20%26%20Send%20Larges%20Files%20with%20TeraBox&_s=2&tfd=7118

216.239.34.36

204 No Content

0 B

URL POST HTTP/2
region1.analytics.google.com/g/collect?v=2&tid=G-06ZNKL8C2E&gtm=45je3b60v875375078&_p=1701317649240&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=90785484.1701317649&ul=en-us&sr=1280x1024&sid=1701317649&sct=1&seg=0&dl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&dt=indha%20ponnu%20sammaya%20pool%20sappura%20but%20soothu%20veruchi%20oothukita%20du%20samma.mp4%20-%20Share%20Files%20Online%20%26%20Send%20Larges%20Files%20with%20TeraBox&_s=2&tfd=7118
IP
216.239.34.36:443
ASN
#15169 GOOGLE

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-06ZNKL8C2E&gtm=45je3b60v875375078&_p=1701317649240&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=90785484.1701317649&ul=en-us&sr=1280x1024&sid=1701317649&sct=1&seg=0&dl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&dt=indha%20ponnu%20sammaya%20pool%20sappura%20but%20soothu%20veruchi%20oothukita%20du%20samma.mp4%20-%20Share%20Files%20Online%20%26%20Send%20Larges%20Files%20with%20TeraBox&_s=2&tfd=7118 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1733
Origin: https://www.1024tera.com
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
access-control-allow-origin: https://www.1024tera.com
date: Thu, 30 Nov 2023 04:14:05 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.1024tera.com/share/webmaster/getplan?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=C10AB00D6E61E57F9E931691514D6CD99943957C14CA8F1CE8A94D37DA7841969732C51BCE20E06E10F0BC0AF5E7AF79E5FF4B53EEF6BF3355753934EB8D6D0F13C24D46E3576C142E766BD524C82CB2F60084095BA2CFBEC07E047D746ADA80&dp-logid=40348000413485660015&suk=4398913988060

210.148.85.59

200 OK

103 B

URL GET HTTP/1.1
www.1024tera.com/share/webmaster/getplan?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=C10AB00D6E61E57F9E931691514D6CD99943957C14CA8F1CE8A94D37DA7841969732C51BCE20E06E10F0BC0AF5E7AF79E5FF4B53EEF6BF3355753934EB8D6D0F13C24D46E3576C142E766BD524C82CB2F60084095BA2CFBEC07E047D746ADA80&dp-logid=40348000413485660015&suk=4398913988060
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text
Size
103 B (103 bytes)
Hash
abe2da05d8c7d8bcc51d20954e447377
674d48cc695e2755b316362ee59fe5aa6a19fea3
022a9f85aeca36279a6aa5a8708be2396e41d8f3db9a009e0c3965d226d433c9

HTTP Headers

GET /share/webmaster/getplan?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=C10AB00D6E61E57F9E931691514D6CD99943957C14CA8F1CE8A94D37DA7841969732C51BCE20E06E10F0BC0AF5E7AF79E5FF4B53EEF6BF3355753934EB8D6D0F13C24D46E3576C142E766BD524C82CB2F60084095BA2CFBEC07E047D746ADA80&dp-logid=40348000413485660015&suk=4398913988060 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207; _ga_06ZNKL8C2E=GS1.1.1701317649.1.0.1701317649.60.0.0; _ga=GA1.1.90785484.1701317649
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Encoding: gzip
Content-Type: application/json; charset=UTF-8
Date: Thu, 30 Nov 2023 04:14:05 GMT
Flow-Level: 3
Http-X-Isis-Logid: 8887955121669782271
Logid: 8887955121669782271
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
Vary: Accept-Encoding
Yld: 8887955121669782271
Yme: ZIGW+Ss3QE0RYysMTnb+qnFLufkASwb8tAFMySKDmO37LgBDeAazuCQDDzY=
Content-Length: 103

210.148.85.59

200 OK

15 kB

URL GET HTTP/1.1
www.1024tera.com/api/getsyscfg?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=C10AB00D6E61E57F9E931691514D6CD99943957C14CA8F1CE8A94D37DA7841969732C51BCE20E06E10F0BC0AF5E7AF79E5FF4B53EEF6BF3355753934EB8D6D0F13C24D46E3576C142E766BD524C82CB2F60084095BA2CFBEC07E047D746ADA80&dp-logid=40348000413485660014&language_type=en&cfg_category_keys=%5B%5D&version=0
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Size
15 kB (15115 bytes)
Hash
13eed166a800f5f65b75b4151604e7c9
6f11dfb3237aa39f9de9c81ecf4b74e88bdbf7aa
e03562562c82e154225c4b8e0fbaafa58fc7d2b4433e17b4ac7f2643bbce7624

HTTP Headers

GET /api/getsyscfg?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=C10AB00D6E61E57F9E931691514D6CD99943957C14CA8F1CE8A94D37DA7841969732C51BCE20E06E10F0BC0AF5E7AF79E5FF4B53EEF6BF3355753934EB8D6D0F13C24D46E3576C142E766BD524C82CB2F60084095BA2CFBEC07E047D746ADA80&dp-logid=40348000413485660014&language_type=en&cfg_category_keys=%5B%5D&version=0 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207; _ga_06ZNKL8C2E=GS1.1.1701317649.1.0.1701317649.60.0.0; _ga=GA1.1.90785484.1701317649
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Encoding: gzip
Content-Type: application/json; charset=UTF-8
Date: Thu, 30 Nov 2023 04:14:05 GMT
Flow-Level: 3
Logid: 8887955121267438172
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
Vary: Accept-Encoding
X-Powered-By: DuboxServer
Yld: 8887955121267438172
Yme: ZIGW+Ss3QE0WaysHTWLiq29Xvv4cVAPxox5GyiqBmOy3DRxncydRwzQWgOgY
Transfer-Encoding: chunked

www.1024tera.com/api/analytics?type=web_share_video_premium_activity_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317649757

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?type=web_share_video_premium_activity_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317649757
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
827a2f9de289899a66682d5003e17a72
087f20490262e3c816ef4bdfd46a1555d5ffdde3
132bf1e24f5e8fbdd5c868658328ed35b97a7d697d813b4ab6875ec76b45be2d

HTTP Headers

GET /api/analytics?type=web_share_video_premium_activity_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317649757 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207; _ga_06ZNKL8C2E=GS1.1.1701317649.1.0.1701317649.60.0.0; _ga=GA1.1.90785484.1701317649
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Thu, 30 Nov 2023 04:14:05 GMT
Flow-Level: 3
Logid: 8887955129085460322
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8887955129085460322
Yme: ZIGW+Ss3QEsWdTEBUmr/tG1MvuUZTBz0rwpNwyCGzeehHhpybScrFIQV3A==
Content-Length: 44

www.1024tera.com/api/analytics?isHitCTR=false&type=web_share_CTR_config&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317649817

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?isHitCTR=false&type=web_share_CTR_config&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317649817
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
aa91083a503bdf5cefe202530164bdb5
6ba5e0dfee89a2dfe580115a7840ee9a986b866a
d10258b8f2752fd7f6fc9c13230aced521b8f7f0774027c63c813306fadea736

HTTP Headers

GET /api/analytics?isHitCTR=false&type=web_share_CTR_config&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317649817 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207; _ga_06ZNKL8C2E=GS1.1.1701317649.1.0.1701317649.60.0.0; _ga=GA1.1.90785484.1701317649
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Thu, 30 Nov 2023 04:14:05 GMT
Flow-Level: 3
Logid: 8887955136381114268
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8887955136381114268
Yme: ZIGW+Ss3QE0WaSsHTmniq29Xvv4cVAPxqB5OxymJmu21RgNlPjNGc0cA6rAY
Content-Length: 44

www.1024tera.com/share/mediameta?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=C10AB00D6E61E57F9E931691514D6CD99943957C14CA8F1CE8A94D37DA7841969732C51BCE20E06E10F0BC0AF5E7AF79E5FF4B53EEF6BF3355753934EB8D6D0F13C24D46E3576C142E766BD524C82CB2F60084095BA2CFBEC07E047D746ADA80&dp-logid=40348000413485660016&uk=4398913988060&shareid=1354979074&fid=914925796498354&timestamp=1701317649

210.148.85.59

200 OK

122 B

URL GET HTTP/1.1
www.1024tera.com/share/mediameta?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=C10AB00D6E61E57F9E931691514D6CD99943957C14CA8F1CE8A94D37DA7841969732C51BCE20E06E10F0BC0AF5E7AF79E5FF4B53EEF6BF3355753934EB8D6D0F13C24D46E3576C142E766BD524C82CB2F60084095BA2CFBEC07E047D746ADA80&dp-logid=40348000413485660016&uk=4398913988060&shareid=1354979074&fid=914925796498354&timestamp=1701317649
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text
Size
122 B (122 bytes)
Hash
8832f25e3d16f922c48d2d03441897aa
ff738cc604395e05163cc0014c1575f882e922c1
3daf125e0176dcea945a137b98e1f884f7506538a91cdb7eb734000a6e84969b

HTTP Headers

GET /share/mediameta?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=C10AB00D6E61E57F9E931691514D6CD99943957C14CA8F1CE8A94D37DA7841969732C51BCE20E06E10F0BC0AF5E7AF79E5FF4B53EEF6BF3355753934EB8D6D0F13C24D46E3576C142E766BD524C82CB2F60084095BA2CFBEC07E047D746ADA80&dp-logid=40348000413485660016&uk=4398913988060&shareid=1354979074&fid=914925796498354&timestamp=1701317649 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207; _ga_06ZNKL8C2E=GS1.1.1701317649.1.0.1701317649.60.0.0; _ga=GA1.1.90785484.1701317649
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Encoding: gzip
Content-Type: application/json; charset=UTF-8
Date: Thu, 30 Nov 2023 04:14:05 GMT
Flow-Level: 3
Http-X-Isis-Logid: 8887955126411496924
Logid: 8887955126411496924
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
Vary: Accept-Encoding
Yld: 8887955126411496924
Yme: ZIGW+Ss3QE0WaysHT2Liq29Xvv4cVAPxrB5NwiqBmO2xUVg3M3kSYzFjfRgY
Content-Length: 122

region1.analytics.google.com/g/collect?v=2&tid=G-06ZNKL8C2E&gtm=45je3b60v875375078&_p=1701317649240&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=90785484.1701317649&ul=en-us&sr=1280x1024&_eu=AEA&_s=3&sid=1701317649&sct=1&seg=0&dl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&dt=indha%20ponnu%20sammaya%20pool%20sappura%20but%20soothu%20veruchi%20oothukita%20du%20samma.mp4%20-%20Share%20Files%20Online%20%26%20Send%20Larges%20Files%20with%20TeraBox&en=scroll&ep.origin=firebase&epn.percent_scrolled=90&tfd=7335

216.239.34.36

204 No Content

0 B

URL POST HTTP/3
region1.analytics.google.com/g/collect?v=2&tid=G-06ZNKL8C2E&gtm=45je3b60v875375078&_p=1701317649240&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=90785484.1701317649&ul=en-us&sr=1280x1024&_eu=AEA&_s=3&sid=1701317649&sct=1&seg=0&dl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&dt=indha%20ponnu%20sammaya%20pool%20sappura%20but%20soothu%20veruchi%20oothukita%20du%20samma.mp4%20-%20Share%20Files%20Online%20%26%20Send%20Larges%20Files%20with%20TeraBox&en=scroll&ep.origin=firebase&epn.percent_scrolled=90&tfd=7335
IP
216.239.34.36:443
ASN
#15169 GOOGLE

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-06ZNKL8C2E&gtm=45je3b60v875375078&_p=1701317649240&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=90785484.1701317649&ul=en-us&sr=1280x1024&_eu=AEA&_s=3&sid=1701317649&sct=1&seg=0&dl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&dt=indha%20ponnu%20sammaya%20pool%20sappura%20but%20soothu%20veruchi%20oothukita%20du%20samma.mp4%20-%20Share%20Files%20Online%20%26%20Send%20Larges%20Files%20with%20TeraBox&en=scroll&ep.origin=firebase&epn.percent_scrolled=90&tfd=7335 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.1024tera.com
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

HTTP/3 204 No Content
access-control-allow-origin: https://www.1024tera.com
date: Thu, 30 Nov 2023 04:14:05 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.1024tera.com/api/analytics?domId=adsterra&showType=1x2&country=NO&where=pause&type=web_video_ad_adsterra_show_has_document&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317650174

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?domId=adsterra&showType=1x2&country=NO&where=pause&type=web_video_ad_adsterra_show_has_document&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317650174
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
361dcdb318870c8e5dedde45da53963a
c1e7b142b35c199bec5cadbbab3a2ad9908d1b79
bbd89448e421d5387a16cdc05a99d8c8972d96668795997af9ce91d8050bf064

HTTP Headers

GET /api/analytics?domId=adsterra&showType=1x2&country=NO&where=pause&type=web_video_ad_adsterra_show_has_document&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317650174 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207; _ga_06ZNKL8C2E=GS1.1.1701317649.1.0.1701317649.60.0.0; _ga=GA1.1.90785484.1701317649
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Thu, 30 Nov 2023 04:14:05 GMT
Flow-Level: 3
Logid: 8887955181589009004
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8887955181589009004
Yme: ZIGW+Ss3QEsUdTcGUmr/tG1MvuUYQxzxqApNwyKKmu+zS0YzMT9Hn/+t3A==
Content-Length: 44

www.1024tera.com/api/analytics?type=web_no_ad_share_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317650254

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?type=web_no_ad_share_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317650254
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
b8a77b5afa8eeb009229ead7d8ed481e
dc8de13ecffb2aac6c1988f7f6f2098f332d01bf
6b249992ab2e4b56f65621c5dad1cca6db47d9de6ba3b2f7e100b72f60b2189e

HTTP Headers

GET /api/analytics?type=web_no_ad_share_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317650254 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207; _ga_06ZNKL8C2E=GS1.1.1701317649.1.0.1701317650.59.0.0; _ga=GA1.1.90785484.1701317649
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Thu, 30 Nov 2023 04:14:06 GMT
Flow-Level: 3
Logid: 8887955202294778381
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8887955202294778381
Yme: ZIGW+Ss3QEsXdTQCUmr/tG1MvuUZSRzxrgpNwySG6enETCw6OHeDqgwm3A==
Content-Length: 44

www.1024tera.com/api/analytics?type=web_no_ad_share_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317650253

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?type=web_no_ad_share_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317650253
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
8299044321fdd2f3b0bbb6ef2299d1eb
9ac1516bd201578c3c55f589ebdff6a91fc01417
56d428f8c65a1e1fc2195d6cad8bc2a453375cab550aa97fd5fdc0a273dcc9a3

HTTP Headers

GET /api/analytics?type=web_no_ad_share_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317650253 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207; _ga_06ZNKL8C2E=GS1.1.1701317649.1.0.1701317650.59.0.0; _ga=GA1.1.90785484.1701317649
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Thu, 30 Nov 2023 04:14:06 GMT
Flow-Level: 3
Logid: 8887955202095419186
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8887955202095419186
Yme: ZIGW+Ss3QE0WaSsESWLiq29Xvv4cVAPxqB5IyiqBmOS3
Content-Length: 44

www.1024tera.com/api/analytics?type=web_skip_share_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317650254

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?type=web_skip_share_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317650254
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
23ad5cdb7b5554c15141176e92d9800e
48bfa8038081ab857ec0b582f09794132d275106
e1706fe12ad52f9ac5c2e1b95d34823e8f9d56be7c4e6adea034dce7aa3238eb

HTTP Headers

GET /api/analytics?type=web_skip_share_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317650254 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207; _ga_06ZNKL8C2E=GS1.1.1701317649.1.0.1701317650.59.0.0; _ga=GA1.1.90785484.1701317649
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Thu, 30 Nov 2023 04:14:06 GMT
Flow-Level: 3
Logid: 8887955206862755952
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8887955206862755952
Yme: ZIGW+Ss3QE0RYisES2riq29Xvv4cVAPxqR5LwCqBmOmwOb36fg==
Content-Length: 44

www.1024tera.com/api/getsyscfg?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=C10AB00D6E61E57F9E931691514D6CD99943957C14CA8F1CE8A94D37DA7841969732C51BCE20E06E10F0BC0AF5E7AF79E5FF4B53EEF6BF3355753934EB8D6D0F13C24D46E3576C142E766BD524C82CB2F60084095BA2CFBEC07E047D746ADA80&dp-logid=40348000413485660017&cfg_category_keys=%5B%7B%22cfg_category_key%22%3A%22web_video_play_patch_ad_area%22%2C%22cfg_version%22%3A1%7D%2C%7B%22cfg_category_key%22%3A%22web_share_ads_adsterra_config%22%2C%22cfg_version%22%3A1%7D%5D&version=0&language_type=en

210.148.85.59

200 OK

968 B

URL GET HTTP/1.1
www.1024tera.com/api/getsyscfg?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=C10AB00D6E61E57F9E931691514D6CD99943957C14CA8F1CE8A94D37DA7841969732C51BCE20E06E10F0BC0AF5E7AF79E5FF4B53EEF6BF3355753934EB8D6D0F13C24D46E3576C142E766BD524C82CB2F60084095BA2CFBEC07E047D746ADA80&dp-logid=40348000413485660017&cfg_category_keys=%5B%7B%22cfg_category_key%22%3A%22web_video_play_patch_ad_area%22%2C%22cfg_version%22%3A1%7D%2C%7B%22cfg_category_key%22%3A%22web_share_ads_adsterra_config%22%2C%22cfg_version%22%3A1%7D%5D&version=0&language_type=en
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with very long lines (3720), with no line terminators
Size
968 B (968 bytes)
Hash
9d8cf35ad5c1f887f1d057ddbc8f861d
c287aed4277afe44ada7c9125a46fa56b94d5221
94b133e894daba526013a3f4e8e890f0d2dc3d2d3ea0bcd812e8d6a8403b5160

HTTP Headers

GET /api/getsyscfg?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=C10AB00D6E61E57F9E931691514D6CD99943957C14CA8F1CE8A94D37DA7841969732C51BCE20E06E10F0BC0AF5E7AF79E5FF4B53EEF6BF3355753934EB8D6D0F13C24D46E3576C142E766BD524C82CB2F60084095BA2CFBEC07E047D746ADA80&dp-logid=40348000413485660017&cfg_category_keys=%5B%7B%22cfg_category_key%22%3A%22web_video_play_patch_ad_area%22%2C%22cfg_version%22%3A1%7D%2C%7B%22cfg_category_key%22%3A%22web_share_ads_adsterra_config%22%2C%22cfg_version%22%3A1%7D%5D&version=0&language_type=en HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207; _ga_06ZNKL8C2E=GS1.1.1701317649.1.0.1701317650.59.0.0; _ga=GA1.1.90785484.1701317649
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Encoding: gzip
Content-Type: application/json; charset=UTF-8
Date: Thu, 30 Nov 2023 04:14:06 GMT
Flow-Level: 3
Logid: 8887955216075649090
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
Vary: Accept-Encoding
X-Powered-By: DuboxServer
Yld: 8887955216075649090
Yme: ZIGW+Ss3QE0WaisMRnb+qnFLufkASwb3tAJOwiqBmOi1bEVD
Transfer-Encoding: chunked

www.1024tera.com/api/analytics?type=videoplayer_open&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317650316

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?type=videoplayer_open&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317650316
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
80aebdab01cb236576f0dd295855c0e3
358b6566f812ff5caf5fb303b16bc0caa62ac843
0b33005cda322d26e3a63bb8fa1138a7e8e1938e88f8de3226d77707b8277ce0

HTTP Headers

GET /api/analytics?type=videoplayer_open&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317650316 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207; _ga_06ZNKL8C2E=GS1.1.1701317649.1.0.1701317650.59.0.0; _ga=GA1.1.90785484.1701317649
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Thu, 30 Nov 2023 04:14:06 GMT
Flow-Level: 3
Logid: 8887955222369568967
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8887955222369568967
Yme: ZIGW+Ss3QEsUdTEBUmr/tG1MvuUYQxzxrgpNwyGGtGGhfScEgOfjNj/x3A==
Content-Length: 44

www.1024tera.com/api/analytics?from=shareLink&type=videoplayer_open_key_way&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317650316

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?from=shareLink&type=videoplayer_open_key_way&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317650316
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
b9efdbccd43387e65cf99b089801749e
37eb2ef20e58bcdbd5100d4bb85f68979aa6b840
e51b6775d699eae6577cc77ec94da75aff3ced8b6962d0b55ed5b32fae87b276

HTTP Headers

GET /api/analytics?from=shareLink&type=videoplayer_open_key_way&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317650316 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207; _ga_06ZNKL8C2E=GS1.1.1701317649.1.0.1701317650.59.0.0; _ga=GA1.1.90785484.1701317649
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Thu, 30 Nov 2023 04:14:06 GMT
Flow-Level: 3
Logid: 8887955218694576054
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8887955218694576054
Yme: ZIGW+Ss3QE0WaCsNSnb+qnFLufkASwb2tAFJwSqBmOuzCB0vZzibVh8FUDY=
Content-Length: 44

pl18043214.highperformancecpmgate.com/5c8996e8e3cb5e10b7fd36115b800ac7/invoke.js

192.243.59.20

200 OK

9.3 kB

URL GET HTTP/1.1
pl18043214.highperformancecpmgate.com/5c8996e8e3cb5e10b7fd36115b800ac7/invoke.js
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerLet's Encrypt
Subjecthighperformancecpmgate.com
FingerprintEC:5C:1C:3A:AB:08:18:CE:84:A7:E0:33:D8:44:0B:AF:12:12:CE:C4
ValiditySat, 28 Oct 2023 06:31:01 GMT - Fri, 26 Jan 2024 06:31:00 GMT

File type
Unicode text, UTF-8 text, with very long lines (25154), with no line terminators
Size
9.3 kB (9330 bytes)
Hash
8aecfd49429139980d67f8d3fefc056f
d3e587984e72fa7267b8e3c2e594dc946d9d8782
38e18d4617ec4d9bad4e0d2f35d3ae03a490cbdeb6f4a792884565cc8a0bbc08

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /5c8996e8e3cb5e10b7fd36115b800ac7/invoke.js HTTP/1.1
Host: pl18043214.highperformancecpmgate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 30 Nov 2023 04:14:06 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 78baf8cd4550649357d427964bd62401
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

www.1024tera.com/api/analytics?type=web_share_video_carousel_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317650621

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?type=web_share_video_carousel_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317650621
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
50ac1919c319143dd9cdadefe760c431
e53765c808ec1f3e7c6fc810525664acbbef82b5
36a37e7486a8332adf50980735f0ff926e98911ddecbc09e745875e8c4dc3bcf

HTTP Headers

GET /api/analytics?type=web_share_video_carousel_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317650621 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207; _ga_06ZNKL8C2E=GS1.1.1701317649.1.0.1701317650.59.0.0; _ga=GA1.1.90785484.1701317649
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Thu, 30 Nov 2023 04:14:06 GMT
Flow-Level: 3
Logid: 8887955315158262413
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8887955315158262413
Yme: ZIGW+Ss3QE0WaCsESWLiq29Xvv4cVAPxqR5LwSqBmOi5Cw9sdXpPQ5qbQzYY
Content-Length: 44

www.1024tera.com/api/analytics?value=8194&type=web_sharing_link_tti&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317650623

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?value=8194&type=web_sharing_link_tti&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317650623
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
02c54686c4c2eb411cbf6c8bb902b330
1da9bfd28366053edda329e4c0c9140d8209e068
36bccf1d3059af7f8661613ed2fb7015cc0dea40d69548f2f6eda81a93296485

HTTP Headers

GET /api/analytics?value=8194&type=web_sharing_link_tti&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317650623 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207; _ga_06ZNKL8C2E=GS1.1.1701317649.1.0.1701317650.59.0.0; _ga=GA1.1.90785484.1701317649
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Thu, 30 Nov 2023 04:14:06 GMT
Flow-Level: 3
Logid: 8887955316050191448
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8887955316050191448
Yme: ZIGW+Ss3QEsUdTcEUmr/tG1MvuUZThz3rApNwySLrlGKORU=
Content-Length: 44

www.1024tera.com/api/analytics?domId=adsterra&showType=1x2&country=NO&where=head&type=web_video_ad_adsterra_show_has_document&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317650705

