Report - www.1024tera.com/wap/share/filelist?surl=CdjAXlai

Report Overview

Visited public
2023-11-28 08:25:19
Tags
URL
www.1024tera.com/wap/share/filelist?surl=CdjAXlai_BSgrgOd4RzKGw
Finishing URL
www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
IP / ASN
210.148.85.59
#2497 Internet Initiative Japan Inc.
Title
Sexy Babe With Her Boyfriend 2(1)(1).mp4 - Share Files Online & Send Larges Files with TeraBox

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
cdn.cloudimagesb.com	23099	2020-10-06	2021-02-12 17:15:41	2023-11-27 20:33:00	1.9 kB	89 kB	45.133.44.9
sofire.1024tera.com	unknown	2023-01-09	2023-04-12 19:18:02	2023-11-25 15:24:47	640 B	1.3 kB	210.148.85.53
proceedglad.com	unknown	2023-09-23	2023-09-23 03:50:16	2023-11-09 17:45:50	5.4 kB	7.0 kB	192.243.61.227
data.1024tera.com	unknown	2023-01-09	2023-05-01 04:00:19	2023-11-25 06:33:28	962 B	29 kB	210.148.85.35
ocsp.r2m03.amazontrust.com	unknown	2007-05-11	2023-02-21 01:06:24	2023-11-27 08:01:03	350 B	942 B	54.230.218.11
proftrafficcounter.com	unknown	2023-11-16	2023-11-21 09:55:14	2023-11-27 18:55:43	445 B	423 B	18.185.201.157
pl18427035.highcpmrevenuenetwork.com	unknown	2022-12-23	2023-05-01 23:46:14	2023-11-27 16:05:28	466 B	10 kB	173.233.137.36
www.1024tera.com	unknown	2023-01-09	2023-01-18 09:11:18	2023-11-27 12:56:33	61 kB	208 kB	210.148.85.59
accounts.google.com	81	1997-09-15	2016-03-20 13:44:49	2023-11-28 08:10:31	417 B	81 kB	142.250.74.13
ymg-api.terabox.com	unknown	2008-07-18	2022-06-05 03:01:40	2023-11-25 14:58:04	2.3 kB	2.5 kB	111.108.51.10
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2023-11-28 07:59:41	461 B	86 kB	142.250.74.168
cdn.creative-bars1.com	unknown	2022-11-01	2022-11-15 17:46:22	2023-11-27 20:32:59	934 B	3.2 kB	172.64.108.10
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2023-11-28 07:50:39	535 B	17 kB	142.250.74.99
static.line-scdn.net	38776	2015-05-01	2018-06-16 03:06:00	2023-11-28 05:09:42	426 B	30 kB	54.230.111.109
s2.teraboxcdn.com	unknown	2021-03-17	2022-06-05 03:01:36	2023-11-27 19:19:26	12 kB	3.2 MB	90.84.161.20
joblouder.com	unknown	unknown	No data	No data	11 kB	59 kB	173.233.137.44
banquetunarmedgrater.com	unknown	2022-08-04	2022-08-04 17:12:50	2023-11-27 22:51:36	426 B	843 B	104.21.86.121
pl18043214.highperformancecpmgate.com	unknown	2022-11-01	2023-02-17 05:35:40	2023-11-28 04:42:03	467 B	10 kB	192.243.59.13
cdn.barscreative1.com	25648	2021-09-08	2021-09-16 13:14:42	2023-11-27 20:32:59	502 B	22 kB	45.133.44.3
sofire.bdstatic.com	90403	2011-12-26	2017-02-04 08:33:09	2023-11-27 05:17:47	422 B	296 kB	60.190.116.48
firebase.googleapis.com	4897	2005-01-25	2018-10-19 11:09:59	2023-11-27 18:20:55	1.2 kB	1.2 kB	142.250.74.170
www.google.no	25607	2001-02-26	2016-04-05 21:50:59	2023-11-28 06:36:45	582 B	578 B	142.250.74.163
v1.1024tera.com	unknown	2023-01-09	2023-10-24 06:25:04	2023-11-26 14:14:33	1.3 kB	437 kB	185.207.113.194
friendshipmale.com	unknown	2022-10-21	2022-10-21 14:15:25	2023-11-27 11:39:00	412 B	58 kB	104.21.234.33
sofire.terabox.com	unknown	2008-07-18	2022-07-25 18:35:05	2023-11-28 05:09:45	502 B	660 B	210.148.85.32
region1.analytics.google.com	unknown	1997-09-15	2022-03-17 12:26:33	2023-11-28 07:34:10	4.5 kB	2.2 kB	216.239.32.36

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-11-28	medium	highperformancecpmgate.com	Sinkholed
2023-11-28	medium	highcpmrevenuenetwork.com	Sinkholed
2023-11-28	medium	joblouder.com	Sinkholed
2023-11-28	medium	joblouder.com	Sinkholed
2023-11-28	medium	joblouder.com	Sinkholed
2023-11-28	medium	joblouder.com	Sinkholed
2023-11-28	medium	joblouder.com	Sinkholed
2023-11-28	medium	joblouder.com	Sinkholed
2023-11-28	medium	joblouder.com	Sinkholed
2023-11-28	medium	proceedglad.com	Sinkholed
2023-11-28	medium	joblouder.com	Sinkholed
2023-11-28	medium	proceedglad.com	Sinkholed
2023-11-28	medium	proceedglad.com	Sinkholed
2023-11-28	medium	proceedglad.com	Sinkholed
2023-11-28	medium	proceedglad.com	Sinkholed
2023-11-28	medium	joblouder.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (74)

	URL	From	Size	First Seen	Last Seen
	pl18427035.highcpmrevenuenetwork.com/627e2f8a423975bc4bd7a76128c2d552/invoke.js	ScriptElement	25 kB	2023-11-28	2023-11-28
Pretty URL pl18427035.highcpmrevenuenetwork.com/627e2f8a423975bc4bd7a76128c2d552/invoke.js IP 173.233.137.36 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-28 08:04 Last Seen2023-11-28 10:24 Times Seen3 Hash d5c3bb05276d17256923e07a2b2ec6e6 04757bd87db3bb17bc4cf5f228472febdd75e277 948c14d7ee1c5a21b92c8cad1d16bcd8bdfed2eae1074e2e694827f0f6f8502a Loading...

	cdn.creative-bars1.com/sb/ssp/vpn/classic-push/big1/js/jquery.min.js	ScriptElement	84 kB	2023-03-07	2025-05-09
Pretty URL cdn.creative-bars1.com/sb/ssp/vpn/classic-push/big1/js/jquery.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-09 05:19 Times Seen7480 Hash 4a356126b9573eb7bd1e9a7494737410 8258d046f17dd3c15a5d3984e1868b7b5d1db329 22642f202577f0ba2f22cbe56b6cf291a09374487567cd3563e0d2a29f75c0c5 Loading...

	www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw	ScriptElement	51 B	2023-05-09	2025-05-08
Pretty URL www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw IP 210.148.85.59 ASN #2497 Internet Initiative Japan Inc. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-09 16:09 Last Seen2025-05-08 12:21 Times Seen3093 Hash 5d36d072c2770c90bee2930c84ece536 92d8fcc0ad085e12985238631643efdb097e0d5b 57d986610fac14f9038e189e5a5ef9c1e950880ce383d189aaa304d62290a25b Loading...

	www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw	ScriptElement	12 kB	2023-07-12	2024-08-21
Pretty URL www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw IP 210.148.85.59 ASN #2497 Internet Initiative Japan Inc. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-07-12 07:49 Last Seen2024-08-21 08:41 Times Seen1729 Hash 7c0832317239579b00fcabbe8092eaa4 4b6db5807b28ca9c2be3c06b6991d501a99e123f 11f4e5e1c2b74661efcd8a0ec72a04dc19ebfab1f8048bd528d9e64a6322a6ac Loading...

	s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/assets/libs/apple.min.js	ScriptElement	42 kB	2023-03-14	2025-04-06
Pretty URL s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/assets/libs/apple.min.js IP 90.84.161.20 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 01:44 Last Seen2025-04-06 19:52 Times Seen3414 Hash 145f660b8c47ed21cb0eafe05417a2f5 5a2fe1d653df966d31be73146bbea03d8c0570e3 0ae01bbacf7587e150b85bafc8e19cdccb1c194c3bb719fd5e0fc1a9c08ebd28 Loading...

	s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-2d225855.7faaefb6.js	ScriptElement	37 kB	2023-05-09	2024-08-21
Pretty URL s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-2d225855.7faaefb6.js IP 90.84.161.20 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-09 11:18 Last Seen2024-08-21 09:43 Times Seen1744 Hash 8b0f7f0b1d3875e84b572a4b8da14d5a 78079f8d4d5512d24244b0e2a3ba6a2880af5bc1 e635ce270e45d33ae75ee0b14f4598cfcd5c20c93abfd0bf562e952b95a35198 Loading...

	www.googletagmanager.com/gtag/js?l=dataLayer&id=G-06ZNKL8C2E	ScriptElement	246 kB	2023-11-28	2023-11-28
Pretty URL www.googletagmanager.com/gtag/js?l=dataLayer&id=G-06ZNKL8C2E IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-28 09:25 Last Seen2023-11-28 15:16 Times Seen2 Hash 31fb6039f50d8966c1a68dbcefbbbd32 8c24ee0e41c644bf2f0960420deb6a4166ab2f1f a62822db7ae740aa774e606aa405c10e6715760383283471084b7135d286f562 Loading...

	moz-extension://94b86a3e-a8f5-4509-b451-a3e524e5069f/lib/shim_messaging_helper.js		1.7 kB	2023-05-05	2025-05-09
Pretty URL moz-extension://94b86a3e-a8f5-4509-b451-a3e524e5069f/lib/shim_messaging_helper.js IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-05-05 22:33 Last Seen2025-05-09 09:52 Times Seen54726 Hash 865f01cbb34eb505834e826380d7dc2e c239ccc37191f1be78dfaa6bb3f1da5d314fdf9e 30ed6392b8de4590bd974a4a797ee0b12b382f2141738115bfd2d692cfa6ec17 Loading...

	s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/ud-i18n-en.e44e7bde.js	ScriptElement	1.9 kB	2023-05-09	2024-08-21
Pretty URL s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/ud-i18n-en.e44e7bde.js IP 90.84.161.20 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-09 11:18 Last Seen2024-08-21 09:43 Times Seen1726 Hash 0f251921a0f570de0f378e7d68986736 a50410f12c32bddce2f26b9f355db3a3da3128cc 236c5a06910151d7a591372a31fb35c28162e9d80a2c206628606c1c8bbe79e3 Loading...

	s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-3c39bfc4.baa0ab5e.js	ScriptElement	547 kB	2023-11-01	2024-08-20
Pretty URL s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-3c39bfc4.baa0ab5e.js IP 90.84.161.20 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-01 15:20 Last Seen2024-08-20 21:30 Times Seen791 Hash 2764dcbf25a6ea0bf611aaacbf6b9da0 389253266cacd6c84d2ed0c32310774fe8fc41eb 12b0c880cf8280ca373e2ad18c8828d13653edf9da57957415ad6d1648749654 Loading...

	s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-vendors.0c91416b.js	ScriptElement	1.3 MB	2023-11-22	2024-08-20
Pretty URL s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-vendors.0c91416b.js IP 90.84.161.20 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-22 14:14 Last Seen2024-08-20 18:20 Times Seen268 Hash 6b597a065eb3fd699493955130b251cb 69175fcf8ec33ed63ba02847a051e8494f204383 5a8a7dcbeb9273942df07b08a9ebc4123248a8f6589b890f714c7e1ab9bee137 Loading...

	static.line-scdn.net/liff/edge/2/sdk.js	ScriptElement	109 kB	2023-10-04	2024-08-21
Pretty URL static.line-scdn.net/liff/edge/2/sdk.js IP 54.230.111.109 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-04 16:16 Last Seen2024-08-21 05:15 Times Seen1090 Hash 230590c84485c352146aa4875e29087a d4ba546444cb1a9993f2610e9dfafb0a6de09a9f 4e94050f1012adea6942a0253fb8138a3ff6066039c294ce24e45137914b0ac0 Loading...

	s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/manifest.46f62028.js	ScriptElement	41 kB	2023-11-27	2023-11-29
Pretty URL s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/manifest.46f62028.js IP 90.84.161.20 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-27 14:36 Last Seen2023-11-29 06:35 Times Seen36 Hash 5f4501b83944b36713fbf896b7d768c1 308a55ccd9023bbad9bf4d5116afac28c235305c e9a3d95cbdaee44008f37755a45f318eb8b171f3c460e789d8f683b77f65ee63 Loading...

	s2.teraboxcdn.com/general-conf/ymg/2068/abclite-2068-s.js?v=0.6423660769353778	ScriptElement	100 kB	2023-04-29	2024-08-21
Pretty URL s2.teraboxcdn.com/general-conf/ymg/2068/abclite-2068-s.js?v=0.6423660769353778 IP 90.84.161.20 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-29 06:01 Last Seen2024-08-21 09:43 Times Seen1751 Hash 46ea1ae23faf5ae71c0045843eb433e9 16888edbe3dd7626386b04d43e37a89427f0aea8 dd8c44b26db60a31584a292ad74cd2325799a19c1c8e1d567d32c3dada94fb55 Loading...

	s2.teraboxcdn.com/general-conf/fk/dfxaf3-598bbed9.js	ScriptElement	98 kB	2023-10-31	2024-08-20
Pretty URL s2.teraboxcdn.com/general-conf/fk/dfxaf3-598bbed9.js IP 90.84.161.20 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-31 19:07 Last Seen2024-08-20 21:37 Times Seen1355 Hash f9f67181d087b4e2eaf48554c501e065 6cec5b5096aea1211b5cbc22e0d99a803e47435f 6450c6d5ff118eb4938d2df5f68a23835eae99ca1c3fc0a7ae780589514d96f2 Loading...

	www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw	ScriptElement	964 B	2023-05-01	2024-08-21
Pretty URL www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw IP 210.148.85.59 ASN #2497 Internet Initiative Japan Inc. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-01 23:46 Last Seen2024-08-21 08:41 Times Seen1109 Hash 7b27509bdb439fa1dd4c6c18e008f894 038e7a88d74eaa5aaf49c8755d2ae903955d511b 0d534b01d5c660e04c091d531a49b5ed4223311b7b686a0f367c4f1a8055a0c3 Loading...

	s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/cashier~failPay~goldCenter~landing~login~membership~oneAnniversary~other~recyclebin~share~shortLink~~a6807c0b.fc45cce5.js	ScriptElement	496 kB	2023-11-27	2024-08-20
Pretty URL s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/cashier~failPay~goldCenter~landing~login~membership~oneAnniversary~other~recyclebin~share~shortLink~~a6807c0b.fc45cce5.js IP 90.84.161.20 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-27 14:36 Last Seen2024-08-20 17:43 Times Seen36 Hash def551e87f338b1ec04f971e48e085a1 e66117262316b568a6c74f81858555f7fe7aa862 60771345308429f66a249d70443f8bd61623f3026f0dc97b7340f9e9b4ed32ba Loading...

	sofire.bdstatic.com/js/fsec-hd.js	ScriptElement	295 kB	2023-07-12	2025-04-06
Pretty URL sofire.bdstatic.com/js/fsec-hd.js IP 60.190.116.48 ASN #4134 Chinanet Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-12 16:55 Last Seen2025-04-06 11:53 Times Seen3350 Hash 834113d1867d8ec45fc41e3c692fdead d292eeadefb195296a6daf8cb607a74753ed8864 a97cd69480a0a2aec421ab52af71fe820b469aa382412c99948766333b2c534d Loading...

	s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-b20230be.0a893307.js	ScriptElement	106 kB	2023-09-04	2024-08-21
Pretty URL s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-b20230be.0a893307.js IP 90.84.161.20 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-04 18:45 Last Seen2024-08-21 07:30 Times Seen1678 Hash 9645b1094ee6ced6d005ae4e46fd7145 d6c139afeaaa82cf7485f1dfabee22cbd1e5da85 436704b0ce7ceea7ddf66f801e090af74db30768d6a4a7408b745877e5a592f4 Loading...

	pl18043214.highperformancecpmgate.com/5c8996e8e3cb5e10b7fd36115b800ac7/invoke.js	ScriptElement	25 kB	2023-11-28	2023-11-28
Pretty URL pl18043214.highperformancecpmgate.com/5c8996e8e3cb5e10b7fd36115b800ac7/invoke.js IP 192.243.59.13 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-28 09:25 Last Seen2023-11-28 10:24 Times Seen2 Hash ed4cf617e725c892d7572a3172367149 22170216c9dbd71942664eed419bf2ff2e1f4a4e c150b248eb867c1717bae28f4bf30a7c1daa6529fdee52fb34fb2a6137c1896c Loading...

	www.1024tera.com/ndbs/nd_bundle_430546.js	ScriptElement	282 kB	2023-07-10	2025-05-08
Pretty URL www.1024tera.com/ndbs/nd_bundle_430546.js IP 210.148.85.59 ASN #2497 Internet Initiative Japan Inc. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-10 16:18 Last Seen2025-05-08 12:21 Times Seen3378 Hash 436fa0a89c638bd9342f5a829e9cf258 cc055391fcda7a5fdbcf68159e52a2e72de6adcf f2a40adcd3e9d31bac735604670f0bc2ee617bc5fa78b4a5ceeef9e20d0937a5 Loading...

	www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw	ScriptElement	385 B	2024-08-20	2024-08-20
Pretty URL www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw IP 210.148.85.59 ASN #2497 Internet Initiative Japan Inc. Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 17:37 Last Seen2024-08-20 17:37 Times Seen1 Hash e889c628d27bd05d29852baf7e208a56 ed94f5d8adb36a0a5b05de5f80038a537c7f21e1 180daf0ca4dae0adbff478f568cb1c4b6a7a35422ecb06cd7bac3421e03f95f8 Loading...

	s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-1dcd7f8a.2b42216f.js	ScriptElement	16 kB	2023-05-09	2024-08-21
Pretty URL s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-1dcd7f8a.2b42216f.js IP 90.84.161.20 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-09 11:18 Last Seen2024-08-21 09:43 Times Seen1747 Hash 8334b653e31ffd870836904fa540f9ce 5b1fc5423940bd27d5df9f215ad9d4db6c666668 a6899ed227f04b484d74815a564fda0bc224c9c74fa35a6cd8febb416c7fced8 Loading...

	www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw	ScriptElement	323 B	2024-08-20	2024-08-20
Pretty URL www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw IP 210.148.85.59 ASN #2497 Internet Initiative Japan Inc. Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 17:37 Last Seen2024-08-20 17:37 Times Seen1 Hash 2eb205d4b21162dfbe0a130f318504bf 6ea6c18104d247fdaa38c308987a02536f3c2e98 11669e4933214f0c29f6bc27d2e38eaf545813314614eed9159dcd0b0a586ddf Loading...

	www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw	ScriptElement	348 B	2024-08-20	2024-08-20
Pretty URL www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw IP 210.148.85.59 ASN #2497 Internet Initiative Japan Inc. Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 17:37 Last Seen2024-08-20 17:37 Times Seen1 Hash 5a74ceddaa5e20cf4324617a60125ff8 f0b431898bdfccae67b701b37d50d8b33326d6dc ddbbd228a049300127914db7261ef30a14d6c2e21d73bc55dd9e62330b724d1b Loading...

	joblouder.com/f1/95/e5/f195e5fa577c23352666448243864c68.js	ScriptElement	43 kB	2023-11-28	2023-11-28
Pretty URL joblouder.com/f1/95/e5/f195e5fa577c23352666448243864c68.js IP 173.233.137.44 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-28 09:25 Last Seen2023-11-28 10:24 Times Seen2 Hash b228cdce4a274b434d3d315c61a8069b 409bb9cb30bf5566a88568bb6746aadb0b309946 ccd5c1158b3cf90f8104e6faf8950201829fe41dd3fd19522f816813e9c2240d Loading...

	friendshipmale.com/sfp.js	ScriptElement	86 kB	2023-11-23	2024-08-20
Pretty URL friendshipmale.com/sfp.js IP 104.21.234.33 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-23 18:35 Last Seen2024-08-20 18:08 Times Seen6307 Hash 924e967bca1d599992556a8d139b1c5a 222b09dbf164ddc03d39100fd0524a22018d28b2 ac84c2f8288b59f8e04ba77287ce696052bfeee0d462a566d94dc305df646c95 Loading...

	s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/assets/libs/kakao.min.js	ScriptElement	115 kB	2023-04-08	2025-04-06
Pretty URL s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/assets/libs/kakao.min.js IP 90.84.161.20 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-08 05:40 Last Seen2025-04-06 19:52 Times Seen3412 Hash 4383410c8f4f5c569c3dda6791ebfbef 780968b8c946939a82e4ace0906c52f333a5f421 4ddfaa5e4c3e19b2799ca4949ef4b2a0d7bdc2faa2be979560199805f568df85 Loading...

	s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/assets/libs/facebook.min.js	ScriptElement	4.1 kB	2023-03-14	2025-04-06
Pretty URL s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/assets/libs/facebook.min.js IP 90.84.161.20 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 01:44 Last Seen2025-04-06 19:52 Times Seen3416 Hash 028c25d75f2d10cb97a0e14834311163 2635a29ecacfb9f5c00d2692086220c6f45199e7 6a16d62f109a23f5743f78c028ea9d732bf5222445ac800cb00741fe0cac60d1 Loading...

	s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/cashier~copyright-feedback~failPay~goldCenter~landing~login~membership~oneAnniversary~other~recycleb~fcf1883d.54946d2b.js	ScriptElement	19 kB	2023-11-27	2024-08-20
Pretty URL s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/cashier~copyright-feedback~failPay~goldCenter~landing~login~membership~oneAnniversary~other~recycleb~fcf1883d.54946d2b.js IP 90.84.161.20 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-27 14:36 Last Seen2024-08-20 17:43 Times Seen36 Hash 4f320c0627627b9e7c630e7057ceeaf0 992bc1f14bcfdfa8a483704f11bdaf49eb795413 8dca30ddab513598cd58789aa0ed0806e1c73e582fb8de2e3ecfca27064a81ab Loading...

	s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-fdedac32.68a159c0.js	ScriptElement	66 kB	2023-08-16	2024-08-21
Pretty URL s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-fdedac32.68a159c0.js IP 90.84.161.20 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-16 08:50 Last Seen2024-08-21 08:36 Times Seen1706 Hash 7ef31ee9994bb8ea5f0546db9d84f5a2 96677ba8663e1a15b90a28b317a621c44288d4b4 a127c7a05c4834b7ccccedbb750031e366b1494bbb719a2f082c92eac19a9d50 Loading...

	www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw	ScriptElement	266 B	2023-03-14	2024-09-19
Pretty URL www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw IP 210.148.85.59 ASN #2497 Internet Initiative Japan Inc. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-14 01:44 Last Seen2024-09-19 22:39 Times Seen1738 Hash 1bdb4f2ae952025dfec0934d6e8da1b3 da2df308c0048f79fdbfc8dfeaf9ab50b2ca3219 1e25a190998c0a84be3b71f1dda9b10a5b3518714cb1e5f406011be99ed735d2 Loading...

	www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw	ScriptElement	52 B	2023-03-14	2025-05-08
Pretty URL www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw IP 210.148.85.59 ASN #2497 Internet Initiative Japan Inc. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-14 01:44 Last Seen2025-05-08 12:21 Times Seen3256 Hash 5e66b47a4a0cda56d7e13e3959500572 5e166926dd222faabdd6899d0bb44942b988034b 8b94646ebebdce56480541aa74bdf7b2508c952afd755e93f4e4d4411de1d352 Loading...

	s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/share.fe18f530.js	ScriptElement	1.1 MB	2023-11-27	2024-08-20
Pretty URL s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/share.fe18f530.js IP 90.84.161.20 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-27 14:36 Last Seen2024-08-20 17:43 Times Seen36 Hash add592ea87ecf0ea667266128869ce86 1b9fa31d30d64fac0fc8b680d0f1999ece1c3a99 8733005a66246a10f1577611029e7a58a23e663c24a80b76a9812bba209c3cf5 Loading...

	s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-94864b88.e650f8c9.js	ScriptElement	42 kB	2023-05-20	2024-08-21
Pretty URL s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-94864b88.e650f8c9.js IP 90.84.161.20 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-20 13:14 Last Seen2024-08-21 09:43 Times Seen1748 Hash b01f195e94b0848122ac3314f5395721 b87bc53a44a6234f7c089f3119066f9647d21903 09ae6d6c48f2c2b47426e8c362471444673201e2583c5525b442133a8b5c80cb Loading...

	s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-5e25226a.54e0bcd6.js	ScriptElement	26 kB	2023-11-27	2024-08-20
Pretty URL s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-5e25226a.54e0bcd6.js IP 90.84.161.20 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-27 14:36 Last Seen2024-08-20 17:43 Times Seen36 Hash c42f631dc4e7b071dfedc12a547f9bb9 2bfb6690165e3a7e5f58346cc5f16144e5fa4bba 4be209e809bd2ad8ea24ed493c74f175188f5d5a0c701101e4ea8e3cfa19ff01 Loading...

	joblouder.com/1e/1b/bd/1e1bbdc937ccd35cd1897b4e58c7407b.js	ScriptElement	60 kB	2023-11-28	2023-11-28
Pretty URL joblouder.com/1e/1b/bd/1e1bbdc937ccd35cd1897b4e58c7407b.js IP 173.233.137.44 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-28 09:25 Last Seen2023-11-28 10:24 Times Seen2 Hash 620d6c2369df96efcd2c85cddd0b7653 1b5b9d68556401cc32914b7c71bfd975144d1b19 55326059cc11d37ce7d2fff0975a60de0a80c96e23cf02562f966cd4013da318 Loading...

	connect.facebook.net/en_US/sdk.js?hash=390d93be92b611479cda9adbba1dfe38	ScriptElement	17 kB	2023-05-05	2025-05-09
Pretty URL connect.facebook.net/en_US/sdk.js?hash=390d93be92b611479cda9adbba1dfe38 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-05 22:33 Last Seen2025-05-09 09:52 Times Seen54126 Hash b938e0b835c600209bdaae9d8ccda6d7 d5ee79d277057e05f002a18381722b5eb75d3883 d1b95aeb57c3285042e1e24c00cc56a8560d16daf7ee5cdfd5c75296b21ac91b Loading...

	s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/main.e2847943.js	ScriptElement	563 kB	2023-11-27	2024-08-20
Pretty URL s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/main.e2847943.js IP 90.84.161.20 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-27 14:36 Last Seen2024-08-20 17:43 Times Seen36 Hash a6650f19f14dd4ff07c1df43040365f6 734909e40aa27f72bbcc52b8297ca00dcfe4ab0d 30ab8883bf10e746e1fe474c38a36b482b47be5a00dc6e8dbfd0fb716768972e Loading...

	accounts.google.com/gsi/client	ScriptElement	203 kB	2023-11-14	2023-12-01
Pretty URL accounts.google.com/gsi/client IP 142.250.74.13 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-14 23:35 Last Seen2023-12-01 01:00 Times Seen801 Hash c3380c070ac1310e24173b87bb4a694c d14f8e5389ed23aab49e62e5835486d84a7b8624 0435416104a28587f4dd1363390ae564b1734d4dac040dcc9df69a78945c8473 Loading...

	banquetunarmedgrater.com/advertisers.js	ScriptElement	0 B	0001-01-01	2025-05-09
Pretty URL banquetunarmedgrater.com/advertisers.js IP 104.21.86.121 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen0001-01-01 00:00 Last Seen2025-05-09 09:58 Times Seen4635196 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 06ae13ba8722623f06a0f09b058e53dd	20 B	2023-03-08 15:29	2025-05-08 12:21
Pretty Observations First Seen2023-03-08 15:29 Last Seen2025-05-08 12:21 Times Seen3431 Hash 06ae13ba8722623f06a0f09b058e53dd a7c0681ef07a2ad2c94ca0a27f31732e17dde9b3 473656a680ee81df68dc288ae237c3ac43c2f6e43b52b0dac5e19a56473c856b Loading...

	#2 Eval - 5f2349ac5d9ae4a866e29ecbd50bb409	76 B	2023-03-08 15:29	2025-05-08 12:21
Pretty Observations First Seen2023-03-08 15:29 Last Seen2025-05-08 12:21 Times Seen3435 Hash 5f2349ac5d9ae4a866e29ecbd50bb409 a15be9aa2996cce63cef47b21b6f4cea9ca6de1a 3281b032310057570cf05dfa453f6bbcca7f686792f2134cbb1d6bfa453c10ba Loading...

	#3 Eval - 16a0cb0c695ae63912a039ff24940c62	15 B	2023-03-08 15:29	2025-05-08 12:21
Pretty Observations First Seen2023-03-08 15:29 Last Seen2025-05-08 12:21 Times Seen3436 Hash 16a0cb0c695ae63912a039ff24940c62 3fdc333b7171f9ae1942a3007cd8c7e337f2c3d4 6dee66e8e9503f08893a14202c82b22f91a3d2f88855312fc44d3a9f9aa79cd4 Loading...

	#4 Eval - 6191f715c9fe1e34aa8f809859b06565	85 B	2023-03-08 15:29	2025-05-08 12:21
Pretty Observations First Seen2023-03-08 15:29 Last Seen2025-05-08 12:21 Times Seen3435 Hash 6191f715c9fe1e34aa8f809859b06565 8f213673a1ebd21d177ba64a451f94e2a09ec506 7f9d134ebbed87e9c253971f8956202ccfae0f78a8ec05aad42a420f2fec0afc Loading...

	#5 Eval - ed966f882dcacb4cafbfd9d4071214fa	24 B	2023-03-08 15:29	2025-05-08 12:21
Pretty Observations First Seen2023-03-08 15:29 Last Seen2025-05-08 12:21 Times Seen3428 Hash ed966f882dcacb4cafbfd9d4071214fa 2f89c4d490ab7ed6eb9113afbb5e24e620a99302 0f4962140a3cc2f9bd0316061c1b0c8ff34776739f57a3112c935197157d4629 Loading...

	#6 Eval - aeed44b2acb52dff838fe2fc0577b331	19 B	2023-03-08 15:29	2025-05-08 12:21
Pretty Observations First Seen2023-03-08 15:29 Last Seen2025-05-08 12:21 Times Seen3429 Hash aeed44b2acb52dff838fe2fc0577b331 5d286027e91447c144d7b4f3db08711277b38614 d3dc30801dcbc9f73aa7a5d8f09a5db84a5c1f15e33c09c0d5f9c19417da2a5b Loading...

	#7 Eval - a1a52764e03a17665af5feafec6c566f	13 B	2023-03-08 15:29	2025-05-08 12:21
Pretty Observations First Seen2023-03-08 15:29 Last Seen2025-05-08 12:21 Times Seen3427 Hash a1a52764e03a17665af5feafec6c566f 1a280002e82a1813c3726c5a221659965f0b2dff 09a1217a6fb1b08d59a2ea941f45b719519f7838fd10f3b50f2ba3471456175d Loading...

	#8 Eval - 7e9304dc7ca9f84af2281d5bdce54c2b	9 B	2023-03-08 15:29	2025-05-08 12:21
Pretty Observations First Seen2023-03-08 15:29 Last Seen2025-05-08 12:21 Times Seen3435 Hash 7e9304dc7ca9f84af2281d5bdce54c2b b9d4cd43a655cad4deb14e59896299b696eaa099 575ecac4c4c85ca6093a6b29f10bbb6bf05ff93c38ed5ec73d889dc5c94e6ef5 Loading...

	#9 Eval - 0bddb6f03a6e04ad67ee528545768ee3	59 B	2023-03-08 15:29	2025-05-08 12:21
Pretty Observations First Seen2023-03-08 15:29 Last Seen2025-05-08 12:21 Times Seen3435 Hash 0bddb6f03a6e04ad67ee528545768ee3 9777ff2729250e094671ea52dd42e3c3aa1f73a6 99261b075cd33b8c4fe44e7d02587dd850867840905d9363245d7f6fd2b77848 Loading...

	#10 Eval - cd66d8ac35b6ff2ee1a205d26665f806	46 B	2023-03-08 15:29	2025-05-08 12:21
Pretty Observations First Seen2023-03-08 15:29 Last Seen2025-05-08 12:21 Times Seen3435 Hash cd66d8ac35b6ff2ee1a205d26665f806 2aa9c95845b5f6438f57bc3c4a30d231f2620e9b 03c5681d47f37e712bb3f86db284bb551fd34921b6fc59f964135cfdb267d439 Loading...

	#11 Eval - ad67988c26bb14f73da838c33d037c65	158 B	2023-07-10 16:18	2025-05-08 12:21
Pretty Observations First Seen2023-07-10 16:18 Last Seen2025-05-08 12:21 Times Seen3396 Hash ad67988c26bb14f73da838c33d037c65 61d308e21cbbc884739a362675cab9fe05a3eadb 6c2cc19d73f44d6093bcd2e7065b82259e6f009a3c0680ecb9bd40f2b2c2b748 Loading...

	#12 Eval - dc32e3c340682799ff03efd84b7fe5b6	233 B	2024-08-20 17:37	2024-08-20 17:37
Pretty Observations First Seen2024-08-20 17:37 Last Seen2024-08-20 17:37 Times Seen1 Hash dc32e3c340682799ff03efd84b7fe5b6 4b428c2f5a5e032b095c8cb8594c561a1294c036 bd1376c163b2b5e1c285658f3930efe683e01d5424f6ce98b40b255549f38491 Loading...

	#13 Eval - f4510576fda062ebae6e57de28c0421d	20 B	2023-03-07 12:55	2025-05-08 12:21
Pretty Observations First Seen2023-03-07 12:55 Last Seen2025-05-08 12:21 Times Seen4315 Hash f4510576fda062ebae6e57de28c0421d 572a221742b141bd1b756073b6dbe874cf6bed2a 6395e338a48619155621f777b374cfc9560bc1b361f05d79cffc24bd82899ff3 Loading...

	#14 Eval - cca1055dca34c3e2743aa2f587c0be06	36 B	2023-03-08 15:29	2025-05-08 12:21
Pretty Observations First Seen2023-03-08 15:29 Last Seen2025-05-08 12:21 Times Seen3434 Hash cca1055dca34c3e2743aa2f587c0be06 3f94ebb002efb38f451253ab7c3ce2dfcdd34f43 16a5adbc67019e0319a27cd554032a0fe4b1cd60c236fe825e1a6f2e6c314645 Loading...

	#15 Eval - a407e8f8a23e5cb125b976dbcd69966b	9 B	2023-03-08 15:29	2025-05-08 12:21
Pretty Observations First Seen2023-03-08 15:29 Last Seen2025-05-08 12:21 Times Seen3433 Hash a407e8f8a23e5cb125b976dbcd69966b 002d9db1b2c05f0903c07476081e38df8e34a789 91ce64a5efcfdfef0a044c2f9705d2a6d2394873007f54fd797f7382bb8b17ee Loading...

	#16 Eval - da10245c38edc680873958d343d0b649	55 B	2023-03-08 15:29	2025-05-08 12:21
Pretty Observations First Seen2023-03-08 15:29 Last Seen2025-05-08 12:21 Times Seen3420 Hash da10245c38edc680873958d343d0b649 000031a4050cb3212c1507ee55c7c1b42c39f49d 3681934b53610e68f03da82cd232bfcb2165c8274ccbb149b35125ce65c57150 Loading...

	#17 Eval - f05881d51c8e660a94849968b7ee9383	14 B	2023-03-08 15:29	2025-05-08 12:21
Pretty Observations First Seen2023-03-08 15:29 Last Seen2025-05-08 12:21 Times Seen3431 Hash f05881d51c8e660a94849968b7ee9383 5e09b6f2cccae7a173c38e649a1ab957f552738a 011f3bdf139afb9b5bc10f342ec14f57658cea58ca1da3c9517af9360e26ae2a Loading...

	#18 Eval - 4a45583b2a8d46bcd598ce35944f84ff	29 B	2023-03-08 15:29	2025-05-08 12:21
Pretty Observations First Seen2023-03-08 15:29 Last Seen2025-05-08 12:21 Times Seen3389 Hash 4a45583b2a8d46bcd598ce35944f84ff 424819409f265637ddf66c55a5637132de3e8b28 65b0a9a5b59660ed7e098d964145b0715a2cc7a10669912316df948b4bc4fc03 Loading...

	#19 Eval - d9d3c5ca49771c3b3da47f8120c62de2	50 B	2023-07-10 16:18	2025-05-08 12:21
Pretty Observations First Seen2023-07-10 16:18 Last Seen2025-05-08 12:21 Times Seen3390 Hash d9d3c5ca49771c3b3da47f8120c62de2 5e78e4bc81d2c73e3353f313f0b330b09a01db55 62c2e8b14450f5b39bf2c8fcad5f8e66c776a92aa6ab63312c84a5176355e513 Loading...

	#20 Eval - 4f3e3023d383dba789d355c54b400f17	43 B	2023-03-08 15:29	2025-05-08 12:21
Pretty Observations First Seen2023-03-08 15:29 Last Seen2025-05-08 12:21 Times Seen3434 Hash 4f3e3023d383dba789d355c54b400f17 20529e03a11f3bb9e1bae32f006f27bd07b9a741 3660dd89be06fb6e3c9d293541677b1b7d8eb933fa579b40d02f1c095fe188eb Loading...

	#21 Eval - 05434ea9fe8c0f80cb1751ca04bff970	17 B	2023-03-08 15:29	2025-05-08 12:21
Pretty Observations First Seen2023-03-08 15:29 Last Seen2025-05-08 12:21 Times Seen3433 Hash 05434ea9fe8c0f80cb1751ca04bff970 5cd9359b5a52ce01f866e9ceeccd5f744bf44119 d58390a62fe70e7b77e8adc4bc637d9c4c545a96a6361b6ce38f13541f7d0d77 Loading...

	#22 Eval - 0fb5b87bf267ae5fa34581ba6c5b85a3	13 B	2023-03-08 15:29	2025-05-08 12:21
Pretty Observations First Seen2023-03-08 15:29 Last Seen2025-05-08 12:21 Times Seen3433 Hash 0fb5b87bf267ae5fa34581ba6c5b85a3 5168fb9eb7f51f1881b83bda52e5768b0612d967 8bd1bf83b71e97f22946c95110473f0b38606f4eb7779c60abaef4824ccadf66 Loading...

	#23 Eval - c374c4b5b9d59ada4befb006a504e654	33 B	2023-03-08 15:29	2025-05-08 12:21
Pretty Observations First Seen2023-03-08 15:29 Last Seen2025-05-08 12:21 Times Seen3430 Hash c374c4b5b9d59ada4befb006a504e654 d9ec4b8ab718b0bc0768f7b4aa6078fb3d4b97a1 106bec14cbb61bf2311638812b46cfd4f92a65ad5502cf08d4524b790bf18c52 Loading...

	#24 Eval - 2435c9164712e4eac303fbe2ea59383c	30 B	2023-03-08 15:29	2025-05-08 12:21
Pretty Observations First Seen2023-03-08 15:29 Last Seen2025-05-08 12:21 Times Seen3432 Hash 2435c9164712e4eac303fbe2ea59383c 3ec83a242cf063910bc1d3933773a94a0853a4dd 33ea8b680bfdabd2eeec090331d4f83ab21842713217c686616bdedcf3a2f518 Loading...

	#25 Eval - 1e145c6dc3423947428e5185aa762634	17 B	2023-03-08 15:29	2025-05-08 12:21
Pretty Observations First Seen2023-03-08 15:29 Last Seen2025-05-08 12:21 Times Seen3433 Hash 1e145c6dc3423947428e5185aa762634 17e155a57fcbf35d27c5ebfdffac2bc7e8f13afe 137958f5a034ad7a6e39419708df9f59cf5fb6856e5fc46baa562a233c7ba0c2 Loading...

	#26 Eval - 22933aa386c82f60d24928140433a25c	20 B	2023-03-07 01:03	2025-05-08 12:21
Pretty Observations First Seen2023-03-07 01:03 Last Seen2025-05-08 12:21 Times Seen17057 Hash 22933aa386c82f60d24928140433a25c 2647ef5ffb1d8472d7547ec5dd7cde5b67216f6f 3f3d3b81e8706983e30a63da7389e8cd3e70bd7778063d63f748984c42007425 Loading...

	#27 Eval - 973d8c4080b7e39f04f550f8ba0e0508	23 B	2023-03-08 15:29	2025-05-08 12:21
Pretty Observations First Seen2023-03-08 15:29 Last Seen2025-05-08 12:21 Times Seen3434 Hash 973d8c4080b7e39f04f550f8ba0e0508 d57d74cd9cd0171912b7bc5647688cb98b0bd991 a5044a96efb488b2fd5cbe883b0df59a22f8b4329de52db589f55bfdc0256f56 Loading...

	#28 Eval - ce5da63d2679ed5670ddf25d5c843e6e	121 B	2023-03-08 15:29	2025-05-08 12:21
Pretty Observations First Seen2023-03-08 15:29 Last Seen2025-05-08 12:21 Times Seen3432 Hash ce5da63d2679ed5670ddf25d5c843e6e a63a3521b11ec909b3aa7c8a5e1a21c153dd480a 25e440eaa058c2d72e1ad49f7523cd5ea444a174e2b4d042e5d90d6bfb10a445 Loading...

	#29 Eval - 369e5f9d8b1fcb9e90a7c5c940f28c38	17 B	2023-03-08 15:29	2025-05-08 12:21
Pretty Observations First Seen2023-03-08 15:29 Last Seen2025-05-08 12:21 Times Seen3436 Hash 369e5f9d8b1fcb9e90a7c5c940f28c38 f8c6e938e9074a5f2a10f15aa3f7b473354f9f50 b908eb3294a9334e80603d18b514acbd9399e6ac1ec876ed23c8fbf58f85d06b Loading...

	#30 Eval - 62a9ef6b16a217146e6ffc85a2c53ded	21 B	2023-03-08 15:29	2025-05-08 12:21
Pretty Observations First Seen2023-03-08 15:29 Last Seen2025-05-08 12:21 Times Seen3434 Hash 62a9ef6b16a217146e6ffc85a2c53ded 75b5fa56255aec69da28b11b57de2d2e82376161 2861271a545f30b331c8dac9d90e4cfb7790c8c8810dd066c71ffc5220b0d471 Loading...

	#31 Eval - 576c169f5284fca4b9e09d5be13635d2	36 B	2023-03-08 15:29	2025-05-08 12:21
Pretty Observations First Seen2023-03-08 15:29 Last Seen2025-05-08 12:21 Times Seen3433 Hash 576c169f5284fca4b9e09d5be13635d2 643ac6a1f2a0f1aa636e14501feb0ae40470d517 bf42f59a9ae0c96df3f56267e9526ea0514e39b69f1ef1650562e9dec3711b84 Loading...

	#32 Eval - dde9bfe64c659bc54dd6e93de30c59ac	39 B	2023-03-14 01:44	2025-05-08 12:21
Pretty Observations First Seen2023-03-14 01:44 Last Seen2025-05-08 12:21 Times Seen3411 Hash dde9bfe64c659bc54dd6e93de30c59ac 322cfd214f1493f6d9755e444dd65b4a51f84ef9 21c26ca6da636b4a28283e21e2a2a232a35a3ee993b72496e14528541b01206d Loading...

		Size	First Seen	Last Seen
	#1 Write - 60bb19ab2a56de37b11d04df681f6ee0	12 B	2023-03-07 12:23	2025-05-08 21:38
Pretty Observations First Seen2023-03-07 12:23 Last Seen2025-05-08 21:38 Times Seen4098 Hash 60bb19ab2a56de37b11d04df681f6ee0 cd5f38ca8d19989e372e1bb66130aade666ee63b 3f7af3768d0a5463f3cfd93c47864c3f654c8cdb65e4ca6b24d5772365e6dee4 Loading...

HTTP Transactions (128)

URL IP Response Size

www.1024tera.com/wap/share/filelist?surl=CdjAXlai_BSgrgOd4RzKGw

210.148.85.59

302 Found

161 B

URL User Request GET HTTP/1.1
www.1024tera.com/wap/share/filelist?surl=CdjAXlai_BSgrgOd4RzKGw
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
HTML document, ASCII text, with no line terminators
Size
161 B (161 bytes)
Hash
aac0457cdcbca18f66d9ad03768cad1b
909c4b75988533a9642e040d1efe6257d4473006
50e72c1cf5107f544e24f663ed1a004f0272d98e00a702f1a8ede585f728f41c

HTTP Headers

GET /wap/share/filelist?surl=CdjAXlai_BSgrgOd4RzKGw HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Connection: keep-alive
Content-Type: text/html; charset=utf-8
Date: Tue, 28 Nov 2023 08:24:57 GMT
Flow-Level: 3
Location: https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Logid: 8845609911801096239
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
Set-Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej; path=/
X-Conteneur-Nom: wrRPGgAfwpIFFhXCusOVwp7Dtw4qwo5abnPDo8O+w63DkQ1hw7PCsMO7w67DoALCmHDDi0cnXMKmd1jCtRV6J8KIMMOkw6gbRVfChMKgwrA=
X-Download-Options: noopen
X-Flow-Level: 3
X-Frame-Options: SAMEORIGIN
X-Powered-By: TeraBox
X-Readtime: 1
X-Request-Id: 8845609911801096239
X-Xss-Protection: 1; mode=block
Yld: 8845609911801096239
Content-Length: 161

www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw

210.148.85.59

200 OK

62 kB

URL User Request GET HTTP/1.1
www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (49576)
Size
62 kB (62136 bytes)
Hash
4bf69bca5220e55b87e450cc7d3df50c
fc0a72e725dc918354af89a0b540965526b0e329
d92ce33e1a74a6140764cd807af32506908fe0197a5f5214ff5f2eae065881b2

HTTP Headers

GET /sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Encoding: gzip
Content-Type: text/html; charset=utf-8
Date: Tue, 28 Nov 2023 08:24:58 GMT
Flow-Level: 3
Logid: 8845609994730570964
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
Set-Cookie: browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; path=/; max-age=5184000; expires=Sat, 27 Jan 2024 08:24:57 GMT; domain=.1024tera.com
lang=en; path=/; max-age=2592000; expires=Thu, 28 Dec 2023 08:24:57 GMT
TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; path=/; max-age=31536000; expires=Wed, 27 Nov 2024 08:24:57 GMT; domain=.1024tera.com
Strict-Transport-Security: max-age=172800
Vary: Accept-Encoding, Accept-Encoding
X-Conteneur-Nom: wrBGGgAfwpIFFhXCusOVwp7Dtw4qwo5abnPDo8O+w63DkQ1hw7PCsMO7w67DoALCmHDDi0cnXMKmd0bCrkIjMcKHOcOzw7kUBRPCnsOgwrHDqA==
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Flow-Level: 3
X-Frame-Options: SAMEORIGIN
X-Powered-By: TeraBox
X-Readtime: 181
X-Request-Id: 8845609994730570964
X-Xss-Protection: 1; mode=block
Yld: 8845609994730570964
Yme: ZIGW+Ss3QE0XaysET2riq29Xvv4cVAPxqh5OxSGJmu2yTyo=
Transfer-Encoding: chunked

static.line-scdn.net/liff/edge/2/sdk.js

54.230.111.109

200 OK

29 kB

URL GET HTTP/2
static.line-scdn.net/liff/edge/2/sdk.js
IP
54.230.111.109:443
ASN
#16509 AMAZON-02

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerAmazon
Subject*.line.me
Fingerprint39:A2:77:6F:2B:9D:03:28:CA:16:D8:21:EB:C7:7C:67:F8:C4:FB:AA
ValidityThu, 13 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
Size
29 kB (29106 bytes)
Hash
b141d3521b6ef34b704efec9753109fa
19c3a2daa370ea8c57427d0608b0b1fe3ad2320b
c12131f08aa27abf38ab83767192c59581da542e037d7ec6363853d57e959572

HTTP Headers

GET /liff/edge/2/sdk.js HTTP/1.1
Host: static.line-scdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
server: VOS
last-modified: Mon, 02 Oct 2023 01:12:33 GMT
x-amz-version-id: vfFBS0jnaCra6zWupTgNTjV5SswxqQe
x-amz-expiration: expiry-date="Sat, 02 Dec 2023 00:00:00 GMT", rule-id="bucket_lifecycle"
x-rgw-object-type: Normal
strict-transport-security: max-age=15768000
content-encoding: br
date: Tue, 28 Nov 2023 01:12:09 GMT
cache-control: max-age=86400
etag: W/"b141d3521b6ef34b704efec9753109fa"
vary: Accept-Encoding,Origin
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: GEIJoocdeIaobYuNSoXLDCG-XbfVnIbgc27zr4ThZ1jcXiLOvvPAhg==
age: 25981
X-Firefox-Spdy: h2

s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/fonts/iconfont.4f9f785d.woff

90.84.161.20

200 OK

26 kB

URL GET HTTP/2
s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/fonts/iconfont.4f9f785d.woff
IP
90.84.161.20:443
ASN
#0

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert Inc
Subject*.teraboxcdn.com
Fingerprint4C:36:32:B9:A0:68:F6:C2:A7:95:E4:E6:DA:DA:D7:AF:7A:C3:41:44
ValidityTue, 28 Mar 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT

File type
Web Open Font Format, TrueType, length 25804, version 1.0\012- data
Size
26 kB (25804 bytes)
Hash
4f9f785d98a8fa208e7f64023e124572
3e8714f56d480cfd66721447975613a1e56ca9e4
27f0ac9cff76f3925b4389a404d01e2fb525bae7b17cafb0c04e5e6bb20ca83b

HTTP Headers

GET /fe-opera-static/node-static-v4/fe-webv4-main/fonts/iconfont.4f9f785d.woff HTTP/1.1
Host: s2.teraboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.1024tera.com
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 28 Nov 2023 08:25:00 GMT
content-type: application/x-font-woff
content-length: 25804
server: openresty
access-control-allow-credentials: true
access-control-allow-methods: GET, HEAD, POST, PUT
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Length, x-bce-next-append-offset, x-bce-object-type, x-bce-request-id
access-control-max-age: 1800
content-md5: T594XZio+iCOf2QCPhJFcg==
etag: "4f9f785d98a8fa208e7f64023e124572"
expires: Thu, 09 Feb 2023 02:34:52 GMT
last-modified: Thu, 02 Feb 2023 12:40:59 GMT
x-bce-content-crc32: 4229721389
x-bce-debug-id: 7WiMWIwBpNvCI1l2DEy41X6CYQbfBDD/53hHCbNUgg3chFP5F6R09q6Ha3n+sFI1w5hrFozk3M8ehG3s5jYsKw==
x-bce-request-id: 8ed250a7-98cd-4add-b067-4212e4c8ecd6
x-bce-storage-class: STANDARD
x-ccdn-expires: 1710371
via: EU-GER-frankfurt-EDGE5-CACHE1[1],EU-GER-frankfurt-EDGE5-CACHE3[0,TCP_HIT,0],EU-GER-frankfurt-GLOBAL1-CACHE11[3],EU-GER-frankfurt-GLOBAL1-CACHE3[0,TCP_HIT,1]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 2592000
nginx-hit: 1
age: 24209757
accept-ranges: bytes
X-Firefox-Spdy: h2

s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/img/loading-grey.0e512ce9.gif

90.84.161.20

200 OK

13 kB

URL GET HTTP/2
s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/img/loading-grey.0e512ce9.gif
IP
90.84.161.20:443
ASN
#0

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert Inc
Subject*.teraboxcdn.com
Fingerprint4C:36:32:B9:A0:68:F6:C2:A7:95:E4:E6:DA:DA:D7:AF:7A:C3:41:44
ValidityTue, 28 Mar 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT

File type
GIF image data, version 89a, 70 x 54\012- data
Size
13 kB (12746 bytes)
Hash
0e512ce91474d2c98f524fc9d479bca1
3e95fc024add69d9f13393a9dacbf625d2cf218c
48ed2dfe595001d90ea0bf9c572b15f446fcf49ae4bfa2cac84acc02aef04e17

HTTP Headers

GET /fe-opera-static/node-static-v4/fe-webv4-main/img/loading-grey.0e512ce9.gif HTTP/1.1
Host: s2.teraboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 08:25:00 GMT
content-type: image/gif
content-length: 12746
server: openresty
content-md5: DlEs6RR00smPUk/J1Hm8oQ==
etag: "0e512ce91474d2c98f524fc9d479bca1"
expires: Sat, 24 Sep 2022 06:46:06 GMT
last-modified: Wed, 21 Sep 2022 05:03:27 GMT
x-bce-content-crc32: 1545165226
x-bce-debug-id: SVLAO6wp1e4OUGFHIRy8Y1IEAIpwP8YBdrzlRjHOGWEqe7/5zemw7PiCsrLuiBtk8Hkvkt7auD0iX4QbNYOajA==
x-bce-request-id: 911c9037-40e0-4339-a273-266bf634f105
x-bce-restore-cache: -
x-bce-restore-tier: -
x-bce-storage-class: STANDARD
x-ccdn-expires: 1711129
via: EU-GER-frankfurt-EDGE5-CACHE2[8],EU-GER-frankfurt-EDGE5-CACHE4[0,TCP_HIT,0],EU-GER-frankfurt-GLOBAL1-CACHE8[3],EU-GER-frankfurt-GLOBAL1-CACHE4[0,TCP_HIT,2],EA-SGP-GLOBAL1-CACHE24[4],EA-SGP-GLOBAL1-CACHE25[0,TCP_HIT,2]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 2592000
nginx-hit: 1
age: 24209637
accept-ranges: bytes
access-control-allow-origin: *
X-Firefox-Spdy: h2

s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/cashier~failPay~goldCenter~landing~login~membership~oneAnniversary~other~recyclebin~share~shortLink~~a6807c0b.fc45cce5.js

90.84.161.20

200 OK

182 kB

URL GET HTTP/2
s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/cashier~failPay~goldCenter~landing~login~membership~oneAnniversary~other~recyclebin~share~shortLink~~a6807c0b.fc45cce5.js
IP
90.84.161.20:443
ASN
#0

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert Inc
Subject*.teraboxcdn.com
Fingerprint4C:36:32:B9:A0:68:F6:C2:A7:95:E4:E6:DA:DA:D7:AF:7A:C3:41:44
ValidityTue, 28 Mar 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT

File type
gzip compressed data, from Unix\012- data
Size
182 kB (182340 bytes)
Hash
755838391bebe19e7b7c80ad0c0f30e7
18dc7ed99784e692653b2b8132356e9cb73b3cd5
8c4ad2ff20fbd613119878eae89fa912fa05a96abe8e003cd4310a69aa637d1a

HTTP Headers

GET /fe-opera-static/node-static-v4/fe-webv4-main/js/cashier~failPay~goldCenter~landing~login~membership~oneAnniversary~other~recyclebin~share~shortLink~~a6807c0b.fc45cce5.js HTTP/1.1
Host: s2.teraboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 28 Nov 2023 08:25:00 GMT
content-type: application/javascript
server: openresty
content-md5: 3vVR6H8zix7AT5ceSOCFoQ==
etag: W/"def551e87f338b1ec04f971e48e085a1"
expires: Thu, 30 Nov 2023 08:59:34 GMT
last-modified: Mon, 27 Nov 2023 03:06:49 GMT
x-bce-content-crc32: 109535015
x-bce-debug-id: U/iII4VPTwMwdzz9CGtX6vQbWJwGrdGmsKcrvSVreBfkkEQIWxe0X73eIwPdx0hO6o5gGBpK8HmIqWQ2/8iaLg==
x-bce-flow-control-type: -1
x-bce-is-transition: false
x-bce-request-id: 0219edee-bfed-4f96-b5dc-8fce987c248d
x-bce-storage-class: STANDARD
x-ccdn-expires: 2548290
via: EU-GER-frankfurt-EDGE5-CACHE2[6],EU-GER-frankfurt-EDGE5-CACHE2[0,TCP_HIT,0],EU-GER-frankfurt-GLOBAL1-CACHE14[19],EU-GER-frankfurt-GLOBAL1-CACHE2[0,TCP_HIT,18]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 2592000
nginx-hit: 1
age: 83599
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

www.1024tera.com/ndbs/nd_bundle_430546.js

210.148.85.59

200 OK

66 kB

URL GET HTTP/1.1
www.1024tera.com/ndbs/nd_bundle_430546.js
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (36757)
Size
66 kB (65747 bytes)
Hash
2be70342e4695e6c13d04f9906e47635
6f4596c9cd37089ead6715fd3553c0845f1158d3
f731296cced4c20e1f9e24e3080faa044bd0fad2f8f64adf026a75038adecce8

HTTP Headers

GET /ndbs/nd_bundle_430546.js HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej; browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; lang=en; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Encoding: gzip
Content-Type: application/x-javascript
Date: Tue, 28 Nov 2023 08:24:59 GMT
Flow-Level: 3
Last-Modified: Mon, 10 Jul 2023 02:21:26 GMT
Logid: 8845610506199086418
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
Vary: Accept-Encoding
X-Powered-By: DuboxServer
Yld: 8845610506199086418
Yme: ZIGW+Ss3QEsUdTcGUmr/tG1MvuUZShzxrgpNwyaAzavVFgdnPM/sBZ9H3A==
Transfer-Encoding: chunked

s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/manifest.46f62028.js

90.84.161.20

200 OK

13 kB

URL GET HTTP/2
s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/manifest.46f62028.js
IP
90.84.161.20:443
ASN
#0

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert Inc
Subject*.teraboxcdn.com
Fingerprint4C:36:32:B9:A0:68:F6:C2:A7:95:E4:E6:DA:DA:D7:AF:7A:C3:41:44
ValidityTue, 28 Mar 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT

File type
gzip compressed data, from Unix\012- data
Size
13 kB (13304 bytes)
Hash
f651aff6bdf3003606ccd32fd9dc9401
ad6f6eb695c0ff2980051c97a1b87fd34a72dcf1
050af821b91a94ac5ff35b5d752cfe01114aad3e3d4a09030a131b27058c4fdf

HTTP Headers

GET /fe-opera-static/node-static-v4/fe-webv4-main/js/manifest.46f62028.js HTTP/1.1
Host: s2.teraboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 28 Nov 2023 08:25:00 GMT
content-type: application/javascript
server: openresty
content-md5: X0UBuDlEs2cT+/iWt9dowQ==
etag: W/"5f4501b83944b36713fbf896b7d768c1"
expires: Thu, 30 Nov 2023 08:59:33 GMT
last-modified: Mon, 27 Nov 2023 03:07:00 GMT
x-bce-content-crc32: 2051750269
x-bce-debug-id: Ev8l1GA83xhCDv4uh+405sNFBYAKhBlsu+uLgbmI7gATC+EP9qsAfuMbUaz+xfmxbNc+/iE2jUK9LWW+EAMbnQ==
x-bce-flow-control-type: -1
x-bce-is-transition: false
x-bce-request-id: cd708941-8a9b-475b-951d-4df2ad160c59
x-bce-storage-class: STANDARD
x-ccdn-expires: 2527998
via: EU-GER-frankfurt-EDGE5-CACHE2[4],EU-GER-frankfurt-EDGE5-CACHE4[0,TCP_HIT,0],EU-GER-frankfurt-GLOBAL1-CACHE1[10],EU-GER-frankfurt-GLOBAL1-CACHE7[0,TCP_HIT,9]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 2592000
nginx-hit: 1
age: 83599
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

s2.teraboxcdn.com/general-conf/fk/dfxaf3-598bbed9.js

90.84.161.20

200 OK

41 kB

URL GET HTTP/2
s2.teraboxcdn.com/general-conf/fk/dfxaf3-598bbed9.js
IP
90.84.161.20:443
ASN
#0

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert Inc
Subject*.teraboxcdn.com
Fingerprint4C:36:32:B9:A0:68:F6:C2:A7:95:E4:E6:DA:DA:D7:AF:7A:C3:41:44
ValidityTue, 28 Mar 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT

File type
gzip compressed data, from Unix\012- data
Size
41 kB (40727 bytes)
Hash
2703e5042022b9798d55cda091c6b4d1
5c60f5dccbdd704ae224c3cfa39c1c702a811072
72d90b93c9b1e1dee27850b0b36403df371e94a42bfff8b98cebe40529728b35

HTTP Headers

GET /general-conf/fk/dfxaf3-598bbed9.js HTTP/1.1
Host: s2.teraboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 28 Nov 2023 08:25:00 GMT
content-type: text/javascript
server: openresty
content-md5: +fZxgdCHtOLq9IVUxQHgZQ==
etag: W/"f9f67181d087b4e2eaf48554c501e065"
expires: Fri, 03 Nov 2023 12:27:55 GMT
last-modified: Tue, 31 Oct 2023 12:25:48 GMT
x-bce-content-crc32: 3748294646
x-bce-debug-id: aGEi7xHbLdU53XfCnCB+gn9IMUFfdLw+Ug2cTW1Uu0gn8LTbfsIrGzew5yl6vbcMd2PUBbSod+OrM3Z56BBUNg==
x-bce-flow-control-type: -1
x-bce-is-transition: false
x-bce-request-id: 8d78a03a-02bd-49e4-ba41-e617432a8b15
x-bce-storage-class: STANDARD
via: EU-GER-frankfurt-EDGE5-CACHE2[5],EU-GER-frankfurt-EDGE5-CACHE2[0,TCP_HIT,0],EU-GER-frankfurt-GLOBAL1-CACHE14[2],EU-GER-frankfurt-GLOBAL1-CACHE2[0,TCP_HIT,1]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 2592000
nginx-hit: 1
age: 2404624
x-ccdn-expires: 2041684
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

www.1024tera.com/api/analytics?time=1989&type=web_share_page_show_FP_FIRST&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159905720

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?time=1989&type=web_share_page_show_FP_FIRST&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159905720
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
f2adccb63e69d0140b8742eec039a381
41a6f59b1453551151ced43c0983ea6f09e8417a
5a581defe22d8d25f70fa9b148d18baba49f03f6c9db7d6012e9e1182af8a83b

HTTP Headers

GET /api/analytics?time=1989&type=web_share_page_show_FP_FIRST&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159905720 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej; browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; lang=en; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; __bid_n=18c150826f3eec17074207
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Tue, 28 Nov 2023 08:25:02 GMT
Flow-Level: 3
Logid: 8845611118008514173
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8845611118008514173
Yme: ZIGW+Ss3QEsTdTEDUmr/tG1MvuUZSRzxrgpNwySG5LzCDQVreWdXja3U3A==
Content-Length: 44

s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-vendors.0c91416b.js

90.84.161.20

200 OK

486 kB

URL GET HTTP/2
s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-vendors.0c91416b.js
IP
90.84.161.20:443
ASN
#0

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert Inc
Subject*.teraboxcdn.com
Fingerprint4C:36:32:B9:A0:68:F6:C2:A7:95:E4:E6:DA:DA:D7:AF:7A:C3:41:44
ValidityTue, 28 Mar 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT

File type
gzip compressed data, from Unix\012- data
Size
486 kB (486056 bytes)
Hash
4131fa36e589ef8d3e2f359a528aff42
8848a7cf13b677da9ea3404d07dab5a1ed596ca8
01534182eb8000d3e194b425321db8f5981d194a414e099600fc7f8994b693b1

HTTP Headers

GET /fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-vendors.0c91416b.js HTTP/1.1
Host: s2.teraboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 28 Nov 2023 08:25:00 GMT
content-type: application/javascript
server: openresty
content-md5: a1l6Bl6z/WmUk5VRMLJRyw==
etag: W/"6b597a065eb3fd699493955130b251cb"
expires: Sat, 25 Nov 2023 10:39:04 GMT
last-modified: Wed, 22 Nov 2023 02:21:52 GMT
x-bce-content-crc32: 3304779663
x-bce-debug-id: qN0aN2KGmEnQNotbwTj5EO9MHr42l1O3a48iCP9ZQ1QdFJqG7umOmDl00uQpHIgJHgNjtdiGCMrsn+tYuWFRhg==
x-bce-flow-control-type: -1
x-bce-is-transition: false
x-bce-request-id: 566c3b22-e053-4880-b154-222038dabd24
x-bce-storage-class: STANDARD
x-ccdn-expires: 2101321
via: EU-GER-frankfurt-EDGE5-CACHE2[7],EU-GER-frankfurt-EDGE5-CACHE6[0,TCP_HIT,0],EU-GER-frankfurt-GLOBAL1-CACHE1[22],EU-GER-frankfurt-GLOBAL1-CACHE9[0,TCP_HIT,20]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 2592000
nginx-hit: 1
age: 510276
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

ymg-api.terabox.com/abdr?_o=https%3A%2F%2Fwww.1024tera.com

111.108.51.10

200 OK

180 B

URL POST HTTP/1.1
ymg-api.terabox.com/abdr?_o=https%3A%2F%2Fwww.1024tera.com
IP
111.108.51.10:443
ASN
#2516 KDDI CORPORATION

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert Inc
Subject*.terabox.com
Fingerprint4F:30:79:83:60:E0:58:E8:DA:05:09:38:E1:6D:CD:F9:46:33:D6:5F
ValidityTue, 28 Mar 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
180 B (180 bytes)
Hash
094934090d3f1d5028cde23273a37d72
96d63ea4117bf1ebd0caf2d57064b641a1396834
ce5009651e9df0a9fdbf4d20d3aa0137ddea32c50d656433ee735adbdfe6f6cc

HTTP Headers

POST /abdr?_o=https%3A%2F%2Fwww.1024tera.com HTTP/1.1
Host: ymg-api.terabox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 3552
Origin: https://www.1024tera.com
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 28 Nov 2023 08:25:02 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
yld: 8845611143260034400
Ab-Sr: 1.0.1_YmY5ZDgyYjJlMzhlZDg5ODdjNjI5Y2VmMjcwYmMxNjdlNjZkYzE2MzYyZWE2NjM2OTY3Mjc4NjM3NDA0OGI4YzczZjZhOTYwY2U3ZDhkYWZiNDQxMzljYzk5NjhjZTgyM2E1ZjY5OGU5MjI2ZDNjNDNiNjNlNTE0M2Q1YzhlOTk5OTI1MjQ5ODU0M2ZmM2JmNjM1NWQ4MGJmYWEzNWYwOQ==
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Origin, Host, Content-Type, x-requested-with, X-Custom-Header
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE
Access-Control-Allow-Origin: https://www.1024tera.com
Access-Control-Expose-Headers: Ab-sr, Authentication
Access-Control-Max-Age: 3600
Authentication: 53148db75f1932c1faacf7b7e476162b6f5e3b7a03756ead
P3P: CP=" OTI DSP COR IVA OUR IND COM "
yme: ZIGW+Ss3QE0WaCsESGriq29Xvv4cVAXxtAJIySiEnuyD
Set-Cookie: ab_jid=707b2309bea42247a1d07a37ccdfb465f134; Path=/; Domain=ymg-api.terabox.com; Max-Age=2147483647; HttpOnly; Secure; SameSite=None
ab_bid=707b2309bea42247a1d07a37ccdfb465f134; Path=/; Domain=ymg-api.terabox.com; Max-Age=2147483647; HttpOnly; Secure; SameSite=None
ab_sr=1.0.1_YmY5ZDgyYjJlMzhlZDg5ODdjNjI5Y2VmMjcwYmMxNjdlNjZkYzE2MzYyZWE2NjM2OTY3Mjc4NjM3NDA0OGI4YzczZjZhOTYwY2U3ZDhkYWZiNDQxMzljYzk5NjhjZTgyM2E1ZjY5OGU5MjI2ZDNjNDNiNjNlNTE0M2Q1YzhlOTk5OTI1MjQ5ODU0M2ZmM2JmNjM1NWQ4MGJmYWEzNWYwOQ==; Path=/; Domain=terabox.com; Max-Age=7200; HttpOnly; Secure; SameSite=None
Server: nginx
logid: 8845611143260034400
Flow-level: 3
Content-Encoding: gzip

www.1024tera.com/rest/1.0/operation/pull?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=D3C37627130569246165C304671DC55431E49E13F2CA93C8B3ECE892D9166DDD90D894098E8C225BB026F705316DBEB0C529EBA2C556BC8BF87F0686694E9897C5569E6EB775F5CF47CC3C782CA275A05BE9E0F1F3A7D549D6ED42BCEB1E8CB4&dp-logid=43502600175912480006&position=7&lang=en

210.148.85.59

200 OK

83 B

URL GET HTTP/1.1
www.1024tera.com/rest/1.0/operation/pull?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=D3C37627130569246165C304671DC55431E49E13F2CA93C8B3ECE892D9166DDD90D894098E8C225BB026F705316DBEB0C529EBA2C556BC8BF87F0686694E9897C5569E6EB775F5CF47CC3C782CA275A05BE9E0F1F3A7D549D6ED42BCEB1E8CB4&dp-logid=43502600175912480006&position=7&lang=en
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
83 B (83 bytes)
Hash
6a3d1a33be5a4b29921221c936842ef9
796a25064552103320ab4c1e5c9df22d01565048
fda546a3ad48ff0612c562fe787a4cd2a39a82d313c391b4da5b36572b64c188

HTTP Headers

GET /rest/1.0/operation/pull?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=D3C37627130569246165C304671DC55431E49E13F2CA93C8B3ECE892D9166DDD90D894098E8C225BB026F705316DBEB0C529EBA2C556BC8BF87F0686694E9897C5569E6EB775F5CF47CC3C782CA275A05BE9E0F1F3A7D549D6ED42BCEB1E8CB4&dp-logid=43502600175912480006&position=7&lang=en HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej; browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; lang=en; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; __bid_n=18c150826f3eec17074207
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Encoding: gzip
Content-Type: text/plain; charset=utf-8
Date: Tue, 28 Nov 2023 08:25:02 GMT
Flow-Level: 3
Http-X-Isis-Logid: 8845611205621394076
Logid: 8845611205621394076
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
Vary: Accept-Encoding
Yld: 8845611205621394076
Yme: ZIGW+Ss3QE0WaCsESGniq29Xvv4cVAPxox5MwiqBmOqwOgRhbjNKuyae4OgY
Content-Length: 83

www.1024tera.com/share/linkpaylistpurchaseorder?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=D3C37627130569246165C304671DC55431E49E13F2CA93C8B3ECE892D9166DDD90D894098E8C225BB026F705316DBEB0C529EBA2C556BC8BF87F0686694E9897C5569E6EB775F5CF47CC3C782CA275A05BE9E0F1F3A7D549D6ED42BCEB1E8CB4&dp-logid=43502600175912480005&page=1&cnt=20