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?domId=adsterra&showType=1x2&country=NO&where=head&type=web_video_ad_adsterra_show_has_document&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317650705
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
adb6df471a2a1754aa63fa6c0242617f
1b654f34e4d818557d4f5f3f1c4e2267907bd08a
c6085ab9440be5ce11811c6508b39a958f9ebdd3113f5780d82ee7bf6275e7ed

HTTP Headers

GET /api/analytics?domId=adsterra&showType=1x2&country=NO&where=head&type=web_video_ad_adsterra_show_has_document&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317650705 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207; _ga_06ZNKL8C2E=GS1.1.1701317649.1.0.1701317650.59.0.0; _ga=GA1.1.90785484.1701317649
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Thu, 30 Nov 2023 04:14:06 GMT
Flow-Level: 3
Logid: 8887955328364360761
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8887955328364360761
Yme: ZIGW+Ss3QEsQdTcEUmr/tG1MvuUYQhz3qwpNwyKKx6/4IAFneC9V3PWv3A==
Content-Length: 44

www.1024tera.com/api/analytics?type=videoplayer_play_btn_click&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317650735

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?type=videoplayer_play_btn_click&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317650735
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
6dc3ad8e4a4a7fed35f4e4ce4760e463
6c72c693ff293b1a6f8d15518fbbcd0f366cf3cd
f0a7cc7891fbfe176121240555fe6cebbd90ae8d2c4a37021f9d1208edbf5b8d

HTTP Headers

GET /api/analytics?type=videoplayer_play_btn_click&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317650735 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207; _ga_06ZNKL8C2E=GS1.1.1701317649.1.0.1701317650.59.0.0; _ga=GA1.1.90785484.1701317649
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Thu, 30 Nov 2023 04:14:06 GMT
Flow-Level: 3
Logid: 8887955331765918162
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8887955331765918162
Yme: ZIGW+Ss3QEoadTcNUmr/tG1MvuUZShz0owpNwyaC
Content-Length: 44

s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-3c39bfc4.baa0ab5e.js

90.84.161.16

200 OK

184 kB

URL GET HTTP/2
s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-3c39bfc4.baa0ab5e.js
IP
90.84.161.16:443
ASN
#0

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert Inc
Subject*.teraboxcdn.com
Fingerprint4C:36:32:B9:A0:68:F6:C2:A7:95:E4:E6:DA:DA:D7:AF:7A:C3:41:44
ValidityTue, 28 Mar 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT

File type
gzip compressed data, from Unix\012- data
Size
184 kB (184419 bytes)
Hash
764d689c8b0a3783d9aa4ef6e0a2f8e7
bfdc87440b49bfc7325f5c069282a4878c7e3d07
6133dfea32fd358f4e8e23021fb22247e8560eac979a4fa11621d6c58d8252b7

HTTP Headers

GET /fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-3c39bfc4.baa0ab5e.js HTTP/1.1
Host: s2.teraboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 30 Nov 2023 04:14:05 GMT
content-type: application/javascript
server: openresty
content-md5: J2TcvyWm6gv2Eaqsv2udoA==
etag: W/"2764dcbf25a6ea0bf611aaacbf6b9da0"
expires: Sat, 04 Nov 2023 08:02:39 GMT
last-modified: Wed, 01 Nov 2023 07:11:44 GMT
x-bce-content-crc32: 568789530
x-bce-debug-id: xbaDKK50jlBZJ18L45fu3bSp+fDzE/r7QhsyaypWutuc/ChXmeJlm9RANAVDEiI6LAFEIbdQCthtn8HiVncnMQ==
x-bce-flow-control-type: -1
x-bce-is-transition: false
x-bce-request-id: 45ec87e7-f8da-4b01-bf46-6d2b8c70cc37
x-bce-storage-class: STANDARD
x-ccdn-expires: 273453
via: EU-GER-frankfurt-EDGE5-CACHE6[2],EU-GER-frankfurt-EDGE5-CACHE5[0,TCP_HIT,0],EU-GER-frankfurt-GLOBAL1-CACHE6[31],EU-GER-frankfurt-GLOBAL1-CACHE14[0,TCP_HIT,29]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 2592000
nginx-hit: 1
age: 2491507
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

proftrafficcounter.com/stats

18.185.191.211

200 OK

40 B

URL GET HTTP/2
proftrafficcounter.com/stats
IP
18.185.191.211:443
ASN
#16509 AMAZON-02

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
1cae0e5fa7c9cf90a39ac5b221ac0783
7aa97dd176d1d5e69a8ca298863e54f006e4bfd8
40aa6aa2753f5ec10ec2477398a1308f2d6b6aaaa12903796da32f1c164c4bb8

HTTP Headers

GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.1024tera.com
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 30 Nov 2023 04:14:06 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.1024tera.com
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=fcbc17f3-cd58-4a97-939d-35d351918c91:3:1; expires=Sun, 27 Nov 2033 04:14:06 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

ymg-api.terabox.com/abdr?data=eyJkYXRhIjoiYzFhZDgwYWEyOGFhMjE4YzE3N2RhNzg2OGU1NTU2NDc5NThhNDA1MWFkYjQ3NTMyNjhjYThiNWVkYzhmYjEzMWM5YjliNGNlYWI0OWRiZDVjYTliOGM1ODE1NDY5ZDBkZWM2ZmQ3MTE5ZWM2NDIwYjdhOTE3NjAxMGM2MjQwYjE1YWNhMTU3MWUxMGZkMDlhMDdkNjc1MmExZGMwZWY4YWFiYTllNGJiMWU5ZWZmNjI4NWEyMjk1Y2JiMmNiOGZjNjJiMGVhYjg1OGY1NzE0ZDEzN2I1NTg0M2RjMGRmZWEyOTBiMTA5Mjg0MjUxNmNmY2JjNWJhYWIwNWFjODVkNDEzNDNmM2EwZWI5YjFjMDUyYTA2MWQwYzMwYWE0NWQ4MDdjZGZjZDcyZjAxNDE5MjFlZTNlM2MyYzc3Nzg0Mjk2MTI1ODVjZmE3ZTY0OWU0NGM0OGVkMjQ0MWMxODFlOGU3NjQ2ZGUzNmUxNWU3NTY0NDU4ZjlmZTc1ODRiMWI2ZWFkOGYwMzM0ZWYyYmFmNzA5YTkzMGI2OGFjY2UwMDI5MWI1ZTNmMjgyOGMzYWU5MWEyOTkxZDIwMjZjOGMwYTU2YWQ1ODY2ZWIzNjhlYWMwMzk3ZjcwMmY5NWE5MmVjNjNmNGI3NTMxODk3NGY2NmNmOWE2MDU0YTExNWJjMWI1M2FhNGYxM2Y2ODhkOWE2ZGUwZWE1YWM3ZjNjOGJiYTFhYTAxYWUxZjYzODdlNDI4NTQ1MjY3MjZhYzQ4NjFiMTFmMzM1NWZkYmQxOGU5ZWRlN2I0NDBjNGQ2Zjk0NGNiYmYzZGRlNmI0NmJjM2ZjM2MxYjU1ZjVjN2YwM2RjYmY4ODAwOWFhOGVlM2JlODEwYTg4YTIzZTI0OTFjMzU3ZDcxMmZiYThhMTFkNjgzZTkxMDQwYjg2YTQxN2QxNTYiLCJrZXlfaWQiOiI0ZTM3NDRmZDdjNDg0Mzc3In0%3D&_=0.03598388752337833

111.108.51.10

22 B

URL GET
ymg-api.terabox.com/abdr?data=eyJkYXRhIjoiYzFhZDgwYWEyOGFhMjE4YzE3N2RhNzg2OGU1NTU2NDc5NThhNDA1MWFkYjQ3NTMyNjhjYThiNWVkYzhmYjEzMWM5YjliNGNlYWI0OWRiZDVjYTliOGM1ODE1NDY5ZDBkZWM2ZmQ3MTE5ZWM2NDIwYjdhOTE3NjAxMGM2MjQwYjE1YWNhMTU3MWUxMGZkMDlhMDdkNjc1MmExZGMwZWY4YWFiYTllNGJiMWU5ZWZmNjI4NWEyMjk1Y2JiMmNiOGZjNjJiMGVhYjg1OGY1NzE0ZDEzN2I1NTg0M2RjMGRmZWEyOTBiMTA5Mjg0MjUxNmNmY2JjNWJhYWIwNWFjODVkNDEzNDNmM2EwZWI5YjFjMDUyYTA2MWQwYzMwYWE0NWQ4MDdjZGZjZDcyZjAxNDE5MjFlZTNlM2MyYzc3Nzg0Mjk2MTI1ODVjZmE3ZTY0OWU0NGM0OGVkMjQ0MWMxODFlOGU3NjQ2ZGUzNmUxNWU3NTY0NDU4ZjlmZTc1ODRiMWI2ZWFkOGYwMzM0ZWYyYmFmNzA5YTkzMGI2OGFjY2UwMDI5MWI1ZTNmMjgyOGMzYWU5MWEyOTkxZDIwMjZjOGMwYTU2YWQ1ODY2ZWIzNjhlYWMwMzk3ZjcwMmY5NWE5MmVjNjNmNGI3NTMxODk3NGY2NmNmOWE2MDU0YTExNWJjMWI1M2FhNGYxM2Y2ODhkOWE2ZGUwZWE1YWM3ZjNjOGJiYTFhYTAxYWUxZjYzODdlNDI4NTQ1MjY3MjZhYzQ4NjFiMTFmMzM1NWZkYmQxOGU5ZWRlN2I0NDBjNGQ2Zjk0NGNiYmYzZGRlNmI0NmJjM2ZjM2MxYjU1ZjVjN2YwM2RjYmY4ODAwOWFhOGVlM2JlODEwYTg4YTIzZTI0OTFjMzU3ZDcxMmZiYThhMTFkNjgzZTkxMDQwYjg2YTQxN2QxNTYiLCJrZXlfaWQiOiI0ZTM3NDRmZDdjNDg0Mzc3In0%3D&_=0.03598388752337833
IP
111.108.51.10:0
ASN
#2516 KDDI CORPORATION

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert Inc
Subject*.terabox.com
Fingerprint4F:30:79:83:60:E0:58:E8:DA:05:09:38:E1:6D:CD:F9:46:33:D6:5F
ValidityTue, 28 Mar 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
22 B (22 bytes)
Hash
9d4568c009d203ab10e33ea9953a0264
dd29ecf524b030a65261e3059c48ab9e1ecb2585
12ae32cb1ec02d01eda3581b127c1fee3b0dc53572ed6baf239721a03d82e126

HTTP Headers

GET /abdr?data=eyJkYXRhIjoiYzFhZDgwYWEyOGFhMjE4YzE3N2RhNzg2OGU1NTU2NDc5NThhNDA1MWFkYjQ3NTMyNjhjYThiNWVkYzhmYjEzMWM5YjliNGNlYWI0OWRiZDVjYTliOGM1ODE1NDY5ZDBkZWM2ZmQ3MTE5ZWM2NDIwYjdhOTE3NjAxMGM2MjQwYjE1YWNhMTU3MWUxMGZkMDlhMDdkNjc1MmExZGMwZWY4YWFiYTllNGJiMWU5ZWZmNjI4NWEyMjk1Y2JiMmNiOGZjNjJiMGVhYjg1OGY1NzE0ZDEzN2I1NTg0M2RjMGRmZWEyOTBiMTA5Mjg0MjUxNmNmY2JjNWJhYWIwNWFjODVkNDEzNDNmM2EwZWI5YjFjMDUyYTA2MWQwYzMwYWE0NWQ4MDdjZGZjZDcyZjAxNDE5MjFlZTNlM2MyYzc3Nzg0Mjk2MTI1ODVjZmE3ZTY0OWU0NGM0OGVkMjQ0MWMxODFlOGU3NjQ2ZGUzNmUxNWU3NTY0NDU4ZjlmZTc1ODRiMWI2ZWFkOGYwMzM0ZWYyYmFmNzA5YTkzMGI2OGFjY2UwMDI5MWI1ZTNmMjgyOGMzYWU5MWEyOTkxZDIwMjZjOGMwYTU2YWQ1ODY2ZWIzNjhlYWMwMzk3ZjcwMmY5NWE5MmVjNjNmNGI3NTMxODk3NGY2NmNmOWE2MDU0YTExNWJjMWI1M2FhNGYxM2Y2ODhkOWE2ZGUwZWE1YWM3ZjNjOGJiYTFhYTAxYWUxZjYzODdlNDI4NTQ1MjY3MjZhYzQ4NjFiMTFmMzM1NWZkYmQxOGU5ZWRlN2I0NDBjNGQ2Zjk0NGNiYmYzZGRlNmI0NmJjM2ZjM2MxYjU1ZjVjN2YwM2RjYmY4ODAwOWFhOGVlM2JlODEwYTg4YTIzZTI0OTFjMzU3ZDcxMmZiYThhMTFkNjgzZTkxMDQwYjg2YTQxN2QxNTYiLCJrZXlfaWQiOiI0ZTM3NDRmZDdjNDg0Mzc3In0%3D&_=0.03598388752337833 HTTP/1.1
Host: ymg-api.terabox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Cookie: ab_jid=fc4bb578c9d62b5b66d3215d4ff2add78be9; ab_bid=fc4bb578c9d62b5b66d3215d4ff2add78be9; ab_sr=1.0.1_NjVjZTJlYmI4MmYyZjA1ZTI1MzllZmZjYmJjYzBhNjRkZGY2N2FmNmZiZjliNDRiZjk5M2M5Yjk4ZGNiNjIyN2Y0NTA4ZWY4YjZlNzIwNTkzMTZmYjY3ZmY5YjgxNmYyNzk4YWNlOTEzNmFmMGI4MDJiNDE2ZDA2Yjk3NzY2YzE3Y2E0NDFmZWJhZjhkOWY3ZWMxMDc4YjBlNTY5NzNlMA==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 30 Nov 2023 04:14:06 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
yld: 8887955417037916582
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Origin, Host, Content-Type, x-requested-with, X-Custom-Header
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE
Access-Control-Allow-Origin: https://www.1024tera.com
Access-Control-Max-Age: 3600
P3P: CP=" OTI DSP COR IVA OUR IND COM "
yme: ZIGW+Ss3QE0WaSsESWjiq29Xvv4cVAXxtAJIySiEnuzULC9QXgFm4zvrbuoY
Server: nginx
logid: 8887955417037916582
Flow-level: 3
Content-Encoding: gzip

pl18427035.highcpmrevenuenetwork.com/627e2f8a423975bc4bd7a76128c2d552/invoke.js

192.243.61.227

200 OK

9.3 kB

URL GET HTTP/1.1
pl18427035.highcpmrevenuenetwork.com/627e2f8a423975bc4bd7a76128c2d552/invoke.js
IP
192.243.61.227:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerLet's Encrypt
Subjecthighcpmrevenuenetwork.com
FingerprintEE:67:85:23:95:09:5B:1B:88:45:C2:65:23:64:81:DD:65:D4:15:14
ValidityThu, 19 Oct 2023 06:40:46 GMT - Wed, 17 Jan 2024 06:40:45 GMT

File type
Unicode text, UTF-8 text, with very long lines (25142), with no line terminators
Size
9.3 kB (9332 bytes)
Hash
459dbf63f921e5b06febaa6ebe6dc1b7
6d12fd20b2195b3b3a18b4afe2b8f9358960a957
580b6522958f4ee940942ee5057628cfc3d4c822dbee93045573cb1c76d49099

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /627e2f8a423975bc4bd7a76128c2d552/invoke.js HTTP/1.1
Host: pl18427035.highcpmrevenuenetwork.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 30 Nov 2023 04:14:07 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 68fcbf933fea96cf86b422b84feb0b9e
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

pinefluencydiffuse.com/1e/1b/bd/1e1bbdc937ccd35cd1897b4e58c7407b.js

192.243.61.225

200 OK

23 kB

URL GET HTTP/1.1
pinefluencydiffuse.com/1e/1b/bd/1e1bbdc937ccd35cd1897b4e58c7407b.js
IP
192.243.61.225:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerLet's Encrypt
Subjectpinefluencydiffuse.com
FingerprintE5:42:FE:17:FA:15:29:E3:4A:5A:83:BE:95:33:24:24:A4:B4:64:8B
ValidityTue, 28 Nov 2023 07:53:50 GMT - Mon, 26 Feb 2024 07:53:49 GMT

File type
ASCII text, with very long lines (59626), with no line terminators
Size
23 kB (23355 bytes)
Hash
edaa8d48dc1e1fbb31c44d0207d63385
053dca0606177def5d41a8310a704239d031eb21
f4e84883dd399086e951b4d0559c4b29ef0d981c14d33b6bd49543c7227903dd

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /1e/1b/bd/1e1bbdc937ccd35cd1897b4e58c7407b.js HTTP/1.1
Host: pinefluencydiffuse.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 30 Nov 2023 04:14:07 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 8dd69ae1ff8ad535f9431fd84af385f6
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

pinefluencydiffuse.com/ntv.json?key=5c8996e8e3cb5e10b7fd36115b800ac7&vstc=1

192.243.61.225

200 OK

4.2 kB

URL GET HTTP/1.1
pinefluencydiffuse.com/ntv.json?key=5c8996e8e3cb5e10b7fd36115b800ac7&vstc=1
IP
192.243.61.225:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerLet's Encrypt
Subjectpinefluencydiffuse.com
FingerprintE5:42:FE:17:FA:15:29:E3:4A:5A:83:BE:95:33:24:24:A4:B4:64:8B
ValidityTue, 28 Nov 2023 07:53:50 GMT - Mon, 26 Feb 2024 07:53:49 GMT

File type
JSON data\012- , ASCII text, with very long lines (4213), with no line terminators
Size
4.2 kB (4213 bytes)
Hash
4dfd96397e2c639ba98d52282442bab0
13d3ed18dc705b4f13101940b990d04c2c3e878f
ae71b138329010eecff057f05f00897f997cbe5c4af5ecd023a946a522ba94d3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ntv.json?key=5c8996e8e3cb5e10b7fd36115b800ac7&vstc=1 HTTP/1.1
Host: pinefluencydiffuse.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.1024tera.com
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 30 Nov 2023 04:14:07 GMT
Content-Type: application/json
Content-Length: 4213
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.1024tera.com
Access-Control-Allow-Origin: https://www.1024tera.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=17942715; expires=Fri, 01 Dec 2023 04:14:07 GMT; secure; SameSite=None
pdhtkv=true; expires=Fri, 01 Dec 2023 04:14:07 GMT; secure; SameSite=None
uncs=1; expires=Fri, 01 Dec 2023 04:14:07 GMT; secure; SameSite=None
pdhtkv49=true; expires=Fri, 01 Dec 2023 04:14:07 GMT; secure; SameSite=None
uncs49=1; expires=Fri, 01 Dec 2023 04:14:07 GMT; secure; SameSite=None
nlec5c8996e8e3cb5e10b7fd36115b800ac7=[2229329]; expires=Thu, 30 Nov 2023 04:14:12 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 7e9ac495b0f91f4b3584d3f132946dcf
Strict-Transport-Security: max-age=0; includeSubdomains

data.1024tera.com/thumbnail/550c57367061105682a9671bb17be626?fid=4398913988060-250528-914925796498354&time=1701316800&rt=sh&sign=FDTAER-DCb740ccc5511e5e8fedcff06b081203-z6DegmASVrTHaQg%2BbNjmG3z4sT8%3D&expires=8h&chkv=0&chkbd=0&chkpc=&dp-logid=8887954734945679425&dp-callid=0&size=c850_u580&quality=100&vuk=-&ft=video

111.108.51.87

200 OK

39 kB

URL GET HTTP/1.1
data.1024tera.com/thumbnail/550c57367061105682a9671bb17be626?fid=4398913988060-250528-914925796498354&time=1701316800&rt=sh&sign=FDTAER-DCb740ccc5511e5e8fedcff06b081203-z6DegmASVrTHaQg%2BbNjmG3z4sT8%3D&expires=8h&chkv=0&chkbd=0&chkpc=&dp-logid=8887954734945679425&dp-callid=0&size=c850_u580&quality=100&vuk=-&ft=video
IP
111.108.51.87:443
ASN
#2516 KDDI CORPORATION

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPCM), density 70x70, segment length 16, baseline, precision 8, 850x476, components 3\012- data
Size
39 kB (39127 bytes)
Hash
a0f337db44bbcf78f208cbc9f293de4b
6fa819be65070959a85b06987fb112727e680e93
1982e0fd5cbadaef1c44540c53c60e49e7c469567ad4cca30aca312f4b229975

HTTP Headers

GET /thumbnail/550c57367061105682a9671bb17be626?fid=4398913988060-250528-914925796498354&time=1701316800&rt=sh&sign=FDTAER-DCb740ccc5511e5e8fedcff06b081203-z6DegmASVrTHaQg%2BbNjmG3z4sT8%3D&expires=8h&chkv=0&chkbd=0&chkpc=&dp-logid=8887954734945679425&dp-callid=0&size=c850_u580&quality=100&vuk=-&ft=video HTTP/1.1
Host: data.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Cookie: browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207; _ga_06ZNKL8C2E=GS1.1.1701317649.1.0.1701317650.59.0.0; _ga=GA1.1.90785484.1701317649
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 30 Nov 2023 04:14:07 GMT
Content-Type: image/jpeg
Connection: keep-alive
x-bs-client-ip: OTEuOTAuNDIuMTU0
x-bs-request-id: MTAuMjUyLjc2LjQzOjIwMzU6ODg4Nzk1NDczNDk0NTY3OTQyNToyMDIzLTExLTMwIDEyOjE0OjA3
Content-Length: 39127
Server: TERABOX UI

s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-fdedac32.68a159c0.js

90.84.161.16

200 OK

45 kB

URL GET HTTP/2
s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-fdedac32.68a159c0.js
IP
90.84.161.16:443
ASN
#0

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert Inc
Subject*.teraboxcdn.com
Fingerprint4C:36:32:B9:A0:68:F6:C2:A7:95:E4:E6:DA:DA:D7:AF:7A:C3:41:44
ValidityTue, 28 Mar 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT

File type
gzip compressed data, from Unix\012- data
Size
45 kB (45306 bytes)
Hash
9043978baef17ca10c1d34faf5dda2ab
5c439e3d3c7c20d2a7aad09b475d550f9fd090c8
cf239bf7b726acc5ce194dc493c30fe765098564b5516526886718db6bdec1bb

HTTP Headers

GET /fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-fdedac32.68a159c0.js HTTP/1.1
Host: s2.teraboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 30 Nov 2023 04:14:05 GMT
content-type: application/javascript
server: openresty
content-md5: fvMe6ZlLuOpfBUbbnYT1og==
etag: W/"7ef31ee9994bb8ea5f0546db9d84f5a2"
expires: Thu, 17 Aug 2023 11:01:40 GMT
last-modified: Mon, 14 Aug 2023 05:25:49 GMT
x-bce-content-crc32: 3183863461
x-bce-debug-id: AQBq72xN1KX+ruW3aqp1xkmekXXaYh0i39b8sd2sQtmjC5dG590ZtpaEFSUwE16V73TOukcLyO6ly/sQLIZ4bg==
x-bce-flow-control-type: -1
x-bce-is-transition: false
x-bce-request-id: b4d412dc-3e8c-456b-bf34-9d06ca0b4fd9
x-bce-storage-class: STANDARD
via: EU-GER-frankfurt-EDGE5-CACHE6[6],EU-GER-frankfurt-EDGE5-CACHE3[0,TCP_HIT,0],EU-GER-frankfurt-GLOBAL1-CACHE6[1934],EU-GER-frankfurt-GLOBAL1-CACHE14[953,TCP_MISS,1933]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 2592000
nginx-hit: 1
age: 9306744
x-ccdn-expires: 1190345
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

zodiacranbehalf.com/f1/95/e5/f195e5fa577c23352666448243864c68.js

173.233.139.164

200 OK

15 kB

URL GET HTTP/1.1
zodiacranbehalf.com/f1/95/e5/f195e5fa577c23352666448243864c68.js
IP
173.233.139.164:443
ASN
#7979 SERVERS-COM

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerLet's Encrypt
Subjectzodiacranbehalf.com
FingerprintC4:B7:E3:A3:79:90:C8:FB:50:CB:DE:BE:B5:A3:7F:86:F6:0F:4E:60
ValidityTue, 28 Nov 2023 07:59:32 GMT - Mon, 26 Feb 2024 07:59:31 GMT

File type
ASCII text, with very long lines (42843), with no line terminators
Size
15 kB (15449 bytes)
Hash
2025aeea529ee8078fd6685fa5b38ea2
4ae522ee81a73562adc89aab69e4ca6e872a983b
f85717b581365b0af5f7ec201b38dd1036337eda0e11c618face81aab207856f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /f1/95/e5/f195e5fa577c23352666448243864c68.js HTTP/1.1
Host: zodiacranbehalf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 30 Nov 2023 04:14:07 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 3b758aa6273e5634c9ce11c6e894026a
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

zodiacranbehalf.com/ntv.json?key=627e2f8a423975bc4bd7a76128c2d552&vstc=2&uuid=fcbc17f3-cd58-4a97-939d-35d351918c91%3A3%3A1&custom=%7B%22d37e3bc4%22%3A%22b%22%7D

173.233.139.164

200 OK

8.7 kB

URL GET HTTP/1.1
zodiacranbehalf.com/ntv.json?key=627e2f8a423975bc4bd7a76128c2d552&vstc=2&uuid=fcbc17f3-cd58-4a97-939d-35d351918c91%3A3%3A1&custom=%7B%22d37e3bc4%22%3A%22b%22%7D
IP
173.233.139.164:443
ASN
#7979 SERVERS-COM

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerLet's Encrypt
Subjectzodiacranbehalf.com
FingerprintC4:B7:E3:A3:79:90:C8:FB:50:CB:DE:BE:B5:A3:7F:86:F6:0F:4E:60
ValidityTue, 28 Nov 2023 07:59:32 GMT - Mon, 26 Feb 2024 07:59:31 GMT

File type
JSON data\012- , ASCII text, with very long lines (8690), with no line terminators
Size
8.7 kB (8690 bytes)
Hash
0d35f4704e7c340b87e2bd5079d3e2ee
12aa6c97136acb8c303286111d864d3f076c8038
416db2e12ed7cb1543f205b95bfb6cb870e5b695cdcd2b40438db726b114f0b4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ntv.json?key=627e2f8a423975bc4bd7a76128c2d552&vstc=2&uuid=fcbc17f3-cd58-4a97-939d-35d351918c91%3A3%3A1&custom=%7B%22d37e3bc4%22%3A%22b%22%7D HTTP/1.1
Host: zodiacranbehalf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.1024tera.com
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 30 Nov 2023 04:14:07 GMT
Content-Type: application/json
Content-Length: 8690
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.1024tera.com
Access-Control-Allow-Origin: https://www.1024tera.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=18326536; expires=Fri, 01 Dec 2023 04:14:07 GMT; secure; SameSite=None
uid_id2=fcbc17f3-cd58-4a97-939d-35d351918c91:3:1; expires=Thu, 07 Dec 2023 04:14:07 GMT; secure; SameSite=None
pdhtkv=true; expires=Fri, 01 Dec 2023 04:14:07 GMT; secure; SameSite=None
uncs=1; expires=Fri, 01 Dec 2023 04:14:07 GMT; secure; SameSite=None
pdhtkv49=true; expires=Fri, 01 Dec 2023 04:14:07 GMT; secure; SameSite=None
uncs49=1; expires=Fri, 01 Dec 2023 04:14:07 GMT; secure; SameSite=None
nlec627e2f8a423975bc4bd7a76128c2d552=[2106764,2229212]; expires=Thu, 30 Nov 2023 04:14:12 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 1da9eff722e37fe21e3b71b59bf49784
Strict-Transport-Security: max-age=0; includeSubdomains

archaicin.com/pixel/purst?dl=0&th=0&sc=0&rs=9481&rd=9481&fd=861&bv=23.11.v.8&tmpl=136

173.233.137.44

200 OK

0 B

URL GET HTTP/1.1
archaicin.com/pixel/purst?dl=0&th=0&sc=0&rs=9481&rd=9481&fd=861&bv=23.11.v.8&tmpl=136
IP
173.233.137.44:443
ASN
#7979 SERVERS-COM

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerLet's Encrypt
Subjectarchaicin.com
FingerprintCB:13:5A:BD:C5:13:07:1E:02:F1:E3:B3:05:D7:5C:2F:4A:25:2E:67
ValidityTue, 28 Nov 2023 10:53:01 GMT - Mon, 26 Feb 2024 10:53:00 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/purst?dl=0&th=0&sc=0&rs=9481&rd=9481&fd=861&bv=23.11.v.8&tmpl=136 HTTP/1.1
Host: archaicin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 30 Nov 2023 04:14:07 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

banquetunarmedgrater.com/advertisers.js

172.67.219.12

200 OK

0 B

URL GET HTTP/2
banquetunarmedgrater.com/advertisers.js
IP
172.67.219.12:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerGoogle Trust Services LLC
Subjectbanquetunarmedgrater.com
Fingerprint92:8E:AD:72:AC:AD:3B:21:99:CD:21:A0:9F:BD:F2:AF:0D:98:D8:57
ValidityThu, 09 Nov 2023 11:40:15 GMT - Wed, 07 Feb 2024 11:40:14 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /advertisers.js HTTP/1.1
Host: banquetunarmedgrater.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 30 Nov 2023 04:14:08 GMT
content-type: application/javascript
content-length: 0
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=172800
x-request-id: c4c348dc2a0f6a7484f996c0837096ea
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Thu, 30 Nov 2023 04:14:05 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UKSLU1VuZRQRhmtLvCIRaXh4jdX2OvTHkcb2YZxwju%2F%2FmjnETEgx8G%2FvLx%2FtutXKARS2T20eE23u05kwwywIDUibbqVAhGjYAvXemSJj0tSbQ0tsCWUOsAFpw2Ox%2BVnFFbKjodCFlzCF%2FDQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82e04302c926b4f7-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

zodiacranbehalf.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSu3sSDUdBdvXhyEAQFmXTPTGdmXGQxrpFgTLI%2FJOf61ZMy1V1NVff0JKfgguxx9qaeOt8kG3SDuGcRZCLoEhQylyUH8x94EhaPMsnAuA%2Bq3vvqe4fve6%2B%2B2svPiY%2Bcnq1%2FZnaU1nQ%2BrPqVdzZUIkzhKqt3K4Ff9a9XNlSy0Lhe6Y0v230%2F8MOq%2F27lE8m3zHzND3w%2F8IPKkrIyMr35CxYqPWoH1bZfbdSqQdhAzz6PXe7BUQ%2Bie06uQYnRC5tPHkPxIZL4x5vSbWUmfe%2FjONc0MxZdcfh5spWYIkE8LSPrIUoOJ90wbkTI11dgksOJA5ju%2FtgBmBoR72kAlhxOZIJ1Dy6VMg2ZgImXUHSHkHoIRYfg5h6UOCUAF1hdQxI%2FXDW2oNuXLB2zIzL77B%2BoYkRm%2F3odSfzDola9yh2j80yZxKEXlVC9IVRniDQ%2FRrbjQRXH4NmXUOJPMv9sBUm8v%2Ba0gRLlhXulhlDREFr2QZ2HfHyUhzzykKceYnFWoWE78v1mxKJ6vdXgnNfrnIetBRGKeqMV%2Bcj5WF4fWdoH131wu4vU7mJLPTgNr8Hmv8BtlnDCg8tGxLu1i64oUUiCwhEUlKBQBEVGUHTLA6FdzZUPhXY5Cya5Nsn1cmCyzh49MFlHJmQvPSdXx6Pxrv7%2BE7bkWSXkrXZ7QbZknbNQBj5rRqK%2BEAQha%2Fk%2B5U04VUK5Kxdud9SIvNmbQapG5MXmERg9htPH4GoGNA9Ai0Gz5oNuDhotHzvJo0xaykyvyk0MYUqk2SyybW9Pn5M3Ljb01uwtSH5y47e5D9LB0zlwWyK1Jb5QvxJ09P3BbVOQ%2FdumcOTxWpqpWO3Q8fbuZDSTM99%2FKrcLY8XyTdf%2F7kM%2BJsbl0V3pshWaCJV0HHm0qISQdslYLsnPy25DsvXcbS7mNsnTlfWPlpbj1ErnlEmGoOp07V9wNSKzb7928S9f%2FeNvKDuEzUvE%2BQmZBJQ5Bk934dKpemcIrJ72sNRDkZcDW2PTR60ItJxiykq4%2F2E2rffcfXSsB5rdQxKX6NoSXV2C6j5cPjfIUnty48k34%2FgWTHsDpq23z7TVDy5H69RZRYaRH0m%2FJlnUZlGT%2BqIdNdqMtgPZZCENkLmR3Hz5lf8AAAD%2F%2FwEAAP%2F%2Fb65Mu28EAAA%3D

192.243.59.20

200 OK

7 B

URL GET HTTP/1.1
zodiacranbehalf.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSu3sSDUdBdvXhyEAQFmXTPTGdmXGQxrpFgTLI%2FJOf61ZMy1V1NVff0JKfgguxx9qaeOt8kG3SDuGcRZCLoEhQylyUH8x94EhaPMsnAuA%2Bq3vvqe4fve6%2B%2B2svPiY%2Bcnq1%2FZnaU1nQ%2BrPqVdzZUIkzhKqt3K4Ff9a9XNlSy0Lhe6Y0v230%2F8MOq%2F27lE8m3zHzND3w%2F8IPKkrIyMr35CxYqPWoH1bZfbdSqQdhAzz6PXe7BUQ%2Bie06uQYnRC5tPHkPxIZL4x5vSbWUmfe%2FjONc0MxZdcfh5spWYIkE8LSPrIUoOJ90wbkTI11dgksOJA5ju%2FtgBmBoR72kAlhxOZIJ1Dy6VMg2ZgImXUHSHkHoIRYfg5h6UOCUAF1hdQxI%2FXDW2oNuXLB2zIzL77B%2BoYkRm%2F3odSfzDola9yh2j80yZxKEXlVC9IVRniDQ%2FRrbjQRXH4NmXUOJPMv9sBUm8v%2Ba0gRLlhXulhlDREFr2QZ2HfHyUhzzykKceYnFWoWE78v1mxKJ6vdXgnNfrnIetBRGKeqMV%2Bcj5WF4fWdoH131wu4vU7mJLPTgNr8Hmv8BtlnDCg8tGxLu1i64oUUiCwhEUlKBQBEVGUHTLA6FdzZUPhXY5Cya5Nsn1cmCyzh49MFlHJmQvPSdXx6Pxrv7%2BE7bkWSXkrXZ7QbZknbNQBj5rRqK%2BEAQha%2Fk%2B5U04VUK5Kxdud9SIvNmbQapG5MXmERg9htPH4GoGNA9Ai0Gz5oNuDhotHzvJo0xaykyvyk0MYUqk2SyybW9Pn5M3Ljb01uwtSH5y47e5D9LB0zlwWyK1Jb5QvxJ09P3BbVOQ%2FdumcOTxWpqpWO3Q8fbuZDSTM99%2FKrcLY8XyTdf%2F7kM%2BJsbl0V3pshWaCJV0HHm0qISQdslYLsnPy25DsvXcbS7mNsnTlfWPlpbj1ErnlEmGoOp07V9wNSKzb7928S9f%2FeNvKDuEzUvE%2BQmZBJQ5Bk934dKpemcIrJ72sNRDkZcDW2PTR60ItJxiykq4%2F2E2rffcfXSsB5rdQxKX6NoSXV2C6j5cPjfIUnty48k34%2FgWTHsDpq23z7TVDy5H69RZRYaRH0m%2FJlnUZlGT%2BqIdNdqMtgPZZCENkLmR3Hz5lf8AAAD%2F%2FwEAAP%2F%2Fb65Mu28EAAA%3D
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerLet's Encrypt
Subjectzodiacranbehalf.com
FingerprintC4:B7:E3:A3:79:90:C8:FB:50:CB:DE:BE:B5:A3:7F:86:F6:0F:4E:60
ValidityTue, 28 Nov 2023 07:59:32 GMT - Mon, 26 Feb 2024 07:59:31 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSu3sSDUdBdvXhyEAQFmXTPTGdmXGQxrpFgTLI%2FJOf61ZMy1V1NVff0JKfgguxx9qaeOt8kG3SDuGcRZCLoEhQylyUH8x94EhaPMsnAuA%2Bq3vvqe4fve6%2B%2B2svPiY%2Bcnq1%2FZnaU1nQ%2BrPqVdzZUIkzhKqt3K4Ff9a9XNlSy0Lhe6Y0v230%2F8MOq%2F27lE8m3zHzND3w%2F8IPKkrIyMr35CxYqPWoH1bZfbdSqQdhAzz6PXe7BUQ%2Bie06uQYnRC5tPHkPxIZL4x5vSbWUmfe%2FjONc0MxZdcfh5spWYIkE8LSPrIUoOJ90wbkTI11dgksOJA5ju%2FtgBmBoR72kAlhxOZIJ1Dy6VMg2ZgImXUHSHkHoIRYfg5h6UOCUAF1hdQxI%2FXDW2oNuXLB2zIzL77B%2BoYkRm%2F3odSfzDola9yh2j80yZxKEXlVC9IVRniDQ%2FRrbjQRXH4NmXUOJPMv9sBUm8v%2Ba0gRLlhXulhlDREFr2QZ2HfHyUhzzykKceYnFWoWE78v1mxKJ6vdXgnNfrnIetBRGKeqMV%2Bcj5WF4fWdoH131wu4vU7mJLPTgNr8Hmv8BtlnDCg8tGxLu1i64oUUiCwhEUlKBQBEVGUHTLA6FdzZUPhXY5Cya5Nsn1cmCyzh49MFlHJmQvPSdXx6Pxrv7%2BE7bkWSXkrXZ7QbZknbNQBj5rRqK%2BEAQha%2Fk%2B5U04VUK5Kxdud9SIvNmbQapG5MXmERg9htPH4GoGNA9Ai0Gz5oNuDhotHzvJo0xaykyvyk0MYUqk2SyybW9Pn5M3Ljb01uwtSH5y47e5D9LB0zlwWyK1Jb5QvxJ09P3BbVOQ%2FdumcOTxWpqpWO3Q8fbuZDSTM99%2FKrcLY8XyTdf%2F7kM%2BJsbl0V3pshWaCJV0HHm0qISQdslYLsnPy25DsvXcbS7mNsnTlfWPlpbj1ErnlEmGoOp07V9wNSKzb7928S9f%2FeNvKDuEzUvE%2BQmZBJQ5Bk934dKpemcIrJ72sNRDkZcDW2PTR60ItJxiykq4%2F2E2rffcfXSsB5rdQxKX6NoSXV2C6j5cPjfIUnty48k34%2FgWTHsDpq23z7TVDy5H69RZRYaRH0m%2FJlnUZlGT%2BqIdNdqMtgPZZCENkLmR3Hz5lf8AAAD%2F%2FwEAAP%2F%2Fb65Mu28EAAA%3D HTTP/1.1
Host: zodiacranbehalf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 30 Nov 2023 04:14:07 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 3f94850a89dfc2d8be1dbb0e8bcd6b62
Strict-Transport-Security: max-age=0; includeSubdomains

zodiacranbehalf.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2sdVRi9k0aoP6C0CCK6eIqKgnmZn5k3dlGstVKsTWkrXd9fk1xzZ%2B5w78ybNKvWgnTRRXSlribnpY3WUOwfoMiLm1IQ%2BjYS0OxdC8WlvDQQ%2FRbzfWfOtzjnfPeLjWaP%2BGjo7sVPzJrSms4nfb%2F39lVVCtO63oUrvcDv%2Byd7V1W5EJ%2FsrU4%2Fdvhe4Cd9%2F53eR5KvmPnQD3w%2F8IPeWWVlblbn91moajsL%2Bpnfj8N%2BkMRYtf%2FHrvHgqAcx3CMnoMTkmeWHD6D4GGXx4xnpVmpTvfth0WhaG4uh2Pq0XClNW6I4HHPrIS%2B3DrZh3ISQr2dgyq0DBzDDzakDMDUh3u8BWLl1IBNseOepUqYhSzDxPNrhGFKPoegY3NyEEo8JwAUuLKIs7l4wtqXXnrJ0yk7I7JO%2FodoJmf3zRZTF%2FdNarfYuG93UypQOq3kHtTqGWhqjanZQr3lQ7Q54%2FTmU%2BI3MPzmPsthcdNpAid03cs54kObRHBfJYC6mWTqXRZmYixIRJUEWDHgW7Eek1BgqH0PLdVB3BI3z0CgPTe6hqTwUYrdHkyz3%2FTRneRQNYs55FHGeDBZEIqJ4kPto%2BNTDOupqHVyvg9vrqOyN70SUyojxeINhRX35ODkB2%2FwCt9zBCQ%2BuJhiKDq0kaB1BSwlaRdDWBO2wuyO0C113V2jXsOCghwc96kamXtqgd0y9JEuyUe2R49MYvZc2j2JF7vYWwlSG%2BYDGYZSlCeMxEylNF4JwwEORJCGc6qDcDKjzsKYm5LVXbqNSE%2FJsug1Gd%2BD0Drg6DtoEoO0oDX3Q5VE88LFWbgd%2BGNfS0j43BYTpUNWzqK95G3qPvLx%2Fzt6btyH5o1P3Xt0%2BGrz1F7jtUNkOn6lfCZb0rdEl05LNS6Z15MFiVatCrdHpqS%2FXtJZH7n0sr7XGinNn3Pr37%2FMpMR23r0hXn6elUOWSIz%2BcVkJIe9ZYLslP59xVyS42bvl0Y8umOn%2Fxg7PnispK55Qpx6Dq8eI%2F4GpCZm%2F8vP%2BIj03uQ9kxbNOhaB6Rg4IyO%2BDVdbjqUL0zBFYf7rDKQ9t0Ixuyw59aEWh5iCnr4P6D2eG84W5hyc6A1jdRFh2GtsNQd6B6Ha55blRX9tGph99M61swPTNi2s5sMm31V%2FvRTsjrR%2F6AU7s9meR%2BLv1QsjxjeUp9keVxxmgWyJQlNEDtJnL5hWP%2FAgAA%2F%2F8BAAD%2F%2F%2BgmirihBAAA

173.233.139.164

200 OK

7 B

URL GET HTTP/1.1
zodiacranbehalf.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2sdVRi9k0aoP6C0CCK6eIqKgnmZn5k3dlGstVKsTWkrXd9fk1xzZ%2B5w78ybNKvWgnTRRXSlribnpY3WUOwfoMiLm1IQ%2BjYS0OxdC8WlvDQQ%2FRbzfWfOtzjnfPeLjWaP%2BGjo7sVPzJrSms4nfb%2F39lVVCtO63oUrvcDv%2Byd7V1W5EJ%2FsrU4%2Fdvhe4Cd9%2F53eR5KvmPnQD3w%2F8IPeWWVlblbn91moajsL%2Bpnfj8N%2BkMRYtf%2FHrvHgqAcx3CMnoMTkmeWHD6D4GGXx4xnpVmpTvfth0WhaG4uh2Pq0XClNW6I4HHPrIS%2B3DrZh3ISQr2dgyq0DBzDDzakDMDUh3u8BWLl1IBNseOepUqYhSzDxPNrhGFKPoegY3NyEEo8JwAUuLKIs7l4wtqXXnrJ0yk7I7JO%2FodoJmf3zRZTF%2FdNarfYuG93UypQOq3kHtTqGWhqjanZQr3lQ7Q54%2FTmU%2BI3MPzmPsthcdNpAid03cs54kObRHBfJYC6mWTqXRZmYixIRJUEWDHgW7Eek1BgqH0PLdVB3BI3z0CgPTe6hqTwUYrdHkyz3%2FTRneRQNYs55FHGeDBZEIqJ4kPto%2BNTDOupqHVyvg9vrqOyN70SUyojxeINhRX35ODkB2%2FwCt9zBCQ%2BuJhiKDq0kaB1BSwlaRdDWBO2wuyO0C113V2jXsOCghwc96kamXtqgd0y9JEuyUe2R49MYvZc2j2JF7vYWwlSG%2BYDGYZSlCeMxEylNF4JwwEORJCGc6qDcDKjzsKYm5LVXbqNSE%2FJsug1Gd%2BD0Drg6DtoEoO0oDX3Q5VE88LFWbgd%2BGNfS0j43BYTpUNWzqK95G3qPvLx%2Fzt6btyH5o1P3Xt0%2BGrz1F7jtUNkOn6lfCZb0rdEl05LNS6Z15MFiVatCrdHpqS%2FXtJZH7n0sr7XGinNn3Pr37%2FMpMR23r0hXn6elUOWSIz%2BcVkJIe9ZYLslP59xVyS42bvl0Y8umOn%2Fxg7PnispK55Qpx6Dq8eI%2F4GpCZm%2F8vP%2BIj03uQ9kxbNOhaB6Rg4IyO%2BDVdbjqUL0zBFYf7rDKQ9t0Ixuyw59aEWh5iCnr4P6D2eG84W5hyc6A1jdRFh2GtsNQd6B6Ha55blRX9tGph99M61swPTNi2s5sMm31V%2FvRTsjrR%2F6AU7s9meR%2BLv1QsjxjeUp9keVxxmgWyJQlNEDtJnL5hWP%2FAgAA%2F%2F8BAAD%2F%2F%2BgmirihBAAA
IP
173.233.139.164:443
ASN
#7979 SERVERS-COM