210.148.85.59

200 OK

86 B

URL GET HTTP/1.1
www.1024tera.com/share/linkpaylistpurchaseorder?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=D3C37627130569246165C304671DC55431E49E13F2CA93C8B3ECE892D9166DDD90D894098E8C225BB026F705316DBEB0C529EBA2C556BC8BF87F0686694E9897C5569E6EB775F5CF47CC3C782CA275A05BE9E0F1F3A7D549D6ED42BCEB1E8CB4&dp-logid=43502600175912480005&page=1&cnt=20
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text
Size
86 B (86 bytes)
Hash
d28ad3790376057baf4764fc6e8b517e
0762a12f8cf97415000c44f1e39bbf0c5758270d
b0d9016a86ab1969d69745f73eba017366f11a0f797ce09ab7d385269db0ed55

HTTP Headers

GET /share/linkpaylistpurchaseorder?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=D3C37627130569246165C304671DC55431E49E13F2CA93C8B3ECE892D9166DDD90D894098E8C225BB026F705316DBEB0C529EBA2C556BC8BF87F0686694E9897C5569E6EB775F5CF47CC3C782CA275A05BE9E0F1F3A7D549D6ED42BCEB1E8CB4&dp-logid=43502600175912480005&page=1&cnt=20 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej; browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; lang=en; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; __bid_n=18c150826f3eec17074207
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Encoding: gzip
Content-Type: application/json; charset=UTF-8
Date: Tue, 28 Nov 2023 08:25:02 GMT
Flow-Level: 3
Http-X-Isis-Logid: 8845611201746595158
Logid: 8845611201746595158
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
Vary: Accept-Encoding
Yld: 8845611201746595158
Yme: ZIGW+Ss3QE0WaisHTmjiq29Xvv4cVAP2ox5OxSeJmu2xTw==
Content-Length: 86

www.1024tera.com/api/analytics?errno=-6&newno=&request_id=8845611201746595000&show_msg=&hasError=true&params=%7B%22page%22%3A1%2C%22cnt%22%3A20%7D&uk=0&type=%2Fshare%2Flinkpaylistpurchaseorder_web_interface_error&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159906415

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?errno=-6&newno=&request_id=8845611201746595000&show_msg=&hasError=true&params=%7B%22page%22%3A1%2C%22cnt%22%3A20%7D&uk=0&type=%2Fshare%2Flinkpaylistpurchaseorder_web_interface_error&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159906415
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
7b81855267535e869b955e8dd89cc142
d4de66ad3fb097433314afaad9d971a59ba1dbbf
3e25b229dd2136b47f79e2b045972cd93a48013a3f7f5f55b8c382942751dca9

HTTP Headers

GET /api/analytics?errno=-6&newno=&request_id=8845611201746595000&show_msg=&hasError=true&params=%7B%22page%22%3A1%2C%22cnt%22%3A20%7D&uk=0&type=%2Fshare%2Flinkpaylistpurchaseorder_web_interface_error&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159906415 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej; browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; lang=en; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; __bid_n=18c150826f3eec17074207
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Tue, 28 Nov 2023 08:25:02 GMT
Flow-Level: 3
Logid: 8845611306363719137
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8845611306363719137
Yme: ZIGW+Ss3QEsSdTcDUmr/tG1MvuUZSxz3rwpNxSKD
Content-Length: 44

www.1024tera.com/api/analytics?errno=-6&errmsg=&data=null&logid=15385379405327341527&hasError=true&params=%7B%22position%22%3A7%2C%22lang%22%3A%22en%22%7D&uk=0&type=%2Frest%2F1.0%2Foperation%2Fpull_web_interface_error&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159906402

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?errno=-6&errmsg=&data=null&logid=15385379405327341527&hasError=true&params=%7B%22position%22%3A7%2C%22lang%22%3A%22en%22%7D&uk=0&type=%2Frest%2F1.0%2Foperation%2Fpull_web_interface_error&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159906402
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
32d2ad6f66640e61da9df2a3523fc78c
ac7f7f336a1d005fd30b42a7d091f5807bc0afc5
67ee604676198180b827847769104ed4eb984c081758c4082a334bd6e66c713c

HTTP Headers

GET /api/analytics?errno=-6&errmsg=&data=null&logid=15385379405327341527&hasError=true&params=%7B%22position%22%3A7%2C%22lang%22%3A%22en%22%7D&uk=0&type=%2Frest%2F1.0%2Foperation%2Fpull_web_interface_error&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159906402 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej; browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; lang=en; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; __bid_n=18c150826f3eec17074207
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Tue, 28 Nov 2023 08:25:02 GMT
Flow-Level: 3
Logid: 8845611300714715802
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8845611300714715802
Yme: ZIGW+Ss3QE0WaCsHT2niq29Xvv4cVAPxqB5NwiqBmO+4
Content-Length: 44

sofire.1024tera.com/h5/t

210.148.85.53

200 OK

586 B

URL POST HTTP/1.1
sofire.1024tera.com/h5/t
IP
210.148.85.53:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with very long lines (697), with no line terminators
Size
586 B (586 bytes)
Hash
224ccfbe6a84950c67ecd7c1479352f8
d60e72c48e2584708002a6efd18281bc60aec6fd
a56892c76af26a5345dc93e72bd7a8c607275c90cebae446ad55b170dad8be7d

HTTP Headers

POST /h5/t HTTP/1.1
Host: sofire.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 3802
Origin: https://www.1024tera.com
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Cookie: browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; __bid_n=18c150826f3eec17074207
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: openresty
Date: Tue, 28 Nov 2023 08:25:02 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
yld: 8845611320318523371
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Content-Type,AccessToken,X-CSRF-Token,X-Bdh5-Pf,X-XSRF-TOKEN, Authorization
Access-Control-Allow-Methods: POST, GET, OPTIONS
Access-Control-Allow-Origin: https://www.1024tera.com
Access-Control-Expose-Headers: Content-Length, Access-Control-Allow-Origin, Access-Control-Allow-Headers, Content-Type
P3P: CP=" OTI DSP COR IVA OUR IND COM "
yme: ZIGW+Ss3QE0WaSsHTm/iq29Xvv4cVAP2oh5NwCSJkO25T/1Zfg==
logid: 8845611320318523371
Flow-level: 3
Content-Encoding: gzip

www.1024tera.com/share/webmaster/check?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=D3C37627130569246165C304671DC55431E49E13F2CA93C8B3ECE892D9166DDD90D894098E8C225BB026F705316DBEB0C529EBA2C556BC8BF87F0686694E9897C5569E6EB775F5CF47CC3C782CA275A05BE9E0F1F3A7D549D6ED42BCEB1E8CB4&dp-logid=43502600175912480004&bdstoken=

210.148.85.59

200 OK

85 B

URL GET HTTP/1.1
www.1024tera.com/share/webmaster/check?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=D3C37627130569246165C304671DC55431E49E13F2CA93C8B3ECE892D9166DDD90D894098E8C225BB026F705316DBEB0C529EBA2C556BC8BF87F0686694E9897C5569E6EB775F5CF47CC3C782CA275A05BE9E0F1F3A7D549D6ED42BCEB1E8CB4&dp-logid=43502600175912480004&bdstoken=
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text
Size
85 B (85 bytes)
Hash
8c23d46e17d8dda059c7f0d5b43a0097
00e9205ce40d654f5fbb11685b0c6ad3effedbf5
5b22916349af5e6432a8e1bc3df55517590a862e5c0cef1c3609f988611cbb86

HTTP Headers

GET /share/webmaster/check?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=D3C37627130569246165C304671DC55431E49E13F2CA93C8B3ECE892D9166DDD90D894098E8C225BB026F705316DBEB0C529EBA2C556BC8BF87F0686694E9897C5569E6EB775F5CF47CC3C782CA275A05BE9E0F1F3A7D549D6ED42BCEB1E8CB4&dp-logid=43502600175912480004&bdstoken= HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej; browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; lang=en; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; __bid_n=18c150826f3eec17074207
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Encoding: gzip
Content-Type: application/json; charset=UTF-8
Date: Tue, 28 Nov 2023 08:25:02 GMT
Flow-Level: 3
Http-X-Isis-Logid: 8845611366401346546
Logid: 8845611366401346546
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
Vary: Accept-Encoding
Yld: 8845611366401346546
Yme: ZIGW+Ss3QEsUdTcGUmr/tG1MvuUZTRz3rQpNwySF6+TCOSxRS7/HP1Ot3A==
Content-Length: 85

www.1024tera.com/passport/getpubkey?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=D3C37627130569246165C304671DC55431E49E13F2CA93C8B3ECE892D9166DDD90D894098E8C225BB026F705316DBEB0C529EBA2C556BC8BF87F0686694E9897C5569E6EB775F5CF47CC3C782CA275A05BE9E0F1F3A7D549D6ED42BCEB1E8CB4&dp-logid=43502600175912480003

210.148.85.59

200 OK

405 B

URL POST HTTP/1.1
www.1024tera.com/passport/getpubkey?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=D3C37627130569246165C304671DC55431E49E13F2CA93C8B3ECE892D9166DDD90D894098E8C225BB026F705316DBEB0C529EBA2C556BC8BF87F0686694E9897C5569E6EB775F5CF47CC3C782CA275A05BE9E0F1F3A7D549D6ED42BCEB1E8CB4&dp-logid=43502600175912480003
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with very long lines (465), with no line terminators
Size
405 B (405 bytes)
Hash
9a13ff0dfca010d6db9669c61939e63e
76b46243db405e821db5e12b7216cc8690b35593
d7b7ad1eec3d69e552e5e8c31c0b534a8812c1ee665e7fc46c076ce72e60a3ed

HTTP Headers

POST /passport/getpubkey?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=D3C37627130569246165C304671DC55431E49E13F2CA93C8B3ECE892D9166DDD90D894098E8C225BB026F705316DBEB0C529EBA2C556BC8BF87F0686694E9897C5569E6EB775F5CF47CC3C782CA275A05BE9E0F1F3A7D549D6ED42BCEB1E8CB4&dp-logid=43502600175912480003 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
X-Requested-With: XMLHttpRequest
Content-Length: 91
Origin: https://www.1024tera.com
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej; browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; lang=en; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; __bid_n=18c150826f3eec17074207
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Encoding: gzip
Content-Type: application/Json; charset=utf-8
Date: Tue, 28 Nov 2023 08:25:02 GMT
Flow-Level: 3
Logid: 8845611364699277866
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
Vary: Accept-Encoding
Yld: 8845611364699277866
Yme: ZIGW+Ss3QEoadTcNUmr/tG1MvuUZSxz3rgpNwyOK27TuEVcxL5dcdK8Z3A==
Content-Length: 405

210.148.85.59

200 OK

15 kB

URL GET HTTP/1.1
www.1024tera.com/api/getsyscfg?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=D3C37627130569246165C304671DC55431E49E13F2CA93C8B3ECE892D9166DDD90D894098E8C225BB026F705316DBEB0C529EBA2C556BC8BF87F0686694E9897C5569E6EB775F5CF47CC3C782CA275A05BE9E0F1F3A7D549D6ED42BCEB1E8CB4&dp-logid=43502600175912480001&language_type=en&cfg_category_keys=%5B%5D&version=0
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Size
15 kB (15114 bytes)
Hash
608ef979a2cc599bc74a2a86608f3df0
2b8a3c239e562f466e8127f2af098a8980622a0e
1c083393ea1531703075c75e1397f7f5b60a11f648fb4e8225796186d33f7b57

HTTP Headers

GET /api/getsyscfg?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=D3C37627130569246165C304671DC55431E49E13F2CA93C8B3ECE892D9166DDD90D894098E8C225BB026F705316DBEB0C529EBA2C556BC8BF87F0686694E9897C5569E6EB775F5CF47CC3C782CA275A05BE9E0F1F3A7D549D6ED42BCEB1E8CB4&dp-logid=43502600175912480001&language_type=en&cfg_category_keys=%5B%5D&version=0 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej; browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; lang=en; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; __bid_n=18c150826f3eec17074207
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Encoding: gzip
Content-Type: application/json; charset=UTF-8
Date: Tue, 28 Nov 2023 08:25:02 GMT
Flow-Level: 3
Logid: 8845611346063080400
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
Vary: Accept-Encoding
X-Powered-By: DuboxServer
Yld: 8845611346063080400
Yme: ZIGW+Ss3QE0WaisESnb+qnFLufkASwH9tAJPyiqBmOW1
Transfer-Encoding: chunked

www.1024tera.com/rest/2.0/membership/proxy/user?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=D3C37627130569246165C304671DC55431E49E13F2CA93C8B3ECE892D9166DDD90D894098E8C225BB026F705316DBEB0C529EBA2C556BC8BF87F0686694E9897C5569E6EB775F5CF47CC3C782CA275A05BE9E0F1F3A7D549D6ED42BCEB1E8CB4&dp-logid=43502600175912480007&client=web&pass_version=2.8&lang=en&clientfrom=h5&pcftoken=245eb4caea93e266dc81bb32efe597a1&method=query&membership_version=1.0

210.148.85.59

200 OK

96 B

URL GET HTTP/1.1
www.1024tera.com/rest/2.0/membership/proxy/user?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=D3C37627130569246165C304671DC55431E49E13F2CA93C8B3ECE892D9166DDD90D894098E8C225BB026F705316DBEB0C529EBA2C556BC8BF87F0686694E9897C5569E6EB775F5CF47CC3C782CA275A05BE9E0F1F3A7D549D6ED42BCEB1E8CB4&dp-logid=43502600175912480007&client=web&pass_version=2.8&lang=en&clientfrom=h5&pcftoken=245eb4caea93e266dc81bb32efe597a1&method=query&membership_version=1.0
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
96 B (96 bytes)
Hash
62808db2ad534021e7597aee92656947
d27f90119f56b7c64a10fb28c877092d3fa7f08e
55465a2ea6b2c3bfb2171c775fc958d9c447c8b905a4cea2b616a68531ffdc13

HTTP Headers

GET /rest/2.0/membership/proxy/user?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=D3C37627130569246165C304671DC55431E49E13F2CA93C8B3ECE892D9166DDD90D894098E8C225BB026F705316DBEB0C529EBA2C556BC8BF87F0686694E9897C5569E6EB775F5CF47CC3C782CA275A05BE9E0F1F3A7D549D6ED42BCEB1E8CB4&dp-logid=43502600175912480007&client=web&pass_version=2.8&lang=en&clientfrom=h5&pcftoken=245eb4caea93e266dc81bb32efe597a1&method=query&membership_version=1.0 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej; browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; lang=en; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; __bid_n=18c150826f3eec17074207
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Encoding: gzip
Content-Type: application/json; charset=UTF-8
Date: Tue, 28 Nov 2023 08:25:03 GMT
Flow-Level: 3
Http-X-Isis-Logid: 8845611429742329223
Logid: 8845611429742329223
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
Vary: Accept-Encoding
Yld: 8845611429742329223
Yme: ZIGW+Ss3QEsWdTcGUmr/tG1MvuUYQxz0qwpNwyKE3VUFKxU=
Content-Length: 96

www.1024tera.com/api/ad/getconfig?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=D3C37627130569246165C304671DC55431E49E13F2CA93C8B3ECE892D9166DDD90D894098E8C225BB026F705316DBEB0C529EBA2C556BC8BF87F0686694E9897C5569E6EB775F5CF47CC3C782CA275A05BE9E0F1F3A7D549D6ED42BCEB1E8CB4&dp-logid=43502600175912480008

210.148.85.59

200 OK

85 B

URL GET HTTP/1.1
www.1024tera.com/api/ad/getconfig?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=D3C37627130569246165C304671DC55431E49E13F2CA93C8B3ECE892D9166DDD90D894098E8C225BB026F705316DBEB0C529EBA2C556BC8BF87F0686694E9897C5569E6EB775F5CF47CC3C782CA275A05BE9E0F1F3A7D549D6ED42BCEB1E8CB4&dp-logid=43502600175912480008
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
85 B (85 bytes)
Hash
b21fba21f20eb4bbe4cbe698fb61bda2
0734b0e15ee41a541a7bac92495af14656b61813
70a9aa119f97e7a5064ca748a9b16a6110d9dee256b1342cfabdfde1927c56dc

HTTP Headers

GET /api/ad/getconfig?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=D3C37627130569246165C304671DC55431E49E13F2CA93C8B3ECE892D9166DDD90D894098E8C225BB026F705316DBEB0C529EBA2C556BC8BF87F0686694E9897C5569E6EB775F5CF47CC3C782CA275A05BE9E0F1F3A7D549D6ED42BCEB1E8CB4&dp-logid=43502600175912480008 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej; browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; lang=en; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; __bid_n=18c150826f3eec17074207
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Encoding: gzip
Content-Type: application/json; charset=UTF-8
Date: Tue, 28 Nov 2023 08:25:03 GMT
Flow-Level: 3
Http-X-Isis-Logid: 8845611430941092623
Logid: 8845611430941092623
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
Vary: Accept-Encoding
Yld: 8845611430941092623
Yme: ZIGW+Ss3QE0WbysMRnb+qnFLufkASwb8tAlMySKDme25OVMwN2Ez1SM6OzY=
Content-Length: 85

210.148.85.59

200 OK

15 kB

URL GET HTTP/1.1
www.1024tera.com/api/getsyscfg?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=D3C37627130569246165C304671DC55431E49E13F2CA93C8B3ECE892D9166DDD90D894098E8C225BB026F705316DBEB0C529EBA2C556BC8BF87F0686694E9897C5569E6EB775F5CF47CC3C782CA275A05BE9E0F1F3A7D549D6ED42BCEB1E8CB4&dp-logid=43502600175912480002&language_type=en&cfg_category_keys=%5B%5D&version=0
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Size
15 kB (15116 bytes)
Hash
542f9d8cf114e93078c18bd4cf5171b4
a34d06b27d2088647ae7a936ccda28d91da4f6ad
12a9c930f484664922ec1a0089cbffb6bbcec51f5236df20e7762013bf2de5c8

HTTP Headers

GET /api/getsyscfg?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=D3C37627130569246165C304671DC55431E49E13F2CA93C8B3ECE892D9166DDD90D894098E8C225BB026F705316DBEB0C529EBA2C556BC8BF87F0686694E9897C5569E6EB775F5CF47CC3C782CA275A05BE9E0F1F3A7D549D6ED42BCEB1E8CB4&dp-logid=43502600175912480002&language_type=en&cfg_category_keys=%5B%5D&version=0 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej; browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; lang=en; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; __bid_n=18c150826f3eec17074207
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Encoding: gzip
Content-Type: application/json; charset=UTF-8
Date: Tue, 28 Nov 2023 08:25:02 GMT
Flow-Level: 3
Logid: 8845611358259014071
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
Vary: Accept-Encoding
X-Powered-By: DuboxServer
Yld: 8845611358259014071
Yme: ZIGW+Ss3QE0WbSsGSnb+qnFLufkASwH8tAFJwCqBmO22
Transfer-Encoding: chunked

www.1024tera.com/api/analytics?time=5423&type=web_share_page_show_FCP&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159905721

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?time=5423&type=web_share_page_show_FCP&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159905721
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
ea0529b27798488c9508dcb33e182a44
948f42cd52f771f4b7dc5e50b02ba7ca205465a1
6e1f16a8053ed34c5b88c0fb7006810e0467a2a605b658e4c9de9269fada498d

HTTP Headers

GET /api/analytics?time=5423&type=web_share_page_show_FCP&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159905721 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej; browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; lang=en; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; __bid_n=18c150826f3eec17074207
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Tue, 28 Nov 2023 08:25:03 GMT
Flow-Level: 3
Logid: 8845611445129343276
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8845611445129343276
Yme: ZIGW+Ss3QE0WaisESmjiq29Xvv4cVAPxox5OxSeJmu23T2aBg9Y=
Content-Length: 44

s2.teraboxcdn.com/general-conf/ymg/2068/abclite-2068-s.js?v=0.6423660769353778

90.84.161.20

200 OK

33 kB

URL GET HTTP/2
s2.teraboxcdn.com/general-conf/ymg/2068/abclite-2068-s.js?v=0.6423660769353778
IP
90.84.161.20:443
ASN
#0

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert Inc
Subject*.teraboxcdn.com
Fingerprint4C:36:32:B9:A0:68:F6:C2:A7:95:E4:E6:DA:DA:D7:AF:7A:C3:41:44
ValidityTue, 28 Mar 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT

File type
gzip compressed data, from Unix\012- data
Size
33 kB (33307 bytes)
Hash
c51eb77c4c60fcc74e3117913578c522
9b5e3b6a8d92871cf375010ff62405444edf5c27
ac30a31bfdf9efdd9aced49a7823b19bc1d0b74b6cd89eed4f0cd1700d738f55

HTTP Headers

GET /general-conf/ymg/2068/abclite-2068-s.js?v=0.6423660769353778 HTTP/1.1
Host: s2.teraboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 08:25:00 GMT
content-type: application/javascript
server: openresty
content-md5: Ruoa4j+vWuccAEWEPrQz6Q==
etag: W/"46ea1ae23faf5ae71c0045843eb433e9"
expires: Fri, 07 Apr 2023 22:40:39 GMT
last-modified: Tue, 14 Mar 2023 06:06:12 GMT
x-bce-content-crc32: 1662135932
x-bce-debug-id: Jz1KOcGPkhU4n3Zck8uoB7CbklPytTa0SgCVaS0EGpxL61wnts4jWik6aFmIBGaCydmzElR8tezYRsKZD0KeZg==
x-bce-request-id: 7297b527-d932-4266-b90c-9962c07f4e61
x-bce-storage-class: STANDARD
x-ccdn-expires: 2592000
via: EU-GER-frankfurt-EDGE5-CACHE2[7],EU-GER-frankfurt-EDGE5-CACHE4[0,TCP_HIT,0],EU-GER-frankfurt-GLOBAL1-CACHE14[2],EU-GER-frankfurt-GLOBAL1-CACHE4[0,TCP_HIT,1]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 2592000
nginx-hit: 1
age: 19025750
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

sofire.terabox.com/edkey

210.148.85.32

200 OK

244 B

URL POST HTTP/1.1
sofire.terabox.com/edkey
IP
210.148.85.32:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert Inc
Subject*.terabox.com
Fingerprint4F:30:79:83:60:E0:58:E8:DA:05:09:38:E1:6D:CD:F9:46:33:D6:5F
ValidityTue, 28 Mar 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with very long lines (361), with no line terminators
Size
244 B (244 bytes)
Hash
282b9d5a6798d98bc290c3618ed5a066
b1a44de3b57ba4f4503576ad5ef86a030fd8e123
ebd2f5f04f3bab34e7db1923e00b7499db026e6a111e2151cda490bacb987bbc

HTTP Headers

POST /edkey HTTP/1.1
Host: sofire.terabox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.1024tera.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 64
Origin: https://www.1024tera.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: openresty
Date: Tue, 28 Nov 2023 08:25:03 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
yld: 8845611493843843765
Access-Control-Allow-Origin: *
P3P: CP=" OTI DSP COR IVA OUR IND COM "
yme: ZIGW+Ss3QE0WaSsHTm/iq29Xvv4cVAP2ox5OwySJkO25Tw==
logid: 8845611493843843765
Flow-level: 3
Content-Encoding: gzip

www.1024tera.com/api/analytics?domain=www.1024tera.com&type=web_domain_heart_beat&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159905723

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?domain=www.1024tera.com&type=web_domain_heart_beat&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159905723
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
401669a91c8908c444d352443e692307
301d877fe948b06f6cb8905a2d8325b847c1bdd3
2243deb7954c14e2a871f4f72a2f758e83a272d29e289259834684f57a65df2c

HTTP Headers

GET /api/analytics?domain=www.1024tera.com&type=web_domain_heart_beat&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159905723 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej; browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; lang=en; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; __bid_n=18c150826f3eec17074207
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Tue, 28 Nov 2023 08:25:03 GMT
Flow-Level: 3
Logid: 8845611502045860629
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8845611502045860629
Yme: ZIGW+Ss3QEoadTQGUmr/tG1MvuUZTxzxqApNwyKD5M3N/y5JCedWXeWq3A==
Content-Length: 44

www.1024tera.com/api/analytics?errno=100003&error_code=100003&error_msg=Invalid%20Bduss&request_id=8845611429742329223&hasError=true&params=%7B%22client%22%3A%22web%22%2C%22pass_version%22%3A%222.8%22%2C%22lang%22%3A%22en%22%2C%22clientfrom%22%3A%22h5%22%2C%22pcftoken%22%3A%22245eb4caea93e266dc81bb32efe597a1%22%2C%22method%22%3A%22query%22%2C%22membership_version%22%3A%221.0%22%7D&uk=0&type=%2Frest%2F2.0%2Fmembership%2Fproxy%2Fuser_web_interface_error&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159907195

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?errno=100003&error_code=100003&error_msg=Invalid%20Bduss&request_id=8845611429742329223&hasError=true&params=%7B%22client%22%3A%22web%22%2C%22pass_version%22%3A%222.8%22%2C%22lang%22%3A%22en%22%2C%22clientfrom%22%3A%22h5%22%2C%22pcftoken%22%3A%22245eb4caea93e266dc81bb32efe597a1%22%2C%22method%22%3A%22query%22%2C%22membership_version%22%3A%221.0%22%7D&uk=0&type=%2Frest%2F2.0%2Fmembership%2Fproxy%2Fuser_web_interface_error&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159907195
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
c1caf1fcbedf022f90d2b640064c55e7
51b2ffc16bebc0ecd437a870456ec4721499389f
5e5cc9a9ae938e9c22f62cf5f1eb58b6612622a3fca2f14fafb8e787af505ac9

HTTP Headers

GET /api/analytics?errno=100003&error_code=100003&error_msg=Invalid%20Bduss&request_id=8845611429742329223&hasError=true&params=%7B%22client%22%3A%22web%22%2C%22pass_version%22%3A%222.8%22%2C%22lang%22%3A%22en%22%2C%22clientfrom%22%3A%22h5%22%2C%22pcftoken%22%3A%22245eb4caea93e266dc81bb32efe597a1%22%2C%22method%22%3A%22query%22%2C%22membership_version%22%3A%221.0%22%7D&uk=0&type=%2Frest%2F2.0%2Fmembership%2Fproxy%2Fuser_web_interface_error&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159907195 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej; browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; lang=en; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; __bid_n=18c150826f3eec17074207
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Tue, 28 Nov 2023 08:25:03 GMT
Flow-Level: 3
Logid: 8845611512445275478
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8845611512445275478
Yme: ZIGW+Ss3QE0RYysHT2jiq29Xvv4cVAPxqR5NwyaJmuy0TQ==
Content-Length: 44

www.1024tera.com/api/analytics?errno=-6&newno=&request_id=8845611430941093000&show_msg=&hasError=true&params=undefined&uk=0&type=%2Fapi%2Fad%2Fgetconfig_web_interface_error&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159907204

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?errno=-6&newno=&request_id=8845611430941093000&show_msg=&hasError=true&params=undefined&uk=0&type=%2Fapi%2Fad%2Fgetconfig_web_interface_error&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159907204
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
08439204690c1fcb7f6744c243d480f3
29db737ef4a1640736196e107a7e699c2c5fa54d
d733e2b1b178d5ed581dd45de24cb656fbccbf2bdd77e1bef108449c3b877fec

HTTP Headers

GET /api/analytics?errno=-6&newno=&request_id=8845611430941093000&show_msg=&hasError=true&params=undefined&uk=0&type=%2Fapi%2Fad%2Fgetconfig_web_interface_error&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159907204 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej; browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; lang=en; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; __bid_n=18c150826f3eec17074207
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Tue, 28 Nov 2023 08:25:03 GMT
Flow-Level: 3
Logid: 8845611515229588597
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8845611515229588597
Yme: ZIGW+Ss3QEsTdTcDUmr/tG1MvuUZSRzxrApNwyKA
Content-Length: 44

s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/main.e2847943.js

90.84.161.20

200 OK

245 kB

URL GET HTTP/2
s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/main.e2847943.js
IP
90.84.161.20:443
ASN
#0

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert Inc
Subject*.teraboxcdn.com
Fingerprint4C:36:32:B9:A0:68:F6:C2:A7:95:E4:E6:DA:DA:D7:AF:7A:C3:41:44
ValidityTue, 28 Mar 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT

File type
gzip compressed data, from Unix\012- data
Size
245 kB (244716 bytes)
Hash
2eeec3b34cdcf773924145a2964c73cc
86ac1e1921145097528707c0ad05dd102a7c9eaf
d276254d30a269979126f06b35b716c6fd3a6bfcad07958ce4de2e3b430e707e

HTTP Headers

GET /fe-opera-static/node-static-v4/fe-webv4-main/js/main.e2847943.js HTTP/1.1
Host: s2.teraboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 28 Nov 2023 08:25:00 GMT
content-type: application/javascript
server: openresty
content-md5: pmUPGfFN1P8Hwd9DBANl9g==
etag: W/"a6650f19f14dd4ff07c1df43040365f6"
expires: Thu, 30 Nov 2023 08:59:34 GMT
last-modified: Mon, 27 Nov 2023 03:07:00 GMT
x-bce-content-crc32: 3413177399
x-bce-debug-id: j6YckP5/M2UvySO79tEdnqYB1hGDnUELMT0rINqpKTUnsE6bZkgWiWtlWF+FfdTz3J6lTlugxw6/0+3BjhR3Og==
x-bce-flow-control-type: -1
x-bce-is-transition: false
x-bce-request-id: 0459d39d-9871-438c-8173-fa5c60412e75
x-bce-storage-class: STANDARD
x-ccdn-expires: 2527998
via: EU-GER-frankfurt-EDGE5-CACHE2[6],EU-GER-frankfurt-EDGE5-CACHE5[0,TCP_HIT,0],EU-GER-frankfurt-GLOBAL1-CACHE14[25],EU-GER-frankfurt-GLOBAL1-CACHE12[0,TCP_HIT,24]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 2592000
nginx-hit: 1
age: 83599
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

www.1024tera.com/api/analytics?type=terabox_sharing_link_js_error&sessionId=435026&productId=100810&clienttype=999&navigator=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&title=unhandledrejection%3A%7B%22code%22%3A%22remoteconfig%2Fstorage-open%22%2C%22customData%22%3A%7B%22originalErrorMessage%22%3A%22A%20mutation%20operation%20was%20attempted%20on%20a%20database%20that%20did%20not%20allow%20mutations.%22%7D%2C%22name%22%3A%22FirebaseError%22%7D&from=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&msg=%7B%22code%22%3A%22remoteconfig%2Fstorage-open%22%2C%22customData%22%3A%7B%22originalErrorMessage%22%3A%22A%20mutation%20operation%20was%20attempted%20on%20a%20database%20that%20did%20not%20allow%20mutations.%22%7D%2C%22name%22%3A%22FirebaseError%22%7D&stack=%5B%7B%22columnNumber%22%3A2705%2C%22lineNumber%22%3A1%2C%22fileName%22%3A%22https%3A%2F%2Fs2.teraboxcdn.com%2Ffe-opera-static%2Fnode-static-v4%2Ffe-webv4-main%2Fjs%2Fchunk-2d225855.7faaefb6.js%22%2C%22functionName%22%3A%22h%22%2C%22source%22%3A%22h%40https%3A%2F%2Fs2.teraboxcdn.com%2Ffe-opera-static%2Fnode-static-v4%2Ffe-webv4-main%2Fjs%2Fchunk-2d225855.7faaefb6.js%3A1%3A2705%22%7D%2C%7B%22columnNumber%22%3A3160%2C%22lineNumber%22%3A1%2C%22fileName%22%3A%22https%3A%2F%2Fs2.teraboxcdn.com%2Ffe-opera-static%2Fnode-static-v4%2Ffe-webv4-main%2Fjs%2Fchunk-2d225855.7faaefb6.js%22%2C%22functionName%22%3A%22e56e%2F%3C%2F%3C%2Fg.prototype.create%22%2C%22source%22%3A%22e56e%2F%3C%2F%3C%2Fg.prototype.create%40https%3A%2F%2Fs2.teraboxcdn.com%2Ffe-opera-static%2Fnode-static-v4%2Ffe-webv4-main%2Fjs%2Fchunk-2d225855.7faaefb6.js%3A1%3A3160%22%7D%2C%7B%22columnNumber%22%3A30208%2C%22lineNumber%22%3A1%2C%22fileName%22%3A%22https%3A%2F%2Fs2.teraboxcdn.com%2Ffe-opera-static%2Fnode-static-v4%2Ffe-webv4-main%2Fjs%2Fchunk-2d225855.7faaefb6.js%22%2C%22functionName%22%3A%22Kt%22%2C%22source%22%3A%22Kt%40https%3A%2F%2Fs2.teraboxcdn.com%2Ffe-opera-static%2Fnode-static-v4%2Ffe-webv4-main%2Fjs%2Fchunk-2d225855.7faaefb6.js%3A1%3A30208%22%7D%5D

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?type=terabox_sharing_link_js_error&sessionId=435026&productId=100810&clienttype=999&navigator=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&title=unhandledrejection%3A%7B%22code%22%3A%22remoteconfig%2Fstorage-open%22%2C%22customData%22%3A%7B%22originalErrorMessage%22%3A%22A%20mutation%20operation%20was%20attempted%20on%20a%20database%20that%20did%20not%20allow%20mutations.%22%7D%2C%22name%22%3A%22FirebaseError%22%7D&from=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&msg=%7B%22code%22%3A%22remoteconfig%2Fstorage-open%22%2C%22customData%22%3A%7B%22originalErrorMessage%22%3A%22A%20mutation%20operation%20was%20attempted%20on%20a%20database%20that%20did%20not%20allow%20mutations.%22%7D%2C%22name%22%3A%22FirebaseError%22%7D&stack=%5B%7B%22columnNumber%22%3A2705%2C%22lineNumber%22%3A1%2C%22fileName%22%3A%22https%3A%2F%2Fs2.teraboxcdn.com%2Ffe-opera-static%2Fnode-static-v4%2Ffe-webv4-main%2Fjs%2Fchunk-2d225855.7faaefb6.js%22%2C%22functionName%22%3A%22h%22%2C%22source%22%3A%22h%40https%3A%2F%2Fs2.teraboxcdn.com%2Ffe-opera-static%2Fnode-static-v4%2Ffe-webv4-main%2Fjs%2Fchunk-2d225855.7faaefb6.js%3A1%3A2705%22%7D%2C%7B%22columnNumber%22%3A3160%2C%22lineNumber%22%3A1%2C%22fileName%22%3A%22https%3A%2F%2Fs2.teraboxcdn.com%2Ffe-opera-static%2Fnode-static-v4%2Ffe-webv4-main%2Fjs%2Fchunk-2d225855.7faaefb6.js%22%2C%22functionName%22%3A%22e56e%2F%3C%2F%3C%2Fg.prototype.create%22%2C%22source%22%3A%22e56e%2F%3C%2F%3C%2Fg.prototype.create%40https%3A%2F%2Fs2.teraboxcdn.com%2Ffe-opera-static%2Fnode-static-v4%2Ffe-webv4-main%2Fjs%2Fchunk-2d225855.7faaefb6.js%3A1%3A3160%22%7D%2C%7B%22columnNumber%22%3A30208%2C%22lineNumber%22%3A1%2C%22fileName%22%3A%22https%3A%2F%2Fs2.teraboxcdn.com%2Ffe-opera-static%2Fnode-static-v4%2Ffe-webv4-main%2Fjs%2Fchunk-2d225855.7faaefb6.js%22%2C%22functionName%22%3A%22Kt%22%2C%22source%22%3A%22Kt%40https%3A%2F%2Fs2.teraboxcdn.com%2Ffe-opera-static%2Fnode-static-v4%2Ffe-webv4-main%2Fjs%2Fchunk-2d225855.7faaefb6.js%3A1%3A30208%22%7D%5D
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
2854612e5a09c11f5895be8d507e9546
fd162a731b7d24498ba41504f511e9185110b16c
5c469b888d682936d3040cdc6454bf850df5fc364a8db5d1cc500a1239b72c2b