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerLet's Encrypt
Subjectzodiacranbehalf.com
FingerprintC4:B7:E3:A3:79:90:C8:FB:50:CB:DE:BE:B5:A3:7F:86:F6:0F:4E:60
ValidityTue, 28 Nov 2023 07:59:32 GMT - Mon, 26 Feb 2024 07:59:31 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz2sdVRi9k0aoP6C0CCK6eIqKgnmZn5k3dlGstVKsTWkrXd9fk1xzZ%2B5w78ybNKvWgnTRRXSlribnpY3WUOwfoMiLm1IQ%2BjYS0OxdC8WlvDQQ%2FRbzfWfOtzjnfPeLjWaP%2BGjo7sVPzJrSms4nfb%2F39lVVCtO63oUrvcDv%2Byd7V1W5EJ%2FsrU4%2Fdvhe4Cd9%2F53eR5KvmPnQD3w%2F8IPeWWVlblbn91moajsL%2Bpnfj8N%2BkMRYtf%2FHrvHgqAcx3CMnoMTkmeWHD6D4GGXx4xnpVmpTvfth0WhaG4uh2Pq0XClNW6I4HHPrIS%2B3DrZh3ISQr2dgyq0DBzDDzakDMDUh3u8BWLl1IBNseOepUqYhSzDxPNrhGFKPoegY3NyEEo8JwAUuLKIs7l4wtqXXnrJ0yk7I7JO%2FodoJmf3zRZTF%2FdNarfYuG93UypQOq3kHtTqGWhqjanZQr3lQ7Q54%2FTmU%2BI3MPzmPsthcdNpAid03cs54kObRHBfJYC6mWTqXRZmYixIRJUEWDHgW7Eek1BgqH0PLdVB3BI3z0CgPTe6hqTwUYrdHkyz3%2FTRneRQNYs55FHGeDBZEIqJ4kPto%2BNTDOupqHVyvg9vrqOyN70SUyojxeINhRX35ODkB2%2FwCt9zBCQ%2BuJhiKDq0kaB1BSwlaRdDWBO2wuyO0C113V2jXsOCghwc96kamXtqgd0y9JEuyUe2R49MYvZc2j2JF7vYWwlSG%2BYDGYZSlCeMxEylNF4JwwEORJCGc6qDcDKjzsKYm5LVXbqNSE%2FJsug1Gd%2BD0Drg6DtoEoO0oDX3Q5VE88LFWbgd%2BGNfS0j43BYTpUNWzqK95G3qPvLx%2Fzt6btyH5o1P3Xt0%2BGrz1F7jtUNkOn6lfCZb0rdEl05LNS6Z15MFiVatCrdHpqS%2FXtJZH7n0sr7XGinNn3Pr37%2FMpMR23r0hXn6elUOWSIz%2BcVkJIe9ZYLslP59xVyS42bvl0Y8umOn%2Fxg7PnispK55Qpx6Dq8eI%2F4GpCZm%2F8vP%2BIj03uQ9kxbNOhaB6Rg4IyO%2BDVdbjqUL0zBFYf7rDKQ9t0Ixuyw59aEWh5iCnr4P6D2eG84W5hyc6A1jdRFh2GtsNQd6B6Ha55blRX9tGph99M61swPTNi2s5sMm31V%2FvRTsjrR%2F6AU7s9meR%2BLv1QsjxjeUp9keVxxmgWyJQlNEDtJnL5hWP%2FAgAA%2F%2F8BAAD%2F%2F%2BgmirihBAAA HTTP/1.1
Host: zodiacranbehalf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Cookie: u_pl=18326536; uid_id2=fcbc17f3-cd58-4a97-939d-35d351918c91:3:1; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 30 Nov 2023 04:14:08 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 5239507bb8cbc52127e47b28d393992e
Strict-Transport-Security: max-age=0; includeSubdomains

zodiacranbehalf.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSzWsd1Rs%2Bk%2BYH%2FamgLYKILq6iomBu5jNzxy6KtVaKtSltpevzNckxZ%2BYM58zcSbNqrUgXXURX6mry3LTRGsT%2BAYrcuClFoXcjAc3etVBcyk0D0Xcx7%2FvM8y6e53nPpxvNHvHR0N0LH5g1pTWdT%2Fp%2B7%2FUrqhSmdb3zl3uB3%2FdP9K6ociE%2B0VudfuzwrcBP%2Bv4bvfckXzHzoR%2F4fuAHvTPKytyszu%2BzUNV2FvQzvx%2BH%2FSCJsWr%2Fi13jwVEPYrhHjkOJyf%2BW79%2BD4mOUxfenpVupTfXmu0WjaW0shmLrw3KlNG2J4nDMrYe83DrYhnETQr6YgSm3DhzADDenDsDUhHi%2FBWDl1oFMsOHtx0qZhizBxJNoh2NIPYaiY3BzA0o8JAAXOL%2BIsrhz3tiWXn3M0ik7IbOP%2FoJqJ2T2j2dRFt%2Bd0mq1d8noplamdFjNO6jVMdTSGFWzg3rNg2p3wOuPocSvZP7ROZTF5qLTBkrsvpJzxoM0j%2Ba4SAZzMc3SuSzKxFyUiCgJsmDAs2A%2FIqXGUPkYWq6DuiNonIdGeWhyD03loRC7PZpkue%2BnOcujaBBzzqOI82SwIBIRxYPcR8OnHtZRV%2Bvgeh3cXkNlr38tolRGjMcbDCvqs4fJcdjmJ7jlDk54cDXBUHRoJUHrCFpK0CqCtiZoh91toV3oujtCu4YFBz086FE3MvXSBr1t6iVZko1qjxybxug9t3kUK3K3txCmMswHNA6jLE0Yj5lIaboQhAMeiiQJ4VQH5WZAnYc1NSEvvXALlZqQ%2F6fbYHQHTu%2BAq2OgTQDajtLQB10exQMfa%2BV24IdxLS3tc1NAmA5VPYv6qreh98jz%2B%2Bd8%2BcjvkPzBybsvbh8NXvsT3HaobIeP1M8ES%2Frm6KJpyeZF0zpyb7GqVaHW6PTUl2payyN335dXW2PF2dNu%2FZu3%2BZSYjtuXpavP0VKocsmRb08pIaQ9YyyX5Iez7opkFxq3fKqxZVOdu%2FDOmbNFZaVzypRjUPVw8W9wNSGz13%2Fcf8TP%2FPIJlB3DNh2K5gE5KCizA15dg6sO1TtDYPXhDqtm0DbdyIbs8KdWBFoeYso6uH9hdjhvuJtYsjOg9Q2URYeh7TDUHaheh2ueGNWVfXDy%2FpfT%2BgpMz4yYtjObTFv9%2BYT0Xr31OF%2Bndnsyyf1c%2BqFkecbylPoiy%2BOM0SyQKUtogNpN5PJTT%2F8DAAD%2F%2FwEAAP%2F%2F135uK6EEAAA%3D

173.233.139.164

200 OK

7 B

URL GET HTTP/1.1
zodiacranbehalf.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSzWsd1Rs%2Bk%2BYH%2FamgLYKILq6iomBu5jNzxy6KtVaKtSltpevzNckxZ%2BYM58zcSbNqrUgXXURX6mry3LTRGsT%2BAYrcuClFoXcjAc3etVBcyk0D0Xcx7%2FvM8y6e53nPpxvNHvHR0N0LH5g1pTWdT%2Fp%2B7%2FUrqhSmdb3zl3uB3%2FdP9K6ociE%2B0VudfuzwrcBP%2Bv4bvfckXzHzoR%2F4fuAHvTPKytyszu%2BzUNV2FvQzvx%2BH%2FSCJsWr%2Fi13jwVEPYrhHjkOJyf%2BW79%2BD4mOUxfenpVupTfXmu0WjaW0shmLrw3KlNG2J4nDMrYe83DrYhnETQr6YgSm3DhzADDenDsDUhHi%2FBWDl1oFMsOHtx0qZhizBxJNoh2NIPYaiY3BzA0o8JAAXOL%2BIsrhz3tiWXn3M0ik7IbOP%2FoJqJ2T2j2dRFt%2Bd0mq1d8noplamdFjNO6jVMdTSGFWzg3rNg2p3wOuPocSvZP7ROZTF5qLTBkrsvpJzxoM0j%2Ba4SAZzMc3SuSzKxFyUiCgJsmDAs2A%2FIqXGUPkYWq6DuiNonIdGeWhyD03loRC7PZpkue%2BnOcujaBBzzqOI82SwIBIRxYPcR8OnHtZRV%2Bvgeh3cXkNlr38tolRGjMcbDCvqs4fJcdjmJ7jlDk54cDXBUHRoJUHrCFpK0CqCtiZoh91toV3oujtCu4YFBz086FE3MvXSBr1t6iVZko1qjxybxug9t3kUK3K3txCmMswHNA6jLE0Yj5lIaboQhAMeiiQJ4VQH5WZAnYc1NSEvvXALlZqQ%2F6fbYHQHTu%2BAq2OgTQDajtLQB10exQMfa%2BV24IdxLS3tc1NAmA5VPYv6qreh98jz%2B%2Bd8%2BcjvkPzBybsvbh8NXvsT3HaobIeP1M8ES%2Frm6KJpyeZF0zpyb7GqVaHW6PTUl2payyN335dXW2PF2dNu%2FZu3%2BZSYjtuXpavP0VKocsmRb08pIaQ9YyyX5Iez7opkFxq3fKqxZVOdu%2FDOmbNFZaVzypRjUPVw8W9wNSGz13%2Fcf8TP%2FPIJlB3DNh2K5gE5KCizA15dg6sO1TtDYPXhDqtm0DbdyIbs8KdWBFoeYso6uH9hdjhvuJtYsjOg9Q2URYeh7TDUHaheh2ueGNWVfXDy%2FpfT%2BgpMz4yYtjObTFv9%2BYT0Xr31OF%2Bndnsyyf1c%2BqFkecbylPoiy%2BOM0SyQKUtogNpN5PJTT%2F8DAAD%2F%2FwEAAP%2F%2F135uK6EEAAA%3D
IP
173.233.139.164:443
ASN
#7979 SERVERS-COM

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerLet's Encrypt
Subjectzodiacranbehalf.com
FingerprintC4:B7:E3:A3:79:90:C8:FB:50:CB:DE:BE:B5:A3:7F:86:F6:0F:4E:60
ValidityTue, 28 Nov 2023 07:59:32 GMT - Mon, 26 Feb 2024 07:59:31 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSzWsd1Rs%2Bk%2BYH%2FamgLYKILq6iomBu5jNzxy6KtVaKtSltpevzNckxZ%2BYM58zcSbNqrUgXXURX6mry3LTRGsT%2BAYrcuClFoXcjAc3etVBcyk0D0Xcx7%2FvM8y6e53nPpxvNHvHR0N0LH5g1pTWdT%2Fp%2B7%2FUrqhSmdb3zl3uB3%2FdP9K6ociE%2B0VudfuzwrcBP%2Bv4bvfckXzHzoR%2F4fuAHvTPKytyszu%2BzUNV2FvQzvx%2BH%2FSCJsWr%2Fi13jwVEPYrhHjkOJyf%2BW79%2BD4mOUxfenpVupTfXmu0WjaW0shmLrw3KlNG2J4nDMrYe83DrYhnETQr6YgSm3DhzADDenDsDUhHi%2FBWDl1oFMsOHtx0qZhizBxJNoh2NIPYaiY3BzA0o8JAAXOL%2BIsrhz3tiWXn3M0ik7IbOP%2FoJqJ2T2j2dRFt%2Bd0mq1d8noplamdFjNO6jVMdTSGFWzg3rNg2p3wOuPocSvZP7ROZTF5qLTBkrsvpJzxoM0j%2Ba4SAZzMc3SuSzKxFyUiCgJsmDAs2A%2FIqXGUPkYWq6DuiNonIdGeWhyD03loRC7PZpkue%2BnOcujaBBzzqOI82SwIBIRxYPcR8OnHtZRV%2Bvgeh3cXkNlr38tolRGjMcbDCvqs4fJcdjmJ7jlDk54cDXBUHRoJUHrCFpK0CqCtiZoh91toV3oujtCu4YFBz086FE3MvXSBr1t6iVZko1qjxybxug9t3kUK3K3txCmMswHNA6jLE0Yj5lIaboQhAMeiiQJ4VQH5WZAnYc1NSEvvXALlZqQ%2F6fbYHQHTu%2BAq2OgTQDajtLQB10exQMfa%2BV24IdxLS3tc1NAmA5VPYv6qreh98jz%2B%2Bd8%2BcjvkPzBybsvbh8NXvsT3HaobIeP1M8ES%2Frm6KJpyeZF0zpyb7GqVaHW6PTUl2payyN335dXW2PF2dNu%2FZu3%2BZSYjtuXpavP0VKocsmRb08pIaQ9YyyX5Iez7opkFxq3fKqxZVOdu%2FDOmbNFZaVzypRjUPVw8W9wNSGz13%2Fcf8TP%2FPIJlB3DNh2K5gE5KCizA15dg6sO1TtDYPXhDqtm0DbdyIbs8KdWBFoeYso6uH9hdjhvuJtYsjOg9Q2URYeh7TDUHaheh2ueGNWVfXDy%2FpfT%2BgpMz4yYtjObTFv9%2BYT0Xr31OF%2Bndnsyyf1c%2BqFkecbylPoiy%2BOM0SyQKUtogNpN5PJTT%2F8DAAD%2F%2FwEAAP%2F%2F135uK6EEAAA%3D HTTP/1.1
Host: zodiacranbehalf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Cookie: u_pl=18326536; uid_id2=fcbc17f3-cd58-4a97-939d-35d351918c91:3:1; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 30 Nov 2023 04:14:08 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 55417575fd3c7970036ffff14c16a7d0
Strict-Transport-Security: max-age=0; includeSubdomains

zodiacranbehalf.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRuu3uwH%2BVTQBEFED62oKLiz%2FXN7xhyCMUaCMRuSSM7VVdW75VZ3NVXd05s9JUYkhxxGT%2Bqp55lNVuMi5g9QZNZLCAqZiyzo3j0LwaPMZmD0PfT7Pv28h%2Bd53vp0WB8QDzXdv%2FCB3pJK0eW447mvX5EF1411z192fa%2FjnXCvyGIlOuFuTj%2Bm%2F5bvxR3vDfc9wTb0cuD5nud7vntGGpHpzeVDFrLc7fmdnteJgo4fR9g0%2F8W2dmCpA94%2FIMch%2BeR%2F6%2FfvQbIxivz708JuVLp88928VrTSBn2%2B82GxUeimQD4fM%2BMgK3Zm29B2QsgXC9DFzswBdH976gCpnBDnNx9psTOTibR%2F%2B7HSVEEUSPmTaPpjCDWGpGMwfQOSPyQA4zi%2FiiK%2Fc16bhl59zNIpOyGLj%2F6CbCZk8Y9nUeTfnVJy072kVV1JXVhsZi3k5hhybYyy3kO15UA2e2DVx5D8V7L86ByKfHvVKg3J91%2FJWMr8JAuXGI%2B7SxHtJUu9sMeXwpiHsd%2Fzu6znH0Yk5RgyG0OJAag9gto6qKWDOnNQlw5yvu%2FSuJd5XpKlWRh2I8ZYGDIWd1d4zMOom3mo2dTDAFU5AFMDMHMNpbn%2BNQ8TEaYsGqbYkJ89jI%2FD1D%2FBrrew3IGtCPq8RSMIGkvQUIJGEjQVQdNvb3NlA9ve4crWqT%2FrwayH7UhXa0N6W1droiDD8oAcm8boPLd9FBti310JEhFkXRoFYS%2BJUxalPKHJih90WcDjOICVLaRdALUOtuSEvPTCLZRyQv6f7CKle7BqD0weA6190GaUBB7o%2Bijqetgqdn0viCphaIfpHFy3KKtFVFedoTogzx%2Be8%2BUjv0OwByfvvrh71H%2FtTzDTojQtPpI%2FE6ypm6OLuiHbF3Vjyb3VspK53KLTU1%2BqaCWO3H1fXG204WdP28E3b7MpMR13LwtbnaMFl8WaJd%2BekpwLc0YbJsgPZ%2B0VkV6o7fqp2hR1ee7CO2fO5qUR1kpdjEHlw9W%2FweSELF7%2F8fARP%2FPLJ5BmDFO3yOsHZFaQeg%2BsvAZbztVbTWDUfCctF9DU7cgE6fynkgRKzDFNW9h%2F4XQ%2BD%2B1NrJkF0OoGirxF37ToqxZUDWDrJ0ZVaR6cvP%2FltL5CqhZGqTIL26ky6vMJcV%2B99ThfK%2Ffd2I9EN%2B0mjPNUMO4nQdgNPS%2FgPEp6wu%2BhshOx%2FtTT%2FwAAAP%2F%2FAQAA%2F%2F%2FDduDNoQQAAA%3D%3D

192.243.59.20

200 OK

7 B

URL GET HTTP/1.1
zodiacranbehalf.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRuu3uwH%2BVTQBEFED62oKLiz%2FXN7xhyCMUaCMRuSSM7VVdW75VZ3NVXd05s9JUYkhxxGT%2Bqp55lNVuMi5g9QZNZLCAqZiyzo3j0LwaPMZmD0PfT7Pv28h%2Bd53vp0WB8QDzXdv%2FCB3pJK0eW447mvX5EF1411z192fa%2FjnXCvyGIlOuFuTj%2Bm%2F5bvxR3vDfc9wTb0cuD5nud7vntGGpHpzeVDFrLc7fmdnteJgo4fR9g0%2F8W2dmCpA94%2FIMch%2BeR%2F6%2FfvQbIxivz708JuVLp88928VrTSBn2%2B82GxUeimQD4fM%2BMgK3Zm29B2QsgXC9DFzswBdH976gCpnBDnNx9psTOTibR%2F%2B7HSVEEUSPmTaPpjCDWGpGMwfQOSPyQA4zi%2FiiK%2Fc16bhl59zNIpOyGLj%2F6CbCZk8Y9nUeTfnVJy072kVV1JXVhsZi3k5hhybYyy3kO15UA2e2DVx5D8V7L86ByKfHvVKg3J91%2FJWMr8JAuXGI%2B7SxHtJUu9sMeXwpiHsd%2Fzu6znH0Yk5RgyG0OJAag9gto6qKWDOnNQlw5yvu%2FSuJd5XpKlWRh2I8ZYGDIWd1d4zMOom3mo2dTDAFU5AFMDMHMNpbn%2BNQ8TEaYsGqbYkJ89jI%2FD1D%2FBrrew3IGtCPq8RSMIGkvQUIJGEjQVQdNvb3NlA9ve4crWqT%2FrwayH7UhXa0N6W1droiDD8oAcm8boPLd9FBti310JEhFkXRoFYS%2BJUxalPKHJih90WcDjOICVLaRdALUOtuSEvPTCLZRyQv6f7CKle7BqD0weA6190GaUBB7o%2Bijqetgqdn0viCphaIfpHFy3KKtFVFedoTogzx%2Be8%2BUjv0OwByfvvrh71H%2FtTzDTojQtPpI%2FE6ypm6OLuiHbF3Vjyb3VspK53KLTU1%2BqaCWO3H1fXG204WdP28E3b7MpMR13LwtbnaMFl8WaJd%2BekpwLc0YbJsgPZ%2B0VkV6o7fqp2hR1ee7CO2fO5qUR1kpdjEHlw9W%2FweSELF7%2F8fARP%2FPLJ5BmDFO3yOsHZFaQeg%2BsvAZbztVbTWDUfCctF9DU7cgE6fynkgRKzDFNW9h%2F4XQ%2BD%2B1NrJkF0OoGirxF37ToqxZUDWDrJ0ZVaR6cvP%2FltL5CqhZGqTIL26ky6vMJcV%2B99ThfK%2Ffd2I9EN%2B0mjPNUMO4nQdgNPS%2FgPEp6wu%2BhshOx%2FtTT%2FwAAAP%2F%2FAQAA%2F%2F%2FDduDNoQQAAA%3D%3D
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerLet's Encrypt
Subjectzodiacranbehalf.com
FingerprintC4:B7:E3:A3:79:90:C8:FB:50:CB:DE:BE:B5:A3:7F:86:F6:0F:4E:60
ValidityTue, 28 Nov 2023 07:59:32 GMT - Mon, 26 Feb 2024 07:59:31 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRuu3uwH%2BVTQBEFED62oKLiz%2FXN7xhyCMUaCMRuSSM7VVdW75VZ3NVXd05s9JUYkhxxGT%2Bqp55lNVuMi5g9QZNZLCAqZiyzo3j0LwaPMZmD0PfT7Pv28h%2Bd53vp0WB8QDzXdv%2FCB3pJK0eW447mvX5EF1411z192fa%2FjnXCvyGIlOuFuTj%2Bm%2F5bvxR3vDfc9wTb0cuD5nud7vntGGpHpzeVDFrLc7fmdnteJgo4fR9g0%2F8W2dmCpA94%2FIMch%2BeR%2F6%2FfvQbIxivz708JuVLp88928VrTSBn2%2B82GxUeimQD4fM%2BMgK3Zm29B2QsgXC9DFzswBdH976gCpnBDnNx9psTOTibR%2F%2B7HSVEEUSPmTaPpjCDWGpGMwfQOSPyQA4zi%2FiiK%2Fc16bhl59zNIpOyGLj%2F6CbCZk8Y9nUeTfnVJy072kVV1JXVhsZi3k5hhybYyy3kO15UA2e2DVx5D8V7L86ByKfHvVKg3J91%2FJWMr8JAuXGI%2B7SxHtJUu9sMeXwpiHsd%2Fzu6znH0Yk5RgyG0OJAag9gto6qKWDOnNQlw5yvu%2FSuJd5XpKlWRh2I8ZYGDIWd1d4zMOom3mo2dTDAFU5AFMDMHMNpbn%2BNQ8TEaYsGqbYkJ89jI%2FD1D%2FBrrew3IGtCPq8RSMIGkvQUIJGEjQVQdNvb3NlA9ve4crWqT%2FrwayH7UhXa0N6W1droiDD8oAcm8boPLd9FBti310JEhFkXRoFYS%2BJUxalPKHJih90WcDjOICVLaRdALUOtuSEvPTCLZRyQv6f7CKle7BqD0weA6190GaUBB7o%2Bijqetgqdn0viCphaIfpHFy3KKtFVFedoTogzx%2Be8%2BUjv0OwByfvvrh71H%2FtTzDTojQtPpI%2FE6ypm6OLuiHbF3Vjyb3VspK53KLTU1%2BqaCWO3H1fXG204WdP28E3b7MpMR13LwtbnaMFl8WaJd%2BekpwLc0YbJsgPZ%2B0VkV6o7fqp2hR1ee7CO2fO5qUR1kpdjEHlw9W%2FweSELF7%2F8fARP%2FPLJ5BmDFO3yOsHZFaQeg%2BsvAZbztVbTWDUfCctF9DU7cgE6fynkgRKzDFNW9h%2F4XQ%2BD%2B1NrJkF0OoGirxF37ToqxZUDWDrJ0ZVaR6cvP%2FltL5CqhZGqTIL26ky6vMJcV%2B99ThfK%2Ffd2I9EN%2B0mjPNUMO4nQdgNPS%2FgPEp6wu%2BhshOx%2FtTT%2FwAAAP%2F%2FAQAA%2F%2F%2FDduDNoQQAAA%3D%3D HTTP/1.1
Host: zodiacranbehalf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Cookie: u_pl=18326536; uid_id2=fcbc17f3-cd58-4a97-939d-35d351918c91:3:1; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 30 Nov 2023 04:14:08 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: ccb0ad37b8b4b72f925695b95bf5ebbe
Strict-Transport-Security: max-age=0; includeSubdomains

cdn.cloudimagesb.com/cti/28/5d/66/285d66474f8eb1391e6c869128c7a3ea/1628587131.jpg

45.133.44.9

200 OK

29 kB

URL GET HTTP/2
cdn.cloudimagesb.com/cti/28/5d/66/285d66474f8eb1391e6c869128c7a3ea/1628587131.jpg
IP
45.133.44.9:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:EC:C0:22:20:76:60:90:92:4C:5C:F3:AD:17:3C:41:B5:00:25:AF
ValidityThu, 23 Nov 2023 05:00:53 GMT - Wed, 21 Feb 2024 05:00:52 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 320x240, components 3\012- data
Size
29 kB (28852 bytes)
Hash
76f54f42b70d14a6d6bfe2f8b1945265
197daa3737be8968bf39ff28000663c1c17deeb2
c864fde3026e05a2cc34b4348fa4888d3ae44202179277877d082cadd9971abc

HTTP Headers

GET /cti/28/5d/66/285d66474f8eb1391e6c869128c7a3ea/1628587131.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 30 Nov 2023 04:14:08 GMT
content-type: image/jpeg
content-length: 28852
server: nginx/1.21.6
last-modified: Tue, 10 Aug 2021 09:18:59 GMT
etag: "61124483-70b4"
expires: Sat, 02 Dec 2023 04:14:08 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn.cloudimagesb.com/cti/51/bb/80/51bb807c8b914e3cc08eace2b0587473/1628586935.jpg

45.133.44.9

200 OK

30 kB

URL GET HTTP/2
cdn.cloudimagesb.com/cti/51/bb/80/51bb807c8b914e3cc08eace2b0587473/1628586935.jpg
IP
45.133.44.9:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:EC:C0:22:20:76:60:90:92:4C:5C:F3:AD:17:3C:41:B5:00:25:AF
ValidityThu, 23 Nov 2023 05:00:53 GMT - Wed, 21 Feb 2024 05:00:52 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 320x240, components 3\012- data
Size
30 kB (30127 bytes)
Hash
a87779ccaaa4021b0b4f33812742679a
87322480f885dc0b6463c182b7bdb3eb60ab2592
a8f8dbc930527f94496d5a9883b6034e27a673090a89b518596d6e2b656df96f