HTTP Headers

GET /api/analytics?type=terabox_sharing_link_js_error&sessionId=435026&productId=100810&clienttype=999&navigator=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&title=unhandledrejection%3A%7B%22code%22%3A%22remoteconfig%2Fstorage-open%22%2C%22customData%22%3A%7B%22originalErrorMessage%22%3A%22A%20mutation%20operation%20was%20attempted%20on%20a%20database%20that%20did%20not%20allow%20mutations.%22%7D%2C%22name%22%3A%22FirebaseError%22%7D&from=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&msg=%7B%22code%22%3A%22remoteconfig%2Fstorage-open%22%2C%22customData%22%3A%7B%22originalErrorMessage%22%3A%22A%20mutation%20operation%20was%20attempted%20on%20a%20database%20that%20did%20not%20allow%20mutations.%22%7D%2C%22name%22%3A%22FirebaseError%22%7D&stack=%5B%7B%22columnNumber%22%3A2705%2C%22lineNumber%22%3A1%2C%22fileName%22%3A%22https%3A%2F%2Fs2.teraboxcdn.com%2Ffe-opera-static%2Fnode-static-v4%2Ffe-webv4-main%2Fjs%2Fchunk-2d225855.7faaefb6.js%22%2C%22functionName%22%3A%22h%22%2C%22source%22%3A%22h%40https%3A%2F%2Fs2.teraboxcdn.com%2Ffe-opera-static%2Fnode-static-v4%2Ffe-webv4-main%2Fjs%2Fchunk-2d225855.7faaefb6.js%3A1%3A2705%22%7D%2C%7B%22columnNumber%22%3A3160%2C%22lineNumber%22%3A1%2C%22fileName%22%3A%22https%3A%2F%2Fs2.teraboxcdn.com%2Ffe-opera-static%2Fnode-static-v4%2Ffe-webv4-main%2Fjs%2Fchunk-2d225855.7faaefb6.js%22%2C%22functionName%22%3A%22e56e%2F%3C%2F%3C%2Fg.prototype.create%22%2C%22source%22%3A%22e56e%2F%3C%2F%3C%2Fg.prototype.create%40https%3A%2F%2Fs2.teraboxcdn.com%2Ffe-opera-static%2Fnode-static-v4%2Ffe-webv4-main%2Fjs%2Fchunk-2d225855.7faaefb6.js%3A1%3A3160%22%7D%2C%7B%22columnNumber%22%3A30208%2C%22lineNumber%22%3A1%2C%22fileName%22%3A%22https%3A%2F%2Fs2.teraboxcdn.com%2Ffe-opera-static%2Fnode-static-v4%2Ffe-webv4-main%2Fjs%2Fchunk-2d225855.7faaefb6.js%22%2C%22functionName%22%3A%22Kt%22%2C%22source%22%3A%22Kt%40https%3A%2F%2Fs2.teraboxcdn.com%2Ffe-opera-static%2Fnode-static-v4%2Ffe-webv4-main%2Fjs%2Fchunk-2d225855.7faaefb6.js%3A1%3A30208%22%7D%5D HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej; browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; lang=en; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; __bid_n=18c150826f3eec17074207
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Tue, 28 Nov 2023 08:25:03 GMT
Flow-Level: 3
Logid: 8845611526701857304
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8845611526701857304
Yme: ZIGW+Ss3QE0WaSsHTm/iq29Xvv4cVAP2oh5IxCqBmOm1S141NDZBK7ZqOrYZ
Content-Length: 44

www.1024tera.com/api/shorturlinfo?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=D3C37627130569246165C304671DC55431E49E13F2CA93C8B3ECE892D9166DDD90D894098E8C225BB026F705316DBEB0C529EBA2C556BC8BF87F0686694E9897C5569E6EB775F5CF47CC3C782CA275A05BE9E0F1F3A7D549D6ED42BCEB1E8CB4&dp-logid=43502600175912480009&shorturl=1CdjAXlai_BSgrgOd4RzKGw&root=1&scene=purchased_list

210.148.85.59

200 OK

859 B

URL GET HTTP/1.1
www.1024tera.com/api/shorturlinfo?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=D3C37627130569246165C304671DC55431E49E13F2CA93C8B3ECE892D9166DDD90D894098E8C225BB026F705316DBEB0C529EBA2C556BC8BF87F0686694E9897C5569E6EB775F5CF47CC3C782CA275A05BE9E0F1F3A7D549D6ED42BCEB1E8CB4&dp-logid=43502600175912480009&shorturl=1CdjAXlai_BSgrgOd4RzKGw&root=1&scene=purchased_list
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with very long lines (2338), with no line terminators
Size
859 B (859 bytes)
Hash
f43194f9d836d5c61fcd491adbd91d81
48807aad8d4341c0a77d2c5f18495cb2ec2dddf2
01188feef5be7085441db7200786e761c9b5b0618d8d2288b4765b2e71487191

HTTP Headers

GET /api/shorturlinfo?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=D3C37627130569246165C304671DC55431E49E13F2CA93C8B3ECE892D9166DDD90D894098E8C225BB026F705316DBEB0C529EBA2C556BC8BF87F0686694E9897C5569E6EB775F5CF47CC3C782CA275A05BE9E0F1F3A7D549D6ED42BCEB1E8CB4&dp-logid=43502600175912480009&shorturl=1CdjAXlai_BSgrgOd4RzKGw&root=1&scene=purchased_list HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej; browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; lang=en; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; __bid_n=18c150826f3eec17074207
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Encoding: gzip
Content-Type: application/json; charset=UTF-8
Date: Tue, 28 Nov 2023 08:25:03 GMT
Flow-Level: 3
Logid: 8845611508263127778
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8845611508263127778
Yme: ZIGW+Ss3QE0RYysESWjiq29Xvv4cVAPxqx5OxiOJmu2xRg==
Transfer-Encoding: chunked

www.1024tera.com/api/analytics?type=terabox_sharing_link_js_error_p2&sessionId=435026&productId=100810&clienttype=999&navigator=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&title=unhandledrejection%3A%7B%7D&from=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&msg=%7B%7D&stack=%5B%7B%22columnNumber%22%3A18998%2C%22lineNumber%22%3A10%2C%22fileName%22%3A%22https%3A%2F%2Fwww.1024tera.com%2Fndbs%2Fnd_bundle_430546.js%22%2C%22functionName%22%3A%22webGlInfo%22%2C%22source%22%3A%22webGlInfo%40https%3A%2F%2Fwww.1024tera.com%2Fndbs%2Fnd_bundle_430546.js%3A10%3A18998%22%7D%2C%7B%22columnNumber%22%3A21970%2C%22lineNumber%22%3A10%2C%22fileName%22%3A%22https%3A%2F%2Fwww.1024tera.com%2Fndbs%2Fnd_bundle_430546.js%22%2C%22source%22%3A%22%40https%3A%2F%2Fwww.1024tera.com%2Fndbs%2Fnd_bundle_430546.js%3A10%3A21970%22%7D%2C%7B%22columnNumber%22%3A20619%2C%22lineNumber%22%3A10%2C%22fileName%22%3A%22https%3A%2F%2Fwww.1024tera.com%2Fndbs%2Fnd_bundle_430546.js%22%2C%22functionName%22%3A%22promise%20callback*%22%2C%22source%22%3A%22promise%20callback*%40https%3A%2F%2Fwww.1024tera.com%2Fndbs%2Fnd_bundle_430546.js%3A10%3A20619%22%7D%5D

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?type=terabox_sharing_link_js_error_p2&sessionId=435026&productId=100810&clienttype=999&navigator=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&title=unhandledrejection%3A%7B%7D&from=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&msg=%7B%7D&stack=%5B%7B%22columnNumber%22%3A18998%2C%22lineNumber%22%3A10%2C%22fileName%22%3A%22https%3A%2F%2Fwww.1024tera.com%2Fndbs%2Fnd_bundle_430546.js%22%2C%22functionName%22%3A%22webGlInfo%22%2C%22source%22%3A%22webGlInfo%40https%3A%2F%2Fwww.1024tera.com%2Fndbs%2Fnd_bundle_430546.js%3A10%3A18998%22%7D%2C%7B%22columnNumber%22%3A21970%2C%22lineNumber%22%3A10%2C%22fileName%22%3A%22https%3A%2F%2Fwww.1024tera.com%2Fndbs%2Fnd_bundle_430546.js%22%2C%22source%22%3A%22%40https%3A%2F%2Fwww.1024tera.com%2Fndbs%2Fnd_bundle_430546.js%3A10%3A21970%22%7D%2C%7B%22columnNumber%22%3A20619%2C%22lineNumber%22%3A10%2C%22fileName%22%3A%22https%3A%2F%2Fwww.1024tera.com%2Fndbs%2Fnd_bundle_430546.js%22%2C%22functionName%22%3A%22promise%20callback*%22%2C%22source%22%3A%22promise%20callback*%40https%3A%2F%2Fwww.1024tera.com%2Fndbs%2Fnd_bundle_430546.js%3A10%3A20619%22%7D%5D
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
af61429fcbcc0611ced0000f51f66366
2910c5cf4796122d169e256d75a34813845c5e36
51ca5b40de75d1c47da041bbecc016d963eb47727473760a411d3975073d2ae2

HTTP Headers

GET /api/analytics?type=terabox_sharing_link_js_error_p2&sessionId=435026&productId=100810&clienttype=999&navigator=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&title=unhandledrejection%3A%7B%7D&from=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&msg=%7B%7D&stack=%5B%7B%22columnNumber%22%3A18998%2C%22lineNumber%22%3A10%2C%22fileName%22%3A%22https%3A%2F%2Fwww.1024tera.com%2Fndbs%2Fnd_bundle_430546.js%22%2C%22functionName%22%3A%22webGlInfo%22%2C%22source%22%3A%22webGlInfo%40https%3A%2F%2Fwww.1024tera.com%2Fndbs%2Fnd_bundle_430546.js%3A10%3A18998%22%7D%2C%7B%22columnNumber%22%3A21970%2C%22lineNumber%22%3A10%2C%22fileName%22%3A%22https%3A%2F%2Fwww.1024tera.com%2Fndbs%2Fnd_bundle_430546.js%22%2C%22source%22%3A%22%40https%3A%2F%2Fwww.1024tera.com%2Fndbs%2Fnd_bundle_430546.js%3A10%3A21970%22%7D%2C%7B%22columnNumber%22%3A20619%2C%22lineNumber%22%3A10%2C%22fileName%22%3A%22https%3A%2F%2Fwww.1024tera.com%2Fndbs%2Fnd_bundle_430546.js%22%2C%22functionName%22%3A%22promise%20callback*%22%2C%22source%22%3A%22promise%20callback*%40https%3A%2F%2Fwww.1024tera.com%2Fndbs%2Fnd_bundle_430546.js%3A10%3A20619%22%7D%5D HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej; browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; lang=en; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; __bid_n=18c150826f3eec17074207
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Tue, 28 Nov 2023 08:25:03 GMT
Flow-Level: 3
Logid: 8845611583425304976
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8845611583425304976
Yme: ZIGW+Ss3QEoadTcCUmr/tG1MvuUZTBz3qQpNwyeK
Content-Length: 44

www.1024tera.com/api/analytics?isLogin=false&surl=CdjAXlai_BSgrgOd4RzKGw&downloadPullNewFlag=b&videoTrialPullNewFlag=a&isUserSelfLink=false&referrer=&channelSrc=&type=share_page_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159907686

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?isLogin=false&surl=CdjAXlai_BSgrgOd4RzKGw&downloadPullNewFlag=b&videoTrialPullNewFlag=a&isUserSelfLink=false&referrer=&channelSrc=&type=share_page_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159907686
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
9f9b1ee9dddd62160edb5f151a8ee734
022b3530fc180cb47cbbd1a32fa2452472545d0a
9adcf9e325cd7ca5388dc0f7623dbd8ccd81d0ec8f04c8c0747ec5134994c3e7

HTTP Headers

GET /api/analytics?isLogin=false&surl=CdjAXlai_BSgrgOd4RzKGw&downloadPullNewFlag=b&videoTrialPullNewFlag=a&isUserSelfLink=false&referrer=&channelSrc=&type=share_page_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159907686 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej; browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; lang=en; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; __bid_n=18c150826f3eec17074207
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Tue, 28 Nov 2023 08:25:03 GMT
Flow-Level: 3
Logid: 8845611649370328925
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8845611649370328925
Yme: ZIGW+Ss3QE0XaysNTnb+qnFLufkASwbxtAFIySKDmuyxUV06OA==
Content-Length: 44

firebase.googleapis.com/v1alpha/projects/-/apps/1:866794485532:web:b9c33b0f122f89758a6cd9/webConfig

142.250.74.170

200 OK

0 B

URL OPTIONS HTTP/2
firebase.googleapis.com/v1alpha/projects/-/apps/1:866794485532:web:b9c33b0f122f89758a6cd9/webConfig
IP
142.250.74.170:443
ASN
#15169 GOOGLE

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /v1alpha/projects/-/apps/1:866794485532:web:b9c33b0f122f89758a6cd9/webConfig HTTP/1.1
Host: firebase.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-goog-api-key
Referer: https://www.1024tera.com/
Origin: https://www.1024tera.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: https://www.1024tera.com
vary: origin, referer, x-origin
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: x-goog-api-key
access-control-max-age: 3600
date: Tue, 28 Nov 2023 08:25:04 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

firebase.googleapis.com/v1alpha/projects/-/apps/1:866794485532:web:b9c33b0f122f89758a6cd9/webConfig

142.250.74.170

200 OK

223 B

URL OPTIONS HTTP/2
firebase.googleapis.com/v1alpha/projects/-/apps/1:866794485532:web:b9c33b0f122f89758a6cd9/webConfig
IP
142.250.74.170:443
ASN
#15169 GOOGLE

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
JSON data\012- , ASCII text
Size
223 B (223 bytes)
Hash
54c11162d6ef3c32b787d4d8a6a292f8
f1e88b95b9addbd7a1e170daf6da450ab93bdecb
263070732f0c9d00ac3e625982ff38a8d08bc25a2ac03c3e3d524557b09f616f

HTTP Headers

GET /v1alpha/projects/-/apps/1:866794485532:web:b9c33b0f122f89758a6cd9/webConfig HTTP/1.1
Host: firebase.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.1024tera.com/
x-goog-api-key: AIzaSyCAt5j0_j4UDEm5Nb4bNvQknuGZoMK_XK8
Origin: https://www.1024tera.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 28 Nov 2023 08:25:04 GMT
server: ESF
cache-control: private
content-length: 223
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.1024tera.com
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

accounts.google.com/gsi/client

142.250.74.13

200 OK

80 kB

URL GET HTTP/2
accounts.google.com/gsi/client
IP
142.250.74.13:443
ASN
#15169 GOOGLE

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
Fingerprint1E:A9:E1:96:78:1D:08:FC:96:C8:C2:34:4F:02:D3:3D:FA:9A:D2:6B
ValidityMon, 23 Oct 2023 11:25:04 GMT - Mon, 15 Jan 2024 11:25:03 GMT

File type
gzip compressed data, max compression\012- data
Size
80 kB (80119 bytes)
Hash
06be92171fc7207dbe4cdee6de601f68
d8b8f2f0bfaccaaee36ae20e6785f178271b4130
8e40cee2b22181186b2d2afacb41aaeafc5f98f706bbed191ad7ebdf42314f51

HTTP Headers

GET /gsi/client HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
expires: Tue, 28 Nov 2023 08:25:04 GMT
date: Tue, 28 Nov 2023 08:25:04 GMT
cache-control: private, max-age=1800
report-to: {"group":"coop_dd7de8473bddc59c6b748810a67a39b1","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/dd7de8473bddc59c6b748810a67a39b1"}]}
content-security-policy: require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http, script-src 'nonce-4V6ETnKBhaO59UdvHM16lQ' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="coop_dd7de8473bddc59c6b748810a67a39b1"
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.1024tera.com/fe-opera-static/box-static/disk-system/images/favicon.ico

210.148.85.59

200 OK

1.7 kB

URL GET HTTP/1.1
www.1024tera.com/fe-opera-static/box-static/disk-system/images/favicon.ico
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
PNG image data, 64 x 64, 8-bit colormap, non-interlaced\012- data
Size
1.7 kB (1683 bytes)
Hash
85c3fafc35604bddb3171dee4c0aa6dc
4cb347df6fbedcf8b7e77c9b0673ff3667ed0266
fd68b8c59d5d564cb46519aaaf236ef2ffab9c79c4b1e3ea67a1a57a0120731e

HTTP Headers

GET /fe-opera-static/box-static/disk-system/images/favicon.ico HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej; browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; lang=en; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; __bid_n=18c150826f3eec17074207
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Connection: keep-alive
Content-Type: image/x-icon
Date: Tue, 28 Nov 2023 08:25:04 GMT
Etag: "643529f4-693"
Expires: Thu, 28 Dec 2023 08:25:04 GMT
Flow-Level: 3
Last-Modified: Tue, 11 Apr 2023 09:35:48 GMT
Logid: 8845611713388330452
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: TeraBox
Yld: 8845611713388330452
Yme: ZIGW+Ss3QE0WaSsESnb+qnFLufkASwb1tAFJyiqBmO61NR1rcBU=
Transfer-Encoding: chunked

www.googletagmanager.com/gtag/js?l=dataLayer&id=G-06ZNKL8C2E

142.250.74.168

200 OK

85 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?l=dataLayer&id=G-06ZNKL8C2E
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type
Unicode text, UTF-8 text, with very long lines (3034)
Size
85 kB (85359 bytes)
Hash
31fb6039f50d8966c1a68dbcefbbbd32
8c24ee0e41c644bf2f0960420deb6a4166ab2f1f
a62822db7ae740aa774e606aa405c10e6715760383283471084b7135d286f562

HTTP Headers

GET /gtag/js?l=dataLayer&id=G-06ZNKL8C2E HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 28 Nov 2023 08:25:04 GMT
expires: Tue, 28 Nov 2023 08:25:04 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 85359
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.1024tera.com/share/list?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=D3C37627130569246165C304671DC55431E49E13F2CA93C8B3ECE892D9166DDD90D894098E8C225BB026F705316DBEB0C529EBA2C556BC8BF87F0686694E9897C5569E6EB775F5CF47CC3C782CA275A05BE9E0F1F3A7D549D6ED42BCEB1E8CB4&dp-logid=43502600175912480010&page=1&num=20&by=name&order=asc&site_referer=&scene=purchased_list&shorturl=CdjAXlai_BSgrgOd4RzKGw&root=1

210.148.85.59

200 OK

620 B

URL GET HTTP/1.1
www.1024tera.com/share/list?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=D3C37627130569246165C304671DC55431E49E13F2CA93C8B3ECE892D9166DDD90D894098E8C225BB026F705316DBEB0C529EBA2C556BC8BF87F0686694E9897C5569E6EB775F5CF47CC3C782CA275A05BE9E0F1F3A7D549D6ED42BCEB1E8CB4&dp-logid=43502600175912480010&page=1&num=20&by=name&order=asc&site_referer=&scene=purchased_list&shorturl=CdjAXlai_BSgrgOd4RzKGw&root=1
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with very long lines (1977), with no line terminators
Size
620 B (620 bytes)
Hash
1f511ed461fc8e170a30a06f03c4b71a
bc1fecd4b8f1bd35c77a1f902710e3e62c544d57
c863637da1b5a0929e60939718f0f8fcb8184d60389febdac527dcba4246b260

HTTP Headers

GET /share/list?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=D3C37627130569246165C304671DC55431E49E13F2CA93C8B3ECE892D9166DDD90D894098E8C225BB026F705316DBEB0C529EBA2C556BC8BF87F0686694E9897C5569E6EB775F5CF47CC3C782CA275A05BE9E0F1F3A7D549D6ED42BCEB1E8CB4&dp-logid=43502600175912480010&page=1&num=20&by=name&order=asc&site_referer=&scene=purchased_list&shorturl=CdjAXlai_BSgrgOd4RzKGw&root=1 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej; browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; lang=en; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; __bid_n=18c150826f3eec17074207
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Encoding: gzip
Content-Type: application/json; charset=UTF-8
Date: Tue, 28 Nov 2023 08:25:04 GMT
Flow-Level: 3
Logid: 8845611650527012980
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8845611650527012980
Yme: ZIGW+Ss3QEsVdTcEUmr/tG1MvuUfTgDrqANOySKDm+msCQNyMkcz
Transfer-Encoding: chunked

www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-06ZNKL8C2E&cid=1591449470.1701159908&gtm=45je3b81v875375078&aip=1&dma=1&dma_cps=sypham&gcd=11l1l1l1l1&z=1305151337

142.250.74.163

200 OK

42 B

URL GET HTTP/2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-06ZNKL8C2E&cid=1591449470.1701159908&gtm=45je3b81v875375078&aip=1&dma=1&dma_cps=sypham&gcd=11l1l1l1l1&z=1305151337
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.no
Fingerprint6E:E4:BC:4A:67:5E:46:6A:B3:E4:CA:61:A7:C0:97:AB:14:F0:34:32
ValidityMon, 23 Oct 2023 11:27:27 GMT - Mon, 15 Jan 2024 11:27:26 GMT

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-06ZNKL8C2E&cid=1591449470.1701159908&gtm=45je3b81v875375078&aip=1&dma=1&dma_cps=sypham&gcd=11l1l1l1l1&z=1305151337 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 28 Nov 2023 08:25:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.1024tera.com/share/querysurltransfer?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=D3C37627130569246165C304671DC55431E49E13F2CA93C8B3ECE892D9166DDD90D894098E8C225BB026F705316DBEB0C529EBA2C556BC8BF87F0686694E9897C5569E6EB775F5CF47CC3C782CA275A05BE9E0F1F3A7D549D6ED42BCEB1E8CB4&dp-logid=43502600175912480011&bdstoken=

210.148.85.59

200 OK

85 B

URL POST HTTP/1.1
www.1024tera.com/share/querysurltransfer?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=D3C37627130569246165C304671DC55431E49E13F2CA93C8B3ECE892D9166DDD90D894098E8C225BB026F705316DBEB0C529EBA2C556BC8BF87F0686694E9897C5569E6EB775F5CF47CC3C782CA275A05BE9E0F1F3A7D549D6ED42BCEB1E8CB4&dp-logid=43502600175912480011&bdstoken=
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text
Size
85 B (85 bytes)
Hash
38709855d8f9cbcf6a77856ffc5df4b4
154cabb46a0b439f45f52f2902aa095b1b17aec1
a4dd847144f27842911c64359c92f793fe6c33029f750c6ec5ff1d4ab553bbb5

HTTP Headers

POST /share/querysurltransfer?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=D3C37627130569246165C304671DC55431E49E13F2CA93C8B3ECE892D9166DDD90D894098E8C225BB026F705316DBEB0C529EBA2C556BC8BF87F0686694E9897C5569E6EB775F5CF47CC3C782CA275A05BE9E0F1F3A7D549D6ED42BCEB1E8CB4&dp-logid=43502600175912480011&bdstoken= HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
X-Requested-With: XMLHttpRequest
Content-Length: 32
Origin: https://www.1024tera.com
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej; browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; lang=en; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; __bid_n=18c150826f3eec17074207
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Encoding: gzip
Content-Type: application/json; charset=UTF-8
Date: Tue, 28 Nov 2023 08:25:04 GMT
Flow-Level: 3
Http-X-Isis-Logid: 8845611813673429106
Logid: 8845611813673429106
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
Vary: Accept-Encoding
Yld: 8845611813673429106
Yme: ZIGW+Ss3QE0WaisCSHb+qnFLufkASwb3tAJNwCqBmO63EN59
Content-Length: 85

s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/img/logo.2a229dfa.svg

90.84.161.20

200 OK

1.7 kB

URL GET HTTP/2
s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/img/logo.2a229dfa.svg
IP
90.84.161.20:443
ASN
#0

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert Inc
Subject*.teraboxcdn.com
Fingerprint4C:36:32:B9:A0:68:F6:C2:A7:95:E4:E6:DA:DA:D7:AF:7A:C3:41:44
ValidityTue, 28 Mar 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1713), with no line terminators
Size
1.7 kB (1713 bytes)
Hash
2a229dfa55348fc84be678f926330616
96ad6e5765a9847fd3f202aad6a88bf95dd9caf1
78055ff5570a46c5904129bfdd26d9cc327feded52e4feca75feaa8e2f180d5b

HTTP Headers

GET /fe-opera-static/node-static-v4/fe-webv4-main/img/logo.2a229dfa.svg HTTP/1.1
Host: s2.teraboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 08:25:04 GMT
content-type: image/svg+xml
content-length: 1713
server: openresty
content-md5: KiKd+lU0j8hL5nj5JjMGFg==
etag: "2a229dfa55348fc84be678f926330616"
expires: Sat, 24 Sep 2022 06:46:17 GMT
last-modified: Wed, 21 Sep 2022 05:03:27 GMT
x-bce-content-crc32: 1353669740
x-bce-debug-id: NAe6EO3wT96ak0qPNr/yE8+RuLbHz64z8I5FDCDIACxRHRvP8Rcs1CH0CzIO18cwCQo293KSx7/0Hh+Zyx0VZQ==
x-bce-request-id: 3ccd90bb-d04d-43f8-a561-47d04dd6edbb
x-bce-restore-cache: -
x-bce-restore-tier: -
x-bce-storage-class: STANDARD
x-ccdn-expires: 1711219
via: EU-GER-frankfurt-EDGE5-CACHE2[2],EU-GER-frankfurt-EDGE5-CACHE2[0,TCP_HIT,0],EU-GER-frankfurt-GLOBAL1-CACHE4[19],EU-GER-frankfurt-GLOBAL1-CACHE14[0,TCP_HIT,17],EA-SGP-GLOBAL1-CACHE17[2],EA-SGP-GLOBAL1-CACHE26[0,TCP_HIT,2]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 2592000
nginx-hit: 1
age: 24209636
accept-ranges: bytes
access-control-allow-origin: *
X-Firefox-Spdy: h2

s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/fonts/yunfont.44acf892.ttf

90.84.161.20

200 OK

23 kB

URL GET HTTP/2
s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/fonts/yunfont.44acf892.ttf
IP
90.84.161.20:443
ASN
#0

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert Inc
Subject*.teraboxcdn.com
Fingerprint4C:36:32:B9:A0:68:F6:C2:A7:95:E4:E6:DA:DA:D7:AF:7A:C3:41:44
ValidityTue, 28 Mar 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT

File type
TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, yunfont \012- data
Size
23 kB (23268 bytes)
Hash
44acf8923466a31680d910d7cc4f0903
351d9f0d3e293ae4c4e4c28e67b09f5ab2a39983
cdec6bbf708df8fbb45cb6c8477254406972c90e28bf1bc7d265b9bd0a403cd9

HTTP Headers

GET /fe-opera-static/node-static-v4/fe-webv4-main/fonts/yunfont.44acf892.ttf HTTP/1.1
Host: s2.teraboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.1024tera.com
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 08:25:05 GMT
content-type: application/x-font-ttf
content-length: 23268
server: openresty
access-control-allow-credentials: true
access-control-allow-methods: GET, HEAD, POST, PUT
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Length, x-bce-next-append-offset, x-bce-object-type, x-bce-request-id
access-control-max-age: 1800
content-md5: RKz4kjRmoxaA2RDXzE8JAw==
etag: "44acf8923466a31680d910d7cc4f0903"
expires: Sat, 24 Sep 2022 06:46:06 GMT
last-modified: Wed, 21 Sep 2022 05:03:25 GMT
x-bce-content-crc32: 848321786
x-bce-debug-id: NAe6EO3wT96ak0qPNr/yE8+RuLbHz64z8I5FDCDIACz1r140/OGU/0+MbMDWT1zTJqrTz/6OyWkOTO54TO+RgQ==
x-bce-request-id: bdfcbbdf-effe-4bb4-b741-0cdb160927f7
x-bce-restore-cache: -
x-bce-restore-tier: -
x-bce-storage-class: STANDARD
x-ccdn-expires: 975308
via: EU-GER-frankfurt-EDGE5-CACHE1[4],EU-GER-frankfurt-EDGE5-CACHE5[0,TCP_HIT,0],EU-GER-frankfurt-GLOBAL1-CACHE14[6],EU-GER-frankfurt-GLOBAL1-CACHE12[0,TCP_HIT,3],EA-SGP-GLOBAL1-CACHE11[3],EA-SGP-GLOBAL1-CACHE24[0,TCP_HIT,2]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 2592000
nginx-hit: 1
age: 4208782
accept-ranges: bytes
X-Firefox-Spdy: h2

www.1024tera.com/api/analytics?errno=-6&newno=&request_id=8845611813673429000&show_msg=&hasError=true&data=%7B%22sid%22%3A4102813857%2C%22suk%22%3A4400171669767%7D&params=%7B%22bdstoken%22%3A%22%22%7D&uk=0&type=%2Fshare%2Fquerysurltransfer_interface_error&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159908625

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?errno=-6&newno=&request_id=8845611813673429000&show_msg=&hasError=true&data=%7B%22sid%22%3A4102813857%2C%22suk%22%3A4400171669767%7D&params=%7B%22bdstoken%22%3A%22%22%7D&uk=0&type=%2Fshare%2Fquerysurltransfer_interface_error&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159908625
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
6181d16ad7ea3292300376ede85e438c
b2b5538b1be5b31f95dd9c6835f2e230b86f479e
21fdc2682d883fa5a91fd44a917bee6a3fdb8827a1df5d1d29167e99ed937cf0

HTTP Headers

GET /api/analytics?errno=-6&newno=&request_id=8845611813673429000&show_msg=&hasError=true&data=%7B%22sid%22%3A4102813857%2C%22suk%22%3A4400171669767%7D&params=%7B%22bdstoken%22%3A%22%22%7D&uk=0&type=%2Fshare%2Fquerysurltransfer_interface_error&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159908625 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej; browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; lang=en; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; __bid_n=18c150826f3eec17074207; _ga_06ZNKL8C2E=GS1.1.1701159908.1.0.1701159908.60.0.0; _ga=GA1.1.1591449470.1701159908
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Tue, 28 Nov 2023 08:25:04 GMT
Flow-Level: 3
Logid: 8845611896270357978
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8845611896270357978
Yme: ZIGW+Ss3QE0XaysNTnb+qnFLufkASwb1tAJOwiqBmOS1ETVrZWrrRv0kYDY=
Content-Length: 44

www.1024tera.com/api/analytics?type=web_share_filelist_key_way&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159908628

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?type=web_share_filelist_key_way&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159908628
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
fa9cbf3d42614d4c03eb4b4424204407
16e404c3d7973d48b752c1e7f7f7b2fcd0b8841e
6795ee093173d7bd9dcdedc6a0d1adcc5070eec9d4a7fb99aa7c77347a2919fd

HTTP Headers

GET /api/analytics?type=web_share_filelist_key_way&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159908628 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej; browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; lang=en; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; __bid_n=18c150826f3eec17074207; _ga_06ZNKL8C2E=GS1.1.1701159908.1.0.1701159908.60.0.0; _ga=GA1.1.1591449470.1701159908
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Tue, 28 Nov 2023 08:25:04 GMT
Flow-Level: 3
Logid: 8845611908372129911
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8845611908372129911
Yme: ZIGW+Ss3QE0WaisHTHb+qnFLufkASwb2tAJNwSqBmO60EA1rbyVrho9AZTY=
Content-Length: 44

www.1024tera.com/api/analytics?value=8330&type=web_sharing_link_tti&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159908629

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?value=8330&type=web_sharing_link_tti&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159908629
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
174d4ee8790c8f056151c684a9bde2a3
721dea2ecc1a86c2528e2ce27eed8049faaa021e
0c7ad189c63c5d3345f09f48248b191cd709de6fd20f3ec23642899dd29b5d06

HTTP Headers

GET /api/analytics?value=8330&type=web_sharing_link_tti&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159908629 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej; browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; lang=en; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; __bid_n=18c150826f3eec17074207; _ga_06ZNKL8C2E=GS1.1.1701159908.1.0.1701159908.60.0.0; _ga=GA1.1.1591449470.1701159908
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Tue, 28 Nov 2023 08:25:04 GMT
Flow-Level: 3
Logid: 8845611906481745047
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8845611906481745047
Yme: ZIGW+Ss3QEsWdTcGUmr/tG1MvuUYQxzxrApNwymGhKOxfRU=
Content-Length: 44

region1.analytics.google.com/g/collect?v=2&tid=G-06ZNKL8C2E&gtm=45je3b81v875375078&_p=1701159908138&_gaz=1&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=1591449470.1701159908&ul=en-us&sr=1280x1024&_s=1&sid=1701159908&sct=1&seg=0&dl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&dt=Sexy%20Babe%20With%20Her%20Boyfriend%202(1)(1).mp4%20-%20Share%20Files%20Online%20%26%20Send%20Larges%20Files%20with%20TeraBox&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&ep.origin=firebase&tfd=8065

216.239.32.36

204 No Content

0 B

URL POST HTTP/2
region1.analytics.google.com/g/collect?v=2&tid=G-06ZNKL8C2E&gtm=45je3b81v875375078&_p=1701159908138&_gaz=1&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=1591449470.1701159908&ul=en-us&sr=1280x1024&_s=1&sid=1701159908&sct=1&seg=0&dl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&dt=Sexy%20Babe%20With%20Her%20Boyfriend%202(1)(1).mp4%20-%20Share%20Files%20Online%20%26%20Send%20Larges%20Files%20with%20TeraBox&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&ep.origin=firebase&tfd=8065
IP
216.239.32.36:443
ASN
#15169 GOOGLE

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-06ZNKL8C2E&gtm=45je3b81v875375078&_p=1701159908138&_gaz=1&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=1591449470.1701159908&ul=en-us&sr=1280x1024&_s=1&sid=1701159908&sct=1&seg=0&dl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&dt=Sexy%20Babe%20With%20Her%20Boyfriend%202(1)(1).mp4%20-%20Share%20Files%20Online%20%26%20Send%20Larges%20Files%20with%20TeraBox&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&ep.origin=firebase&tfd=8065 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.1024tera.com
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://www.1024tera.com
date: Tue, 28 Nov 2023 08:25:05 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.1024tera.com/api/analytics?type=web_no_ad_share_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159908727

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?type=web_no_ad_share_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159908727
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
8d3d2ca28c9a8c609ee299e59cbb6285
3cc9da14e8029a20c43aa04ca7f8b16d96b93075
651f7ccd6247307f32e0f5b22f2ef566ab6020aeb77d7a845c5e8f5331a0f18e

HTTP Headers

GET /api/analytics?type=web_no_ad_share_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159908727 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej; browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; lang=en; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; __bid_n=18c150826f3eec17074207; _ga_06ZNKL8C2E=GS1.1.1701159908.1.0.1701159908.60.0.0; _ga=GA1.1.1591449470.1701159908
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Tue, 28 Nov 2023 08:25:05 GMT
Flow-Level: 3
Logid: 8845611926201254942
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8845611926201254942
Yme: ZIGW+Ss3QE0WaSsGRnb+qnFLufkASwb8tAFLxiqBmOu1Nd19
Content-Length: 44

region1.analytics.google.com/g/collect?v=2&tid=G-06ZNKL8C2E&gtm=45je3b81v875375078&_p=1701159908138&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=1591449470.1701159908&ul=en-us&sr=1280x1024&sid=1701159908&sct=1&seg=0&dl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&dt=Sexy%20Babe%20With%20Her%20Boyfriend%202(1)(1).mp4%20-%20Share%20Files%20Online%20%26%20Send%20Larges%20Files%20with%20TeraBox&_s=2&tfd=8127

216.239.32.36

204 No Content

0 B

URL POST HTTP/2
region1.analytics.google.com/g/collect?v=2&tid=G-06ZNKL8C2E&gtm=45je3b81v875375078&_p=1701159908138&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=1591449470.1701159908&ul=en-us&sr=1280x1024&sid=1701159908&sct=1&seg=0&dl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&dt=Sexy%20Babe%20With%20Her%20Boyfriend%202(1)(1).mp4%20-%20Share%20Files%20Online%20%26%20Send%20Larges%20Files%20with%20TeraBox&_s=2&tfd=8127
IP
216.239.32.36:443
ASN
#15169 GOOGLE

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-06ZNKL8C2E&gtm=45je3b81v875375078&_p=1701159908138&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=1591449470.1701159908&ul=en-us&sr=1280x1024&sid=1701159908&sct=1&seg=0&dl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&dt=Sexy%20Babe%20With%20Her%20Boyfriend%202(1)(1).mp4%20-%20Share%20Files%20Online%20%26%20Send%20Larges%20Files%20with%20TeraBox&_s=2&tfd=8127 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1733
Origin: https://www.1024tera.com
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
access-control-allow-origin: https://www.1024tera.com
date: Tue, 28 Nov 2023 08:25:05 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.1024tera.com/api/analytics?type=web_no_ad_share_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159908728

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?type=web_no_ad_share_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159908728
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
768d28ca0c64ebc9b4ee0e969265c944
324c00f99acbfb1c1364dde2c77b843b46f4a957
cf2a6064764da71839f4d811a455508f1996a75069e794dfc12186ec76b7a4bb

HTTP Headers

GET /api/analytics?type=web_no_ad_share_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159908728 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej; browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; lang=en; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; __bid_n=18c150826f3eec17074207; _ga_06ZNKL8C2E=GS1.1.1701159908.1.0.1701159908.60.0.0; _ga=GA1.1.1591449470.1701159908
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Tue, 28 Nov 2023 08:25:05 GMT
Flow-Level: 3
Logid: 8845611927268867479
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8845611927268867479
Yme: ZIGW+Ss3QEsSdTcGUmr/tG1MvuUZShz2rQpNwyCLTA2ahQP/PSfziZkb3A==
Content-Length: 44

www.1024tera.com/api/analytics?type=web_pause_close_share_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159908728

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?type=web_pause_close_share_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159908728
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
f774db4b8085956565f3f8baf965a53b
ab6b5544cf36e193ec42aaf9c1501d99d62904c8
17864e352d9d969783cddab9a70364fd934f8be4e8d5352c8e93457f6028c330

HTTP Headers

GET /api/analytics?type=web_pause_close_share_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159908728 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej; browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; lang=en; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; __bid_n=18c150826f3eec17074207; _ga_06ZNKL8C2E=GS1.1.1701159908.1.0.1701159908.60.0.0; _ga=GA1.1.1591449470.1701159908
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Tue, 28 Nov 2023 08:25:05 GMT
Flow-Level: 3
Logid: 8845611927860689834
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8845611927860689834
Yme: ZIGW+Ss3QE0WaCsHTW7iq29Xvv4cVAPxqB5OxSmJmu2zS3oxVBl3o5D0X3UY
Content-Length: 44

www.1024tera.com/api/analytics?type=play_video_page_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159908728

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?type=play_video_page_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159908728
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
6a96ce6d5515d22013fb9af8a5f6e65d
1562e98307875ed72137b6c1ae58a955473c456d
08d6a0a2470ca822de518b3bd17d8b5c45dd0c4cc6c5af8f04f20073edde1047

HTTP Headers

GET /api/analytics?type=play_video_page_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159908728 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej; browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; lang=en; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; __bid_n=18c150826f3eec17074207; _ga_06ZNKL8C2E=GS1.1.1701159908.1.0.1701159908.60.0.0; _ga=GA1.1.1591449470.1701159908
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Tue, 28 Nov 2023 08:25:05 GMT
Flow-Level: 3
Logid: 8845611929720203084
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8845611929720203084
Yme: ZIGW+Ss3QE0RYysHT27iq29Xvv4cVAPxqR5NwCKJmuy1TSk3R25gU70dfdEY
Content-Length: 44

www.1024tera.com/api/analytics?type=web_share_video_init_rate_1&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159908729

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?type=web_share_video_init_rate_1&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159908729
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
051ce790a3e26795949a2b44586a931a
bd41fe43e8855cf44c32a65c01973e55b2fff389
5c6b4ace0b3adc53a3d1b900b225d5662d07c1ba62bc64165c6f286b5d4d0c39

HTTP Headers

GET /api/analytics?type=web_share_video_init_rate_1&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159908729 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej; browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; lang=en; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; __bid_n=18c150826f3eec17074207; _ga_06ZNKL8C2E=GS1.1.1701159908.1.0.1701159908.60.0.0; _ga=GA1.1.1591449470.1701159908
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Tue, 28 Nov 2023 08:25:05 GMT
Flow-Level: 3
Logid: 8845611933571049571
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8845611933571049571
Yme: ZIGW+Ss3QE0RYysETnb+qnFLufkASwb3tAdIySKDnuvmFg5Bbjmbw9MnDzY=
Content-Length: 44

www.1024tera.com/api/analytics?type=web_share_video_premium_activity_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159908818

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?type=web_share_video_premium_activity_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159908818
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
c009042ab038fc225717eaa928f068e2
021301183c321217673282e934e8b2c62395e14c
f02e6aed479f886288e9bc887a2ff2fb2545f86976e1f532e78da73be211dc35

HTTP Headers

GET /api/analytics?type=web_share_video_premium_activity_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159908818 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej; browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; lang=en; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; __bid_n=18c150826f3eec17074207; _ga_06ZNKL8C2E=GS1.1.1701159908.1.0.1701159908.60.0.0; _ga=GA1.1.1591449470.1701159908
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Tue, 28 Nov 2023 08:25:05 GMT
Flow-Level: 3
Logid: 8845611949023693295
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8845611949023693295
Yme: ZIGW+Ss3QE0WaysHT2jiq29Xvv4cVAPxqx5OxiOJmu21Tg==
Content-Length: 44

www.1024tera.com/api/getsyscfg?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=D3C37627130569246165C304671DC55431E49E13F2CA93C8B3ECE892D9166DDD90D894098E8C225BB026F705316DBEB0C529EBA2C556BC8BF87F0686694E9897C5569E6EB775F5CF47CC3C782CA275A05BE9E0F1F3A7D549D6ED42BCEB1E8CB4&dp-logid=43502600175912480013&cfg_category_keys=%5B%7B%22cfg_category_key%22%3A%22web_video_play_patch_ad_area%22%2C%22cfg_version%22%3A1%7D%2C%7B%22cfg_category_key%22%3A%22web_share_ads_adsterra_config%22%2C%22cfg_version%22%3A1%7D%5D&version=0&language_type=en

210.148.85.59

200 OK

968 B

URL GET HTTP/1.1
www.1024tera.com/api/getsyscfg?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=D3C37627130569246165C304671DC55431E49E13F2CA93C8B3ECE892D9166DDD90D894098E8C225BB026F705316DBEB0C529EBA2C556BC8BF87F0686694E9897C5569E6EB775F5CF47CC3C782CA275A05BE9E0F1F3A7D549D6ED42BCEB1E8CB4&dp-logid=43502600175912480013&cfg_category_keys=%5B%7B%22cfg_category_key%22%3A%22web_video_play_patch_ad_area%22%2C%22cfg_version%22%3A1%7D%2C%7B%22cfg_category_key%22%3A%22web_share_ads_adsterra_config%22%2C%22cfg_version%22%3A1%7D%5D&version=0&language_type=en
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with very long lines (3720), with no line terminators
Size
968 B (968 bytes)
Hash
8522f0ffb0a51271071d503f36ce3d92
d4abc31e07fa439d4ef1187506c9919ff445aa85
7604ae244c5cef88cd0184ebfa220b2589bdcb169b584a562f53c1f398cd0b96

HTTP Headers

GET /api/getsyscfg?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=D3C37627130569246165C304671DC55431E49E13F2CA93C8B3ECE892D9166DDD90D894098E8C225BB026F705316DBEB0C529EBA2C556BC8BF87F0686694E9897C5569E6EB775F5CF47CC3C782CA275A05BE9E0F1F3A7D549D6ED42BCEB1E8CB4&dp-logid=43502600175912480013&cfg_category_keys=%5B%7B%22cfg_category_key%22%3A%22web_video_play_patch_ad_area%22%2C%22cfg_version%22%3A1%7D%2C%7B%22cfg_category_key%22%3A%22web_share_ads_adsterra_config%22%2C%22cfg_version%22%3A1%7D%5D&version=0&language_type=en HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej; browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; lang=en; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; __bid_n=18c150826f3eec17074207; _ga_06ZNKL8C2E=GS1.1.1701159908.1.0.1701159908.60.0.0; _ga=GA1.1.1591449470.1701159908
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Encoding: gzip
Content-Type: application/json; charset=UTF-8
Date: Tue, 28 Nov 2023 08:25:05 GMT
Flow-Level: 3
Logid: 8845611955298948513
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
Vary: Accept-Encoding
X-Powered-By: DuboxServer
Yld: 8845611955298948513
Yme: ZIGW+Ss3QE0WYisHTnb+qnFLufkASwb2tAFIwiqBme+wGpJHTft9BA==
Transfer-Encoding: chunked

www.1024tera.com/api/analytics?isHitCTR=false&type=web_share_CTR_config&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159908885

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?isHitCTR=false&type=web_share_CTR_config&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159908885
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
6b89dd5cc1d0cd86d850a275b585dc04
42fb5905026a9e3066462066777b43872f4306ff
0de8f0cbe466a89f500f96cfba291359a7cebedf4d478014a04db171f702bc56

HTTP Headers

GET /api/analytics?isHitCTR=false&type=web_share_CTR_config&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159908885 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej; browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; lang=en; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; __bid_n=18c150826f3eec17074207; _ga_06ZNKL8C2E=GS1.1.1701159908.1.0.1701159908.60.0.0; _ga=GA1.1.1591449470.1701159908
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Tue, 28 Nov 2023 08:25:05 GMT
Flow-Level: 3
Logid: 8845612016146825227
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8845612016146825227
Yme: ZIGW+Ss3QEsWdTQCUmr/tG1MvuUZShz0owpNwyCBR5RKpRU=
Content-Length: 44

www.1024tera.com/share/webmaster/getplan?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=D3C37627130569246165C304671DC55431E49E13F2CA93C8B3ECE892D9166DDD90D894098E8C225BB026F705316DBEB0C529EBA2C556BC8BF87F0686694E9897C5569E6EB775F5CF47CC3C782CA275A05BE9E0F1F3A7D549D6ED42BCEB1E8CB4&dp-logid=43502600175912480015&suk=4400171669767

210.148.85.59

200 OK

104 B

URL GET HTTP/1.1
www.1024tera.com/share/webmaster/getplan?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=D3C37627130569246165C304671DC55431E49E13F2CA93C8B3ECE892D9166DDD90D894098E8C225BB026F705316DBEB0C529EBA2C556BC8BF87F0686694E9897C5569E6EB775F5CF47CC3C782CA275A05BE9E0F1F3A7D549D6ED42BCEB1E8CB4&dp-logid=43502600175912480015&suk=4400171669767
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text
Size
104 B (104 bytes)
Hash
ddef805c6219b286d76178fde93dfb23
7632ad01def1b4a6f23af08f80abdba51e829fd8
629f5456f8d610c427c74493bcc39ef1789def62a99fc5485886008bd91561a7

HTTP Headers

GET /share/webmaster/getplan?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=D3C37627130569246165C304671DC55431E49E13F2CA93C8B3ECE892D9166DDD90D894098E8C225BB026F705316DBEB0C529EBA2C556BC8BF87F0686694E9897C5569E6EB775F5CF47CC3C782CA275A05BE9E0F1F3A7D549D6ED42BCEB1E8CB4&dp-logid=43502600175912480015&suk=4400171669767 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej; browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; lang=en; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; __bid_n=18c150826f3eec17074207; _ga_06ZNKL8C2E=GS1.1.1701159908.1.0.1701159908.60.0.0; _ga=GA1.1.1591449470.1701159908
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Encoding: gzip
Content-Type: application/json; charset=UTF-8
Date: Tue, 28 Nov 2023 08:25:05 GMT
Flow-Level: 3
Http-X-Isis-Logid: 8845612013062399547
Logid: 8845612013062399547
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
Vary: Accept-Encoding
Yld: 8845612013062399547
Yme: ZIGW+Ss3QE0WaCsNSnb+qnFLufkASwb9tAJNyiqBmO2x
Content-Length: 104

www.1024tera.com/share/mediameta?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=D3C37627130569246165C304671DC55431E49E13F2CA93C8B3ECE892D9166DDD90D894098E8C225BB026F705316DBEB0C529EBA2C556BC8BF87F0686694E9897C5569E6EB775F5CF47CC3C782CA275A05BE9E0F1F3A7D549D6ED42BCEB1E8CB4&dp-logid=43502600175912480016&uk=4400171669767&shareid=4102813857&fid=14058117997788&timestamp=1701159908

210.148.85.59

200 OK

124 B

URL GET HTTP/1.1
www.1024tera.com/share/mediameta?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=D3C37627130569246165C304671DC55431E49E13F2CA93C8B3ECE892D9166DDD90D894098E8C225BB026F705316DBEB0C529EBA2C556BC8BF87F0686694E9897C5569E6EB775F5CF47CC3C782CA275A05BE9E0F1F3A7D549D6ED42BCEB1E8CB4&dp-logid=43502600175912480016&uk=4400171669767&shareid=4102813857&fid=14058117997788&timestamp=1701159908
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text
Size
124 B (124 bytes)
Hash
0dd63404adb98bc0c30b3d7629f367a5
cf5371d82b40c9159423ea4d88d5b99bddc391e1
cff5c684b715f4579c130bb0c241ec95a0b2e7915d4d5e56eb34a58073fc0889

HTTP Headers

GET /share/mediameta?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=D3C37627130569246165C304671DC55431E49E13F2CA93C8B3ECE892D9166DDD90D894098E8C225BB026F705316DBEB0C529EBA2C556BC8BF87F0686694E9897C5569E6EB775F5CF47CC3C782CA275A05BE9E0F1F3A7D549D6ED42BCEB1E8CB4&dp-logid=43502600175912480016&uk=4400171669767&shareid=4102813857&fid=14058117997788&timestamp=1701159908 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej; browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; lang=en; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; __bid_n=18c150826f3eec17074207; _ga_06ZNKL8C2E=GS1.1.1701159908.1.0.1701159908.60.0.0; _ga=GA1.1.1591449470.1701159908
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Encoding: gzip
Content-Type: application/json; charset=UTF-8
Date: Tue, 28 Nov 2023 08:25:05 GMT
Flow-Level: 3
Http-X-Isis-Logid: 8845612011310914023
Logid: 8845612011310914023
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
Vary: Accept-Encoding
Yld: 8845612011310914023
Yme: ZIGW+Ss3QEsXdTEDUmr/tG1MvuUZSBzxqwpNwyOE
Content-Length: 124

region1.analytics.google.com/g/collect?v=2&tid=G-06ZNKL8C2E&gtm=45je3b81v875375078&_p=1701159908138&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=1591449470.1701159908&ul=en-us&sr=1280x1024&_eu=AEA&_s=3&sid=1701159908&sct=1&seg=0&dl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&dt=Sexy%20Babe%20With%20Her%20Boyfriend%202(1)(1).mp4%20-%20Share%20Files%20Online%20%26%20Send%20Larges%20Files%20with%20TeraBox&en=scroll&ep.origin=firebase&epn.percent_scrolled=90&tfd=8531

216.239.32.36

204 No Content

0 B

URL POST HTTP/3
region1.analytics.google.com/g/collect?v=2&tid=G-06ZNKL8C2E&gtm=45je3b81v875375078&_p=1701159908138&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=1591449470.1701159908&ul=en-us&sr=1280x1024&_eu=AEA&_s=3&sid=1701159908&sct=1&seg=0&dl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&dt=Sexy%20Babe%20With%20Her%20Boyfriend%202(1)(1).mp4%20-%20Share%20Files%20Online%20%26%20Send%20Larges%20Files%20with%20TeraBox&en=scroll&ep.origin=firebase&epn.percent_scrolled=90&tfd=8531
IP
216.239.32.36:443
ASN
#15169 GOOGLE

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-06ZNKL8C2E&gtm=45je3b81v875375078&_p=1701159908138&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=1591449470.1701159908&ul=en-us&sr=1280x1024&_eu=AEA&_s=3&sid=1701159908&sct=1&seg=0&dl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&dt=Sexy%20Babe%20With%20Her%20Boyfriend%202(1)(1).mp4%20-%20Share%20Files%20Online%20%26%20Send%20Larges%20Files%20with%20TeraBox&en=scroll&ep.origin=firebase&epn.percent_scrolled=90&tfd=8531 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.1024tera.com
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

HTTP/3 204 No Content
access-control-allow-origin: https://www.1024tera.com
date: Tue, 28 Nov 2023 08:25:05 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.1024tera.com/api/analytics?domId=adsterra&showType=1x2&country=NO&where=pause&type=web_video_ad_adsterra_show_has_document&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159909199

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?domId=adsterra&showType=1x2&country=NO&where=pause&type=web_video_ad_adsterra_show_has_document&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159909199
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
46d800e22a12976310988656f536ee1e
770538695dcceba67052cfebe13d31c4dab33261
1860a34827faef6510001df0791c889dfd644a3e7ffe6a65fc27cfd008323ce0

HTTP Headers

GET /api/analytics?domId=adsterra&showType=1x2&country=NO&where=pause&type=web_video_ad_adsterra_show_has_document&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159909199 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej; browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; lang=en; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; __bid_n=18c150826f3eec17074207; _ga_06ZNKL8C2E=GS1.1.1701159908.1.0.1701159908.60.0.0; _ga=GA1.1.1591449470.1701159908
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Tue, 28 Nov 2023 08:25:05 GMT
Flow-Level: 3
Logid: 8845612052495144728
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8845612052495144728
Yme: ZIGW+Ss3QE0WbysHT3b+qnFLufkASwb3tAdMySKDn+Q=
Content-Length: 44

210.148.85.59

200 OK

15 kB

URL GET HTTP/1.1
www.1024tera.com/api/getsyscfg?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=D3C37627130569246165C304671DC55431E49E13F2CA93C8B3ECE892D9166DDD90D894098E8C225BB026F705316DBEB0C529EBA2C556BC8BF87F0686694E9897C5569E6EB775F5CF47CC3C782CA275A05BE9E0F1F3A7D549D6ED42BCEB1E8CB4&dp-logid=43502600175912480014&language_type=en&cfg_category_keys=%5B%5D&version=0
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Size
15 kB (15116 bytes)
Hash
f0606c67181fc1e1de378b6c8961a19a
fa64eeb29322106bfec59c3c715b9c43cadccd06
527efbd52c14dbd4a9d05ee3e3abfecf3245106742bf986711bbbbc28a6a0807

HTTP Headers

GET /api/getsyscfg?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=D3C37627130569246165C304671DC55431E49E13F2CA93C8B3ECE892D9166DDD90D894098E8C225BB026F705316DBEB0C529EBA2C556BC8BF87F0686694E9897C5569E6EB775F5CF47CC3C782CA275A05BE9E0F1F3A7D549D6ED42BCEB1E8CB4&dp-logid=43502600175912480014&language_type=en&cfg_category_keys=%5B%5D&version=0 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej; browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; lang=en; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; __bid_n=18c150826f3eec17074207; _ga_06ZNKL8C2E=GS1.1.1701159908.1.0.1701159908.60.0.0; _ga=GA1.1.1591449470.1701159908
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Encoding: gzip
Content-Type: application/json; charset=UTF-8
Date: Tue, 28 Nov 2023 08:25:05 GMT
Flow-Level: 3
Logid: 8845612010537041015
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
Vary: Accept-Encoding
X-Powered-By: DuboxServer
Yld: 8845612010537041015
Yme: ZIGW+Ss3QE0WaysHTmriq29Xvv4cVAP2oh5MyiqBmOuy
Transfer-Encoding: chunked

ymg-api.terabox.com/abdr?data=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%3D&_=0.11465106373655565

111.108.51.10

22 B

URL GET
ymg-api.terabox.com/abdr?data=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%3D&_=0.11465106373655565
IP
111.108.51.10:0
ASN
#2516 KDDI CORPORATION

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert Inc
Subject*.terabox.com
Fingerprint4F:30:79:83:60:E0:58:E8:DA:05:09:38:E1:6D:CD:F9:46:33:D6:5F
ValidityTue, 28 Mar 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
22 B (22 bytes)
Hash
9d4568c009d203ab10e33ea9953a0264
dd29ecf524b030a65261e3059c48ab9e1ecb2585
12ae32cb1ec02d01eda3581b127c1fee3b0dc53572ed6baf239721a03d82e126

HTTP Headers

GET /abdr?data=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%3D&_=0.11465106373655565 HTTP/1.1
Host: ymg-api.terabox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Cookie: ab_jid=707b2309bea42247a1d07a37ccdfb465f134; ab_bid=707b2309bea42247a1d07a37ccdfb465f134; ab_sr=1.0.1_YmY5ZDgyYjJlMzhlZDg5ODdjNjI5Y2VmMjcwYmMxNjdlNjZkYzE2MzYyZWE2NjM2OTY3Mjc4NjM3NDA0OGI4YzczZjZhOTYwY2U3ZDhkYWZiNDQxMzljYzk5NjhjZTgyM2E1ZjY5OGU5MjI2ZDNjNDNiNjNlNTE0M2Q1YzhlOTk5OTI1MjQ5ODU0M2ZmM2JmNjM1NWQ4MGJmYWEzNWYwOQ==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 28 Nov 2023 08:25:05 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
yld: 8845612094211199540
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Origin, Host, Content-Type, x-requested-with, X-Custom-Header
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE
Access-Control-Allow-Origin: https://www.1024tera.com
Access-Control-Max-Age: 3600
P3P: CP=" OTI DSP COR IVA OUR IND COM "
yme: ZIGW+Ss3QE0WaCsESGriq29Xvv4cVAXxtAJIySiEnuzZCRw2YgFiQ5cW26MY
Server: nginx
logid: 8845612094211199540
Flow-level: 3
Content-Encoding: gzip

www.1024tera.com/api/analytics?type=web_no_ad_share_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159909396

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?type=web_no_ad_share_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159909396
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
77ff812e627d9f12c201ee0fd3f6b233
aa8a6a3fbf8e5607849753b26e61dc4c1a1032fa
73cf2ead6d1bfa75a4ddd88887bc9a4b4d24246316241fc17823bcd3d0d1e4c1

HTTP Headers

GET /api/analytics?type=web_no_ad_share_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159909396 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej; browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; lang=en; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; __bid_n=18c150826f3eec17074207; _ga_06ZNKL8C2E=GS1.1.1701159908.1.0.1701159909.59.0.0; _ga=GA1.1.1591449470.1701159908
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Tue, 28 Nov 2023 08:25:05 GMT
Flow-Level: 3
Logid: 8845612104817291581
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8845612104817291581
Yme: ZIGW+Ss3QEoadTcNUmr/tG1MvuUZSxz3rApNwSKKmO2sCQNyMkcz
Content-Length: 44

www.1024tera.com/api/analytics?type=web_skip_share_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159909396

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?type=web_skip_share_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159909396
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
7b2de5c25bc891c0c8da808acc30d89f
54ffefc8cb4822a98a333c89c22268641e7c5c0e
3b78b8a758c01ab418d53d513099e9ea6c7670135924baab8578459b7e9846bd

HTTP Headers

GET /api/analytics?type=web_skip_share_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159909396 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej; browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; lang=en; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; __bid_n=18c150826f3eec17074207; _ga_06ZNKL8C2E=GS1.1.1701159908.1.0.1701159909.59.0.0; _ga=GA1.1.1591449470.1701159908
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Tue, 28 Nov 2023 08:25:05 GMT
Flow-Level: 3
Logid: 8845612102712046046
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8845612102712046046
Yme: ZIGW+Ss3QEsRdTQGUmr/tG1MvuUZShz0qwpNwyCEmezFRlg2QtdJ20TZ3A==
Content-Length: 44

www.1024tera.com/api/getsyscfg?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=D3C37627130569246165C304671DC55431E49E13F2CA93C8B3ECE892D9166DDD90D894098E8C225BB026F705316DBEB0C529EBA2C556BC8BF87F0686694E9897C5569E6EB775F5CF47CC3C782CA275A05BE9E0F1F3A7D549D6ED42BCEB1E8CB4&dp-logid=43502600175912480017&cfg_category_keys=%5B%7B%22cfg_category_key%22%3A%22web_video_play_patch_ad_area%22%2C%22cfg_version%22%3A1%7D%2C%7B%22cfg_category_key%22%3A%22web_share_ads_adsterra_config%22%2C%22cfg_version%22%3A1%7D%5D&version=0&language_type=en

210.148.85.59

200 OK

968 B

URL GET HTTP/1.1
www.1024tera.com/api/getsyscfg?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=D3C37627130569246165C304671DC55431E49E13F2CA93C8B3ECE892D9166DDD90D894098E8C225BB026F705316DBEB0C529EBA2C556BC8BF87F0686694E9897C5569E6EB775F5CF47CC3C782CA275A05BE9E0F1F3A7D549D6ED42BCEB1E8CB4&dp-logid=43502600175912480017&cfg_category_keys=%5B%7B%22cfg_category_key%22%3A%22web_video_play_patch_ad_area%22%2C%22cfg_version%22%3A1%7D%2C%7B%22cfg_category_key%22%3A%22web_share_ads_adsterra_config%22%2C%22cfg_version%22%3A1%7D%5D&version=0&language_type=en
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with very long lines (3720), with no line terminators
Size
968 B (968 bytes)
Hash
bea33160b1cbf84667303d0014d70523
985360a37792dfdf4ab340064456fcd425e6f89a
08877cdab68fe93be6efac8c4472ad864585d8d6a082e1e25cdf4267cee7aa99

HTTP Headers

GET /api/getsyscfg?app_id=250528&web=1&channel=dubox&clienttype=0&jsToken=D3C37627130569246165C304671DC55431E49E13F2CA93C8B3ECE892D9166DDD90D894098E8C225BB026F705316DBEB0C529EBA2C556BC8BF87F0686694E9897C5569E6EB775F5CF47CC3C782CA275A05BE9E0F1F3A7D549D6ED42BCEB1E8CB4&dp-logid=43502600175912480017&cfg_category_keys=%5B%7B%22cfg_category_key%22%3A%22web_video_play_patch_ad_area%22%2C%22cfg_version%22%3A1%7D%2C%7B%22cfg_category_key%22%3A%22web_share_ads_adsterra_config%22%2C%22cfg_version%22%3A1%7D%5D&version=0&language_type=en HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej; browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; lang=en; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; __bid_n=18c150826f3eec17074207; _ga_06ZNKL8C2E=GS1.1.1701159908.1.0.1701159909.59.0.0; _ga=GA1.1.1591449470.1701159908
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Encoding: gzip
Content-Type: application/json; charset=UTF-8
Date: Tue, 28 Nov 2023 08:25:05 GMT
Flow-Level: 3
Logid: 8845612107575543959
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
Vary: Accept-Encoding
X-Powered-By: DuboxServer
Yld: 8845612107575543959
Yme: ZIGW+Ss3QEsRdTQGUmr/tG1MvuUZTxz3rApNwyCAx7P1GgR2LDvrgf81xQ==
Transfer-Encoding: chunked

www.1024tera.com/api/analytics?type=videoplayer_open&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159909435

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?type=videoplayer_open&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159909435
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
77cd3e4d66cc5c843e99e08471820c94
70ef037e6b72233f83d81a6dc5279f3960e3f463
69bb801a1e60a7f6423880d39761aae85dba728f98a39fc7aac18eb0f9676b86

HTTP Headers

GET /api/analytics?type=videoplayer_open&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159909435 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej; browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; lang=en; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; __bid_n=18c150826f3eec17074207; _ga_06ZNKL8C2E=GS1.1.1701159908.1.0.1701159909.59.0.0; _ga=GA1.1.1591449470.1701159908
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Tue, 28 Nov 2023 08:25:05 GMT
Flow-Level: 3
Logid: 8845612115877035847
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8845612115877035847
Yme: ZIGW+Ss3QE0WaSsNTnb+qnFLufkASwb2tAJNySKDneW5R143N2brymOAyzY=
Content-Length: 44

www.1024tera.com/api/analytics?from=shareLink&type=videoplayer_open_key_way&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159909435

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?from=shareLink&type=videoplayer_open_key_way&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159909435
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
37c3469531a5f910a58e05fe2484ecc1
bc180190b309dd2761996c783302f144a23f934c
eed04eec11426c37bd1ab9b920a05ba841d04edff6fd743226a15e9c9610d94d

HTTP Headers

GET /api/analytics?from=shareLink&type=videoplayer_open_key_way&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159909435 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej; browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; lang=en; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; __bid_n=18c150826f3eec17074207; _ga_06ZNKL8C2E=GS1.1.1701159908.1.0.1701159909.59.0.0; _ga=GA1.1.1591449470.1701159908
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Tue, 28 Nov 2023 08:25:05 GMT
Flow-Level: 3
Logid: 8845612116194560343
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8845612116194560343
Yme: ZIGW+Ss3QE0WaSsESmriq29Xvv4cVAP2ox5IxCqBmO62UQAUfg==
Content-Length: 44

pl18043214.highperformancecpmgate.com/5c8996e8e3cb5e10b7fd36115b800ac7/invoke.js

192.243.59.13

200 OK

9.3 kB

URL GET HTTP/1.1
pl18043214.highperformancecpmgate.com/5c8996e8e3cb5e10b7fd36115b800ac7/invoke.js
IP
192.243.59.13:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerLet's Encrypt
Subjecthighperformancecpmgate.com
FingerprintEC:5C:1C:3A:AB:08:18:CE:84:A7:E0:33:D8:44:0B:AF:12:12:CE:C4
ValiditySat, 28 Oct 2023 06:31:01 GMT - Fri, 26 Jan 2024 06:31:00 GMT

File type
Unicode text, UTF-8 text, with very long lines (25118), with no line terminators
Size
9.3 kB (9323 bytes)
Hash
ed4cf617e725c892d7572a3172367149
22170216c9dbd71942664eed419bf2ff2e1f4a4e
c150b248eb867c1717bae28f4bf30a7c1daa6529fdee52fb34fb2a6137c1896c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /5c8996e8e3cb5e10b7fd36115b800ac7/invoke.js HTTP/1.1
Host: pl18043214.highperformancecpmgate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 28 Nov 2023 08:25:06 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: f75d26824342ddddf805d9f7626854e3
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

www.1024tera.com/api/analytics?value=9405&type=web_sharing_link_tti&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159909704

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?value=9405&type=web_sharing_link_tti&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159909704
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
01e92cc82fa2d559b7bebfa39a970da6
5e89ea401277e00649266ac428047724a6a6ee0b
b9cf7ab0f9a38739bf9ca91381cab61ecc7364bc4201bf9577022053d2ba9a05

HTTP Headers

GET /api/analytics?value=9405&type=web_sharing_link_tti&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159909704 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej; browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; lang=en; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; __bid_n=18c150826f3eec17074207; _ga_06ZNKL8C2E=GS1.1.1701159908.1.0.1701159909.59.0.0; _ga=GA1.1.1591449470.1701159908
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Tue, 28 Nov 2023 08:25:05 GMT
Flow-Level: 3
Logid: 8845612186961932282
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8845612186961932282
Yme: ZIGW+Ss3QEsSdTQGUmr/tG1MvuUYQxz3rgpNwyOGkeXEPFo1MY8v+lcx3A==
Content-Length: 44

www.1024tera.com/api/analytics?type=web_share_video_carousel_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159909702

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?type=web_share_video_carousel_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159909702
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
38b469aab907723be9c9e96c3d3e1920
708dc24665c77e801dae4ebcac655a669151d36a
a0adb70742f5ae24824e7086ac29be535e7360e784ac05466455b05248ceb2ab

HTTP Headers

GET /api/analytics?type=web_share_video_carousel_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159909702 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej; browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; lang=en; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; __bid_n=18c150826f3eec17074207; _ga_06ZNKL8C2E=GS1.1.1701159908.1.0.1701159909.59.0.0; _ga=GA1.1.1591449470.1701159908
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Tue, 28 Nov 2023 08:25:06 GMT
Flow-Level: 3
Logid: 8845612186935803218
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8845612186935803218
Yme: ZIGW+Ss3QEsVdTQGUmr/tG1MvuUYQxz0qQpNwyOE
Content-Length: 44

www.1024tera.com/api/analytics?domId=adsterra&showType=1x2&country=NO&where=head&type=web_video_ad_adsterra_show_has_document&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159909796

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?domId=adsterra&showType=1x2&country=NO&where=head&type=web_video_ad_adsterra_show_has_document&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159909796
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
257d84c0632da1d688c72f569c4c125a
a0a70e3587f46e224f1d3534c426ff5763da2066
feecddc4d388025ee1ddbb743c377bfa8474d806bb81ee5abeafe0348017e3f6

HTTP Headers

GET /api/analytics?domId=adsterra&showType=1x2&country=NO&where=head&type=web_video_ad_adsterra_show_has_document&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159909796 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej; browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; lang=en; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; __bid_n=18c150826f3eec17074207; _ga_06ZNKL8C2E=GS1.1.1701159908.1.0.1701159909.59.0.0; _ga=GA1.1.1591449470.1701159908
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Tue, 28 Nov 2023 08:25:06 GMT
Flow-Level: 3
Logid: 8845612212621018553
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8845612212621018553
Yme: ZIGW+Ss3QE0WbysES3b+qnFLufkASwb2tAJPxiqBmOmxcbJ9
Content-Length: 44

www.1024tera.com/share/streaming?uk=4400171669767&shareid=4102813857&type=M3U8_FLV_264_480&fid=14058117997788&sign=b2788eeae911601b25b8db672fa2e7ee6dd71857&timestamp=1701159908&jsToken=D3C37627130569246165C304671DC55431E49E13F2CA93C8B3ECE892D9166DDD90D894098E8C225BB026F705316DBEB0C529EBA2C556BC8BF87F0686694E9897C5569E6EB775F5CF47CC3C782CA275A05BE9E0F1F3A7D549D6ED42BCEB1E8CB4&esl=1&isplayer=1&ehps=1&clienttype=0&app_id=250528&web=1&channel=dubox