HTTP Headers

GET /cti/51/bb/80/51bb807c8b914e3cc08eace2b0587473/1628586935.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 30 Nov 2023 04:14:08 GMT
content-type: image/jpeg
content-length: 30127
server: nginx/1.21.6
last-modified: Tue, 10 Aug 2021 09:15:44 GMT
etag: "611243c0-75af"
expires: Sat, 02 Dec 2023 04:14:08 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

zodiacranbehalf.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRit3qwQf0BIEET00IqKgjvbP7dnzCEYYyQYsyGJ5FxdVb1bbnVXU9U9vdlTYkByyGH0pJ563myyGpdg%2FgBFZr2EgJC5yILu3bMQPMpsBka%2FQ3%2Ff6%2Fcd3ntffTGsD4iHmu5f%2FERvSaXoctzx3LevyoLrxroXrri%2B1%2FFOuldlsRKddDenH9N%2Fz%2FfijveO%2B5FgG3o58HzP8z3fPSuNyPTm8iELWe72%2FE7P60RBx48jbJr%2FY1s7sNQB7x%2BQE5B88sz6wweQbIwi%2F%2FGMsBuVLt%2F9MK8VrbRBn%2B98WmwUuimQz8fMOMiKndk2tJ0Q8vUCdLEzcwDd3546QConxPndR1rszGQi7d95qjRVEAVS%2Fjya%2FhhCjSHpGEzfhOSPCcA4LqyiyO9e0Kah156ydMpOyOKTvyGbCVn880UU%2Bf3TSm66l7WqK6kLi82shdwcQ66NUdZ7qLYcyGYPrPockv9Glp%2BcR5Fvr1qlIfn%2BGxlLmZ9k4RLjcXcpor1kqRf2%2BFIY8zD2e36X9fzDiKQcQ2ZjKDEAtUdQWwe1dFBnDurSQc73XRr3Ms9LsjQLw27EGAtDxuLuCo95GHUzDzWbehigKgdgagBmrqM0N77jYSLClEXDFBvyy8fxCZj6F9j1FpY7sBVBn7doBEFjCRpK0EiCpiJo%2Bu0drmxg27tc2Tr1Zz2Y9bAd6WptSO%2Foak0UZFgekOPTGJ2Xto9iQ%2By7K0EigqxLoyDsJXHKopQnNFnxgy4LeBwHsLKFtAug1sGWnJDXXrmNUk7Is8kuUroHq%2FbA5HHQ2gdtRkngga6Poq6HrWLX94KoEoZ2mM7BdYuyWkR1zRmqA%2FLy4TndN29DsEen7r26e9R%2F6y8w06I0LT6TvxKsqVujS7oh25d0Y8mD1bKSudyi01Nfrmgljtz7WFxrtOHnztjB9%2B%2BzKTEdd68IW52nBZfFmiU%2FnJacC3NWGybIT%2BfsVZFerO366doUdXn%2B4gdnz%2BWlEdZKXYxB5ePVf8DkhCze%2BPnwER%2Bb3Ic0Y5i6RV4%2FIrOC1Htg5XXYcq7eagKj5jtp6aCp25EJ0vlPJQmUmGOatrD%2Fwel8HtpbWDMLoNVNFHmLvmnRVy2oGsDWz42q0jw69fCbaX2LVC2MUmUWtlNl1FeH0U7I60f%2BgJX7buxHopt2E8Z5Khj3kyDshp4XcB4lPeH3UNmJWH%2Fh2L8AAAD%2F%2FwEAAP%2F%2F%2FC4EXqEEAAA%3D

173.233.139.164

200 OK

7 B

URL GET HTTP/1.1
zodiacranbehalf.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRit3qwQf0BIEET00IqKgjvbP7dnzCEYYyQYsyGJ5FxdVb1bbnVXU9U9vdlTYkByyGH0pJ563myyGpdg%2FgBFZr2EgJC5yILu3bMQPMpsBka%2FQ3%2Ff6%2Fcd3ntffTGsD4iHmu5f%2FERvSaXoctzx3LevyoLrxroXrri%2B1%2FFOuldlsRKddDenH9N%2Fz%2FfijveO%2B5FgG3o58HzP8z3fPSuNyPTm8iELWe72%2FE7P60RBx48jbJr%2FY1s7sNQB7x%2BQE5B88sz6wweQbIwi%2F%2FGMsBuVLt%2F9MK8VrbRBn%2B98WmwUuimQz8fMOMiKndk2tJ0Q8vUCdLEzcwDd3546QConxPndR1rszGQi7d95qjRVEAVS%2Fjya%2FhhCjSHpGEzfhOSPCcA4LqyiyO9e0Kah156ydMpOyOKTvyGbCVn880UU%2Bf3TSm66l7WqK6kLi82shdwcQ66NUdZ7qLYcyGYPrPockv9Glp%2BcR5Fvr1qlIfn%2BGxlLmZ9k4RLjcXcpor1kqRf2%2BFIY8zD2e36X9fzDiKQcQ2ZjKDEAtUdQWwe1dFBnDurSQc73XRr3Ms9LsjQLw27EGAtDxuLuCo95GHUzDzWbehigKgdgagBmrqM0N77jYSLClEXDFBvyy8fxCZj6F9j1FpY7sBVBn7doBEFjCRpK0EiCpiJo%2Bu0drmxg27tc2Tr1Zz2Y9bAd6WptSO%2Foak0UZFgekOPTGJ2Xto9iQ%2By7K0EigqxLoyDsJXHKopQnNFnxgy4LeBwHsLKFtAug1sGWnJDXXrmNUk7Is8kuUroHq%2FbA5HHQ2gdtRkngga6Poq6HrWLX94KoEoZ2mM7BdYuyWkR1zRmqA%2FLy4TndN29DsEen7r26e9R%2F6y8w06I0LT6TvxKsqVujS7oh25d0Y8mD1bKSudyi01Nfrmgljtz7WFxrtOHnztjB9%2B%2BzKTEdd68IW52nBZfFmiU%2FnJacC3NWGybIT%2BfsVZFerO366doUdXn%2B4gdnz%2BWlEdZKXYxB5ePVf8DkhCze%2BPnwER%2Bb3Ic0Y5i6RV4%2FIrOC1Htg5XXYcq7eagKj5jtp6aCp25EJ0vlPJQmUmGOatrD%2Fwel8HtpbWDMLoNVNFHmLvmnRVy2oGsDWz42q0jw69fCbaX2LVC2MUmUWtlNl1FeH0U7I60f%2BgJX7buxHopt2E8Z5Khj3kyDshp4XcB4lPeH3UNmJWH%2Fh2L8AAAD%2F%2FwEAAP%2F%2F%2FC4EXqEEAAA%3D
IP
173.233.139.164:443
ASN
#7979 SERVERS-COM

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerLet's Encrypt
Subjectzodiacranbehalf.com
FingerprintC4:B7:E3:A3:79:90:C8:FB:50:CB:DE:BE:B5:A3:7F:86:F6:0F:4E:60
ValidityTue, 28 Nov 2023 07:59:32 GMT - Mon, 26 Feb 2024 07:59:31 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRit3qwQf0BIEET00IqKgjvbP7dnzCEYYyQYsyGJ5FxdVb1bbnVXU9U9vdlTYkByyGH0pJ563myyGpdg%2FgBFZr2EgJC5yILu3bMQPMpsBka%2FQ3%2Ff6%2Fcd3ntffTGsD4iHmu5f%2FERvSaXoctzx3LevyoLrxroXrri%2B1%2FFOuldlsRKddDenH9N%2Fz%2FfijveO%2B5FgG3o58HzP8z3fPSuNyPTm8iELWe72%2FE7P60RBx48jbJr%2FY1s7sNQB7x%2BQE5B88sz6wweQbIwi%2F%2FGMsBuVLt%2F9MK8VrbRBn%2B98WmwUuimQz8fMOMiKndk2tJ0Q8vUCdLEzcwDd3546QConxPndR1rszGQi7d95qjRVEAVS%2Fjya%2FhhCjSHpGEzfhOSPCcA4LqyiyO9e0Kah156ydMpOyOKTvyGbCVn880UU%2Bf3TSm66l7WqK6kLi82shdwcQ66NUdZ7qLYcyGYPrPockv9Glp%2BcR5Fvr1qlIfn%2BGxlLmZ9k4RLjcXcpor1kqRf2%2BFIY8zD2e36X9fzDiKQcQ2ZjKDEAtUdQWwe1dFBnDurSQc73XRr3Ms9LsjQLw27EGAtDxuLuCo95GHUzDzWbehigKgdgagBmrqM0N77jYSLClEXDFBvyy8fxCZj6F9j1FpY7sBVBn7doBEFjCRpK0EiCpiJo%2Bu0drmxg27tc2Tr1Zz2Y9bAd6WptSO%2Foak0UZFgekOPTGJ2Xto9iQ%2By7K0EigqxLoyDsJXHKopQnNFnxgy4LeBwHsLKFtAug1sGWnJDXXrmNUk7Is8kuUroHq%2FbA5HHQ2gdtRkngga6Poq6HrWLX94KoEoZ2mM7BdYuyWkR1zRmqA%2FLy4TndN29DsEen7r26e9R%2F6y8w06I0LT6TvxKsqVujS7oh25d0Y8mD1bKSudyi01Nfrmgljtz7WFxrtOHnztjB9%2B%2BzKTEdd68IW52nBZfFmiU%2FnJacC3NWGybIT%2BfsVZFerO366doUdXn%2B4gdnz%2BWlEdZKXYxB5ePVf8DkhCze%2BPnwER%2Bb3Ic0Y5i6RV4%2FIrOC1Htg5XXYcq7eagKj5jtp6aCp25EJ0vlPJQmUmGOatrD%2Fwel8HtpbWDMLoNVNFHmLvmnRVy2oGsDWz42q0jw69fCbaX2LVC2MUmUWtlNl1FeH0U7I60f%2BgJX7buxHopt2E8Z5Khj3kyDshp4XcB4lPeH3UNmJWH%2Fh2L8AAAD%2F%2FwEAAP%2F%2F%2FC4EXqEEAAA%3D HTTP/1.1
Host: zodiacranbehalf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Cookie: u_pl=18326536; uid_id2=fcbc17f3-cd58-4a97-939d-35d351918c91:3:1; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 30 Nov 2023 04:14:08 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a6d14694727211d06d43c54b42ab6740
Strict-Transport-Security: max-age=0; includeSubdomains

v1.1024tera.com/video/netdisk-videotran-tky/550c57367061105682a9671bb17be626_1074_3_ts/2ddd210a61eee3dd16638015ec767c8c?ts_size=15007476&app_id=250528&ccn=NO&csl=0&dp-logid=8887955319859344474&fn=indha+ponnu+sammaya+pool+sappura+but+soothu+veruchi+oothukita+du+samma.mp4&from_type=1&fsid=914925796498354&isplayer=1&iv=2&logid=8887955319859344474&ouk=4398913988060&r=311933581&size=155242902&sta_cs=0&sta_dt=video&sta_dx=148&time=1701346446&to=any&tot=ctpxz&uo=any&uva=1499419338&vuk=&dtime=10&etag=2ddd210a61eee3dd16638015ec767c8c&fid=e563624738255d7aed01411655103933-&len=614948&range=2992020-3606967&region=tky&resv4=&sign=BOUTHNF-F3530edecde9cd71b79378b290804a96-H4IQebIzvgErVt6mTh8vxIdKh4A%253D&xcode=c08fc97a0eac90f43222d91d584d2b1d93146fe6b5da03e0ae569fc0bce1aac151b1efdfe30607c92f34d31b3fd7c148316128a2cdfcce4d&xv=6&need_suf=&pmk=14002ddd210a61eee3dd16638015ec767c8cfc976aae000000e4fef4&by=my-streaming

185.207.113.194

200 OK

615 kB

URL GET HTTP/2
v1.1024tera.com/video/netdisk-videotran-tky/550c57367061105682a9671bb17be626_1074_3_ts/2ddd210a61eee3dd16638015ec767c8c?ts_size=15007476&app_id=250528&ccn=NO&csl=0&dp-logid=8887955319859344474&fn=indha+ponnu+sammaya+pool+sappura+but+soothu+veruchi+oothukita+du+samma.mp4&from_type=1&fsid=914925796498354&isplayer=1&iv=2&logid=8887955319859344474&ouk=4398913988060&r=311933581&size=155242902&sta_cs=0&sta_dt=video&sta_dx=148&time=1701346446&to=any&tot=ctpxz&uo=any&uva=1499419338&vuk=&dtime=10&etag=2ddd210a61eee3dd16638015ec767c8c&fid=e563624738255d7aed01411655103933-&len=614948&range=2992020-3606967&region=tky&resv4=&sign=BOUTHNF-F3530edecde9cd71b79378b290804a96-H4IQebIzvgErVt6mTh8vxIdKh4A%253D&xcode=c08fc97a0eac90f43222d91d584d2b1d93146fe6b5da03e0ae569fc0bce1aac151b1efdfe30607c92f34d31b3fd7c148316128a2cdfcce4d&xv=6&need_suf=&pmk=14002ddd210a61eee3dd16638015ec767c8cfc976aae000000e4fef4&by=my-streaming
IP
185.207.113.194:443
ASN
#21859 ZEN-ECN

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
data
Size
615 kB (614948 bytes)
Hash
5f7bad8ee3e3a8dcbcf24914ddde0084
c3c5947c2df42c098f4b9b43a1d05c50b2b5837b
77c0dba8407486a886905f5471c3d0bc8fc628764c58a9e7cda0b69985229578

HTTP Headers

GET /video/netdisk-videotran-tky/550c57367061105682a9671bb17be626_1074_3_ts/2ddd210a61eee3dd16638015ec767c8c?ts_size=15007476&app_id=250528&ccn=NO&csl=0&dp-logid=8887955319859344474&fn=indha+ponnu+sammaya+pool+sappura+but+soothu+veruchi+oothukita+du+samma.mp4&from_type=1&fsid=914925796498354&isplayer=1&iv=2&logid=8887955319859344474&ouk=4398913988060&r=311933581&size=155242902&sta_cs=0&sta_dt=video&sta_dx=148&time=1701346446&to=any&tot=ctpxz&uo=any&uva=1499419338&vuk=&dtime=10&etag=2ddd210a61eee3dd16638015ec767c8c&fid=e563624738255d7aed01411655103933-&len=614948&range=2992020-3606967&region=tky&resv4=&sign=BOUTHNF-F3530edecde9cd71b79378b290804a96-H4IQebIzvgErVt6mTh8vxIdKh4A%253D&xcode=c08fc97a0eac90f43222d91d584d2b1d93146fe6b5da03e0ae569fc0bce1aac151b1efdfe30607c92f34d31b3fd7c148316128a2cdfcce4d&xv=6&need_suf=&pmk=14002ddd210a61eee3dd16638015ec767c8cfc976aae000000e4fef4&by=my-streaming HTTP/1.1
Host: v1.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.1024tera.com
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: Zen/2.7
date: Thu, 30 Nov 2023 04:14:08 GMT
content-type: application/octet-stream
content-length: 614948
strict-transport-security: max-age=31536000; preload
cache-control: max-age=259200
etag: 2ddd210a61eee3dd16638015ec767c8c
x-bs-client-ip: OTEuOTAuNDIuMTU0
x-bs-request-id: MTAuMjUyLjE0My4yMTQ6MjAzMDo3NzM1MDM0MjA5Mjg1NjcyMDc0OjIwMjMtMTEtMzAgMTI6MTQ6MDc=
x-bs-file-size: 15007476
x-bs-meta-crc32: 4237781678
access-control-expose-headers: Accept-Ranges, Content-Range, Content-Length, ETag, x-bs-request-id
access-control-allow-origin: https://www.1024tera.com
last-modified: Tue, 28 Nov 2023 04:22:52 GMT
access-control-allow-credentials: true
access-control-allow-methods: HEAD, GET, OPTIONS, PUT, POST, DELETE
access-control-allow-headers: Range, Origin, Content-Type, Accept, Content-Length
content-md5: 2ddd210a61eee3dd16638015ec767c8c
superfile: 0
accept-ranges: bytes
age: 0
via: http/1.1 JP.TYO.837.P.230.82 (Cache-6.1.14), http/1.1 DE.FRA5.837.E.113.194 (Cache-6.1.15)
hittype: TCP_MISS
cache-server: ZenCache
X-Firefox-Spdy: h2

www.1024tera.com/api/analytics?domId=adsterra&showType=1x2&country=NO&where=head&type=web_video_ad_adsterra_success_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317652390

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?domId=adsterra&showType=1x2&country=NO&where=head&type=web_video_ad_adsterra_success_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317652390
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
018a3364dc0601a07d300250f038c6f6
d48ae2df03648ae273dab08b987a64fa50eb2b53
04ddb67a7854790a3dad9457d6990b7adf4b1e40465dfa14a76af2f6fa8bdce0

HTTP Headers

GET /api/analytics?domId=adsterra&showType=1x2&country=NO&where=head&type=web_video_ad_adsterra_success_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317652390 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207; _ga_06ZNKL8C2E=GS1.1.1701317649.1.0.1701317652.57.0.0; _ga=GA1.1.90785484.1701317649; dom3ic8zudi28v8lr6fgphwffqoz0j6c=fcbc17f3-cd58-4a97-939d-35d351918c91%3A3%3A1; m5a4xojbcp2nx3gptmm633qal3gzmadn=zodiacranbehalf.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Thu, 30 Nov 2023 04:14:08 GMT
Flow-Level: 3
Logid: 8887955786851221864
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8887955786851221864
Yme: ZIGW+Ss3QEoadTEDUmr/tG1MvuUYQhz3rApNwyKF
Content-Length: 44

www.1024tera.com/api/analytics?domId=adsterra&showType=1x2&country=NO&where=head&type=web_video_ad_adsterra_success_show_key_way&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317652391

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?domId=adsterra&showType=1x2&country=NO&where=head&type=web_video_ad_adsterra_success_show_key_way&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317652391
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
38b1f1bc323ee162e54cfed054eb1d8e
ecad95b225f673857e6fe6aabf884a90f95e741b
bd9383d6cfe78e9013841688beb1d0e73c7fc1aaf456e457a0e6180792940f70

HTTP Headers

GET /api/analytics?domId=adsterra&showType=1x2&country=NO&where=head&type=web_video_ad_adsterra_success_show_key_way&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317652391 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207; _ga_06ZNKL8C2E=GS1.1.1701317649.1.0.1701317652.57.0.0; _ga=GA1.1.90785484.1701317649; dom3ic8zudi28v8lr6fgphwffqoz0j6c=fcbc17f3-cd58-4a97-939d-35d351918c91%3A3%3A1; m5a4xojbcp2nx3gptmm633qal3gzmadn=zodiacranbehalf.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Thu, 30 Nov 2023 04:14:08 GMT
Flow-Level: 3
Logid: 8887955786862552150
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8887955786862552150
Yme: ZIGW+Ss3QEsTdTcHUmr/tG1MvuUYQhz0rQpNwyGLirDuGx9uZK/9CeiO3A==
Content-Length: 44

s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/img/video-fail-bg.b77a1e8a.png

90.84.161.16

200 OK

105 kB

URL GET HTTP/2
s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/img/video-fail-bg.b77a1e8a.png
IP
90.84.161.16:443
ASN
#0

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert Inc
Subject*.teraboxcdn.com
Fingerprint4C:36:32:B9:A0:68:F6:C2:A7:95:E4:E6:DA:DA:D7:AF:7A:C3:41:44
ValidityTue, 28 Mar 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT

File type
PNG image data, 980 x 438, 4-bit colormap, non-interlaced\012- data
Size
105 kB (104817 bytes)
Hash
b77a1e8a238d4e4191ff9e8a80d6d86d
30d6d726f8f3bfac5770d3ba9ac464f36b4c51b3
73af449450a319a9c3b28782e4bfa3ed17e6b5f7c04a834dba21f96dd0f28949

HTTP Headers

GET /fe-opera-static/node-static-v4/fe-webv4-main/img/video-fail-bg.b77a1e8a.png HTTP/1.1
Host: s2.teraboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 30 Nov 2023 04:14:08 GMT
content-type: image/png
content-length: 104817
server: openresty
content-md5: t3oeiiONTkGR/56KgNbYbQ==
etag: "b77a1e8a238d4e4191ff9e8a80d6d86d"
expires: Wed, 15 Feb 2023 22:47:56 GMT
last-modified: Fri, 10 Feb 2023 07:43:39 GMT
x-bce-content-crc32: 4025551842
x-bce-debug-id: GU0GXuuVmHD1E2Z4twTBIaO14v2edTIrZIjjemDK7yWOsY+HCIeciS9bgQOAOSIWMUxPucybY5m7VzvcBt1c3A==
x-bce-request-id: 47c77fdc-17bf-44d4-8c6d-c40c7548a183
x-bce-storage-class: STANDARD
x-ccdn-expires: 1564973
via: EU-GER-frankfurt-EDGE5-CACHE6[3],EU-GER-frankfurt-EDGE5-CACHE1[0,TCP_HIT,2],EU-GER-frankfurt-GLOBAL1-CACHE2[3],EU-GER-frankfurt-GLOBAL1-CACHE8[0,TCP_HIT,2]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 2592000
nginx-hit: 1
age: 24364343
accept-ranges: bytes
access-control-allow-origin: *
X-Firefox-Spdy: h2

friendshipmale.com/sfp.js

172.64.98.2

200 OK

27 kB

URL GET HTTP/2
friendshipmale.com/sfp.js
IP
172.64.98.2:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint08:6F:D8:CB:9E:0C:0A:98:2E:C5:CD:21:8E:0B:76:2B:50:6F:B6:37
ValiditySat, 18 Feb 2023 00:00:00 GMT - Sat, 17 Feb 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Size
27 kB (27166 bytes)
Hash
924e967bca1d599992556a8d139b1c5a
222b09dbf164ddc03d39100fd0524a22018d28b2
ac84c2f8288b59f8e04ba77287ce696052bfeee0d462a566d94dc305df646c95

HTTP Headers

GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 30 Nov 2023 04:14:08 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 63e63cf7673461244cafc41c7ac37b9e
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Thu, 30 Nov 2023 04:14:07 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Op%2FMmCjNmAyjr9miYMP1WX9dM3c%2BLcop5UwMxuPixOVBB5CUXN1dyajt1Tdy9PJFWmWE0Ure09m%2FiYmq4dIdYwNyMwvaYCHPAZNfg0wQfi8jhu7F592WGtmGNupcMu1vwsv2y%2B4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82e04303df9f6702-AMS
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.1024tera.com/api/analytics?type=videoplayer_pause&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317652794

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?type=videoplayer_pause&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317652794
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
f58d5d2d7d60c53fa1ce12e08160fda9
ee1bfea2a372dbbbf0271532177cc86fe4d82d06
71c2b7ce8883ece30845b9da7490b5494747ea776c13ec59bc1deab358bf1744

HTTP Headers

GET /api/analytics?type=videoplayer_pause&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317652794 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207; _ga_06ZNKL8C2E=GS1.1.1701317649.1.0.1701317652.57.0.0; _ga=GA1.1.90785484.1701317649; dom3ic8zudi28v8lr6fgphwffqoz0j6c=fcbc17f3-cd58-4a97-939d-35d351918c91%3A3%3A1; m5a4xojbcp2nx3gptmm633qal3gzmadn=zodiacranbehalf.com; pp_main_1e1bbdc937ccd35cd1897b4e58c7407b=1; pp_idelay_1e1bbdc937ccd35cd1897b4e58c7407b=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Thu, 30 Nov 2023 04:14:08 GMT
Flow-Level: 3
Logid: 8887955885829136217
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8887955885829136217
Yme: ZIGW+Ss3QE0WaysCSHb+qnFLufkASwb0tAhOySKDm+4=
Content-Length: 44

216.239.34.36

204 No Content

0 B

URL POST HTTP/3
region1.analytics.google.com/g/collect?v=2&tid=G-06ZNKL8C2E&gtm=45je3b60v875375078&_p=1701317649240&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=90785484.1701317649&ul=en-us&sr=1280x1024&sid=1701317649&sct=1&seg=0&dl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&dt=indha%20ponnu%20sammaya%20pool%20sappura%20but%20soothu%20veruchi%20oothukita%20du%20samma.mp4%20-%20Share%20Files%20Online%20%26%20Send%20Larges%20Files%20with%20TeraBox&_s=4&tfd=10371
IP
216.239.34.36:443
ASN
#15169 GOOGLE

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-06ZNKL8C2E&gtm=45je3b60v875375078&_p=1701317649240&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=90785484.1701317649&ul=en-us&sr=1280x1024&sid=1701317649&sct=1&seg=0&dl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&dt=indha%20ponnu%20sammaya%20pool%20sappura%20but%20soothu%20veruchi%20oothukita%20du%20samma.mp4%20-%20Share%20Files%20Online%20%26%20Send%20Larges%20Files%20with%20TeraBox&_s=4&tfd=10371 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2138
Origin: https://www.1024tera.com
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/3 204 No Content
access-control-allow-origin: https://www.1024tera.com
date: Thu, 30 Nov 2023 04:14:09 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

midgetdeliveringsmartly.com/sbar.json?key=f195e5fa577c23352666448243864c68&uuid=fcbc17f3-cd58-4a97-939d-35d351918c91%3A3%3A1

192.243.59.12

4.3 kB

URL
midgetdeliveringsmartly.com/sbar.json?key=f195e5fa577c23352666448243864c68&uuid=fcbc17f3-cd58-4a97-939d-35d351918c91%3A3%3A1
IP
192.243.59.12:0
ASN
#39572 DataWeb Global Group B.V.