210.148.85.59

200 OK

2.8 kB

URL GET HTTP/1.1
www.1024tera.com/share/streaming?uk=4400171669767&shareid=4102813857&type=M3U8_FLV_264_480&fid=14058117997788&sign=b2788eeae911601b25b8db672fa2e7ee6dd71857&timestamp=1701159908&jsToken=D3C37627130569246165C304671DC55431E49E13F2CA93C8B3ECE892D9166DDD90D894098E8C225BB026F705316DBEB0C529EBA2C556BC8BF87F0686694E9897C5569E6EB775F5CF47CC3C782CA275A05BE9E0F1F3A7D549D6ED42BCEB1E8CB4&esl=1&isplayer=1&ehps=1&clienttype=0&app_id=250528&web=1&channel=dubox
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
M3U playlist, ASCII text, with very long lines (887)
Size
2.8 kB (2769 bytes)
Hash
f745156becd285bcfa102d46d3dccb67
42af2c2ef168e7340bf64ad9b11178331170f302
6495d087bfb469c6708678876195e6fbbdfd18af76c13480df1d9a7f6b4232c8

HTTP Headers

GET /share/streaming?uk=4400171669767&shareid=4102813857&type=M3U8_FLV_264_480&fid=14058117997788&sign=b2788eeae911601b25b8db672fa2e7ee6dd71857&timestamp=1701159908&jsToken=D3C37627130569246165C304671DC55431E49E13F2CA93C8B3ECE892D9166DDD90D894098E8C225BB026F705316DBEB0C529EBA2C556BC8BF87F0686694E9897C5569E6EB775F5CF47CC3C782CA275A05BE9E0F1F3A7D549D6ED42BCEB1E8CB4&esl=1&isplayer=1&ehps=1&clienttype=0&app_id=250528&web=1&channel=dubox HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej; browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; lang=en; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; __bid_n=18c150826f3eec17074207; _ga_06ZNKL8C2E=GS1.1.1701159908.1.0.1701159909.59.0.0; _ga=GA1.1.1591449470.1701159908
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Type: application/x-mpegURL;charset=utf-8
Date: Tue, 28 Nov 2023 08:25:06 GMT
Flow-Level: 3
Http-X-Isis-Logid: 8845612197304369368
Logid: 8845612197304369368
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
Yld: 8845612197304369368
Yme: ZIGW+Ss3QEsSdTYGUmr/tG1MvuUZSBzxqgpNwyGCnevlSQkxNmcIWDU83A==
Transfer-Encoding: chunked

www.1024tera.com/api/analytics?type=videoplayer_play_btn_click&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159909831

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?type=videoplayer_play_btn_click&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159909831
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
ba7da5d2d6493183763d48dd6c9851d8
c8582610ad3e5bbd938da369d9c519a938a946eb
2eba896e1f9ece5726ea23ceb4c1242304726ef83baa36f03fe06cbe60f95ef3

HTTP Headers

GET /api/analytics?type=videoplayer_play_btn_click&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159909831 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej; browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; lang=en; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; __bid_n=18c150826f3eec17074207; _ga_06ZNKL8C2E=GS1.1.1701159908.1.0.1701159909.59.0.0; _ga=GA1.1.1591449470.1701159908
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Tue, 28 Nov 2023 08:25:06 GMT
Flow-Level: 3
Logid: 8845612223432018827
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8845612223432018827
Yme: ZIGW+Ss3QE0WaisHTW7iq29Xvv4cVAPxoh5NwSGJmu22TQ==
Content-Length: 44

ocsp.r2m03.amazontrust.com/

54.230.218.11

471 B

URL
ocsp.r2m03.amazontrust.com/
IP
54.230.218.11:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
ab08b21b37480bf609deaf73dcbf1e34
4121333c3a37ff481b30918ce3a1aa643cf813c2
d8c99d9c9d12731615d29afd9aba86e213ce6c7dfb8938334de50d3edfd78fcd

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Tue, 28 Nov 2023 08:25:06 GMT
Last-Modified: Tue, 28 Nov 2023 08:05:30 GMT
Server: ECAcc (ska/F6BD)
X-Cache: Miss from cloudfront
Via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: kKhRjMuUrhiXrc1ck1gRAaVpwTOSUELFGjb9_om2fHSQLI3t4hcsfw==
Age: 1176

proftrafficcounter.com/stats

18.185.201.157

200 OK

40 B

URL GET HTTP/2
proftrafficcounter.com/stats
IP
18.185.201.157:443
ASN
#16509 AMAZON-02

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
8226217e54eb575fafe8933fa1d49714
c369fffb14c1f9fa0d157d4a987bd0b9ad9aaa27
69e4410d6f3c01074e9d1736e07e3d32afcff2cadd7a8153933e51962529fbb3

HTTP Headers

GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.1024tera.com
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 28 Nov 2023 08:25:06 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.1024tera.com
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=80b67b4f-2e33-4fa3-9692-bf3c587c288b:2:1; expires=Fri, 25 Nov 2033 08:25:06 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

pl18427035.highcpmrevenuenetwork.com/627e2f8a423975bc4bd7a76128c2d552/invoke.js

173.233.137.36

200 OK

9.3 kB

URL GET HTTP/1.1
pl18427035.highcpmrevenuenetwork.com/627e2f8a423975bc4bd7a76128c2d552/invoke.js
IP
173.233.137.36:443
ASN
#7979 SERVERS-COM

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerLet's Encrypt
Subjecthighcpmrevenuenetwork.com
FingerprintEE:67:85:23:95:09:5B:1B:88:45:C2:65:23:64:81:DD:65:D4:15:14
ValidityThu, 19 Oct 2023 06:40:46 GMT - Wed, 17 Jan 2024 06:40:45 GMT

File type
Unicode text, UTF-8 text, with very long lines (25118), with no line terminators
Size
9.3 kB (9324 bytes)
Hash
d5c3bb05276d17256923e07a2b2ec6e6
04757bd87db3bb17bc4cf5f228472febdd75e277
948c14d7ee1c5a21b92c8cad1d16bcd8bdfed2eae1074e2e694827f0f6f8502a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /627e2f8a423975bc4bd7a76128c2d552/invoke.js HTTP/1.1
Host: pl18427035.highcpmrevenuenetwork.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 28 Nov 2023 08:25:06 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 2e1af0b19c69081c7c0272a1992902fa
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

joblouder.com/ntv.json?key=5c8996e8e3cb5e10b7fd36115b800ac7&vstc=1

173.233.137.44

200 OK

4.2 kB

URL GET HTTP/1.1
joblouder.com/ntv.json?key=5c8996e8e3cb5e10b7fd36115b800ac7&vstc=1
IP
173.233.137.44:443
ASN
#7979 SERVERS-COM

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerLet's Encrypt
Subjectjoblouder.com
Fingerprint30:FD:12:BB:38:60:1D:88:0D:67:03:0F:82:44:A4:FB:76:96:FD:83
ValiditySat, 25 Nov 2023 07:50:03 GMT - Fri, 23 Feb 2024 07:50:02 GMT

File type
JSON data\012- , ASCII text, with very long lines (4234), with no line terminators
Size
4.2 kB (4234 bytes)
Hash
1e5617fd502bd38e4240f4491f9727bb
5734940c1da8c89c755fd3e8a3be691dc8bef358
efacffe69d29ce4f9ead1424c84dd5efca90b1962767a33d19f5408a22499f32

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ntv.json?key=5c8996e8e3cb5e10b7fd36115b800ac7&vstc=1 HTTP/1.1
Host: joblouder.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.1024tera.com
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 28 Nov 2023 08:25:06 GMT
Content-Type: application/json
Content-Length: 4234
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.1024tera.com
Access-Control-Allow-Origin: https://www.1024tera.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=17942715; expires=Wed, 29 Nov 2023 08:25:06 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 29 Nov 2023 08:25:06 GMT; secure; SameSite=None
uncs=1; expires=Wed, 29 Nov 2023 08:25:06 GMT; secure; SameSite=None
pdhtkv49=true; expires=Wed, 29 Nov 2023 08:25:06 GMT; secure; SameSite=None
uncs49=1; expires=Wed, 29 Nov 2023 08:25:06 GMT; secure; SameSite=None
nlec5c8996e8e3cb5e10b7fd36115b800ac7=[2019380]; expires=Tue, 28 Nov 2023 08:25:11 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 5a7a8ff3c31bdc6a30c12dabf2dc7df3
Strict-Transport-Security: max-age=0; includeSubdomains

joblouder.com/1e/1b/bd/1e1bbdc937ccd35cd1897b4e58c7407b.js

173.233.137.44

200 OK

23 kB

URL GET HTTP/1.1
joblouder.com/1e/1b/bd/1e1bbdc937ccd35cd1897b4e58c7407b.js
IP
173.233.137.44:443
ASN
#7979 SERVERS-COM

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerLet's Encrypt
Subjectjoblouder.com
Fingerprint30:FD:12:BB:38:60:1D:88:0D:67:03:0F:82:44:A4:FB:76:96:FD:83
ValiditySat, 25 Nov 2023 07:50:03 GMT - Fri, 23 Feb 2024 07:50:02 GMT

File type
ASCII text, with very long lines (59632), with no line terminators
Size
23 kB (23354 bytes)
Hash
620d6c2369df96efcd2c85cddd0b7653
1b5b9d68556401cc32914b7c71bfd975144d1b19
55326059cc11d37ce7d2fff0975a60de0a80c96e23cf02562f966cd4013da318

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /1e/1b/bd/1e1bbdc937ccd35cd1897b4e58c7407b.js HTTP/1.1
Host: joblouder.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 28 Nov 2023 08:25:06 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 95f79d393e2b2fccfdc5ed3a836db54c
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

joblouder.com/f1/95/e5/f195e5fa577c23352666448243864c68.js

173.233.137.44

200 OK

15 kB

URL GET HTTP/1.1
joblouder.com/f1/95/e5/f195e5fa577c23352666448243864c68.js
IP
173.233.137.44:443
ASN
#7979 SERVERS-COM

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerLet's Encrypt
Subjectjoblouder.com
Fingerprint30:FD:12:BB:38:60:1D:88:0D:67:03:0F:82:44:A4:FB:76:96:FD:83
ValiditySat, 25 Nov 2023 07:50:03 GMT - Fri, 23 Feb 2024 07:50:02 GMT

File type
ASCII text, with very long lines (42771), with no line terminators
Size
15 kB (15429 bytes)
Hash
b228cdce4a274b434d3d315c61a8069b
409bb9cb30bf5566a88568bb6746aadb0b309946
ccd5c1158b3cf90f8104e6faf8950201829fe41dd3fd19522f816813e9c2240d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /f1/95/e5/f195e5fa577c23352666448243864c68.js HTTP/1.1
Host: joblouder.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 28 Nov 2023 08:25:06 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 5939403e847dec98dc4f9d7b068eeb92
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

joblouder.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRuu3s13%2BFYQdvXiRfsiqMike2Y6M%2BMii3GNBGMSd1dyrl89KVPd1VR1T09yCi7IHmdv6qnzTLJBN4h7FkEmgi4BMXNZcjAH%2FwVh8SiTDIy%2BUPW%2BTz3v4Xnet77YK85JgIKerX9sdpTWdD6qBf4bGyoVpnT%2B6j0%2FDGrBTX9DpQvNm35%2FctneO2EQ1YI3%2FQ8l3zLz9SAMgjAI%2FSVlZWz68xcsVHbUCWudoNas18Koib79L3aFB0c9iN45uQElxv%2FbfPoEio%2BQJt%2Fflm4rN9nbHySFprmx6InDT9Ot1JQpklkZWw9xejjthnFjQr68ApMeTh3A9PYnDsDUmHjPQrD0cCoTrHdwqZRpyBRMvICyN4LUIyg6Ajf3ocQpAbjA6hrS5NGqsSXdvmTphB2Tued%2FQZVjMvfHy0iT7xa16vt3jS5yZVKHflxB9UdQ3RGy4hj5jgdVHoPnn0OJ38j88xWkyf6a0wZKVBfulRpBxSNoOQB1HorJUR6K2EOReUjEmU%2BjThwErZjFjUa7yTlvNDiP2gsiEo1mOw5Q8Im8AfJsAK4H4HYXmd3Flnp4Gt2ALX6C26zghAeXj4n3yS56okIpCUpHUFKCUhGUOUHZqw6EdnVXPRLaFSyc5vo0N6qhybt79MDkXZmSveycXJ%2BMxrv%2B6w%2FYkmd%2BxNudzoJsywZnkQwD1opFYyEMI9YOAspbcKqCclcu3O6oMXmtfxWZGpP%2Ft47A6DGcPgZXV0GLELQctuoB6Oaw2Q6wkz7OpaXM9GvcJBCmQpbPId%2F29vQ5eeViQ6%2F%2B3oTkJ7d%2BufZuNnx2DdxWyGyFz9TPBF39YHjHlGT%2FjikdebKW5SpRO3Syvbs5zeXVbz%2BS26WxYvm2G3zzHp8Qk%2FLonnT5Ck2FSruOPF5UQki7ZCyX5MdltyHZeuE2FwubFtnK%2BvtLy0lmpXPKpCNQdbr2N7gak7nXX7r4ly%2BevgVlR7BFhaQ4IdOAMsfg2S5cNlPvDIHVsx6WeSiLamjrbPaoFYGWM0xZBfcvzGb1nnuArvVA8%2FtIkwo9W6GnK1A9gCuuDfPMntx6%2BtUkvgbT3pBp6%2B0zbfXDy9E6debLKA5iGdQlizssbtFAdOJmh9FOKFssoiFyN5Zy%2BOc%2FAAAA%2F%2F8BAAD%2F%2F4Nmxr9vBAAA

173.233.137.44

200 OK

7 B

URL GET HTTP/1.1
joblouder.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRuu3s13%2BFYQdvXiRfsiqMike2Y6M%2BMii3GNBGMSd1dyrl89KVPd1VR1T09yCi7IHmdv6qnzTLJBN4h7FkEmgi4BMXNZcjAH%2FwVh8SiTDIy%2BUPW%2BTz3v4Xnet77YK85JgIKerX9sdpTWdD6qBf4bGyoVpnT%2B6j0%2FDGrBTX9DpQvNm35%2FctneO2EQ1YI3%2FQ8l3zLz9SAMgjAI%2FSVlZWz68xcsVHbUCWudoNas18Koib79L3aFB0c9iN45uQElxv%2FbfPoEio%2BQJt%2Fflm4rN9nbHySFprmx6InDT9Ot1JQpklkZWw9xejjthnFjQr68ApMeTh3A9PYnDsDUmHjPQrD0cCoTrHdwqZRpyBRMvICyN4LUIyg6Ajf3ocQpAbjA6hrS5NGqsSXdvmTphB2Tued%2FQZVjMvfHy0iT7xa16vt3jS5yZVKHflxB9UdQ3RGy4hj5jgdVHoPnn0OJ38j88xWkyf6a0wZKVBfulRpBxSNoOQB1HorJUR6K2EOReUjEmU%2BjThwErZjFjUa7yTlvNDiP2gsiEo1mOw5Q8Im8AfJsAK4H4HYXmd3Flnp4Gt2ALX6C26zghAeXj4n3yS56okIpCUpHUFKCUhGUOUHZqw6EdnVXPRLaFSyc5vo0N6qhybt79MDkXZmSveycXJ%2BMxrv%2B6w%2FYkmd%2BxNudzoJsywZnkQwD1opFYyEMI9YOAspbcKqCclcu3O6oMXmtfxWZGpP%2Ft47A6DGcPgZXV0GLELQctuoB6Oaw2Q6wkz7OpaXM9GvcJBCmQpbPId%2F29vQ5eeViQ6%2F%2B3oTkJ7d%2BufZuNnx2DdxWyGyFz9TPBF39YHjHlGT%2FjikdebKW5SpRO3Syvbs5zeXVbz%2BS26WxYvm2G3zzHp8Qk%2FLonnT5Ck2FSruOPF5UQki7ZCyX5MdltyHZeuE2FwubFtnK%2BvtLy0lmpXPKpCNQdbr2N7gak7nXX7r4ly%2BevgVlR7BFhaQ4IdOAMsfg2S5cNlPvDIHVsx6WeSiLamjrbPaoFYGWM0xZBfcvzGb1nnuArvVA8%2FtIkwo9W6GnK1A9gCuuDfPMntx6%2BtUkvgbT3pBp6%2B0zbfXDy9E6debLKA5iGdQlizssbtFAdOJmh9FOKFssoiFyN5Zy%2BOc%2FAAAA%2F%2F8BAAD%2F%2F4Nmxr9vBAAA
IP
173.233.137.44:443
ASN
#7979 SERVERS-COM

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerLet's Encrypt
Subjectjoblouder.com
Fingerprint30:FD:12:BB:38:60:1D:88:0D:67:03:0F:82:44:A4:FB:76:96:FD:83
ValiditySat, 25 Nov 2023 07:50:03 GMT - Fri, 23 Feb 2024 07:50:02 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRuu3s13%2BFYQdvXiRfsiqMike2Y6M%2BMii3GNBGMSd1dyrl89KVPd1VR1T09yCi7IHmdv6qnzTLJBN4h7FkEmgi4BMXNZcjAH%2FwVh8SiTDIy%2BUPW%2BTz3v4Xnet77YK85JgIKerX9sdpTWdD6qBf4bGyoVpnT%2B6j0%2FDGrBTX9DpQvNm35%2FctneO2EQ1YI3%2FQ8l3zLz9SAMgjAI%2FSVlZWz68xcsVHbUCWudoNas18Koib79L3aFB0c9iN45uQElxv%2FbfPoEio%2BQJt%2Fflm4rN9nbHySFprmx6InDT9Ot1JQpklkZWw9xejjthnFjQr68ApMeTh3A9PYnDsDUmHjPQrD0cCoTrHdwqZRpyBRMvICyN4LUIyg6Ajf3ocQpAbjA6hrS5NGqsSXdvmTphB2Tued%2FQZVjMvfHy0iT7xa16vt3jS5yZVKHflxB9UdQ3RGy4hj5jgdVHoPnn0OJ38j88xWkyf6a0wZKVBfulRpBxSNoOQB1HorJUR6K2EOReUjEmU%2BjThwErZjFjUa7yTlvNDiP2gsiEo1mOw5Q8Im8AfJsAK4H4HYXmd3Flnp4Gt2ALX6C26zghAeXj4n3yS56okIpCUpHUFKCUhGUOUHZqw6EdnVXPRLaFSyc5vo0N6qhybt79MDkXZmSveycXJ%2BMxrv%2B6w%2FYkmd%2BxNudzoJsywZnkQwD1opFYyEMI9YOAspbcKqCclcu3O6oMXmtfxWZGpP%2Ft47A6DGcPgZXV0GLELQctuoB6Oaw2Q6wkz7OpaXM9GvcJBCmQpbPId%2F29vQ5eeViQ6%2F%2B3oTkJ7d%2BufZuNnx2DdxWyGyFz9TPBF39YHjHlGT%2FjikdebKW5SpRO3Syvbs5zeXVbz%2BS26WxYvm2G3zzHp8Qk%2FLonnT5Ck2FSruOPF5UQki7ZCyX5MdltyHZeuE2FwubFtnK%2BvtLy0lmpXPKpCNQdbr2N7gak7nXX7r4ly%2BevgVlR7BFhaQ4IdOAMsfg2S5cNlPvDIHVsx6WeSiLamjrbPaoFYGWM0xZBfcvzGb1nnuArvVA8%2FtIkwo9W6GnK1A9gCuuDfPMntx6%2BtUkvgbT3pBp6%2B0zbfXDy9E6debLKA5iGdQlizssbtFAdOJmh9FOKFssoiFyN5Zy%2BOc%2FAAAA%2F%2F8BAAD%2F%2F4Nmxr9vBAAA HTTP/1.1
Host: joblouder.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Cookie: u_pl=17942715; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlec5c8996e8e3cb5e10b7fd36115b800ac7=[2019380]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 28 Nov 2023 08:25:06 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: af4ad0f1b05a918a28b361586dae6db7
Strict-Transport-Security: max-age=0; includeSubdomains

v1.1024tera.com/video/netdisk-videotran-tky/cea794088b3a3a85f3e58480ff41f5ce_1138_1_ts/b136f006e54848f1d19f58bb731302a8?ts_size=9888048&app_id=250528&ccn=NO&csl=0&dp-logid=8845612197304369368&fn=Sexy+Babe+With+Her+Boyfriend+2%281%29%281%29.mp4&from_type=3&fsid=14058117997788&isplayer=1&iv=2&logid=8845612197304369368&ouk=4400171669767&r=347549803&size=15528853&sta_cs=3&sta_dt=video&sta_dx=14&time=1701188706&to=any&tot=ctkB7&uo=any&uva=1499419338&vuk=&dtime=10&etag=b136f006e54848f1d19f58bb731302a8&fid=994edd04644c321080372171057cac04-&len=436348&range=2627488-3063835&region=tky&resv4=&sign=BOUTHNF-F3530edecde9cd71b79378b290804a96-lOs7uaObLcmMDiSoQNNxEyB0IZU%253D&xcode=c378f16badf38d94c194cd64d4b3b31a4a8b8586fff5b7e542ef8135ccf337931c91996ae1530a6cf113fa460252a00b0b2977702d3e6764&xv=6&need_suf=&pmk=1400b136f006e54848f1d19f58bb731302a88a04d3ea00000096e130&by=my-streaming

185.207.113.194

200 OK

436 kB

URL GET HTTP/2
v1.1024tera.com/video/netdisk-videotran-tky/cea794088b3a3a85f3e58480ff41f5ce_1138_1_ts/b136f006e54848f1d19f58bb731302a8?ts_size=9888048&app_id=250528&ccn=NO&csl=0&dp-logid=8845612197304369368&fn=Sexy+Babe+With+Her+Boyfriend+2%281%29%281%29.mp4&from_type=3&fsid=14058117997788&isplayer=1&iv=2&logid=8845612197304369368&ouk=4400171669767&r=347549803&size=15528853&sta_cs=3&sta_dt=video&sta_dx=14&time=1701188706&to=any&tot=ctkB7&uo=any&uva=1499419338&vuk=&dtime=10&etag=b136f006e54848f1d19f58bb731302a8&fid=994edd04644c321080372171057cac04-&len=436348&range=2627488-3063835&region=tky&resv4=&sign=BOUTHNF-F3530edecde9cd71b79378b290804a96-lOs7uaObLcmMDiSoQNNxEyB0IZU%253D&xcode=c378f16badf38d94c194cd64d4b3b31a4a8b8586fff5b7e542ef8135ccf337931c91996ae1530a6cf113fa460252a00b0b2977702d3e6764&xv=6&need_suf=&pmk=1400b136f006e54848f1d19f58bb731302a88a04d3ea00000096e130&by=my-streaming
IP
185.207.113.194:443
ASN
#21859 ZEN-ECN

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
data
Size
436 kB (436348 bytes)
Hash
6e1e3efe0f73fddaa5374ea18b1aee43
7488ed8a3ff8d9fb991cc9dd26a8384edcfa812e
37fc71cdd5418778339392c8c32e9b918b8283cc47ef339667838ee7e5450a3a

HTTP Headers

GET /video/netdisk-videotran-tky/cea794088b3a3a85f3e58480ff41f5ce_1138_1_ts/b136f006e54848f1d19f58bb731302a8?ts_size=9888048&app_id=250528&ccn=NO&csl=0&dp-logid=8845612197304369368&fn=Sexy+Babe+With+Her+Boyfriend+2%281%29%281%29.mp4&from_type=3&fsid=14058117997788&isplayer=1&iv=2&logid=8845612197304369368&ouk=4400171669767&r=347549803&size=15528853&sta_cs=3&sta_dt=video&sta_dx=14&time=1701188706&to=any&tot=ctkB7&uo=any&uva=1499419338&vuk=&dtime=10&etag=b136f006e54848f1d19f58bb731302a8&fid=994edd04644c321080372171057cac04-&len=436348&range=2627488-3063835&region=tky&resv4=&sign=BOUTHNF-F3530edecde9cd71b79378b290804a96-lOs7uaObLcmMDiSoQNNxEyB0IZU%253D&xcode=c378f16badf38d94c194cd64d4b3b31a4a8b8586fff5b7e542ef8135ccf337931c91996ae1530a6cf113fa460252a00b0b2977702d3e6764&xv=6&need_suf=&pmk=1400b136f006e54848f1d19f58bb731302a88a04d3ea00000096e130&by=my-streaming HTTP/1.1
Host: v1.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.1024tera.com
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: Zen/2.7
date: Tue, 28 Nov 2023 08:25:06 GMT
content-type: application/octet-stream
content-length: 436348
strict-transport-security: max-age=31536000; preload
cache-control: max-age=259200
etag: b136f006e54848f1d19f58bb731302a8
x-bs-client-ip: MTA0LjI4LjE5NS4yMDE=
x-bs-request-id: MTAuMjUyLjE1MC43OToyMDI1Ojc1NDMzMTg5MDgwNDIzNTYxNzc6MjAyMy0xMS0yMiAwNTo1MDo1Mg==
x-bs-file-size: 9888048
x-bs-meta-crc32: 2315572202
access-control-expose-headers: Accept-Ranges, Content-Range, Content-Length, ETag, x-bs-request-id
access-control-allow-origin: https://www.1024tera.com
last-modified: Mon, 07 Nov 2022 23:45:11 GMT
access-control-allow-credentials: true
access-control-allow-methods: HEAD, GET, OPTIONS, PUT, POST, DELETE
access-control-allow-headers: Range, Origin, Content-Type, Accept, Content-Length
content-md5: b136f006e54848f1d19f58bb731302a8
superfile: 0
accept-ranges: bytes
age: 0
via: https/1.1 JP.TYO.837.P.230.89 (Cache-6.1.14), http/1.1 DE.FRA5.837.E.113.194 (Cache-6.1.15)
hittype: TCP_MISS
cache-server: ZenCache
X-Firefox-Spdy: h2

joblouder.com/ntv.json?key=627e2f8a423975bc4bd7a76128c2d552&vstc=2&uuid=80b67b4f-2e33-4fa3-9692-bf3c587c288b%3A2%3A1&custom=%7B%22d37e3bc4%22%3A%22a%22%7D

173.233.137.44

200 OK

8.6 kB

URL GET HTTP/1.1
joblouder.com/ntv.json?key=627e2f8a423975bc4bd7a76128c2d552&vstc=2&uuid=80b67b4f-2e33-4fa3-9692-bf3c587c288b%3A2%3A1&custom=%7B%22d37e3bc4%22%3A%22a%22%7D
IP
173.233.137.44:443
ASN
#7979 SERVERS-COM

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerLet's Encrypt
Subjectjoblouder.com
Fingerprint30:FD:12:BB:38:60:1D:88:0D:67:03:0F:82:44:A4:FB:76:96:FD:83
ValiditySat, 25 Nov 2023 07:50:03 GMT - Fri, 23 Feb 2024 07:50:02 GMT

File type
JSON data\012- , ASCII text, with very long lines (8640), with no line terminators
Size
8.6 kB (8640 bytes)
Hash
dc3ad150fc0990fa9fb250afa665a70d
85b84132b4c27ed77c787bf17e9eec379a4320ac
3c67167a1634819ea99136c0820e39ced02af5bd6dc55460d5ec24003d01a1a3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ntv.json?key=627e2f8a423975bc4bd7a76128c2d552&vstc=2&uuid=80b67b4f-2e33-4fa3-9692-bf3c587c288b%3A2%3A1&custom=%7B%22d37e3bc4%22%3A%22a%22%7D HTTP/1.1
Host: joblouder.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.1024tera.com
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 28 Nov 2023 08:25:06 GMT
Content-Type: application/json
Content-Length: 8640
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.1024tera.com
Access-Control-Allow-Origin: https://www.1024tera.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=18326536; expires=Wed, 29 Nov 2023 08:25:06 GMT; secure; SameSite=None
uid_id2=80b67b4f-2e33-4fa3-9692-bf3c587c288b:2:1; expires=Tue, 05 Dec 2023 08:25:06 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 29 Nov 2023 08:25:06 GMT; secure; SameSite=None
uncs=1; expires=Wed, 29 Nov 2023 08:25:06 GMT; secure; SameSite=None
pdhtkv49=true; expires=Wed, 29 Nov 2023 08:25:06 GMT; secure; SameSite=None
uncs49=1; expires=Wed, 29 Nov 2023 08:25:06 GMT; secure; SameSite=None
nlec627e2f8a423975bc4bd7a76128c2d552=[2106764,2229212]; expires=Tue, 28 Nov 2023 08:25:11 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: e3dbc68749e279626f75abbbd4a113dc
Strict-Transport-Security: max-age=0; includeSubdomains

banquetunarmedgrater.com/advertisers.js

104.21.86.121

200 OK

0 B

URL GET HTTP/2
banquetunarmedgrater.com/advertisers.js
IP
104.21.86.121:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerGoogle Trust Services LLC
Subjectbanquetunarmedgrater.com
Fingerprint92:8E:AD:72:AC:AD:3B:21:99:CD:21:A0:9F:BD:F2:AF:0D:98:D8:57
ValidityThu, 09 Nov 2023 11:40:15 GMT - Wed, 07 Feb 2024 11:40:14 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /advertisers.js HTTP/1.1
Host: banquetunarmedgrater.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 28 Nov 2023 08:25:07 GMT
content-type: application/javascript
content-length: 0
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=172800
x-request-id: 091ee599ef36ebcc640aa6ca8d3a2522
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: STALE
age: 2
last-modified: Tue, 28 Nov 2023 08:25:05 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=s386OPUunNq4KknbP1eIBGk3hAf7TEDMZr8W62boiwsErUqs2vR091Rd6jjgDZsE7KEZ4zNIZ5EEJev%2F2FDUekck2WS5OMvP3kYpgWt0uFgPXh7l4M60yEImAIwIga1XXeKC%2FM13fAaA4OI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82d137eaf9cb5690-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

joblouder.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSzWsd1Rs%2Bk%2BYH%2FelCWgQRXYyiomBu5jNzr10Ua60Ua1PaStfna5JjzswZzpm5k2bVWpAuuoiu1NXkuWmjNRT7Byhy46YUhNyNBDQLd66F4lJuGoi%2Bi3nfZ5538TzPez7baPZJgIbuXfrIrCmt6XzaC%2Fw3r6lSmNb5F6%2F6YdALTvnXVLmQnPJXpx87fCcM0l7wlv%2BB5CtmPgrCIAiD0D%2BnrMzN6vwBC1VtD8LeIOglUS9ME6za%2F2LXeHDUgxjuk5NQYvK%2F5UcPofgYZfH9WelWalO9%2FX7RaFobi6HY%2BrhcKU1bojgac%2BshL7cOt2HchJAvZ2DKrUMHMMPNqQMwNSHeryFYuXUoE2x496lSpiFLMPEs2uEYUo%2Bh6Bjc3IISuwTgAhcXURb3Lhrb0utPWTplJ2T2yV9Q7YTM%2Fv48yuLBGa1W%2FStGN7UypcNq3kGtjqGWxqiaHdRrHlS7A15%2FCiV%2BIfNPLqAsNhedNlBi77V%2BwBYyluRzkYzjuSSn8dxgYRDNsTzmaT%2FjUb%2FPDiJSagyVj6HlOqibQeM8NMpDk3toKg%2BF2PNpOsiDIMtZHsf9hHMex5yn%2FQWRijjp5wEaPvWwjrpaB9fr4PYGKnvzGxFnMmY82aBYUZ%2Fvpidhm5%2Fgljs44cHVBEPRoZUErSNoKUGrCNqaoB12d4V2kevuCe0aFh726LDH3cjUSxv0rqmXZEk2qn1yYhqj98LmcazIPX8hymSU92kSxYMsZTxhIqPZQhj1eSTSNIJTHZSbAXUe1tSEvPLSHVRqQv6fbYPRHTi9A65OgDYhaDvKogB0eZT0A6yV22EQJbW0tMdNAWE6VPUs6uveht4nLx6c03%2F9DiR%2FfPr%2By9vHwzf%2BBLcdKtvhE%2FUzwZK%2BPbpsWrJ52bSOPFysalWoNTo99ZWa1vLY%2FQ%2Fl9dZYcf6sW%2F%2F2XT4lpuP2VenqC7QUqlxy5LszSghpzxnLJfnhvLsm2aXGLZ9pbNlUFy69d%2B58UVnpnDLlGFTtLv4NriZk9uaPB4%2F4uckDKDuGbToUzWNyWFBmB7y6AVcdqXeGwOqjHVZ5aJtuZCN29FMrAi2PMGUd3L8wO5o33G0s2RnQ%2BhbKosPQdhjqDlSvwzXPjOrKPj796KtpfQ2mZ0ZM25lNpq3%2B4iDaCXn12G9was%2BXaR7kMogkywcsz2ggBnkyYHQQyoylNETtJlKO%2FvgHAAD%2F%2FwEAAP%2F%2Fmcy9JKEEAAA%3D

173.233.137.44

200 OK

7 B

URL GET HTTP/1.1
joblouder.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSzWsd1Rs%2Bk%2BYH%2FelCWgQRXYyiomBu5jNzr10Ua60Ua1PaStfna5JjzswZzpm5k2bVWpAuuoiu1NXkuWmjNRT7Byhy46YUhNyNBDQLd66F4lJuGoi%2Bi3nfZ5538TzPez7baPZJgIbuXfrIrCmt6XzaC%2Fw3r6lSmNb5F6%2F6YdALTvnXVLmQnPJXpx87fCcM0l7wlv%2BB5CtmPgrCIAiD0D%2BnrMzN6vwBC1VtD8LeIOglUS9ME6za%2F2LXeHDUgxjuk5NQYvK%2F5UcPofgYZfH9WelWalO9%2FX7RaFobi6HY%2BrhcKU1bojgac%2BshL7cOt2HchJAvZ2DKrUMHMMPNqQMwNSHeryFYuXUoE2x496lSpiFLMPEs2uEYUo%2Bh6Bjc3IISuwTgAhcXURb3Lhrb0utPWTplJ2T2yV9Q7YTM%2Fv48yuLBGa1W%2FStGN7UypcNq3kGtjqGWxqiaHdRrHlS7A15%2FCiV%2BIfNPLqAsNhedNlBi77V%2BwBYyluRzkYzjuSSn8dxgYRDNsTzmaT%2FjUb%2FPDiJSagyVj6HlOqibQeM8NMpDk3toKg%2BF2PNpOsiDIMtZHsf9hHMex5yn%2FQWRijjp5wEaPvWwjrpaB9fr4PYGKnvzGxFnMmY82aBYUZ%2Fvpidhm5%2Fgljs44cHVBEPRoZUErSNoKUGrCNqaoB12d4V2kevuCe0aFh726LDH3cjUSxv0rqmXZEk2qn1yYhqj98LmcazIPX8hymSU92kSxYMsZTxhIqPZQhj1eSTSNIJTHZSbAXUe1tSEvPLSHVRqQv6fbYPRHTi9A65OgDYhaDvKogB0eZT0A6yV22EQJbW0tMdNAWE6VPUs6uveht4nLx6c03%2F9DiR%2FfPr%2By9vHwzf%2BBLcdKtvhE%2FUzwZK%2BPbpsWrJ52bSOPFysalWoNTo99ZWa1vLY%2FQ%2Fl9dZYcf6sW%2F%2F2XT4lpuP2VenqC7QUqlxy5LszSghpzxnLJfnhvLsm2aXGLZ9pbNlUFy69d%2B58UVnpnDLlGFTtLv4NriZk9uaPB4%2F4uckDKDuGbToUzWNyWFBmB7y6AVcdqXeGwOqjHVZ5aJtuZCN29FMrAi2PMGUd3L8wO5o33G0s2RnQ%2BhbKosPQdhjqDlSvwzXPjOrKPj796KtpfQ2mZ0ZM25lNpq3%2B4iDaCXn12G9was%2BXaR7kMogkywcsz2ggBnkyYHQQyoylNETtJlKO%2FvgHAAD%2F%2FwEAAP%2F%2Fmcy9JKEEAAA%3D
IP
173.233.137.44:443
ASN
#7979 SERVERS-COM

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerLet's Encrypt
Subjectjoblouder.com
Fingerprint30:FD:12:BB:38:60:1D:88:0D:67:03:0F:82:44:A4:FB:76:96:FD:83
ValiditySat, 25 Nov 2023 07:50:03 GMT - Fri, 23 Feb 2024 07:50:02 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSzWsd1Rs%2Bk%2BYH%2FelCWgQRXYyiomBu5jNzr10Ua60Ua1PaStfna5JjzswZzpm5k2bVWpAuuoiu1NXkuWmjNRT7Byhy46YUhNyNBDQLd66F4lJuGoi%2Bi3nfZ5538TzPez7baPZJgIbuXfrIrCmt6XzaC%2Fw3r6lSmNb5F6%2F6YdALTvnXVLmQnPJXpx87fCcM0l7wlv%2BB5CtmPgrCIAiD0D%2BnrMzN6vwBC1VtD8LeIOglUS9ME6za%2F2LXeHDUgxjuk5NQYvK%2F5UcPofgYZfH9WelWalO9%2FX7RaFobi6HY%2BrhcKU1bojgac%2BshL7cOt2HchJAvZ2DKrUMHMMPNqQMwNSHeryFYuXUoE2x496lSpiFLMPEs2uEYUo%2Bh6Bjc3IISuwTgAhcXURb3Lhrb0utPWTplJ2T2yV9Q7YTM%2Fv48yuLBGa1W%2FStGN7UypcNq3kGtjqGWxqiaHdRrHlS7A15%2FCiV%2BIfNPLqAsNhedNlBi77V%2BwBYyluRzkYzjuSSn8dxgYRDNsTzmaT%2FjUb%2FPDiJSagyVj6HlOqibQeM8NMpDk3toKg%2BF2PNpOsiDIMtZHsf9hHMex5yn%2FQWRijjp5wEaPvWwjrpaB9fr4PYGKnvzGxFnMmY82aBYUZ%2Fvpidhm5%2Fgljs44cHVBEPRoZUErSNoKUGrCNqaoB12d4V2kevuCe0aFh726LDH3cjUSxv0rqmXZEk2qn1yYhqj98LmcazIPX8hymSU92kSxYMsZTxhIqPZQhj1eSTSNIJTHZSbAXUe1tSEvPLSHVRqQv6fbYPRHTi9A65OgDYhaDvKogB0eZT0A6yV22EQJbW0tMdNAWE6VPUs6uveht4nLx6c03%2F9DiR%2FfPr%2By9vHwzf%2BBLcdKtvhE%2FUzwZK%2BPbpsWrJ52bSOPFysalWoNTo99ZWa1vLY%2FQ%2Fl9dZYcf6sW%2F%2F2XT4lpuP2VenqC7QUqlxy5LszSghpzxnLJfnhvLsm2aXGLZ9pbNlUFy69d%2B58UVnpnDLlGFTtLv4NriZk9uaPB4%2F4uckDKDuGbToUzWNyWFBmB7y6AVcdqXeGwOqjHVZ5aJtuZCN29FMrAi2PMGUd3L8wO5o33G0s2RnQ%2BhbKosPQdhjqDlSvwzXPjOrKPj796KtpfQ2mZ0ZM25lNpq3%2B4iDaCXn12G9was%2BXaR7kMogkywcsz2ggBnkyYHQQyoylNETtJlKO%2FvgHAAD%2F%2FwEAAP%2F%2Fmcy9JKEEAAA%3D HTTP/1.1
Host: joblouder.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Cookie: u_pl=18326536; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlec5c8996e8e3cb5e10b7fd36115b800ac7=[2019380]; uid_id2=80b67b4f-2e33-4fa3-9692-bf3c587c288b:2:1; nlec627e2f8a423975bc4bd7a76128c2d552=[2106764,2229212]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 28 Nov 2023 08:25:07 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: f979c7064520533134629b24c8528317
Strict-Transport-Security: max-age=0; includeSubdomains

joblouder.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2sdVRi98xqh6sYWQUQXT1FRMC%2FzM%2FOeXRRrrRRrU9pK1%2FfXJNfcmTvcO%2FMmzaq1Il10EV2pq8l5aaM1iP0DFHlxU4pC30YCmoU710JxKS8NPP0W831nzrc453z30816n%2Fio6d6FD8y60pouJD2%2F%2B%2FoVVQjTuO75y93A7%2FknuldUsRif6K5NP3b4VuAnPf%2BN7nuSr5qF0A98P%2FCD7hllZWbWFg5YqHJnEPQGfi8Oe0ESY83%2BH7vag6MexHCfHIcSkydW7t%2BD4mMU%2BfenpVutTPnmu3mtaWUshmL7w2K1ME2BfDZm1kNWbB9uw7gJIV90YIrtQwcww62pAzA1Id5vAVixfSgTbHj7sVKmIQsw8TSa4RhSj6HoGNzcgBIPCcAFzi%2BhyO%2BcN7ahVx%2BzdMpOyNyjv6GaCZn741kU%2BXentFrrXjK6rpQpHNayFmptDLU8Rlnvolr3oJpd8OpjKPErWXh0DkW%2BteS0gRJ7r%2FR9tpiyOJsPZRTNxxmN5geLg3CeZRFP%2BikP%2B312EJFSY6hsDC03QF0HtfNQKw915qEuPeRir0uTQeb7acayKOrHnPMo4jzpL4pERHE%2F81HzqYcNVOUGuN4At9dQ2utfiyiVEePxJsWq%2Buxhchy2%2FglupYUTHlxFMBQtGknQOIKGEjSKoKkImmF7W2gXuvaO0K5mwWEPD3vUjky1vElvm2pZFmSz3CfHpjF6z20dxarc6y6GqQyzPo3DaJAmjMdMpDRdDMI%2BD0WShHCqhXIdUOdhXU3ISy%2FcQqkm5Ml0B4zuwuldcHUMtA5Am1Ea%2BqAro7jvY73YCfwwrqSlPW5yCNOirOZQXfU29T55%2FuCcLx%2F5HZI%2FOHn3xZ2jwWt%2FgdsWpW3xkfqZYFnfHF00Ddm6aBpH7i2VlcrVOp2e%2BlJFK3nk7vvyamOsOHvabXzzNp8S03HnsnTVOVoIVSw78u0pJYS0Z4zlkvxw1l2R7ELtVk7VtqjLcxfeOXM2L610TpliDKoeLv0DriZk7vqPB4%2F4mV8%2BgbJj2LpFXj8ghwVldsHLa3DlTL0zBFbPdljZQVO3Ixuy2U%2BtCLScYcpauP9gNps33U0s2w5odQNF3mJoWwx1C6o34OqnRlVpH5y8%2F%2BW0vgLTnRHTtrPFtNWfT0j31VuP83VqryuTzM%2BkH0qWDViWUl8MsnjA6CCQKUtogMpNpBz9%2BS8AAAD%2F%2FwEAAP%2F%2FppRZt6EEAAA%3D

173.233.137.44

200 OK

7 B

URL GET HTTP/1.1
joblouder.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2sdVRi98xqh6sYWQUQXT1FRMC%2FzM%2FOeXRRrrRRrU9pK1%2FfXJNfcmTvcO%2FMmzaq1Il10EV2pq8l5aaM1iP0DFHlxU4pC30YCmoU710JxKS8NPP0W831nzrc453z30816n%2Fio6d6FD8y60pouJD2%2F%2B%2FoVVQjTuO75y93A7%2FknuldUsRif6K5NP3b4VuAnPf%2BN7nuSr5qF0A98P%2FCD7hllZWbWFg5YqHJnEPQGfi8Oe0ESY83%2BH7vag6MexHCfHIcSkydW7t%2BD4mMU%2BfenpVutTPnmu3mtaWUshmL7w2K1ME2BfDZm1kNWbB9uw7gJIV90YIrtQwcww62pAzA1Id5vAVixfSgTbHj7sVKmIQsw8TSa4RhSj6HoGNzcgBIPCcAFzi%2BhyO%2BcN7ahVx%2BzdMpOyNyjv6GaCZn741kU%2BXentFrrXjK6rpQpHNayFmptDLU8Rlnvolr3oJpd8OpjKPErWXh0DkW%2BteS0gRJ7r%2FR9tpiyOJsPZRTNxxmN5geLg3CeZRFP%2BikP%2B312EJFSY6hsDC03QF0HtfNQKw915qEuPeRir0uTQeb7acayKOrHnPMo4jzpL4pERHE%2F81HzqYcNVOUGuN4At9dQ2utfiyiVEePxJsWq%2Buxhchy2%2FglupYUTHlxFMBQtGknQOIKGEjSKoKkImmF7W2gXuvaO0K5mwWEPD3vUjky1vElvm2pZFmSz3CfHpjF6z20dxarc6y6GqQyzPo3DaJAmjMdMpDRdDMI%2BD0WShHCqhXIdUOdhXU3ISy%2FcQqkm5Ml0B4zuwuldcHUMtA5Am1Ea%2BqAro7jvY73YCfwwrqSlPW5yCNOirOZQXfU29T55%2FuCcLx%2F5HZI%2FOHn3xZ2jwWt%2FgdsWpW3xkfqZYFnfHF00Ddm6aBpH7i2VlcrVOp2e%2BlJFK3nk7vvyamOsOHvabXzzNp8S03HnsnTVOVoIVSw78u0pJYS0Z4zlkvxw1l2R7ELtVk7VtqjLcxfeOXM2L610TpliDKoeLv0DriZk7vqPB4%2F4mV8%2BgbJj2LpFXj8ghwVldsHLa3DlTL0zBFbPdljZQVO3Ixuy2U%2BtCLScYcpauP9gNps33U0s2w5odQNF3mJoWwx1C6o34OqnRlVpH5y8%2F%2BW0vgLTnRHTtrPFtNWfT0j31VuP83VqryuTzM%2BkH0qWDViWUl8MsnjA6CCQKUtogMpNpBz9%2BS8AAAD%2F%2FwEAAP%2F%2FppRZt6EEAAA%3D
IP
173.233.137.44:443
ASN
#7979 SERVERS-COM

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerLet's Encrypt
Subjectjoblouder.com
Fingerprint30:FD:12:BB:38:60:1D:88:0D:67:03:0F:82:44:A4:FB:76:96:FD:83
ValiditySat, 25 Nov 2023 07:50:03 GMT - Fri, 23 Feb 2024 07:50:02 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz2sdVRi98xqh6sYWQUQXT1FRMC%2FzM%2FOeXRRrrRRrU9pK1%2FfXJNfcmTvcO%2FMmzaq1Il10EV2pq8l5aaM1iP0DFHlxU4pC30YCmoU710JxKS8NPP0W831nzrc453z30816n%2Fio6d6FD8y60pouJD2%2F%2B%2FoVVQjTuO75y93A7%2FknuldUsRif6K5NP3b4VuAnPf%2BN7nuSr5qF0A98P%2FCD7hllZWbWFg5YqHJnEPQGfi8Oe0ESY83%2BH7vag6MexHCfHIcSkydW7t%2BD4mMU%2BfenpVutTPnmu3mtaWUshmL7w2K1ME2BfDZm1kNWbB9uw7gJIV90YIrtQwcww62pAzA1Id5vAVixfSgTbHj7sVKmIQsw8TSa4RhSj6HoGNzcgBIPCcAFzi%2BhyO%2BcN7ahVx%2BzdMpOyNyjv6GaCZn741kU%2BXentFrrXjK6rpQpHNayFmptDLU8Rlnvolr3oJpd8OpjKPErWXh0DkW%2BteS0gRJ7r%2FR9tpiyOJsPZRTNxxmN5geLg3CeZRFP%2BikP%2B312EJFSY6hsDC03QF0HtfNQKw915qEuPeRir0uTQeb7acayKOrHnPMo4jzpL4pERHE%2F81HzqYcNVOUGuN4At9dQ2utfiyiVEePxJsWq%2Buxhchy2%2FglupYUTHlxFMBQtGknQOIKGEjSKoKkImmF7W2gXuvaO0K5mwWEPD3vUjky1vElvm2pZFmSz3CfHpjF6z20dxarc6y6GqQyzPo3DaJAmjMdMpDRdDMI%2BD0WShHCqhXIdUOdhXU3ISy%2FcQqkm5Ml0B4zuwuldcHUMtA5Am1Ea%2BqAro7jvY73YCfwwrqSlPW5yCNOirOZQXfU29T55%2FuCcLx%2F5HZI%2FOHn3xZ2jwWt%2FgdsWpW3xkfqZYFnfHF00Ddm6aBpH7i2VlcrVOp2e%2BlJFK3nk7vvyamOsOHvabXzzNp8S03HnsnTVOVoIVSw78u0pJYS0Z4zlkvxw1l2R7ELtVk7VtqjLcxfeOXM2L610TpliDKoeLv0DriZk7vqPB4%2F4mV8%2BgbJj2LpFXj8ghwVldsHLa3DlTL0zBFbPdljZQVO3Ixuy2U%2BtCLScYcpauP9gNps33U0s2w5odQNF3mJoWwx1C6o34OqnRlVpH5y8%2F%2BW0vgLTnRHTtrPFtNWfT0j31VuP83VqryuTzM%2BkH0qWDViWUl8MsnjA6CCQKUtogMpNpBz9%2BS8AAAD%2F%2FwEAAP%2F%2FppRZt6EEAAA%3D HTTP/1.1
Host: joblouder.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Cookie: u_pl=18326536; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; uid_id2=80b67b4f-2e33-4fa3-9692-bf3c587c288b:2:1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 28 Nov 2023 08:25:07 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: e18198e40c0ad926adeeb81d3c1de21e
Strict-Transport-Security: max-age=0; includeSubdomains

data.1024tera.com/thumbnail/cea794088b3a3a85f3e58480ff41f5ce?fid=4400171669767-250528-14058117997788&time=1701158400&rt=sh&sign=FDTAER-DCb740ccc5511e5e8fedcff06b081203-43HO2XU0BYJI%2FcZOD40MmviXO24%3D&expires=8h&chkv=0&chkbd=0&chkpc=&dp-logid=8845611650527012980&dp-callid=0&size=c850_u580&quality=100&vuk=-&ft=video

210.148.85.35

200 OK

29 kB

URL GET HTTP/1.1
data.1024tera.com/thumbnail/cea794088b3a3a85f3e58480ff41f5ce?fid=4400171669767-250528-14058117997788&time=1701158400&rt=sh&sign=FDTAER-DCb740ccc5511e5e8fedcff06b081203-43HO2XU0BYJI%2FcZOD40MmviXO24%3D&expires=8h&chkv=0&chkbd=0&chkpc=&dp-logid=8845611650527012980&dp-callid=0&size=c850_u580&quality=100&vuk=-&ft=video
IP
210.148.85.35:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPCM), density 70x70, segment length 16, baseline, precision 8, 360x480, components 3\012- data
Size
29 kB (28903 bytes)
Hash
52b96423a4adea7e9e1cd3075b901d81
f7f050eed9a54843f42c805bb5b9c8e05b6b492e
c6d9865ef74340fdd7b75513e8437ec3d211bab2720afd75ca493ddc4f5d19b5

HTTP Headers

GET /thumbnail/cea794088b3a3a85f3e58480ff41f5ce?fid=4400171669767-250528-14058117997788&time=1701158400&rt=sh&sign=FDTAER-DCb740ccc5511e5e8fedcff06b081203-43HO2XU0BYJI%2FcZOD40MmviXO24%3D&expires=8h&chkv=0&chkbd=0&chkpc=&dp-logid=8845611650527012980&dp-callid=0&size=c850_u580&quality=100&vuk=-&ft=video HTTP/1.1
Host: data.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Cookie: browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; __bid_n=18c150826f3eec17074207; _ga_06ZNKL8C2E=GS1.1.1701159908.1.0.1701159909.59.0.0; _ga=GA1.1.1591449470.1701159908
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 28 Nov 2023 08:25:06 GMT
Content-Type: image/jpeg
Connection: keep-alive
x-bs-client-ip: OTEuOTAuNDIuMTU0
x-bs-request-id: MTAuMjUyLjc3LjE3OjIyMzU6ODg0NTYxMTY1MDUyNzAxMjk4MDoyMDIzLTExLTI4IDE2OjI1OjA2
Content-Length: 28903
Server: TERABOX UI

proceedglad.com/pixel/purst?dl=0&th=0&sc=0&rs=10326&rd=10326&fd=595&bv=23.11.v.8&tmpl=136

192.243.61.227

200 OK

0 B

URL GET HTTP/1.1
proceedglad.com/pixel/purst?dl=0&th=0&sc=0&rs=10326&rd=10326&fd=595&bv=23.11.v.8&tmpl=136
IP
192.243.61.227:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerLet's Encrypt
Subjectproceedglad.com
FingerprintF9:04:D4:C5:64:56:F0:7B:9E:AE:0C:CB:EC:1A:5E:E9:8E:9E:86:E3
ValidityWed, 22 Nov 2023 07:26:18 GMT - Tue, 20 Feb 2024 07:26:17 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/purst?dl=0&th=0&sc=0&rs=10326&rd=10326&fd=595&bv=23.11.v.8&tmpl=136 HTTP/1.1
Host: proceedglad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 28 Nov 2023 08:25:07 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-b20230be.0a893307.js

90.84.161.20

200 OK

41 kB

URL GET HTTP/2
s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-b20230be.0a893307.js
IP
90.84.161.20:443
ASN
#0

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert Inc
Subject*.teraboxcdn.com
Fingerprint4C:36:32:B9:A0:68:F6:C2:A7:95:E4:E6:DA:DA:D7:AF:7A:C3:41:44
ValidityTue, 28 Mar 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT

File type
gzip compressed data, from Unix\012- data
Size
41 kB (41049 bytes)
Hash
130bb1ca28f002173ba37a9cccbedeea
c0b75dc6d7a95c7f52a8b61145abc2af0eb927ee
c431f5506b4b8e661b16cc49232827efd15d8e78071d0484746f15df17bec195

HTTP Headers

GET /fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-b20230be.0a893307.js HTTP/1.1
Host: s2.teraboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 08:25:05 GMT
content-type: application/javascript
server: openresty
content-md5: lkWxCU7mztbQBa5ORv1xRQ==
etag: W/"9645b1094ee6ced6d005ae4e46fd7145"
expires: Thu, 07 Sep 2023 07:34:05 GMT
last-modified: Mon, 04 Sep 2023 04:39:49 GMT
x-bce-content-crc32: 860175862
x-bce-debug-id: YxKaPLFml5ovwtS++EvPw1ID/HiMt+Zhii4NCGGd5BA+u+1ccgAwlYXqpryUmBj7YqU863R0gVkKEFuqafmKAg==
x-bce-flow-control-type: -1
x-bce-is-transition: false
x-bce-request-id: aeea44c1-7e31-4002-a3ac-fcdfed6855de
x-bce-storage-class: STANDARD
x-ccdn-expires: 529868
via: EU-GER-frankfurt-EDGE5-CACHE2[12],EU-GER-frankfurt-EDGE5-CACHE4[0,TCP_HIT,0],EU-GER-frankfurt-GLOBAL1-CACHE5[14],EU-GER-frankfurt-GLOBAL1-CACHE12[0,TCP_HIT,13]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 2592000
nginx-hit: 1
age: 7346592
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

joblouder.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz2sdVRi98xqh6sYWQUQXT1FRMC%2Fz62Xm2UWx1kqxNqWtdH1%2FTXLNnbnDvTNv0qxaK9JFF9GVupqclzZag9g%2FQJEXN6Uo9G0koFm4cy0Ul%2FLSwNNvMd935nyLc853P92s94mPmu5d%2BMCsK63pQr%2Fnd1%2B%2FogphGtc9f7kb%2BD3%2FRPeKKhbjE9216ccO3wr8fs9%2Fo%2Fue5KtmIfQD3w%2F8oHtGWZmZtYUDFqrcGQS9gd%2BLw17Qj7Fm%2F49d7cFRD2K4T45DickTK%2FfvQfExivz709KtVqZ889281rQyFkOx%2FWGxWpimQD4bM%2BshK7YPt2HchJAvOjDF9qEDmOHW1AGYmhDvtwCs2D6UCTa8%2FVgp05AFmHgazXAMqcdQdAxubkCJhwTgAueXUOR3zhvb0KuPWTplJ2Tu0d9QzYTM%2FfEsivy7U1qtdS8ZXVfKFA5rWQu1NoZaHqOsd1Gte1DNLnj1MZT4lSw8Ooci31py2kCJvVdSny0mLM7mQxlF83FGo%2FnB4iCcZ1nE%2B2nCwzRlBxEpNYbKxtByA9R1UDsPtfJQZx7q0kMu9rq0P8h8P8lYFkVpzDmPIs776aLoiyhOMx81n3rYQFVugOsNcHsNpb3%2BtYgSGTEeb1Ksqs8e9o%2FD1j%2FBrbRwwoOrCIaiRSMJGkfQUIJGETQVQTNsbwvtQtfeEdrVLDjs4WGP2pGpljfpbVMty4Jslvvk2DRG77mto1iVe93FMJFhltI4jAZJn%2FGYiYQmi0GY8lD0%2ByGcaqFcB9R5WFcT8tILt1CqCXky2QGju3B6F1wdA60D0GaUhD7oyihOfawXO4EfxpW0tMdNDmFalNUcqqvept4nzx%2Bc8%2BUjv0PyByfvvrhzNHjtL3DborQtPlI%2FEyzrm6OLpiFbF03jyL2lslK5WqfTU1%2BqaCWP3H1fXm2MFWdPu41v3uZTYjruXJauOkcLoYplR749pYSQ9oyxXJIfzrorkl2o3cqp2hZ1ee7CO2fO5qWVzilTjEHVw6V%2FwNWEzF3%2F8eARP%2FPLJ1B2DFu3yOsH5LCgzC54eQ2unKl3hsDq2Q4rO2jqdmRDNvupFYGWM0xZC%2FcfzGbzpruJZdsBrW6gyFsMbYuhbkH1Blz91Kgq7YOT97%2Bc1ldgujNi2na2mLb68wnpvnrrcb5O7XX7QSxTliZcCCa5CJIwSiPfD4WIk4EMBqjcRMrRn%2F8CAAD%2F%2FwEAAP%2F%2FspzXUaEEAAA%3D

173.233.137.44

200 OK

7 B

URL GET HTTP/1.1
joblouder.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz2sdVRi98xqh6sYWQUQXT1FRMC%2Fz62Xm2UWx1kqxNqWtdH1%2FTXLNnbnDvTNv0qxaK9JFF9GVupqclzZag9g%2FQJEXN6Uo9G0koFm4cy0Ul%2FLSwNNvMd935nyLc853P92s94mPmu5d%2BMCsK63pQr%2Fnd1%2B%2FogphGtc9f7kb%2BD3%2FRPeKKhbjE9216ccO3wr8fs9%2Fo%2Fue5KtmIfQD3w%2F8oHtGWZmZtYUDFqrcGQS9gd%2BLw17Qj7Fm%2F49d7cFRD2K4T45DickTK%2FfvQfExivz709KtVqZ889281rQyFkOx%2FWGxWpimQD4bM%2BshK7YPt2HchJAvOjDF9qEDmOHW1AGYmhDvtwCs2D6UCTa8%2FVgp05AFmHgazXAMqcdQdAxubkCJhwTgAueXUOR3zhvb0KuPWTplJ2Tu0d9QzYTM%2FfEsivy7U1qtdS8ZXVfKFA5rWQu1NoZaHqOsd1Gte1DNLnj1MZT4lSw8Ooci31py2kCJvVdSny0mLM7mQxlF83FGo%2FnB4iCcZ1nE%2B2nCwzRlBxEpNYbKxtByA9R1UDsPtfJQZx7q0kMu9rq0P8h8P8lYFkVpzDmPIs776aLoiyhOMx81n3rYQFVugOsNcHsNpb3%2BtYgSGTEeb1Ksqs8e9o%2FD1j%2FBrbRwwoOrCIaiRSMJGkfQUIJGETQVQTNsbwvtQtfeEdrVLDjs4WGP2pGpljfpbVMty4Jslvvk2DRG77mto1iVe93FMJFhltI4jAZJn%2FGYiYQmi0GY8lD0%2ByGcaqFcB9R5WFcT8tILt1CqCXky2QGju3B6F1wdA60D0GaUhD7oyihOfawXO4EfxpW0tMdNDmFalNUcqqvept4nzx%2Bc8%2BUjv0PyByfvvrhzNHjtL3DborQtPlI%2FEyzrm6OLpiFbF03jyL2lslK5WqfTU1%2BqaCWP3H1fXm2MFWdPu41v3uZTYjruXJauOkcLoYplR749pYSQ9oyxXJIfzrorkl2o3cqp2hZ1ee7CO2fO5qWVzilTjEHVw6V%2FwNWEzF3%2F8eARP%2FPLJ1B2DFu3yOsH5LCgzC54eQ2unKl3hsDq2Q4rO2jqdmRDNvupFYGWM0xZC%2FcfzGbzpruJZdsBrW6gyFsMbYuhbkH1Blz91Kgq7YOT97%2Bc1ldgujNi2na2mLb68wnpvnrrcb5O7XX7QSxTliZcCCa5CJIwSiPfD4WIk4EMBqjcRMrRn%2F8CAAD%2F%2FwEAAP%2F%2FspzXUaEEAAA%3D
IP
173.233.137.44:443
ASN
#7979 SERVERS-COM

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerLet's Encrypt
Subjectjoblouder.com
Fingerprint30:FD:12:BB:38:60:1D:88:0D:67:03:0F:82:44:A4:FB:76:96:FD:83
ValiditySat, 25 Nov 2023 07:50:03 GMT - Fri, 23 Feb 2024 07:50:02 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSz2sdVRi98xqh6sYWQUQXT1FRMC%2Fz62Xm2UWx1kqxNqWtdH1%2FTXLNnbnDvTNv0qxaK9JFF9GVupqclzZag9g%2FQJEXN6Uo9G0koFm4cy0Ul%2FLSwNNvMd935nyLc853P92s94mPmu5d%2BMCsK63pQr%2Fnd1%2B%2FogphGtc9f7kb%2BD3%2FRPeKKhbjE9216ccO3wr8fs9%2Fo%2Fue5KtmIfQD3w%2F8oHtGWZmZtYUDFqrcGQS9gd%2BLw17Qj7Fm%2F49d7cFRD2K4T45DickTK%2FfvQfExivz709KtVqZ889281rQyFkOx%2FWGxWpimQD4bM%2BshK7YPt2HchJAvOjDF9qEDmOHW1AGYmhDvtwCs2D6UCTa8%2FVgp05AFmHgazXAMqcdQdAxubkCJhwTgAueXUOR3zhvb0KuPWTplJ2Tu0d9QzYTM%2FfEsivy7U1qtdS8ZXVfKFA5rWQu1NoZaHqOsd1Gte1DNLnj1MZT4lSw8Ooci31py2kCJvVdSny0mLM7mQxlF83FGo%2FnB4iCcZ1nE%2B2nCwzRlBxEpNYbKxtByA9R1UDsPtfJQZx7q0kMu9rq0P8h8P8lYFkVpzDmPIs776aLoiyhOMx81n3rYQFVugOsNcHsNpb3%2BtYgSGTEeb1Ksqs8e9o%2FD1j%2FBrbRwwoOrCIaiRSMJGkfQUIJGETQVQTNsbwvtQtfeEdrVLDjs4WGP2pGpljfpbVMty4Jslvvk2DRG77mto1iVe93FMJFhltI4jAZJn%2FGYiYQmi0GY8lD0%2ByGcaqFcB9R5WFcT8tILt1CqCXky2QGju3B6F1wdA60D0GaUhD7oyihOfawXO4EfxpW0tMdNDmFalNUcqqvept4nzx%2Bc8%2BUjv0PyByfvvrhzNHjtL3DborQtPlI%2FEyzrm6OLpiFbF03jyL2lslK5WqfTU1%2BqaCWP3H1fXm2MFWdPu41v3uZTYjruXJauOkcLoYplR749pYSQ9oyxXJIfzrorkl2o3cqp2hZ1ee7CO2fO5qWVzilTjEHVw6V%2FwNWEzF3%2F8eARP%2FPLJ1B2DFu3yOsH5LCgzC54eQ2unKl3hsDq2Q4rO2jqdmRDNvupFYGWM0xZC%2FcfzGbzpruJZdsBrW6gyFsMbYuhbkH1Blz91Kgq7YOT97%2Bc1ldgujNi2na2mLb68wnpvnrrcb5O7XX7QSxTliZcCCa5CJIwSiPfD4WIk4EMBqjcRMrRn%2F8CAAD%2F%2FwEAAP%2F%2FspzXUaEEAAA%3D HTTP/1.1
Host: joblouder.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Cookie: u_pl=18326536; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; uid_id2=80b67b4f-2e33-4fa3-9692-bf3c587c288b:2:1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 28 Nov 2023 08:25:07 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 141840539807871639297b50a9ae7612
Strict-Transport-Security: max-age=0; includeSubdomains

s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/img/video-fail-bg.b77a1e8a.png

90.84.161.20

200 OK

105 kB

URL GET HTTP/2
s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/img/video-fail-bg.b77a1e8a.png
IP
90.84.161.20:443
ASN
#0

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert Inc
Subject*.teraboxcdn.com
Fingerprint4C:36:32:B9:A0:68:F6:C2:A7:95:E4:E6:DA:DA:D7:AF:7A:C3:41:44
ValidityTue, 28 Mar 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT

File type
PNG image data, 980 x 438, 4-bit colormap, non-interlaced\012- data
Size
105 kB (104817 bytes)
Hash
b77a1e8a238d4e4191ff9e8a80d6d86d
30d6d726f8f3bfac5770d3ba9ac464f36b4c51b3
73af449450a319a9c3b28782e4bfa3ed17e6b5f7c04a834dba21f96dd0f28949

HTTP Headers

GET /fe-opera-static/node-static-v4/fe-webv4-main/img/video-fail-bg.b77a1e8a.png HTTP/1.1
Host: s2.teraboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 08:25:07 GMT
content-type: image/png
content-length: 104817
server: openresty
content-md5: t3oeiiONTkGR/56KgNbYbQ==
etag: "b77a1e8a238d4e4191ff9e8a80d6d86d"
expires: Wed, 15 Feb 2023 22:47:56 GMT
last-modified: Fri, 10 Feb 2023 07:43:39 GMT
x-bce-content-crc32: 4025551842
x-bce-debug-id: GU0GXuuVmHD1E2Z4twTBIaO14v2edTIrZIjjemDK7yWOsY+HCIeciS9bgQOAOSIWMUxPucybY5m7VzvcBt1c3A==
x-bce-request-id: 47c77fdc-17bf-44d4-8c6d-c40c7548a183
x-bce-storage-class: STANDARD
x-ccdn-expires: 1722714
via: EU-GER-frankfurt-EDGE5-CACHE2[3],EU-GER-frankfurt-EDGE5-CACHE1[0,TCP_HIT,1],EU-GER-frankfurt-GLOBAL1-CACHE2[3],EU-GER-frankfurt-GLOBAL1-CACHE8[0,TCP_HIT,2]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 2592000
nginx-hit: 1
age: 24206602
accept-ranges: bytes
access-control-allow-origin: *
X-Firefox-Spdy: h2

friendshipmale.com/sfp.js

104.21.234.33

200 OK

57 kB

URL GET HTTP/2
friendshipmale.com/sfp.js
IP
104.21.234.33:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint08:6F:D8:CB:9E:0C:0A:98:2E:C5:CD:21:8E:0B:76:2B:50:6F:B6:37
ValiditySat, 18 Feb 2023 00:00:00 GMT - Sat, 17 Feb 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Size
57 kB (57249 bytes)
Hash
924e967bca1d599992556a8d139b1c5a
222b09dbf164ddc03d39100fd0524a22018d28b2
ac84c2f8288b59f8e04ba77287ce696052bfeee0d462a566d94dc305df646c95

HTTP Headers

GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 28 Nov 2023 08:25:07 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: ef0ba40bb038946e116e01c801decdf5
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: STALE
age: 1
last-modified: Tue, 28 Nov 2023 08:25:06 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cSD2QsZdSNQ%2Fq2b5WzX8dk9SWzw5Bm7KXFg6i91TmQiQs99mSzAvjO0DNLGY2l9QA7oBho2deyWzP4QIU4mjIgMiuuOeLlWQIdwx7tJI4JPAAsDrQfOxrhHqMIG2bjHUrQQUsvM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82d137ea1c35d95f-HEL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.cloudimagesb.com/cti/28/5d/66/285d66474f8eb1391e6c869128c7a3ea/1628587131.jpg

45.133.44.9

200 OK

29 kB

URL GET HTTP/2
cdn.cloudimagesb.com/cti/28/5d/66/285d66474f8eb1391e6c869128c7a3ea/1628587131.jpg
IP
45.133.44.9:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:EC:C0:22:20:76:60:90:92:4C:5C:F3:AD:17:3C:41:B5:00:25:AF
ValidityThu, 23 Nov 2023 05:00:53 GMT - Wed, 21 Feb 2024 05:00:52 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 320x240, components 3\012- data
Size
29 kB (28852 bytes)
Hash
76f54f42b70d14a6d6bfe2f8b1945265
197daa3737be8968bf39ff28000663c1c17deeb2
c864fde3026e05a2cc34b4348fa4888d3ae44202179277877d082cadd9971abc

HTTP Headers

GET /cti/28/5d/66/285d66474f8eb1391e6c869128c7a3ea/1628587131.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 28 Nov 2023 08:25:07 GMT
content-type: image/jpeg
content-length: 28852
server: nginx/1.21.6
last-modified: Tue, 10 Aug 2021 09:18:59 GMT
etag: "61124483-70b4"
expires: Thu, 30 Nov 2023 08:25:07 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.1024tera.com/api/analytics?domId=adsterra&showType=1x2&country=NO&where=head&type=web_video_ad_adsterra_success_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159910908

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?domId=adsterra&showType=1x2&country=NO&where=head&type=web_video_ad_adsterra_success_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159910908
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
1a4bb35fedd9289609979185415291f9
f9f2e79fb4747440585934af3ca62eac19ba50a7
4b40fa3bd84ea9b8898325a5e14badfdda9168aa95a2d9c60739c8e6bf3d35cc

HTTP Headers

GET /api/analytics?domId=adsterra&showType=1x2&country=NO&where=head&type=web_video_ad_adsterra_success_show&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159910908 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej; browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; lang=en; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; __bid_n=18c150826f3eec17074207; _ga_06ZNKL8C2E=GS1.1.1701159908.1.0.1701159911.57.0.0; _ga=GA1.1.1591449470.1701159908; dom3ic8zudi28v8lr6fgphwffqoz0j6c=80b67b4f-2e33-4fa3-9692-bf3c587c288b%3A2%3A1; m5a4xojbcp2nx3gptmm633qal3gzmadn=joblouder.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Tue, 28 Nov 2023 08:25:07 GMT
Flow-Level: 3
Logid: 8845612582031285938
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8845612582031285938
Yme: ZIGW+Ss3QEsSdTcDUmr/tG1MvuUYQhzxrApNwyaKk7fuFgR2Y0ezHG7w3A==
Content-Length: 44

www.1024tera.com/api/analytics?domId=adsterra&showType=1x2&country=NO&where=head&type=web_video_ad_adsterra_success_show_key_way&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159910909