File type
JSON data\012- , ASCII text, with very long lines (6084), with no line terminators
Size
4.3 kB (4349 bytes)
Hash
f163bf27390b29425af70ea273667852
22727e760bac89522147cc7ade1e7a94e52a9ff5
91fa07eb0b702a1351c500a23a7c39920d938fbbad7df12f85f5548e671a4052

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /sbar.json?key=f195e5fa577c23352666448243864c68&uuid=fcbc17f3-cd58-4a97-939d-35d351918c91%3A3%3A1 HTTP/1.1
Host: midgetdeliveringsmartly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.1024tera.com
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 30 Nov 2023 04:14:13 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.1024tera.com
Access-Control-Allow-Origin: https://www.1024tera.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=20651427; expires=Fri, 01 Dec 2023 04:14:13 GMT; secure; SameSite=None
uid_id2=fcbc17f3-cd58-4a97-939d-35d351918c91:3:1; expires=Thu, 07 Dec 2023 04:14:13 GMT; secure; SameSite=None
pdhtkv=true; expires=Fri, 01 Dec 2023 04:14:13 GMT; secure; SameSite=None
uncs=1; expires=Fri, 01 Dec 2023 04:14:13 GMT; secure; SameSite=None
pdhtkv29=true; expires=Fri, 01 Dec 2023 04:14:13 GMT; secure; SameSite=None
uncs29=1; expires=Fri, 01 Dec 2023 04:14:13 GMT; secure; SameSite=None
slecf195e5fa577c23352666448243864c68=[4766299]; expires=Thu, 30 Nov 2023 04:14:18 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: bfcb83ab9a93e7c760b7dba4461b4a7b
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

region1.analytics.google.com/g/collect?v=2&tid=G-06ZNKL8C2E&gtm=45je3b60v875375078&_p=1701317649240&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=90785484.1701317649&ul=en-us&sr=1280x1024&_s=5&sid=1701317649&sct=1&seg=0&dl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&dt=indha%20ponnu%20sammaya%20pool%20sappura%20but%20soothu%20veruchi%20oothukita%20du%20samma.mp4%20-%20Share%20Files%20Online%20%26%20Send%20Larges%20Files%20with%20TeraBox&en=action&_ee=1&ep.origin=firebase&ep.dubox_source=videoplayer_pause&tfd=15373

216.239.34.36

0 B

URL
region1.analytics.google.com/g/collect?v=2&tid=G-06ZNKL8C2E&gtm=45je3b60v875375078&_p=1701317649240&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=90785484.1701317649&ul=en-us&sr=1280x1024&_s=5&sid=1701317649&sct=1&seg=0&dl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&dt=indha%20ponnu%20sammaya%20pool%20sappura%20but%20soothu%20veruchi%20oothukita%20du%20samma.mp4%20-%20Share%20Files%20Online%20%26%20Send%20Larges%20Files%20with%20TeraBox&en=action&_ee=1&ep.origin=firebase&ep.dubox_source=videoplayer_pause&tfd=15373
IP
216.239.34.36:0
ASN
#15169 GOOGLE

Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-06ZNKL8C2E&gtm=45je3b60v875375078&_p=1701317649240&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=90785484.1701317649&ul=en-us&sr=1280x1024&_s=5&sid=1701317649&sct=1&seg=0&dl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&dt=indha%20ponnu%20sammaya%20pool%20sappura%20but%20soothu%20veruchi%20oothukita%20du%20samma.mp4%20-%20Share%20Files%20Online%20%26%20Send%20Larges%20Files%20with%20TeraBox&en=action&_ee=1&ep.origin=firebase&ep.dubox_source=videoplayer_pause&tfd=15373 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.1024tera.com
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

HTTP/3 204 No Content
access-control-allow-origin: https://www.1024tera.com
date: Thu, 30 Nov 2023 04:14:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

midgetdeliveringsmartly.com/ren.gif?sid=H4sIAAAAAAAC%2F1RST4gcxRutTvI7%2FFAPCfEgEhjBQwR3tnu6e2baHIIxJgZjEvOHPXiqrqqeLbe6q6nqnp6dXBYDkoOHCXjw2PtmN4u6BONREGTWiywIGQ%2ByBxfEey5CzjK7A6Pfob%2F3vteH772vPt8sD4mLkh7c%2BkgPpVJ0OWy6jfMrMuO6so0bdxue23QvNFZk1g4uNAazj%2Bm%2F47lh032rcVWwNb3ccj3X9VyvcUUakejB8pEKme9GXjNym0Gr6YUBBua%2F3JYOLHXA%2B4fkDCSf%2Fm%2F1l6eQbIIs%2Fe6ysGuFzt9%2BPy0VLbRBn%2B%2Fcy9YyXWVIFzAxDpJsZ%2F43tJ0S8tUJ6Gxn7gC6vzVzgFhOifO7hzjbma%2BJuL99vGmsIDLE%2FCVU%2FQmEmkDSCZh%2BAMmfEYBx3LiJLH18Q5uKrh%2BrdKZOyakXf0NWU3Lqj7PI0ieXlBw07mhVFlJnFoOkhhxMIHsT5OUeiqEDWe2BFZ9B8l%2FJ8ovryNKtm1ZpSH7wZsJi5nUSf4nxsLsU0KizFPkRX%2FJD7ode5HVZ5B1FJOUEMplAiRGoPYnSOiilgzJxUOYOUn7QoGGUuG4niRPf7waMMd9nLOy2ecj9oJu4KNnMwwhFPgJTIzCzgdxsYE0%2BehaegSl%2Fgl2tYfkJ2GJKnI%2Fvo89rVIKgsgQVJagkQVUQVP16myvbsvVjrmwZe%2FPemne%2FHuuit0m3ddETGdnMD8npWX7OhXNjrImDRuJFoQgTGnY6rOX7YavdbgdBtxX43XbA2l1YWUPaE6DWwVBOyRuvf4FcTsn%2FO7uI6R6s2gOTp0HLc6DVuNNyQVfHQdfFMNv13FZQCEObTKfgukZenEKx7myqQ%2FLa0R0%2F%2BOETCLZ%2F8cvhn1efnL0PZmrkpsan8meCnno4vq0rsnVbV5Y8vZkXMpVDOrvxnYIW4uQ3H4r1Sht%2B7bIdff0umwkzuHtX2OI6zbjMepZ8e0lyLswVbZggP16zKyK%2BVdrVS6XJyvz6rfeuXEtzI6yVOpuAyikhz78Hk1PyynN79H7P3%2FsL0kxgyhppuU%2FmBan3wPIN2Hwxs5rAqAWPcwdVWY9NK14MlSRQYsFpXMP%2Bi8cLvGkfomcc0OIBsrRG39ToqxpUjWDLk%2BMiN%2FsXf%2FOPCrFyxrEyzlasjHp0HK6VBw0RJm4i3JaIkyhOOtTlURJEMY080YlD6qGwU7H68qv%2FAAAA%2F%2F8BAAD%2F%2F39yQE2XBAAA

192.243.59.12

7 B

URL GET
midgetdeliveringsmartly.com/ren.gif?sid=H4sIAAAAAAAC%2F1RST4gcxRutTvI7%2FFAPCfEgEhjBQwR3tnu6e2baHIIxJgZjEvOHPXiqrqqeLbe6q6nqnp6dXBYDkoOHCXjw2PtmN4u6BONREGTWiywIGQ%2ByBxfEey5CzjK7A6Pfob%2F3vteH772vPt8sD4mLkh7c%2BkgPpVJ0OWy6jfMrMuO6so0bdxue23QvNFZk1g4uNAazj%2Bm%2F47lh032rcVWwNb3ccj3X9VyvcUUakejB8pEKme9GXjNym0Gr6YUBBua%2F3JYOLHXA%2B4fkDCSf%2Fm%2F1l6eQbIIs%2Fe6ysGuFzt9%2BPy0VLbRBn%2B%2Fcy9YyXWVIFzAxDpJsZ%2F43tJ0S8tUJ6Gxn7gC6vzVzgFhOifO7hzjbma%2BJuL99vGmsIDLE%2FCVU%2FQmEmkDSCZh%2BAMmfEYBx3LiJLH18Q5uKrh%2BrdKZOyakXf0NWU3Lqj7PI0ieXlBw07mhVFlJnFoOkhhxMIHsT5OUeiqEDWe2BFZ9B8l%2FJ8ovryNKtm1ZpSH7wZsJi5nUSf4nxsLsU0KizFPkRX%2FJD7ode5HVZ5B1FJOUEMplAiRGoPYnSOiilgzJxUOYOUn7QoGGUuG4niRPf7waMMd9nLOy2ecj9oJu4KNnMwwhFPgJTIzCzgdxsYE0%2BehaegSl%2Fgl2tYfkJ2GJKnI%2Fvo89rVIKgsgQVJagkQVUQVP16myvbsvVjrmwZe%2FPemne%2FHuuit0m3ddETGdnMD8npWX7OhXNjrImDRuJFoQgTGnY6rOX7YavdbgdBtxX43XbA2l1YWUPaE6DWwVBOyRuvf4FcTsn%2FO7uI6R6s2gOTp0HLc6DVuNNyQVfHQdfFMNv13FZQCEObTKfgukZenEKx7myqQ%2FLa0R0%2F%2BOETCLZ%2F8cvhn1efnL0PZmrkpsan8meCnno4vq0rsnVbV5Y8vZkXMpVDOrvxnYIW4uQ3H4r1Sht%2B7bIdff0umwkzuHtX2OI6zbjMepZ8e0lyLswVbZggP16zKyK%2BVdrVS6XJyvz6rfeuXEtzI6yVOpuAyikhz78Hk1PyynN79H7P3%2FsL0kxgyhppuU%2FmBan3wPIN2Hwxs5rAqAWPcwdVWY9NK14MlSRQYsFpXMP%2Bi8cLvGkfomcc0OIBsrRG39ToqxpUjWDLk%2BMiN%2FsXf%2FOPCrFyxrEyzlasjHp0HK6VBw0RJm4i3JaIkyhOOtTlURJEMY080YlD6qGwU7H68qv%2FAAAA%2F%2F8BAAD%2F%2F39yQE2XBAAA
IP
192.243.59.12:0
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerLet's Encrypt
Subjectmidgetdeliveringsmartly.com
Fingerprint6A:4D:94:D7:80:6E:6D:4B:11:7A:0C:B9:51:BF:EA:BA:F0:47:6B:54
ValidityTue, 28 Nov 2023 08:08:31 GMT - Mon, 26 Feb 2024 08:08:30 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1RST4gcxRutTvI7%2FFAPCfEgEhjBQwR3tnu6e2baHIIxJgZjEvOHPXiqrqqeLbe6q6nqnp6dXBYDkoOHCXjw2PtmN4u6BONREGTWiywIGQ%2ByBxfEey5CzjK7A6Pfob%2F3vteH772vPt8sD4mLkh7c%2BkgPpVJ0OWy6jfMrMuO6so0bdxue23QvNFZk1g4uNAazj%2Bm%2F47lh032rcVWwNb3ccj3X9VyvcUUakejB8pEKme9GXjNym0Gr6YUBBua%2F3JYOLHXA%2B4fkDCSf%2Fm%2F1l6eQbIIs%2Fe6ysGuFzt9%2BPy0VLbRBn%2B%2Fcy9YyXWVIFzAxDpJsZ%2F43tJ0S8tUJ6Gxn7gC6vzVzgFhOifO7hzjbma%2BJuL99vGmsIDLE%2FCVU%2FQmEmkDSCZh%2BAMmfEYBx3LiJLH18Q5uKrh%2BrdKZOyakXf0NWU3Lqj7PI0ieXlBw07mhVFlJnFoOkhhxMIHsT5OUeiqEDWe2BFZ9B8l%2FJ8ovryNKtm1ZpSH7wZsJi5nUSf4nxsLsU0KizFPkRX%2FJD7ode5HVZ5B1FJOUEMplAiRGoPYnSOiilgzJxUOYOUn7QoGGUuG4niRPf7waMMd9nLOy2ecj9oJu4KNnMwwhFPgJTIzCzgdxsYE0%2BehaegSl%2Fgl2tYfkJ2GJKnI%2Fvo89rVIKgsgQVJagkQVUQVP16myvbsvVjrmwZe%2FPemne%2FHuuit0m3ddETGdnMD8npWX7OhXNjrImDRuJFoQgTGnY6rOX7YavdbgdBtxX43XbA2l1YWUPaE6DWwVBOyRuvf4FcTsn%2FO7uI6R6s2gOTp0HLc6DVuNNyQVfHQdfFMNv13FZQCEObTKfgukZenEKx7myqQ%2FLa0R0%2F%2BOETCLZ%2F8cvhn1efnL0PZmrkpsan8meCnno4vq0rsnVbV5Y8vZkXMpVDOrvxnYIW4uQ3H4r1Sht%2B7bIdff0umwkzuHtX2OI6zbjMepZ8e0lyLswVbZggP16zKyK%2BVdrVS6XJyvz6rfeuXEtzI6yVOpuAyikhz78Hk1PyynN79H7P3%2FsL0kxgyhppuU%2FmBan3wPIN2Hwxs5rAqAWPcwdVWY9NK14MlSRQYsFpXMP%2Bi8cLvGkfomcc0OIBsrRG39ToqxpUjWDLk%2BMiN%2FsXf%2FOPCrFyxrEyzlasjHp0HK6VBw0RJm4i3JaIkyhOOtTlURJEMY080YlD6qGwU7H68qv%2FAAAA%2F%2F8BAAD%2F%2F39yQE2XBAAA HTTP/1.1
Host: midgetdeliveringsmartly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Cookie: u_pl=20651427; uid_id2=fcbc17f3-cd58-4a97-939d-35d351918c91:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 30 Nov 2023 04:14:14 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 8a65cc6d64532e6b6bcecc5cb591edf6
Strict-Transport-Security: max-age=0; includeSubdomains

cdn.cloudimagesb.com/si/98/58/2f/98582fa31e3a411721a1f890fd22419a/1700491903.png

45.133.44.9

9.0 kB

URL
cdn.cloudimagesb.com/si/98/58/2f/98582fa31e3a411721a1f890fd22419a/1700491903.png
IP
45.133.44.9:0
ASN
#39572 DataWeb Global Group B.V.

Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:EC:C0:22:20:76:60:90:92:4C:5C:F3:AD:17:3C:41:B5:00:25:AF
ValidityThu, 23 Nov 2023 05:00:53 GMT - Wed, 21 Feb 2024 05:00:52 GMT

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Size
9.0 kB (9016 bytes)
Hash
a56f06ca83ee06488a213b352e00bd90
aec437b74eb6f1143683872fb2d664286da4a664
7144c526762a9d91bdde1939194c2835f2cb1afe0ebac298bbdf1e9239b539ec

HTTP Headers

GET /si/98/58/2f/98582fa31e3a411721a1f890fd22419a/1700491903.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 30 Nov 2023 04:14:14 GMT
content-type: image/png
content-length: 9016
server: nginx/1.21.6
last-modified: Mon, 20 Nov 2023 14:51:52 GMT
etag: "655b7288-2338"
expires: Sat, 02 Dec 2023 04:14:14 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn.cloudimagesb.com/si/3c/d5/62/3cd562dd264800ee586ac2da770e9a65/1700491951.png

45.133.44.9

200 OK

20 kB

URL GET HTTP/2
cdn.cloudimagesb.com/si/3c/d5/62/3cd562dd264800ee586ac2da770e9a65/1700491951.png
IP
45.133.44.9:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:EC:C0:22:20:76:60:90:92:4C:5C:F3:AD:17:3C:41:B5:00:25:AF
ValidityThu, 23 Nov 2023 05:00:53 GMT - Wed, 21 Feb 2024 05:00:52 GMT

File type
PNG image data, 320 x 180, 8-bit/color RGBA, non-interlaced\012- data
Size
20 kB (20001 bytes)
Hash
ea31001ce8fa95eb2ac1617515105332
d505ca04808c25cfa33a555c96886f421ddbbde7
0267f5cd21fe5609405724c20d6f021b8932a696ada766b8e86e42c670000ab3

HTTP Headers

GET /si/3c/d5/62/3cd562dd264800ee586ac2da770e9a65/1700491951.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 30 Nov 2023 04:14:14 GMT
content-type: image/png
content-length: 20001
server: nginx/1.21.6
last-modified: Mon, 20 Nov 2023 14:52:40 GMT
etag: "655b72b8-4e21"
expires: Sat, 02 Dec 2023 04:14:14 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn.creative-bars1.com/sb/ssp/vpn/classic-push/big1/img/close.png

172.64.109.10

591 B

URL
cdn.creative-bars1.com/sb/ssp/vpn/classic-push/big1/img/close.png
IP
172.64.109.10:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 12 x 12, 8-bit/color RGBA, non-interlaced\012- data
Size
591 B (591 bytes)
Hash
9fd5bcb6103d86e317bd1eb019bcbe71
6b5a52ea669dcb74946f2bed4bdd7ec985026113
0ddd3be104ac7945fb062096df62034a6a24ecc76ba92493c35c62c3c25982ae

HTTP Headers

GET /sb/ssp/vpn/classic-push/big1/img/close.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 30 Nov 2023 04:14:14 GMT
content-type: image/png
content-length: 591
last-modified: Mon, 21 Feb 2022 10:06:44 GMT
etag: "62136434-24f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 1459974
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OqeB31sZVxSzo4w1eSkDc2cq%2FtEbCnhgggxxLiKP%2FMbVRFzDMm7%2F7ibvA%2B1DR29imncagiZFUJEZccY3%2FCga4BzXg8B3nWxqB6fx3nkeI9E1IX3ZOL5ZQ%2FjgBMFXb4BqfouT%2F5Dbk%2Fbu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82e0432b1aa963ef-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

216.58.207.227

16 kB

URL
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.1024tera.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 21:13:56 GMT
expires: Thu, 28 Nov 2024 21:13:56 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 25218
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

16 kB

URL GET
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.1024tera.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 23 Nov 2023 04:57:34 GMT
expires: Fri, 22 Nov 2024 04:57:34 GMT
cache-control: public, max-age=31536000
age: 602200
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.barscreative1.com/sb/au/48/48/eb/4848ebd6f7295875a5d388ec2488aba3/1648542421.html

45.133.44.3

485 B

URL GET
cdn.barscreative1.com/sb/au/48/48/eb/4848ebd6f7295875a5d388ec2488aba3/1648542421.html
IP
45.133.44.3:0
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerLet's Encrypt
Subjectcdn.barscreative1.com
Fingerprint55:06:B7:F1:EF:E9:55:FB:7C:8C:4F:5D:DB:05:C9:15:19:90:9B:2F
ValiditySat, 11 Nov 2023 03:00:51 GMT - Fri, 09 Feb 2024 03:00:50 GMT

File type
gzip compressed data, from Unix\012- data
Size
485 B (485 bytes)
Hash
d02f9d8cb0ac892f864840aa6cbf61ac
42fd8975b10aaece6574494a1ed0c0dd3cc1ca8f
303436210511891eee57e6b42a3c70c89ee3ffe827aec2b3fe3cd46d2217fc86

HTTP Headers

GET /sb/au/48/48/eb/4848ebd6f7295875a5d388ec2488aba3/1648542421.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.1024tera.com
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 30 Nov 2023 04:14:14 GMT
content-type: text/html; charset=utf-8
server: nginx/1.21.6
last-modified: Tue, 29 Mar 2022 08:27:10 GMT
etag: W/"6242c2de-602"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
expires: Thu, 30 Nov 2023 05:14:14 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2

midgetdeliveringsmartly.com/pixel/sbs?c=1

173.233.139.164

0 B

URL
midgetdeliveringsmartly.com/pixel/sbs?c=1
IP
173.233.139.164:0
ASN
#7979 SERVERS-COM

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/sbs?c=1 HTTP/1.1
Host: midgetdeliveringsmartly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Cookie: u_pl=20651427; uid_id2=fcbc17f3-cd58-4a97-939d-35d351918c91:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 30 Nov 2023 04:14:14 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

sofire.1024tera.com/h5/t

210.148.85.53

200 OK

697 B

URL POST HTTP/1.1
sofire.1024tera.com/h5/t
IP
210.148.85.53:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (721), with no line terminators
Size
697 B (697 bytes)
Hash
9b283ed70e2141ff3b0ba10b24de33dc
c698a0b4932370569675f3ecea7a44fb3b12d5ee
835a1be5b70437708cdc81381d16eb50c41ef7560c53ecda4f03c480fc803a08

HTTP Headers

POST /h5/t HTTP/1.1
Host: sofire.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 3802
Origin: https://www.1024tera.com
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Cookie: browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: openresty
Date: Thu, 30 Nov 2023 04:14:03 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
yld: 8887954455269110408
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Content-Type,AccessToken,X-CSRF-Token,X-Bdh5-Pf,X-XSRF-TOKEN, Authorization
Access-Control-Allow-Methods: POST, GET, OPTIONS
Access-Control-Allow-Origin: https://www.1024tera.com
Access-Control-Expose-Headers: Content-Length, Access-Control-Allow-Origin, Access-Control-Allow-Headers, Content-Type
P3P: CP=" OTI DSP COR IVA OUR IND COM "
yme: ZIGW+Ss3QE0WaCsHSnb+qnFLufkASwH9tAJMxyqLmOWx
logid: 8887954455269110408
Flow-level: 3
Content-Encoding: gzip

s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/assets/libs/kakao.min.js

90.84.161.16

200 OK

115 kB

URL GET HTTP/2
s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/assets/libs/kakao.min.js
IP
90.84.161.16:443
ASN
#0

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert Inc
Subject*.teraboxcdn.com
Fingerprint4C:36:32:B9:A0:68:F6:C2:A7:95:E4:E6:DA:DA:D7:AF:7A:C3:41:44
ValidityTue, 28 Mar 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT

File type

Size
115 kB (114576 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /fe-opera-static/node-static-v4/fe-webv4-main/assets/libs/kakao.min.js HTTP/1.1
Host: s2.teraboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 30 Nov 2023 04:14:01 GMT
content-type: application/javascript
server: openresty
access-control-allow-credentials: true
access-control-allow-methods: GET, HEAD, POST, PUT
access-control-expose-headers: ETag, Content-Length, x-bce-next-append-offset, x-bce-object-type, x-bce-request-id
access-control-max-age: 1800
content-md5: Ng3YsEXIR8ylP6d+vhUKPw==
etag: W/"360dd8b045c847cca53fa77ebe150a3f"
expires: Sat, 24 Sep 2022 06:46:06 GMT
last-modified: Wed, 21 Sep 2022 05:03:33 GMT
x-bce-content-crc32: 3787281588
x-bce-debug-id: NdXOHvJhWdykwQRMkfwzkNsOZ5AZbm+dI56Adia+fvxzTQbCnAlm9HuK5oYXV0mvHXmPazsRbY1yj9LO6Ud5AQ==
x-bce-request-id: 95d5b42d-7d75-47b4-acd7-57e276abb336
x-bce-restore-cache: -
x-bce-restore-tier: -
x-bce-storage-class: STANDARD
x-ccdn-expires: 1729907
via: EU-GER-frankfurt-EDGE5-CACHE6[26],EU-GER-frankfurt-EDGE5-CACHE3[0,TCP_HIT,0],EU-GER-frankfurt-GLOBAL1-CACHE4[3],EU-GER-frankfurt-GLOBAL1-CACHE9[0,TCP_HIT,2],EA-SGP-GLOBAL1-CACHE5[4],EA-SGP-GLOBAL1-CACHE7[0,TCP_HIT,3]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 2592000
nginx-hit: 1
age: 24367498
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-vendors.0c91416b.js

90.84.161.16

200 OK

1.3 MB

URL GET HTTP/2
s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-vendors.0c91416b.js
IP
90.84.161.16:443
ASN
#0

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert Inc
Subject*.teraboxcdn.com
Fingerprint4C:36:32:B9:A0:68:F6:C2:A7:95:E4:E6:DA:DA:D7:AF:7A:C3:41:44
ValidityTue, 28 Mar 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT

File type

Size
1.3 MB (1276997 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-vendors.0c91416b.js HTTP/1.1
Host: s2.teraboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 30 Nov 2023 04:14:01 GMT
content-type: application/javascript
server: openresty
content-md5: a1l6Bl6z/WmUk5VRMLJRyw==
etag: W/"6b597a065eb3fd699493955130b251cb"
expires: Sat, 25 Nov 2023 10:39:04 GMT
last-modified: Wed, 22 Nov 2023 02:21:52 GMT
x-bce-content-crc32: 3304779663
x-bce-debug-id: qN0aN2KGmEnQNotbwTj5EO9MHr42l1O3a48iCP9ZQ1QdFJqG7umOmDl00uQpHIgJHgNjtdiGCMrsn+tYuWFRhg==
x-bce-flow-control-type: -1
x-bce-is-transition: false
x-bce-request-id: 566c3b22-e053-4880-b154-222038dabd24
x-bce-storage-class: STANDARD
x-ccdn-expires: 2101321
via: EU-GER-frankfurt-EDGE5-CACHE6[3],EU-GER-frankfurt-EDGE5-CACHE6[0,TCP_HIT,0],EU-GER-frankfurt-GLOBAL1-CACHE1[22],EU-GER-frankfurt-GLOBAL1-CACHE9[0,TCP_HIT,20]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 2592000
nginx-hit: 1
age: 668017
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

www.1024tera.com/share/streaming?uk=4398913988060&shareid=1354979074&type=M3U8_FLV_264_480&fid=914925796498354&sign=eca87f0c66c43f4136ab402fd23ab8577e58b7a4&timestamp=1701317649&jsToken=C10AB00D6E61E57F9E931691514D6CD99943957C14CA8F1CE8A94D37DA7841969732C51BCE20E06E10F0BC0AF5E7AF79E5FF4B53EEF6BF3355753934EB8D6D0F13C24D46E3576C142E766BD524C82CB2F60084095BA2CFBEC07E047D746ADA80&esl=1&isplayer=1&ehps=1&clienttype=0&app_id=250528&web=1&channel=dubox

210.148.85.59

200 OK

2.9 kB

URL GET HTTP/1.1
www.1024tera.com/share/streaming?uk=4398913988060&shareid=1354979074&type=M3U8_FLV_264_480&fid=914925796498354&sign=eca87f0c66c43f4136ab402fd23ab8577e58b7a4&timestamp=1701317649&jsToken=C10AB00D6E61E57F9E931691514D6CD99943957C14CA8F1CE8A94D37DA7841969732C51BCE20E06E10F0BC0AF5E7AF79E5FF4B53EEF6BF3355753934EB8D6D0F13C24D46E3576C142E766BD524C82CB2F60084095BA2CFBEC07E047D746ADA80&esl=1&isplayer=1&ehps=1&clienttype=0&app_id=250528&web=1&channel=dubox
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
M3U playlist, ASCII text, with very long lines (2869), with no line terminators
Size
2.9 kB (2859 bytes)
Hash
c86e54e1adf09a0a4b22380ea02ec271
b79b02f8e4e56a709be4065358c0e7ee2b5c45b6
f4f94bf4a772da4c142400335570046598859ead16e9732d0dce6f96d6ba3f53

HTTP Headers

GET /share/streaming?uk=4398913988060&shareid=1354979074&type=M3U8_FLV_264_480&fid=914925796498354&sign=eca87f0c66c43f4136ab402fd23ab8577e58b7a4&timestamp=1701317649&jsToken=C10AB00D6E61E57F9E931691514D6CD99943957C14CA8F1CE8A94D37DA7841969732C51BCE20E06E10F0BC0AF5E7AF79E5FF4B53EEF6BF3355753934EB8D6D0F13C24D46E3576C142E766BD524C82CB2F60084095BA2CFBEC07E047D746ADA80&esl=1&isplayer=1&ehps=1&clienttype=0&app_id=250528&web=1&channel=dubox HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207; _ga_06ZNKL8C2E=GS1.1.1701317649.1.0.1701317650.59.0.0; _ga=GA1.1.90785484.1701317649
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Type: application/x-mpegURL;charset=utf-8
Date: Thu, 30 Nov 2023 04:14:06 GMT
Flow-Level: 3
Http-X-Isis-Logid: 8887955319859344474
Logid: 8887955319859344474
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
Yld: 8887955319859344474
Yme: ZIGW+Ss3QE0WaSsES2riq29Xvv4cVAP2ox5OxSeJmu2xTw==
Transfer-Encoding: chunked

s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/assets/libs/apple.min.js

90.84.161.16

200 OK

42 kB

URL GET HTTP/2
s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/assets/libs/apple.min.js
IP
90.84.161.16:443
ASN
#0

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert Inc
Subject*.teraboxcdn.com
Fingerprint4C:36:32:B9:A0:68:F6:C2:A7:95:E4:E6:DA:DA:D7:AF:7A:C3:41:44
ValidityTue, 28 Mar 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT

File type

Size
42 kB (42477 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /fe-opera-static/node-static-v4/fe-webv4-main/assets/libs/apple.min.js HTTP/1.1
Host: s2.teraboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 30 Nov 2023 04:14:01 GMT
content-type: application/javascript
server: openresty
content-md5: FF9mC4xH7SHLDq/gVBei9Q==
etag: W/"145f660b8c47ed21cb0eafe05417a2f5"
expires: Sun, 05 Feb 2023 11:19:03 GMT
last-modified: Thu, 02 Feb 2023 02:44:27 GMT
x-bce-content-crc32: 3041762371
x-bce-debug-id: GooNofUHCftVSaaHEC+AzAr4FYXPEZIzOsKJwWjn94XbPwUKv4MuSNK5CZJOH/HsmlldVHL9LxC5wuj+MNetYw==
x-bce-request-id: 96560a78-91ad-47e1-a285-8df2f8efcb9d
x-bce-storage-class: STANDARD
x-ccdn-expires: 1729907
via: EU-GER-frankfurt-EDGE5-CACHE6[10],EU-GER-frankfurt-EDGE5-CACHE2[0,TCP_HIT,0],EU-GER-frankfurt-GLOBAL1-CACHE6[3],EU-GER-frankfurt-GLOBAL1-CACHE2[0,TCP_HIT,2]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 2592000
nginx-hit: 1
age: 24367498
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

sofire.bdstatic.com/js/fsec-hd.js

60.190.116.48

200 OK

295 kB

URL GET HTTP/2
sofire.bdstatic.com/js/fsec-hd.js
IP
60.190.116.48:443
ASN
#4134 Chinanet

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT

File type

Size
295 kB (295197 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /js/fsec-hd.js HTTP/1.1
Host: sofire.bdstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: JSP3/2.0.14
date: Thu, 30 Nov 2023 04:14:01 GMT
content-type: text/javascript
expires: Sun, 03 Dec 2023 03:12:08 GMT
last-modified: Fri, 30 Jun 2023 07:31:01 GMT
etag: "834113d1867d8ec45fc41e3c692fdead"
content-encoding: br
age: 3713
accept-ranges: bytes
content-md5: g0ET0YZ9jsRfxB48aS/erQ==
x-bce-content-crc32: 1744549445
x-bce-debug-id: pmwOPs6TwXuIuqgkHTlpEk/8vFw6h4RzBYfHbfmcyD2Cod3s4Ck2OGK0+cpSc/pvzUQd8yR5hAizocjuO8jv/w==
x-bce-flow-control-type: -1
x-bce-is-transition: false
x-bce-request-id: 2cfb6092-110f-439a-aca9-fa6132a89f36
x-bce-storage-class: STANDARD
ohc-global-saved-time: Thu, 30 Nov 2023 03:12:08 GMT
ohc-cache-hit: wz2ct55 [2], nb2ctcache78 [2]
ohc-response-time: 1 0 0 0 0 0
X-Firefox-Spdy: h2

s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/cashier~copyright-feedback~failPay~goldCenter~landing~login~membership~oneAnniversary~other~recycleb~fcf1883d.bb8d4903.js

90.84.161.16

200 OK

19 kB

URL GET HTTP/2
s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/cashier~copyright-feedback~failPay~goldCenter~landing~login~membership~oneAnniversary~other~recycleb~fcf1883d.bb8d4903.js
IP
90.84.161.16:443
ASN
#0

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert Inc
Subject*.teraboxcdn.com
Fingerprint4C:36:32:B9:A0:68:F6:C2:A7:95:E4:E6:DA:DA:D7:AF:7A:C3:41:44
ValidityTue, 28 Mar 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT

File type

Size
19 kB (18671 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /fe-opera-static/node-static-v4/fe-webv4-main/js/cashier~copyright-feedback~failPay~goldCenter~landing~login~membership~oneAnniversary~other~recycleb~fcf1883d.bb8d4903.js HTTP/1.1
Host: s2.teraboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 30 Nov 2023 04:14:02 GMT
content-type: application/javascript
server: openresty
content-md5: yUKf/ukS07br1UhpDnVjcA==
etag: W/"c9429ffee912d3b6ebd548690e756370"
expires: Sat, 02 Dec 2023 09:08:59 GMT
last-modified: Wed, 29 Nov 2023 02:46:30 GMT
x-bce-content-crc32: 59959193
x-bce-debug-id: g9d7wMELSks+FOI8VLiWUGLsRN/lfGq4K6XC8d+OlU5xMuNssiL6ZmvrrxMMkBJGab2tOd9dsDL6yJPWAO5Zaw==
x-bce-flow-control-type: -1
x-bce-is-transition: false
x-bce-request-id: 8fff0f22-9255-4900-9ed6-f1dce17753f1
x-bce-storage-class: STANDARD
via: EU-GER-frankfurt-EDGE5-CACHE6[2],EU-GER-frankfurt-EDGE5-CACHE1[0,TCP_HIT,0],EU-GER-frankfurt-GLOBAL1-CACHE10[1055],EU-GER-frankfurt-GLOBAL1-CACHE8[841,TCP_MISS,1054]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 2592000
nginx-hit: 1
age: 68703
x-ccdn-expires: 2530613
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-94864b88.e650f8c9.js

90.84.161.16

200 OK

42 kB

URL GET HTTP/2
s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-94864b88.e650f8c9.js
IP
90.84.161.16:443
ASN
#0

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert Inc
Subject*.teraboxcdn.com
Fingerprint4C:36:32:B9:A0:68:F6:C2:A7:95:E4:E6:DA:DA:D7:AF:7A:C3:41:44
ValidityTue, 28 Mar 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT

File type
ASCII text, with very long lines (42360), with no line terminators
Size
42 kB (42360 bytes)
Hash
b01f195e94b0848122ac3314f5395721
b87bc53a44a6234f7c089f3119066f9647d21903
09ae6d6c48f2c2b47426e8c362471444673201e2583c5525b442133a8b5c80cb

HTTP Headers

GET /fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-94864b88.e650f8c9.js HTTP/1.1
Host: s2.teraboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 30 Nov 2023 04:14:02 GMT
content-type: application/javascript
server: openresty
content-md5: sB8ZXpSwhIEirDMU9TlXIQ==
etag: W/"b01f195e94b0848122ac3314f5395721"
expires: Mon, 22 May 2023 08:06:09 GMT
last-modified: Fri, 19 May 2023 06:11:01 GMT
x-bce-content-crc32: 1763380652
x-bce-debug-id: 6/t1aZ0T4wIW5Mpdrs6rwONcVe50LnzXyMl/KxoZOSjgTHz/QchFlwkYo5YFdGxYjuFFLRMdxpL02NaFeSWQqg==
x-bce-request-id: 3b4dea47-19f8-48e2-a389-1652fd45a67a
x-bce-storage-class: STANDARD
via: EU-GER-frankfurt-EDGE5-CACHE6[1],EU-GER-frankfurt-EDGE5-CACHE5[0,TCP_HIT,0],EU-GER-frankfurt-GLOBAL1-CACHE14[1059],EU-GER-frankfurt-GLOBAL1-CACHE12[774,TCP_MISS,1057]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 2592000
nginx-hit: 1
age: 16834072
x-ccdn-expires: 1741617
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

www.1024tera.com/api/analytics?type=terabox_sharing_link_js_error&sessionId=403480&productId=100810&clienttype=999&navigator=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&title=unhandledrejection%3A%7B%22code%22%3A%22remoteconfig%2Fstorage-open%22%2C%22customData%22%3A%7B%22originalErrorMessage%22%3A%22A%20mutation%20operation%20was%20attempted%20on%20a%20database%20that%20did%20not%20allow%20mutations.%22%7D%2C%22name%22%3A%22FirebaseError%22%7D&from=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&msg=%7B%22code%22%3A%22remoteconfig%2Fstorage-open%22%2C%22customData%22%3A%7B%22originalErrorMessage%22%3A%22A%20mutation%20operation%20was%20attempted%20on%20a%20database%20that%20did%20not%20allow%20mutations.%22%7D%2C%22name%22%3A%22FirebaseError%22%7D&stack=%5B%7B%22columnNumber%22%3A2705%2C%22lineNumber%22%3A1%2C%22fileName%22%3A%22https%3A%2F%2Fs2.teraboxcdn.com%2Ffe-opera-static%2Fnode-static-v4%2Ffe-webv4-main%2Fjs%2Fchunk-2d225855.7faaefb6.js%22%2C%22functionName%22%3A%22h%22%2C%22source%22%3A%22h%40https%3A%2F%2Fs2.teraboxcdn.com%2Ffe-opera-static%2Fnode-static-v4%2Ffe-webv4-main%2Fjs%2Fchunk-2d225855.7faaefb6.js%3A1%3A2705%22%7D%2C%7B%22columnNumber%22%3A3160%2C%22lineNumber%22%3A1%2C%22fileName%22%3A%22https%3A%2F%2Fs2.teraboxcdn.com%2Ffe-opera-static%2Fnode-static-v4%2Ffe-webv4-main%2Fjs%2Fchunk-2d225855.7faaefb6.js%22%2C%22functionName%22%3A%22e56e%2F%3C%2F%3C%2Fg.prototype.create%22%2C%22source%22%3A%22e56e%2F%3C%2F%3C%2Fg.prototype.create%40https%3A%2F%2Fs2.teraboxcdn.com%2Ffe-opera-static%2Fnode-static-v4%2Ffe-webv4-main%2Fjs%2Fchunk-2d225855.7faaefb6.js%3A1%3A3160%22%7D%2C%7B%22columnNumber%22%3A30208%2C%22lineNumber%22%3A1%2C%22fileName%22%3A%22https%3A%2F%2Fs2.teraboxcdn.com%2Ffe-opera-static%2Fnode-static-v4%2Ffe-webv4-main%2Fjs%2Fchunk-2d225855.7faaefb6.js%22%2C%22functionName%22%3A%22Kt%22%2C%22source%22%3A%22Kt%40https%3A%2F%2Fs2.teraboxcdn.com%2Ffe-opera-static%2Fnode-static-v4%2Ffe-webv4-main%2Fjs%2Fchunk-2d225855.7faaefb6.js%3A1%3A30208%22%7D%5D

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?type=terabox_sharing_link_js_error&sessionId=403480&productId=100810&clienttype=999&navigator=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&title=unhandledrejection%3A%7B%22code%22%3A%22remoteconfig%2Fstorage-open%22%2C%22customData%22%3A%7B%22originalErrorMessage%22%3A%22A%20mutation%20operation%20was%20attempted%20on%20a%20database%20that%20did%20not%20allow%20mutations.%22%7D%2C%22name%22%3A%22FirebaseError%22%7D&from=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&msg=%7B%22code%22%3A%22remoteconfig%2Fstorage-open%22%2C%22customData%22%3A%7B%22originalErrorMessage%22%3A%22A%20mutation%20operation%20was%20attempted%20on%20a%20database%20that%20did%20not%20allow%20mutations.%22%7D%2C%22name%22%3A%22FirebaseError%22%7D&stack=%5B%7B%22columnNumber%22%3A2705%2C%22lineNumber%22%3A1%2C%22fileName%22%3A%22https%3A%2F%2Fs2.teraboxcdn.com%2Ffe-opera-static%2Fnode-static-v4%2Ffe-webv4-main%2Fjs%2Fchunk-2d225855.7faaefb6.js%22%2C%22functionName%22%3A%22h%22%2C%22source%22%3A%22h%40https%3A%2F%2Fs2.teraboxcdn.com%2Ffe-opera-static%2Fnode-static-v4%2Ffe-webv4-main%2Fjs%2Fchunk-2d225855.7faaefb6.js%3A1%3A2705%22%7D%2C%7B%22columnNumber%22%3A3160%2C%22lineNumber%22%3A1%2C%22fileName%22%3A%22https%3A%2F%2Fs2.teraboxcdn.com%2Ffe-opera-static%2Fnode-static-v4%2Ffe-webv4-main%2Fjs%2Fchunk-2d225855.7faaefb6.js%22%2C%22functionName%22%3A%22e56e%2F%3C%2F%3C%2Fg.prototype.create%22%2C%22source%22%3A%22e56e%2F%3C%2F%3C%2Fg.prototype.create%40https%3A%2F%2Fs2.teraboxcdn.com%2Ffe-opera-static%2Fnode-static-v4%2Ffe-webv4-main%2Fjs%2Fchunk-2d225855.7faaefb6.js%3A1%3A3160%22%7D%2C%7B%22columnNumber%22%3A30208%2C%22lineNumber%22%3A1%2C%22fileName%22%3A%22https%3A%2F%2Fs2.teraboxcdn.com%2Ffe-opera-static%2Fnode-static-v4%2Ffe-webv4-main%2Fjs%2Fchunk-2d225855.7faaefb6.js%22%2C%22functionName%22%3A%22Kt%22%2C%22source%22%3A%22Kt%40https%3A%2F%2Fs2.teraboxcdn.com%2Ffe-opera-static%2Fnode-static-v4%2Ffe-webv4-main%2Fjs%2Fchunk-2d225855.7faaefb6.js%3A1%3A30208%22%7D%5D
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
e347cb41c3bc30f0f941f31cbf88dae8
1e57008eec03c33854c4f72a8dc2c95842d9df6b
f40595b91d3e22a5b49c3273d2c386cd4dd29380b38beba6964c56b5083cae5a

HTTP Headers

GET /api/analytics?type=terabox_sharing_link_js_error&sessionId=403480&productId=100810&clienttype=999&navigator=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&title=unhandledrejection%3A%7B%22code%22%3A%22remoteconfig%2Fstorage-open%22%2C%22customData%22%3A%7B%22originalErrorMessage%22%3A%22A%20mutation%20operation%20was%20attempted%20on%20a%20database%20that%20did%20not%20allow%20mutations.%22%7D%2C%22name%22%3A%22FirebaseError%22%7D&from=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&msg=%7B%22code%22%3A%22remoteconfig%2Fstorage-open%22%2C%22customData%22%3A%7B%22originalErrorMessage%22%3A%22A%20mutation%20operation%20was%20attempted%20on%20a%20database%20that%20did%20not%20allow%20mutations.%22%7D%2C%22name%22%3A%22FirebaseError%22%7D&stack=%5B%7B%22columnNumber%22%3A2705%2C%22lineNumber%22%3A1%2C%22fileName%22%3A%22https%3A%2F%2Fs2.teraboxcdn.com%2Ffe-opera-static%2Fnode-static-v4%2Ffe-webv4-main%2Fjs%2Fchunk-2d225855.7faaefb6.js%22%2C%22functionName%22%3A%22h%22%2C%22source%22%3A%22h%40https%3A%2F%2Fs2.teraboxcdn.com%2Ffe-opera-static%2Fnode-static-v4%2Ffe-webv4-main%2Fjs%2Fchunk-2d225855.7faaefb6.js%3A1%3A2705%22%7D%2C%7B%22columnNumber%22%3A3160%2C%22lineNumber%22%3A1%2C%22fileName%22%3A%22https%3A%2F%2Fs2.teraboxcdn.com%2Ffe-opera-static%2Fnode-static-v4%2Ffe-webv4-main%2Fjs%2Fchunk-2d225855.7faaefb6.js%22%2C%22functionName%22%3A%22e56e%2F%3C%2F%3C%2Fg.prototype.create%22%2C%22source%22%3A%22e56e%2F%3C%2F%3C%2Fg.prototype.create%40https%3A%2F%2Fs2.teraboxcdn.com%2Ffe-opera-static%2Fnode-static-v4%2Ffe-webv4-main%2Fjs%2Fchunk-2d225855.7faaefb6.js%3A1%3A3160%22%7D%2C%7B%22columnNumber%22%3A30208%2C%22lineNumber%22%3A1%2C%22fileName%22%3A%22https%3A%2F%2Fs2.teraboxcdn.com%2Ffe-opera-static%2Fnode-static-v4%2Ffe-webv4-main%2Fjs%2Fchunk-2d225855.7faaefb6.js%22%2C%22functionName%22%3A%22Kt%22%2C%22source%22%3A%22Kt%40https%3A%2F%2Fs2.teraboxcdn.com%2Ffe-opera-static%2Fnode-static-v4%2Ffe-webv4-main%2Fjs%2Fchunk-2d225855.7faaefb6.js%3A1%3A30208%22%7D%5D HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Thu, 30 Nov 2023 04:14:03 GMT
Flow-Level: 3
Logid: 8887954596864525291
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8887954596864525291
Yme: ZIGW+Ss3QE0WaCsHTmniq29Xvv4cVAPxqB5OxCKJmu20SLDvfg==
Content-Length: 44

accounts.google.com/gsi/client

64.233.162.84

200 OK

203 kB

URL GET HTTP/2
accounts.google.com/gsi/client
IP
64.233.162.84:443
ASN
#15169 GOOGLE

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
Fingerprint1E:A9:E1:96:78:1D:08:FC:96:C8:C2:34:4F:02:D3:3D:FA:9A:D2:6B
ValidityMon, 23 Oct 2023 11:25:04 GMT - Mon, 15 Jan 2024 11:25:03 GMT

File type
ASCII text, with very long lines (3006)
Size
203 kB (203215 bytes)
Hash
c3380c070ac1310e24173b87bb4a694c
d14f8e5389ed23aab49e62e5835486d84a7b8624
0435416104a28587f4dd1363390ae564b1734d4dac040dcc9df69a78945c8473

HTTP Headers

GET /gsi/client HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
expires: Thu, 30 Nov 2023 04:14:04 GMT
date: Thu, 30 Nov 2023 04:14:04 GMT
cache-control: private, max-age=1800
report-to: {"group":"coop_dd7de8473bddc59c6b748810a67a39b1","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/dd7de8473bddc59c6b748810a67a39b1"}]}
cross-origin-resource-policy: cross-origin
content-security-policy: require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http, script-src 'nonce-OcR3RMLv7CAorLHAkhphNA' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http
cross-origin-opener-policy-report-only: same-origin; report-to="coop_dd7de8473bddc59c6b748810a67a39b1"
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/img/loading-grey.0e512ce9.gif

90.84.161.16

200 OK

13 kB

URL GET HTTP/2
s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/img/loading-grey.0e512ce9.gif
IP
90.84.161.16:443
ASN
#0

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert Inc
Subject*.teraboxcdn.com
Fingerprint4C:36:32:B9:A0:68:F6:C2:A7:95:E4:E6:DA:DA:D7:AF:7A:C3:41:44
ValidityTue, 28 Mar 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT

File type
GIF image data, version 89a, 70 x 54\012- data
Size
13 kB (12746 bytes)
Hash
0e512ce91474d2c98f524fc9d479bca1
3e95fc024add69d9f13393a9dacbf625d2cf218c
48ed2dfe595001d90ea0bf9c572b15f446fcf49ae4bfa2cac84acc02aef04e17

HTTP Headers

GET /fe-opera-static/node-static-v4/fe-webv4-main/img/loading-grey.0e512ce9.gif HTTP/1.1
Host: s2.teraboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 30 Nov 2023 04:14:03 GMT
content-type: image/gif
content-length: 12746
server: openresty
content-md5: DlEs6RR00smPUk/J1Hm8oQ==
etag: "0e512ce91474d2c98f524fc9d479bca1"
expires: Sat, 24 Sep 2022 06:46:06 GMT
last-modified: Wed, 21 Sep 2022 05:03:27 GMT
x-bce-content-crc32: 1545165226
x-bce-debug-id: SVLAO6wp1e4OUGFHIRy8Y1IEAIpwP8YBdrzlRjHOGWEqe7/5zemw7PiCsrLuiBtk8Hkvkt7auD0iX4QbNYOajA==
x-bce-request-id: 911c9037-40e0-4339-a273-266bf634f105
x-bce-restore-cache: -
x-bce-restore-tier: -
x-bce-storage-class: STANDARD
x-ccdn-expires: 1553488
via: EU-GER-frankfurt-EDGE5-CACHE6[1],EU-GER-frankfurt-EDGE5-CACHE4[0,TCP_HIT,0],EU-GER-frankfurt-GLOBAL1-CACHE8[3],EU-GER-frankfurt-GLOBAL1-CACHE4[0,TCP_HIT,2],EA-SGP-GLOBAL1-CACHE24[4],EA-SGP-GLOBAL1-CACHE25[0,TCP_HIT,2]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 2592000
nginx-hit: 1
age: 24367380
accept-ranges: bytes
access-control-allow-origin: *
X-Firefox-Spdy: h2

www.1024tera.com/api/analytics?errno=undefined&errormsg=Unable%20to%20connect%20to%20the%20Internet%2C%20please%20connect%20and%20try%20again&type=videoplayer_error&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317652756

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?errno=undefined&errormsg=Unable%20to%20connect%20to%20the%20Internet%2C%20please%20connect%20and%20try%20again&type=videoplayer_error&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317652756
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
079561ddaea74e12827f306b9eeba78a
8876165872f364879936ea2db3cfcb5fe851007c
d7a45868522184a3fa4924487b13bb96970da3e1f9d6361cef6e0e01bd7fe1ef

HTTP Headers

GET /api/analytics?errno=undefined&errormsg=Unable%20to%20connect%20to%20the%20Internet%2C%20please%20connect%20and%20try%20again&type=videoplayer_error&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Finit%3Fsurl%3DbNAvFxRe5UTo6OJK5N3W2w&client=web&t=1701317652756 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=bNAvFxRe5UTo6OJK5N3W2w
Cookie: csrfToken=rXjcWQCSeY6c51OKQX3k5G3G; browserid=C9PY9MYMCX6dEidH7ufLpA6Q6RetDGvmT-cbcmaUymoLK37PXQO_2vEFNdM=; lang=en; TSID=Q2HFhs9aOe3N9UT0ykGVFDFqJ9dkVuqa; __bid_n=18c1e6f16e0f8628124207; _ga_06ZNKL8C2E=GS1.1.1701317649.1.0.1701317652.57.0.0; _ga=GA1.1.90785484.1701317649; dom3ic8zudi28v8lr6fgphwffqoz0j6c=fcbc17f3-cd58-4a97-939d-35d351918c91%3A3%3A1; m5a4xojbcp2nx3gptmm633qal3gzmadn=zodiacranbehalf.com; pp_main_1e1bbdc937ccd35cd1897b4e58c7407b=1; pp_idelay_1e1bbdc937ccd35cd1897b4e58c7407b=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Thu, 30 Nov 2023 04:14:08 GMT
Flow-Level: 3
Logid: 8887955876434894937
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8887955876434894937
Yme: ZIGW+Ss3QEobdTEHUmr/tG1MvuUYQhz0rwpNwyKB
Content-Length: 44

s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/manifest.9defb41f.js

90.84.161.16

200 OK

41 kB

URL GET HTTP/2
s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/manifest.9defb41f.js
IP
90.84.161.16:443
ASN
#0

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert Inc
Subject*.teraboxcdn.com
Fingerprint4C:36:32:B9:A0:68:F6:C2:A7:95:E4:E6:DA:DA:D7:AF:7A:C3:41:44
ValidityTue, 28 Mar 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT

File type
ASCII text, with very long lines (40943), with no line terminators
Size
41 kB (40943 bytes)
Hash
eb548020c377271405123142a23a4cbd
9f9a1093329141f75f914aa132c8f895c7c719ca
6b43fd5af1ca9504f65d5fa33c5e3bbef2a8bc7bd64791c4ec376e5051d0c138

HTTP Headers

GET /fe-opera-static/node-static-v4/fe-webv4-main/js/manifest.9defb41f.js HTTP/1.1
Host: s2.teraboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 30 Nov 2023 04:14:01 GMT
content-type: application/javascript
server: openresty
content-md5: 61SAIMN3JxQFEjFCojpMvQ==
etag: W/"eb548020c377271405123142a23a4cbd"
expires: Sat, 02 Dec 2023 09:07:00 GMT
last-modified: Wed, 29 Nov 2023 02:46:41 GMT
x-bce-content-crc32: 3077675755
x-bce-debug-id: 7X2rnGmB6x6pjRUoGbsSpyxPcNnTvlLbUTP2BbLPsaQg2tN9a6PngS7CGah/1TI4E8tyRL0Z1F8yA77agn7neg==
x-bce-flow-control-type: -1
x-bce-is-transition: false
x-bce-request-id: 2075397b-fc52-4210-834f-f793dfc79887
x-bce-storage-class: STANDARD
x-ccdn-expires: 2572201
via: EU-GER-frankfurt-EDGE5-CACHE6[3],EU-GER-frankfurt-EDGE5-CACHE3[0,TCP_HIT,0],EU-GER-frankfurt-GLOBAL1-CACHE12[5],EU-GER-frankfurt-GLOBAL1-CACHE3[0,TCP_HIT,3]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 2592000
nginx-hit: 1
age: 68711
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-b20230be.0a893307.js

90.84.161.16

200 OK

106 kB

URL GET HTTP/2
s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-b20230be.0a893307.js
IP
90.84.161.16:443
ASN
#0

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert Inc
Subject*.teraboxcdn.com
Fingerprint4C:36:32:B9:A0:68:F6:C2:A7:95:E4:E6:DA:DA:D7:AF:7A:C3:41:44
ValidityTue, 28 Mar 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT

File type

Size
106 kB (106327 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-b20230be.0a893307.js HTTP/1.1
Host: s2.teraboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 30 Nov 2023 04:14:05 GMT
content-type: application/javascript
server: openresty
content-md5: lkWxCU7mztbQBa5ORv1xRQ==
etag: W/"9645b1094ee6ced6d005ae4e46fd7145"
expires: Thu, 07 Sep 2023 07:34:05 GMT
last-modified: Mon, 04 Sep 2023 04:39:49 GMT
x-bce-content-crc32: 860175862
x-bce-debug-id: YxKaPLFml5ovwtS++EvPw1ID/HiMt+Zhii4NCGGd5BA+u+1ccgAwlYXqpryUmBj7YqU863R0gVkKEFuqafmKAg==
x-bce-flow-control-type: -1
x-bce-is-transition: false
x-bce-request-id: aeea44c1-7e31-4002-a3ac-fcdfed6855de
x-bce-storage-class: STANDARD
x-ccdn-expires: 400727
via: EU-GER-frankfurt-EDGE5-CACHE6[1],EU-GER-frankfurt-EDGE5-CACHE4[0,TCP_HIT,0],EU-GER-frankfurt-GLOBAL1-CACHE5[14],EU-GER-frankfurt-GLOBAL1-CACHE12[0,TCP_HIT,13]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 2592000
nginx-hit: 1
age: 7504332
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

s2.teraboxcdn.com/general-conf/ymg/2068/abclite-2068-s.js?v=0.7002451827249538

90.84.161.16

200 OK

100 kB

URL GET HTTP/2
s2.teraboxcdn.com/general-conf/ymg/2068/abclite-2068-s.js?v=0.7002451827249538
IP
90.84.161.16:443
ASN
#0

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert Inc
Subject*.teraboxcdn.com
Fingerprint4C:36:32:B9:A0:68:F6:C2:A7:95:E4:E6:DA:DA:D7:AF:7A:C3:41:44
ValidityTue, 28 Mar 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
100 kB (100051 bytes)
Hash
46ea1ae23faf5ae71c0045843eb433e9
16888edbe3dd7626386b04d43e37a89427f0aea8
dd8c44b26db60a31584a292ad74cd2325799a19c1c8e1d567d32c3dada94fb55

HTTP Headers

GET /general-conf/ymg/2068/abclite-2068-s.js?v=0.7002451827249538 HTTP/1.1
Host: s2.teraboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 30 Nov 2023 04:14:01 GMT
content-type: application/javascript
server: openresty
content-md5: Ruoa4j+vWuccAEWEPrQz6Q==
etag: W/"46ea1ae23faf5ae71c0045843eb433e9"
expires: Fri, 07 Apr 2023 22:40:39 GMT
last-modified: Tue, 14 Mar 2023 06:06:12 GMT
x-bce-content-crc32: 1662135932
x-bce-debug-id: Jz1KOcGPkhU4n3Zck8uoB7CbklPytTa0SgCVaS0EGpxL61wnts4jWik6aFmIBGaCydmzElR8tezYRsKZD0KeZg==
x-bce-request-id: 7297b527-d932-4266-b90c-9962c07f4e61
x-bce-storage-class: STANDARD
x-ccdn-expires: 2592000
via: EU-GER-frankfurt-EDGE5-CACHE6[28],EU-GER-frankfurt-EDGE5-CACHE4[0,TCP_HIT,0],EU-GER-frankfurt-GLOBAL1-CACHE14[2],EU-GER-frankfurt-GLOBAL1-CACHE4[0,TCP_HIT,1]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 2592000
nginx-hit: 1
age: 19183491
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/share.b1ef9d14.js

90.84.161.16

200 OK

1.1 MB

URL GET HTTP/2
s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/share.b1ef9d14.js
IP
90.84.161.16:443
ASN
#0

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert Inc
Subject*.teraboxcdn.com
Fingerprint4C:36:32:B9:A0:68:F6:C2:A7:95:E4:E6:DA:DA:D7:AF:7A:C3:41:44
ValidityTue, 28 Mar 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT

File type

Size
1.1 MB (1055211 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /fe-opera-static/node-static-v4/fe-webv4-main/js/share.b1ef9d14.js HTTP/1.1
Host: s2.teraboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 30 Nov 2023 04:14:01 GMT
content-type: application/javascript
server: openresty
content-md5: TnczHvCoGlurcM14+W2J4w==
etag: W/"4e77331ef0a81a5bab70cd78f96d89e3"
expires: Sat, 02 Dec 2023 09:10:47 GMT
last-modified: Wed, 29 Nov 2023 02:46:42 GMT
x-bce-content-crc32: 4134755981
x-bce-debug-id: NZOys301AY04tuv4/Car16QJ7pO8Cv0r5Z22XHPDvLXbh83PBLhDJ7mHmsBGfc/EjwDpO5V769262rUqpeijSw==
x-bce-flow-control-type: -1
x-bce-is-transition: false
x-bce-request-id: 3436c034-7d17-4c1f-9c7c-9d90b8fcfcb3
x-bce-storage-class: STANDARD
x-ccdn-expires: 2524583
via: EU-GER-frankfurt-EDGE5-CACHE6[3],EU-GER-frankfurt-EDGE5-CACHE1[0,TCP_HIT,0],EU-GER-frankfurt-GLOBAL1-CACHE8[34],EU-GER-frankfurt-GLOBAL1-CACHE8[0,TCP_HIT,33]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 2592000
nginx-hit: 1
age: 67772
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/ud-i18n-en.e44e7bde.js

90.84.161.16

200 OK

1.9 kB

URL GET HTTP/2
s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/ud-i18n-en.e44e7bde.js
IP
90.84.161.16:443
ASN
#0

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert Inc
Subject*.teraboxcdn.com
Fingerprint4C:36:32:B9:A0:68:F6:C2:A7:95:E4:E6:DA:DA:D7:AF:7A:C3:41:44
ValidityTue, 28 Mar 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT

File type
ASCII text, with very long lines (2106), with no line terminators
Size
1.9 kB (1922 bytes)
Hash
06240b1a3219761cfc4ffe585ac34e48
128bc2aef718748c147232d35cce5fe70443d653
ea008c5e63b36af9dd66e6be5f8d8f3e1c86d005e981cfced09cc1964517907d

HTTP Headers

GET /fe-opera-static/node-static-v4/fe-webv4-main/js/ud-i18n-en.e44e7bde.js HTTP/1.1
Host: s2.teraboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 30 Nov 2023 04:14:02 GMT
content-type: application/javascript
server: openresty
content-md5: DyUZIaD1cN4PN459aJhnNg==
etag: W/"0f251921a0f570de0f378e7d68986736"
expires: Fri, 12 May 2023 08:43:54 GMT
last-modified: Mon, 08 May 2023 12:32:48 GMT
x-bce-content-crc32: 2133490345
x-bce-debug-id: NSexvRTV0lZWQYtbdWLSgX+v6Hr/56aCZJ1ADylLSrA41ImIsmNUOALc2+imcrFlB95XXzUoxQ6mngOJKiIOKA==
x-bce-request-id: ebaa8284-e667-42db-a2f8-0aab2662e8dc
x-bce-storage-class: STANDARD
x-ccdn-expires: 454122
via: EU-GER-frankfurt-EDGE5-CACHE6[2],EU-GER-frankfurt-EDGE5-CACHE2[0,TCP_HIT,0],EU-GER-frankfurt-GLOBAL1-CACHE5[36],EU-GER-frankfurt-GLOBAL1-CACHE2[0,TCP_HIT,32]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 2592000
nginx-hit: 1
age: 17695617
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

static.line-scdn.net/liff/edge/2/sdk.js

54.230.111.54

200 OK

114 kB

URL GET HTTP/2
static.line-scdn.net/liff/edge/2/sdk.js
IP
54.230.111.54:443
ASN
#16509 AMAZON-02

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerAmazon
Subject*.line.me
Fingerprint39:A2:77:6F:2B:9D:03:28:CA:16:D8:21:EB:C7:7C:67:F8:C4:FB:AA
ValidityThu, 13 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT

File type

Size
114 kB (113890 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /liff/edge/2/sdk.js HTTP/1.1
Host: static.line-scdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
server: VOS
date: Thu, 30 Nov 2023 02:19:42 GMT
last-modified: Thu, 30 Nov 2023 02:18:33 GMT
x-amz-version-id: v.AtHv4uFQzb33ymjCyqw4IItsATTkI
x-amz-expiration: expiry-date="Tue, 30 Jan 2024 00:00:00 GMT", rule-id="bucket_lifecycle"
x-rgw-object-type: Normal
etag: W/"9b460f98f29d177a0da3183d5cf20e5e"
cache-control: max-age=86400
strict-transport-security: max-age=15768000
content-encoding: br
vary: Accept-Encoding,Origin
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: pJDdOhe47bMWsoxwqWXPqRGZzTqFmb5PyWBsdNQ5sv7cHUhKVR0npA==
age: 6858
X-Firefox-Spdy: h2

cdn.creative-bars1.com/sb/ssp/vpn/classic-push/big1/css/style.css

172.64.109.10

200 OK

4.2 kB

URL GET HTTP/2
cdn.creative-bars1.com/sb/ssp/vpn/classic-push/big1/css/style.css
IP
172.64.109.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT

File type
ASCII text, with very long lines (4404), with no line terminators
Size
4.2 kB (4168 bytes)
Hash
68b1992666e9738c9fe476446c9554c6
7ed918e75115fd3be8bd1df1f6106d3f53129c78
c3ca1c3bc15dfab20c6c3733049214afc18b2deaba8d9685c57cc3f238b687d8

HTTP Headers

GET /sb/ssp/vpn/classic-push/big1/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.1024tera.com
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 30 Nov 2023 04:14:14 GMT
content-type: text/css
last-modified: Mon, 21 Feb 2022 10:59:09 GMT
etag: W/"6213707d-1048"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 1557046
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VYpSb5XUiW3VFIcrgkLApcBSYK%2F6URsVTi3S67LIJLQIzVLFmofYbcuX4NvdSOYToFKJPBdmhmTgC6lhFsGg5o4X789CC1NKL2Dkain3uIDowTNLvR3POlVZj3tqDFYyiQcSTx%2FFJNcy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82e0432b1aa763ef-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-1dcd7f8a.2b42216f.js

90.84.161.16

200 OK

16 kB

URL GET HTTP/2
s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-1dcd7f8a.2b42216f.js
IP
90.84.161.16:443
ASN
#0

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert Inc
Subject*.teraboxcdn.com
Fingerprint4C:36:32:B9:A0:68:F6:C2:A7:95:E4:E6:DA:DA:D7:AF:7A:C3:41:44
ValidityTue, 28 Mar 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT

File type
ASCII text, with very long lines (16064), with no line terminators
Size
16 kB (16064 bytes)
Hash
8334b653e31ffd870836904fa540f9ce
5b1fc5423940bd27d5df9f215ad9d4db6c666668
a6899ed227f04b484d74815a564fda0bc224c9c74fa35a6cd8febb416c7fced8

HTTP Headers

GET /fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-1dcd7f8a.2b42216f.js HTTP/1.1
Host: s2.teraboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 30 Nov 2023 04:14:02 GMT
content-type: application/javascript
server: openresty
content-md5: gzS2U+Mf/YcINpBPpUD5zg==
etag: W/"8334b653e31ffd870836904fa540f9ce"
expires: Fri, 12 May 2023 08:43:54 GMT
last-modified: Mon, 08 May 2023 12:32:40 GMT
x-bce-content-crc32: 4120287129
x-bce-debug-id: Teo3loV3wqW/js/c3F+flnexjxNYfbmQInRoUF9QRAMJ7CFnw1D4NuX6sDdmfzinUfOqZghCnAt7txHYBz0myw==
x-bce-request-id: afcc4a4d-fd1a-4520-9662-3523bce519be
x-bce-storage-class: STANDARD
x-ccdn-expires: 861170
via: EU-GER-frankfurt-EDGE5-CACHE6[1],EU-GER-frankfurt-EDGE5-CACHE3[0,TCP_HIT,0],EU-GER-frankfurt-GLOBAL1-CACHE2[17],EU-GER-frankfurt-GLOBAL1-CACHE8[0,TCP_HIT,15]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 2592000
nginx-hit: 1
age: 17695516
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/main.9946d79e.js

90.84.161.16

200 OK

563 kB

URL GET HTTP/2
s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/main.9946d79e.js
IP
90.84.161.16:443
ASN
#0

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert Inc
Subject*.teraboxcdn.com
Fingerprint4C:36:32:B9:A0:68:F6:C2:A7:95:E4:E6:DA:DA:D7:AF:7A:C3:41:44
ValidityTue, 28 Mar 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT

File type

Size
563 kB (563237 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /fe-opera-static/node-static-v4/fe-webv4-main/js/main.9946d79e.js HTTP/1.1
Host: s2.teraboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 30 Nov 2023 04:14:01 GMT
content-type: application/javascript
server: openresty
content-md5: PZM9Fm1H6oD3NEUVOrPGGQ==
etag: W/"3d933d166d47ea80f73445153ab3c619"
expires: Sat, 02 Dec 2023 09:07:01 GMT
last-modified: Wed, 29 Nov 2023 02:46:41 GMT
x-bce-content-crc32: 2847486963
x-bce-debug-id: SLo9Qgr4kijlkDKSLbM2InL6d/couovpqJo+DcrTrpjDaC1DE5l94etwK3uJjGPRCFDVN407sveUfq2YfmMbVw==
x-bce-flow-control-type: -1
x-bce-is-transition: false
x-bce-request-id: 11cedd9a-14c1-407a-8962-234a05979877
x-bce-storage-class: STANDARD
x-ccdn-expires: 2572201
via: EU-GER-frankfurt-EDGE5-CACHE6[27],EU-GER-frankfurt-EDGE5-CACHE2[0,TCP_HIT,0],EU-GER-frankfurt-GLOBAL1-CACHE6[5],EU-GER-frankfurt-GLOBAL1-CACHE2[0,TCP_HIT,4]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 2592000
nginx-hit: 1
age: 68711
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/cashier~failPay~goldCenter~landing~login~membership~oneAnniversary~other~recyclebin~share~shortLink~~a6807c0b.ebb98dba.js

90.84.161.16

200 OK

496 kB

URL GET HTTP/2
s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/cashier~failPay~goldCenter~landing~login~membership~oneAnniversary~other~recyclebin~share~shortLink~~a6807c0b.ebb98dba.js
IP
90.84.161.16:443
ASN
#0

Requested by
https://www.1024tera.com/sharing/init?surl=bNAvFxRe5UTo6OJK5N3W2w
Certificate
IssuerDigiCert Inc
Subject*.teraboxcdn.com
Fingerprint4C:36:32:B9:A0:68:F6:C2:A7:95:E4:E6:DA:DA:D7:AF:7A:C3:41:44
ValidityTue, 28 Mar 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT

File type

Size
496 kB (495840 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /fe-opera-static/node-static-v4/fe-webv4-main/js/cashier~failPay~goldCenter~landing~login~membership~oneAnniversary~other~recyclebin~share~shortLink~~a6807c0b.ebb98dba.js HTTP/1.1
Host: s2.teraboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 30 Nov 2023 04:14:02 GMT
content-type: application/javascript
server: openresty
content-md5: SUVFyZJhNrGJP0Hd3JDPQQ==
etag: W/"494545c9926136b1893f41dddc90cf41"
expires: Sat, 02 Dec 2023 09:07:09 GMT
last-modified: Wed, 29 Nov 2023 02:46:30 GMT
x-bce-content-crc32: 2623285895
x-bce-debug-id: dU+d/IQkb5LiQdW8Vy3oTALL5hocs9h/jWKxiwfLgwJopNPs8YKCNiwltE3AaTaB7qgYEPrbCTi+o8I+I21Y9g==
x-bce-flow-control-type: -1
x-bce-is-transition: false
x-bce-request-id: bb2a880a-7811-4dfe-92fa-7a615eefdb32
x-bce-storage-class: STANDARD
x-ccdn-expires: 2530613
via: EU-GER-frankfurt-EDGE5-CACHE6[6],EU-GER-frankfurt-EDGE5-CACHE5[0,TCP_HIT,0],EU-GER-frankfurt-GLOBAL1-CACHE11[18],EU-GER-frankfurt-GLOBAL1-CACHE5[0,TCP_HIT,13]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 2592000
nginx-hit: 1
age: 68703
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (73)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by