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?domId=adsterra&showType=1x2&country=NO&where=head&type=web_video_ad_adsterra_success_show_key_way&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159910909
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
2f4c44bd4ebf173f631e834c818a26fe
94131f45a1232eb202fd6d03aac3068595d11c31
5d0abc4c1526137f853727ec05a7accba8b908e74cc256569d3f44869585bdd7

HTTP Headers

GET /api/analytics?domId=adsterra&showType=1x2&country=NO&where=head&type=web_video_ad_adsterra_success_show_key_way&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159910909 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej; browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; lang=en; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; __bid_n=18c150826f3eec17074207; _ga_06ZNKL8C2E=GS1.1.1701159908.1.0.1701159911.57.0.0; _ga=GA1.1.1591449470.1701159908; dom3ic8zudi28v8lr6fgphwffqoz0j6c=80b67b4f-2e33-4fa3-9692-bf3c587c288b%3A2%3A1; m5a4xojbcp2nx3gptmm633qal3gzmadn=joblouder.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Tue, 28 Nov 2023 08:25:07 GMT
Flow-Level: 3
Logid: 8845612582627734938
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8845612582627734938
Yme: ZIGW+Ss3QE0RYisES27iq29Xvv4cVAPxrh5OwSqBmOi5
Content-Length: 44

www.1024tera.com/api/analytics?errno=undefined&errormsg=Unable%20to%20connect%20to%20the%20Internet%2C%20please%20connect%20and%20try%20again&type=videoplayer_error&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159911031

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?errno=undefined&errormsg=Unable%20to%20connect%20to%20the%20Internet%2C%20please%20connect%20and%20try%20again&type=videoplayer_error&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159911031
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
94e0d1106dfdd663d194db53b70f5452
f82a2d005033bce7c71527e44b7045dd07aa23df
2fb95250d0a688468cf7d005bf2e55b453f6faf8dabc6daf59862d50bf2ae92f

HTTP Headers

GET /api/analytics?errno=undefined&errormsg=Unable%20to%20connect%20to%20the%20Internet%2C%20please%20connect%20and%20try%20again&type=videoplayer_error&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159911031 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej; browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; lang=en; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; __bid_n=18c150826f3eec17074207; _ga_06ZNKL8C2E=GS1.1.1701159908.1.0.1701159911.57.0.0; _ga=GA1.1.1591449470.1701159908; dom3ic8zudi28v8lr6fgphwffqoz0j6c=80b67b4f-2e33-4fa3-9692-bf3c587c288b%3A2%3A1; m5a4xojbcp2nx3gptmm633qal3gzmadn=joblouder.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Tue, 28 Nov 2023 08:25:07 GMT
Flow-Level: 3
Logid: 8845612590539966502
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8845612590539966502
Yme: ZIGW+Ss3QE0WbSsETHb+qnFLufkASwH9tAdGySKDkO3kG11gMzM78lsksTY=
Content-Length: 44

www.1024tera.com/api/analytics?type=videoplayer_pause&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159911054

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?type=videoplayer_pause&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159911054
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
b0cd62355ca7d411b6b384d0495c6d9b
1254be133956bfa54636948d423c1f2815b61de4
ca3423a3192bfbc8d40781d00e5ebccd76769543b7c3c0d4af4daa2c38acd859

HTTP Headers

GET /api/analytics?type=videoplayer_pause&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159911054 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej; browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; lang=en; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; __bid_n=18c150826f3eec17074207; _ga_06ZNKL8C2E=GS1.1.1701159908.1.0.1701159911.57.0.0; _ga=GA1.1.1591449470.1701159908; dom3ic8zudi28v8lr6fgphwffqoz0j6c=80b67b4f-2e33-4fa3-9692-bf3c587c288b%3A2%3A1; m5a4xojbcp2nx3gptmm633qal3gzmadn=joblouder.com; pp_main_1e1bbdc937ccd35cd1897b4e58c7407b=1; pp_idelay_1e1bbdc937ccd35cd1897b4e58c7407b=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Tue, 28 Nov 2023 08:25:07 GMT
Flow-Level: 3
Logid: 8845612608520665153
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8845612608520665153
Yme: ZIGW+Ss3QE0WaisHTWriq29Xvv4cVAPxrh5OxiqBmOixKwJ4OR5t
Content-Length: 44

216.239.32.36

204 No Content

0 B

URL POST HTTP/3
region1.analytics.google.com/g/collect?v=2&tid=G-06ZNKL8C2E&gtm=45je3b81v875375078&_p=1701159908138&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=1591449470.1701159908&ul=en-us&sr=1280x1024&sid=1701159908&sct=1&seg=0&dl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&dt=Sexy%20Babe%20With%20Her%20Boyfriend%202(1)(1).mp4%20-%20Share%20Files%20Online%20%26%20Send%20Larges%20Files%20with%20TeraBox&_s=4&tfd=10749
IP
216.239.32.36:443
ASN
#15169 GOOGLE

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-06ZNKL8C2E&gtm=45je3b81v875375078&_p=1701159908138&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=1591449470.1701159908&ul=en-us&sr=1280x1024&sid=1701159908&sct=1&seg=0&dl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&dt=Sexy%20Babe%20With%20Her%20Boyfriend%202(1)(1).mp4%20-%20Share%20Files%20Online%20%26%20Send%20Larges%20Files%20with%20TeraBox&_s=4&tfd=10749 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2063
Origin: https://www.1024tera.com
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/3 204 No Content
access-control-allow-origin: https://www.1024tera.com
date: Tue, 28 Nov 2023 08:25:07 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

proceedglad.com/sbar.json?key=f195e5fa577c23352666448243864c68&uuid=80b67b4f-2e33-4fa3-9692-bf3c587c288b%3A2%3A1

192.243.61.227

3.4 kB

URL
proceedglad.com/sbar.json?key=f195e5fa577c23352666448243864c68&uuid=80b67b4f-2e33-4fa3-9692-bf3c587c288b%3A2%3A1
IP
192.243.61.227:0
ASN
#39572 DataWeb Global Group B.V.

Certificate
IssuerLet's Encrypt
Subjectproceedglad.com
FingerprintF9:04:D4:C5:64:56:F0:7B:9E:AE:0C:CB:EC:1A:5E:E9:8E:9E:86:E3
ValidityWed, 22 Nov 2023 07:26:18 GMT - Tue, 20 Feb 2024 07:26:17 GMT

File type
JSON data\012- , ASCII text, with very long lines (6054), with no line terminators
Size
3.4 kB (3416 bytes)
Hash
c8f955267335b688fe49551ffa6923a7
3b3eab5b101bcb8b467add5c8c90f4b45d717c40
08d7cd61b68a36871aa499ff5af0b26f5da87f230a501df6e2703e1159e2bb39

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /sbar.json?key=f195e5fa577c23352666448243864c68&uuid=80b67b4f-2e33-4fa3-9692-bf3c587c288b%3A2%3A1 HTTP/1.1
Host: proceedglad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.1024tera.com
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 28 Nov 2023 08:25:12 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.1024tera.com
Access-Control-Allow-Origin: https://www.1024tera.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=20651427; expires=Wed, 29 Nov 2023 08:25:12 GMT; secure; SameSite=None
uid_id2=80b67b4f-2e33-4fa3-9692-bf3c587c288b:2:1; expires=Tue, 05 Dec 2023 08:25:12 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 29 Nov 2023 08:25:12 GMT; secure; SameSite=None
uncs=1; expires=Wed, 29 Nov 2023 08:25:12 GMT; secure; SameSite=None
pdhtkv29=true; expires=Wed, 29 Nov 2023 08:25:12 GMT; secure; SameSite=None
uncs29=1; expires=Wed, 29 Nov 2023 08:25:12 GMT; secure; SameSite=None
slecf195e5fa577c23352666448243864c68=[4766299]; expires=Tue, 28 Nov 2023 08:25:17 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: aa1078e623001f0394a950c459db58cd
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

216.239.32.36

0 B

URL
region1.analytics.google.com/g/collect?v=2&tid=G-06ZNKL8C2E&gtm=45je3b81v875375078&_p=1701159908138&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=1591449470.1701159908&ul=en-us&sr=1280x1024&sid=1701159908&sct=1&seg=0&dl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&dt=Sexy%20Babe%20With%20Her%20Boyfriend%202(1)(1).mp4%20-%20Share%20Files%20Online%20%26%20Send%20Larges%20Files%20with%20TeraBox&_s=5&tfd=15751
IP
216.239.32.36:0
ASN
#15169 GOOGLE

Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-06ZNKL8C2E&gtm=45je3b81v875375078&_p=1701159908138&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=1591449470.1701159908&ul=en-us&sr=1280x1024&sid=1701159908&sct=1&seg=0&dl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&dt=Sexy%20Babe%20With%20Her%20Boyfriend%202(1)(1).mp4%20-%20Share%20Files%20Online%20%26%20Send%20Larges%20Files%20with%20TeraBox&_s=5&tfd=15751 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 236
Origin: https://www.1024tera.com
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/3 204 No Content
access-control-allow-origin: https://www.1024tera.com
date: Tue, 28 Nov 2023 08:25:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

proceedglad.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSTYgcRRit3sSDiIeEXEQCI3iI4M727%2FyYQzDGxGBMYn7IwVNVdfVsudVdTVX39OzkshiQHDxMwIPH3je7WdQlGI%2BCILNeZEHIeJA9uCBePOUi5CyzOzD6Hfp773t9%2BN776vPN8pC4KOnBzY%2F0UCpFV6Km2zh3T2axrmzj%2Bp2G5zbd8417MmuF5xuD2cf03%2FHcqOm%2B1bgi%2BJpe8V3PdT3Xa1yWRiR6sHKkQua7Xa%2FZdZuh3%2FSiEAPzf25LB5Y6iPuH5DRkPH1p9ZenkHyCLP3ukrBrhc7ffj8tFS20QT%2FeuZutZbrKkC5gYhwk2c78b2g7JeSrJehsZ%2B4Aur81cwAmp8T53QPLduZrgvW3jzdlCiIDi19B1Z9AqAkknYDrB5DxMwLwGNdvIEsfX9emouvHKp2pU3LyxT%2BQ1ZSc%2FOMMsvTJRSUHjdtalYXUmcUgqSEHE8jeBHm5h2LoQFZ74MVnkPGvZOXFNWTp1g2rNGR88GbHZa02C5NlXwTBcpjQYLnb6vrLLAl41Glzv9NhRxFJOYFMJlBiBGqXUFoHpXRQJg7K3EEaHzRo1E1ct52wJAg6Iec8CDiPOq04ioOwk7go%2BczDCEU%2BAlcjcLOB3GxgTT56Fp2GKX%2BCXa1h4yXYYkqcj%2B%2BjH9eoBEFlCSpKUEmCqiCo%2BvV2rKxv68exsiXz5t2f96Ae66K3Sbd10RMZ2cwPyalZfs75s2OsiYNG4nUjESU0are5HwSR32q1wrDjh0GnFfJWB1bWkHYJ1DoYyil54%2FUvkMspebm9C0b3YNUeuDwFWp4FrcZt3wVdHYcdF8Ns13P9sBCGNrlOEesaeXESxbqzqQ7Ja0d3%2FOCHTyD4%2FoUvh39eeXLmPripkZsan8qfCXrq4fiWrsjWLV1Z8vRGXshUDunsxrcLWogT33wo1itt4quX7Ojrd%2FlMmMHdO8IW12gWy6xnybcXZRwLc1kbLsiPV%2B09wW6WdvViabIyv3bzvctX09wIa6XOJqBySsjz78HllLz63B6933N3%2F4I0E5iyRlruk3lB6j3wfAM2X8ysJjBqwVnuoCrrsfHZYqgkgRILTlkN%2Bx%2FOFnjTPkTPOKDFA2Rpjb6p0Vc1qBrBlifGRW72L%2FwWHBWYcsZMGWeLKaMeHYdr5UFDRImbCNcXLOmypE3duJuEXUa7nmiziHoo7FSI8d%2F%2FAgAA%2F%2F8BAAD%2F%2F9ytW%2BOXBAAA

192.243.61.227

200 OK

7 B

URL GET HTTP/1.1
proceedglad.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSTYgcRRit3sSDiIeEXEQCI3iI4M727%2FyYQzDGxGBMYn7IwVNVdfVsudVdTVX39OzkshiQHDxMwIPH3je7WdQlGI%2BCILNeZEHIeJA9uCBePOUi5CyzOzD6Hfp773t9%2BN776vPN8pC4KOnBzY%2F0UCpFV6Km2zh3T2axrmzj%2Bp2G5zbd8417MmuF5xuD2cf03%2FHcqOm%2B1bgi%2BJpe8V3PdT3Xa1yWRiR6sHKkQua7Xa%2FZdZuh3%2FSiEAPzf25LB5Y6iPuH5DRkPH1p9ZenkHyCLP3ukrBrhc7ffj8tFS20QT%2FeuZutZbrKkC5gYhwk2c78b2g7JeSrJehsZ%2B4Aur81cwAmp8T53QPLduZrgvW3jzdlCiIDi19B1Z9AqAkknYDrB5DxMwLwGNdvIEsfX9emouvHKp2pU3LyxT%2BQ1ZSc%2FOMMsvTJRSUHjdtalYXUmcUgqSEHE8jeBHm5h2LoQFZ74MVnkPGvZOXFNWTp1g2rNGR88GbHZa02C5NlXwTBcpjQYLnb6vrLLAl41Glzv9NhRxFJOYFMJlBiBGqXUFoHpXRQJg7K3EEaHzRo1E1ct52wJAg6Iec8CDiPOq04ioOwk7go%2BczDCEU%2BAlcjcLOB3GxgTT56Fp2GKX%2BCXa1h4yXYYkqcj%2B%2BjH9eoBEFlCSpKUEmCqiCo%2BvV2rKxv68exsiXz5t2f96Ae66K3Sbd10RMZ2cwPyalZfs75s2OsiYNG4nUjESU0are5HwSR32q1wrDjh0GnFfJWB1bWkHYJ1DoYyil54%2FUvkMspebm9C0b3YNUeuDwFWp4FrcZt3wVdHYcdF8Ns13P9sBCGNrlOEesaeXESxbqzqQ7Ja0d3%2FOCHTyD4%2FoUvh39eeXLmPripkZsan8qfCXrq4fiWrsjWLV1Z8vRGXshUDunsxrcLWogT33wo1itt4quX7Ojrd%2FlMmMHdO8IW12gWy6xnybcXZRwLc1kbLsiPV%2B09wW6WdvViabIyv3bzvctX09wIa6XOJqBySsjz78HllLz63B6933N3%2F4I0E5iyRlruk3lB6j3wfAM2X8ysJjBqwVnuoCrrsfHZYqgkgRILTlkN%2Bx%2FOFnjTPkTPOKDFA2Rpjb6p0Vc1qBrBlifGRW72L%2FwWHBWYcsZMGWeLKaMeHYdr5UFDRImbCNcXLOmypE3duJuEXUa7nmiziHoo7FSI8d%2F%2FAgAA%2F%2F8BAAD%2F%2F9ytW%2BOXBAAA
IP
192.243.61.227:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerLet's Encrypt
Subjectproceedglad.com
FingerprintF9:04:D4:C5:64:56:F0:7B:9E:AE:0C:CB:EC:1A:5E:E9:8E:9E:86:E3
ValidityWed, 22 Nov 2023 07:26:18 GMT - Tue, 20 Feb 2024 07:26:17 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSTYgcRRit3sSDiIeEXEQCI3iI4M727%2FyYQzDGxGBMYn7IwVNVdfVsudVdTVX39OzkshiQHDxMwIPH3je7WdQlGI%2BCILNeZEHIeJA9uCBePOUi5CyzOzD6Hfp773t9%2BN776vPN8pC4KOnBzY%2F0UCpFV6Km2zh3T2axrmzj%2Bp2G5zbd8417MmuF5xuD2cf03%2FHcqOm%2B1bgi%2BJpe8V3PdT3Xa1yWRiR6sHKkQua7Xa%2FZdZuh3%2FSiEAPzf25LB5Y6iPuH5DRkPH1p9ZenkHyCLP3ukrBrhc7ffj8tFS20QT%2FeuZutZbrKkC5gYhwk2c78b2g7JeSrJehsZ%2B4Aur81cwAmp8T53QPLduZrgvW3jzdlCiIDi19B1Z9AqAkknYDrB5DxMwLwGNdvIEsfX9emouvHKp2pU3LyxT%2BQ1ZSc%2FOMMsvTJRSUHjdtalYXUmcUgqSEHE8jeBHm5h2LoQFZ74MVnkPGvZOXFNWTp1g2rNGR88GbHZa02C5NlXwTBcpjQYLnb6vrLLAl41Glzv9NhRxFJOYFMJlBiBGqXUFoHpXRQJg7K3EEaHzRo1E1ct52wJAg6Iec8CDiPOq04ioOwk7go%2BczDCEU%2BAlcjcLOB3GxgTT56Fp2GKX%2BCXa1h4yXYYkqcj%2B%2BjH9eoBEFlCSpKUEmCqiCo%2BvV2rKxv68exsiXz5t2f96Ae66K3Sbd10RMZ2cwPyalZfs75s2OsiYNG4nUjESU0are5HwSR32q1wrDjh0GnFfJWB1bWkHYJ1DoYyil54%2FUvkMspebm9C0b3YNUeuDwFWp4FrcZt3wVdHYcdF8Ns13P9sBCGNrlOEesaeXESxbqzqQ7Ja0d3%2FOCHTyD4%2FoUvh39eeXLmPripkZsan8qfCXrq4fiWrsjWLV1Z8vRGXshUDunsxrcLWogT33wo1itt4quX7Ojrd%2FlMmMHdO8IW12gWy6xnybcXZRwLc1kbLsiPV%2B09wW6WdvViabIyv3bzvctX09wIa6XOJqBySsjz78HllLz63B6933N3%2F4I0E5iyRlruk3lB6j3wfAM2X8ysJjBqwVnuoCrrsfHZYqgkgRILTlkN%2Bx%2FOFnjTPkTPOKDFA2Rpjb6p0Vc1qBrBlifGRW72L%2FwWHBWYcsZMGWeLKaMeHYdr5UFDRImbCNcXLOmypE3duJuEXUa7nmiziHoo7FSI8d%2F%2FAgAA%2F%2F8BAAD%2F%2F9ytW%2BOXBAAA HTTP/1.1
Host: proceedglad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Cookie: u_pl=20651427; uid_id2=80b67b4f-2e33-4fa3-9692-bf3c587c288b:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecf195e5fa577c23352666448243864c68=[4766299]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 28 Nov 2023 08:25:12 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: ee3a5b9ec4c1563cdbe21f820761490e
Strict-Transport-Security: max-age=0; includeSubdomains

cdn.cloudimagesb.com/si/98/58/2f/98582fa31e3a411721a1f890fd22419a/1700491903.png

45.133.44.9

9.0 kB

URL
cdn.cloudimagesb.com/si/98/58/2f/98582fa31e3a411721a1f890fd22419a/1700491903.png
IP
45.133.44.9:0
ASN
#39572 DataWeb Global Group B.V.

Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:EC:C0:22:20:76:60:90:92:4C:5C:F3:AD:17:3C:41:B5:00:25:AF
ValidityThu, 23 Nov 2023 05:00:53 GMT - Wed, 21 Feb 2024 05:00:52 GMT

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Size
9.0 kB (9016 bytes)
Hash
a56f06ca83ee06488a213b352e00bd90
aec437b74eb6f1143683872fb2d664286da4a664
7144c526762a9d91bdde1939194c2835f2cb1afe0ebac298bbdf1e9239b539ec

HTTP Headers

GET /si/98/58/2f/98582fa31e3a411721a1f890fd22419a/1700491903.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 08:25:13 GMT
content-type: image/png
content-length: 9016
server: nginx/1.21.6
last-modified: Mon, 20 Nov 2023 14:51:52 GMT
etag: "655b7288-2338"
expires: Thu, 30 Nov 2023 08:25:13 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn.cloudimagesb.com/si/3c/d5/62/3cd562dd264800ee586ac2da770e9a65/1700491951.png

45.133.44.9

20 kB

URL
cdn.cloudimagesb.com/si/3c/d5/62/3cd562dd264800ee586ac2da770e9a65/1700491951.png
IP
45.133.44.9:0
ASN
#39572 DataWeb Global Group B.V.

Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:EC:C0:22:20:76:60:90:92:4C:5C:F3:AD:17:3C:41:B5:00:25:AF
ValidityThu, 23 Nov 2023 05:00:53 GMT - Wed, 21 Feb 2024 05:00:52 GMT

File type
PNG image data, 320 x 180, 8-bit/color RGBA, non-interlaced\012- data
Size
20 kB (20001 bytes)
Hash
ea31001ce8fa95eb2ac1617515105332
d505ca04808c25cfa33a555c96886f421ddbbde7
0267f5cd21fe5609405724c20d6f021b8932a696ada766b8e86e42c670000ab3

HTTP Headers

GET /si/3c/d5/62/3cd562dd264800ee586ac2da770e9a65/1700491951.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 08:25:13 GMT
content-type: image/png
content-length: 20001
server: nginx/1.21.6
last-modified: Mon, 20 Nov 2023 14:52:40 GMT
etag: "655b72b8-4e21"
expires: Thu, 30 Nov 2023 08:25:13 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn.creative-bars1.com/sb/ssp/vpn/classic-push/big1/img/close.png

172.64.108.10

591 B

URL
cdn.creative-bars1.com/sb/ssp/vpn/classic-push/big1/img/close.png
IP
172.64.108.10:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 12 x 12, 8-bit/color RGBA, non-interlaced\012- data
Size
591 B (591 bytes)
Hash
9fd5bcb6103d86e317bd1eb019bcbe71
6b5a52ea669dcb74946f2bed4bdd7ec985026113
0ddd3be104ac7945fb062096df62034a6a24ecc76ba92493c35c62c3c25982ae

HTTP Headers

GET /sb/ssp/vpn/classic-push/big1/img/close.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 08:25:13 GMT
content-type: image/png
content-length: 591
last-modified: Mon, 21 Feb 2022 10:06:44 GMT
etag: "62136434-24f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 1483697
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CdzWwP3ELVujmOe0HtBPSoWUeldI014QyqMBME0%2B%2BEM2TFTnvMhwGRu64IC6zXWFhwZcELWPIPxzgYs%2FvsxzBkFaP7oijDjgSt%2Fs4aHeiKAl3EvRsV5XXWNKWkUTjX%2BgWzCtVQraPmxF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82d13812798088c1-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

142.250.74.99

16 kB

URL
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
142.250.74.99:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.1024tera.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 22 Nov 2023 21:52:12 GMT
expires: Thu, 21 Nov 2024 21:52:12 GMT
cache-control: public, max-age=31536000
age: 469981
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.barscreative1.com/sb/au/48/48/eb/4848ebd6f7295875a5d388ec2488aba3/1648542421.html

45.133.44.3

21 kB

URL
cdn.barscreative1.com/sb/au/48/48/eb/4848ebd6f7295875a5d388ec2488aba3/1648542421.html
IP
45.133.44.3:0
ASN
#39572 DataWeb Global Group B.V.

File type
gzip compressed data, from Unix\012- data
Size
21 kB (21407 bytes)
Hash
60eb44ce6a5e30d690836435ba780761
6f868d50c363932d2b69773a9a54718bacdc381c
e8b7dd9dcc611f606f2060cc38b9aaffb0beb8561880bd40cf590659ba9637aa

HTTP Headers

GET /sb/au/48/48/eb/4848ebd6f7295875a5d388ec2488aba3/1648542421.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.1024tera.com
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 28 Nov 2023 08:25:13 GMT
content-type: text/html; charset=utf-8
server: nginx/1.21.6
last-modified: Tue, 29 Mar 2022 08:27:10 GMT
etag: W/"6242c2de-602"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
expires: Tue, 28 Nov 2023 09:25:13 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2

proceedglad.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSTYgcRRit3sSDiIeEXEQCI3iI4M7270yPOQRjTAzGJOaHHDxVV1XPllvd1VR1T08ml2BAcvAwAQ8ee99ssqhLMB4FQWa9SEDIeJA9uCBePOUi5CyzOzD6Hfp773t9%2BN776vPNap%2B4qOje1Y%2F0SCpF16K22zp1S%2BZc17Z1%2BUbLc9vu6dYtmXfC063h%2FGMG73hu1Hbfal0QbEOv%2Ba7nup7rtc5LI1I9XDtQIYudntfuue3Qb3tRiKH5P7eVA0sd8ME%2BOQ7JZy%2Bt%2F%2FIEkk2RZ9%2BdE3aj1MXb72eVoqU2GPDtm%2FlGrusc2RKmxkGaby%2F%2BhrYzQr5agc63Fw6gB1tzB0jkjDi%2Fe0jy7cWaSAYPDzdNFESOhL%2BCejCFUFNIOgXT9yD5MwIwjstXkGePLmtT09uHKp2rM3L0xT%2BQ9Ywc%2FeME8uzxWSWHretaVaXUucUwbSCHU8j%2BFEW1i3LkQNa7YOVnkPxXsvbiEvJs64pVGpLvvRm7SaebhOmqL4JgNUxpsNrr9PzVJA1YFHeZH8fJQURSTiHTKZQYg9oVVNZBJR1UqYOqcJDxvRaNeqnrdtMkDYI4ZIwFAWNR3OERD8I4dVGxuYcxymIMpsZg5i4Kcxcb8sGz6DhM9RPsegPLV2DLGXE%2BvoMBb1ALgtoS1JSglgR1SVAPmodcWd82j7iyVeItur%2FoQTPRZX%2BTPtRlX%2BRks9gnx%2Bb5OadPTrAh9lqp14tElNKo22V%2BEER%2Bp9MJw9gPg7gTsk4MKxtIuwJqHYzkjLzx%2Bhco5Iy83N1BQndh1S6YPAZanQStJ13fBV2fhLGLUb7juX5YCkPbTGfgukFRHkV529lU%2B%2BS1gzt%2B8MMnEOzpmS9Hf154fOIOmGlQmAafyp8J%2Bur%2B5JquydY1XVvy5EpRykyO6PzG10taiiPffChu19rwi%2Bfs%2BOt32VyYw50bwpaXaM5l3rfk27OSc2HOa8ME%2BfGivSWSq5VdP1uZvCouXX3v%2FMWsMMJaqfMpqJwR8vx7MDkjrz63B%2B%2F31M2%2FIM0UpmqQVU%2FJoiD1LlhxF7ZYzqwmMGrJk8JBXTUT4yfLoZIESiw5TRrY%2F%2FBkiTftffSNA1reQ541GJgGA9WAqjFsdWRSFubpmd%2BCg0KinEmijLOVKKMeHIZr5V4r8kIRJ3GXcZ4Ixr2uH8SB6%2Fqch92e8Hoo7UyIyd%2F%2FAgAA%2F%2F8BAAD%2F%2F8il1QWXBAAA

192.243.61.227

7 B

URL
proceedglad.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSTYgcRRit3sSDiIeEXEQCI3iI4M7270yPOQRjTAzGJOaHHDxVV1XPllvd1VR1T08ml2BAcvAwAQ8ee99ssqhLMB4FQWa9SEDIeJA9uCBePOUi5CyzOzD6Hfp773t9%2BN776vPNap%2B4qOje1Y%2F0SCpF16K22zp1S%2BZc17Z1%2BUbLc9vu6dYtmXfC063h%2FGMG73hu1Hbfal0QbEOv%2Ba7nup7rtc5LI1I9XDtQIYudntfuue3Qb3tRiKH5P7eVA0sd8ME%2BOQ7JZy%2Bt%2F%2FIEkk2RZ9%2BdE3aj1MXb72eVoqU2GPDtm%2FlGrusc2RKmxkGaby%2F%2BhrYzQr5agc63Fw6gB1tzB0jkjDi%2Fe0jy7cWaSAYPDzdNFESOhL%2BCejCFUFNIOgXT9yD5MwIwjstXkGePLmtT09uHKp2rM3L0xT%2BQ9Ywc%2FeME8uzxWSWHretaVaXUucUwbSCHU8j%2BFEW1i3LkQNa7YOVnkPxXsvbiEvJs64pVGpLvvRm7SaebhOmqL4JgNUxpsNrr9PzVJA1YFHeZH8fJQURSTiHTKZQYg9oVVNZBJR1UqYOqcJDxvRaNeqnrdtMkDYI4ZIwFAWNR3OERD8I4dVGxuYcxymIMpsZg5i4Kcxcb8sGz6DhM9RPsegPLV2DLGXE%2BvoMBb1ALgtoS1JSglgR1SVAPmodcWd82j7iyVeItur%2FoQTPRZX%2BTPtRlX%2BRks9gnx%2Bb5OadPTrAh9lqp14tElNKo22V%2BEER%2Bp9MJw9gPg7gTsk4MKxtIuwJqHYzkjLzx%2Bhco5Iy83N1BQndh1S6YPAZanQStJ13fBV2fhLGLUb7juX5YCkPbTGfgukFRHkV529lU%2B%2BS1gzt%2B8MMnEOzpmS9Hf154fOIOmGlQmAafyp8J%2Bur%2B5JquydY1XVvy5EpRykyO6PzG10taiiPffChu19rwi%2Bfs%2BOt32VyYw50bwpaXaM5l3rfk27OSc2HOa8ME%2BfGivSWSq5VdP1uZvCouXX3v%2FMWsMMJaqfMpqJwR8vx7MDkjrz63B%2B%2F31M2%2FIM0UpmqQVU%2FJoiD1LlhxF7ZYzqwmMGrJk8JBXTUT4yfLoZIESiw5TRrY%2F%2FBkiTftffSNA1reQ541GJgGA9WAqjFsdWRSFubpmd%2BCg0KinEmijLOVKKMeHIZr5V4r8kIRJ3GXcZ4Ixr2uH8SB6%2Fqch92e8Hoo7UyIyd%2F%2FAgAA%2F%2F8BAAD%2F%2F8il1QWXBAAA
IP
192.243.61.227:0
ASN
#39572 DataWeb Global Group B.V.

Certificate
IssuerLet's Encrypt
Subjectproceedglad.com
FingerprintF9:04:D4:C5:64:56:F0:7B:9E:AE:0C:CB:EC:1A:5E:E9:8E:9E:86:E3
ValidityWed, 22 Nov 2023 07:26:18 GMT - Tue, 20 Feb 2024 07:26:17 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSTYgcRRit3sSDiIeEXEQCI3iI4M7270yPOQRjTAzGJOaHHDxVV1XPllvd1VR1T08ml2BAcvAwAQ8ee99ssqhLMB4FQWa9SEDIeJA9uCBePOUi5CyzOzD6Hfp773t9%2BN776vPNap%2B4qOje1Y%2F0SCpF16K22zp1S%2BZc17Z1%2BUbLc9vu6dYtmXfC063h%2FGMG73hu1Hbfal0QbEOv%2Ba7nup7rtc5LI1I9XDtQIYudntfuue3Qb3tRiKH5P7eVA0sd8ME%2BOQ7JZy%2Bt%2F%2FIEkk2RZ9%2BdE3aj1MXb72eVoqU2GPDtm%2FlGrusc2RKmxkGaby%2F%2BhrYzQr5agc63Fw6gB1tzB0jkjDi%2Fe0jy7cWaSAYPDzdNFESOhL%2BCejCFUFNIOgXT9yD5MwIwjstXkGePLmtT09uHKp2rM3L0xT%2BQ9Ywc%2FeME8uzxWSWHretaVaXUucUwbSCHU8j%2BFEW1i3LkQNa7YOVnkPxXsvbiEvJs64pVGpLvvRm7SaebhOmqL4JgNUxpsNrr9PzVJA1YFHeZH8fJQURSTiHTKZQYg9oVVNZBJR1UqYOqcJDxvRaNeqnrdtMkDYI4ZIwFAWNR3OERD8I4dVGxuYcxymIMpsZg5i4Kcxcb8sGz6DhM9RPsegPLV2DLGXE%2BvoMBb1ALgtoS1JSglgR1SVAPmodcWd82j7iyVeItur%2FoQTPRZX%2BTPtRlX%2BRks9gnx%2Bb5OadPTrAh9lqp14tElNKo22V%2BEER%2Bp9MJw9gPg7gTsk4MKxtIuwJqHYzkjLzx%2Bhco5Iy83N1BQndh1S6YPAZanQStJ13fBV2fhLGLUb7juX5YCkPbTGfgukFRHkV529lU%2B%2BS1gzt%2B8MMnEOzpmS9Hf154fOIOmGlQmAafyp8J%2Bur%2B5JquydY1XVvy5EpRykyO6PzG10taiiPffChu19rwi%2Bfs%2BOt32VyYw50bwpaXaM5l3rfk27OSc2HOa8ME%2BfGivSWSq5VdP1uZvCouXX3v%2FMWsMMJaqfMpqJwR8vx7MDkjrz63B%2B%2F31M2%2FIM0UpmqQVU%2FJoiD1LlhxF7ZYzqwmMGrJk8JBXTUT4yfLoZIESiw5TRrY%2F%2FBkiTftffSNA1reQ541GJgGA9WAqjFsdWRSFubpmd%2BCg0KinEmijLOVKKMeHIZr5V4r8kIRJ3GXcZ4Ixr2uH8SB6%2Fqch92e8Hoo7UyIyd%2F%2FAgAA%2F%2F8BAAD%2F%2F8il1QWXBAAA HTTP/1.1
Host: proceedglad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Cookie: u_pl=20651427; uid_id2=80b67b4f-2e33-4fa3-9692-bf3c587c288b:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 28 Nov 2023 08:25:13 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 2850d758059335bdeb70439b5ddcd816
Strict-Transport-Security: max-age=0; includeSubdomains

proceedglad.com/pixel/sbs?c=1

192.243.61.227

0 B

URL
proceedglad.com/pixel/sbs?c=1
IP
192.243.61.227:0
ASN
#39572 DataWeb Global Group B.V.

Certificate
IssuerLet's Encrypt
Subjectproceedglad.com
FingerprintF9:04:D4:C5:64:56:F0:7B:9E:AE:0C:CB:EC:1A:5E:E9:8E:9E:86:E3
ValidityWed, 22 Nov 2023 07:26:18 GMT - Tue, 20 Feb 2024 07:26:17 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/sbs?c=1 HTTP/1.1
Host: proceedglad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Cookie: u_pl=20651427; uid_id2=80b67b4f-2e33-4fa3-9692-bf3c587c288b:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 28 Nov 2023 08:25:13 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/ud-i18n-en.e44e7bde.js

90.84.161.20

200 OK

1.9 kB

URL GET HTTP/2
s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/ud-i18n-en.e44e7bde.js
IP
90.84.161.20:443
ASN
#0

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert Inc
Subject*.teraboxcdn.com
Fingerprint4C:36:32:B9:A0:68:F6:C2:A7:95:E4:E6:DA:DA:D7:AF:7A:C3:41:44
ValidityTue, 28 Mar 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT

File type
ASCII text, with very long lines (2106), with no line terminators
Size
1.9 kB (1922 bytes)
Hash
06240b1a3219761cfc4ffe585ac34e48
128bc2aef718748c147232d35cce5fe70443d653
ea008c5e63b36af9dd66e6be5f8d8f3e1c86d005e981cfced09cc1964517907d

HTTP Headers

GET /fe-opera-static/node-static-v4/fe-webv4-main/js/ud-i18n-en.e44e7bde.js HTTP/1.1
Host: s2.teraboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 28 Nov 2023 08:25:01 GMT
content-type: application/javascript
server: openresty
content-md5: DyUZIaD1cN4PN459aJhnNg==
etag: W/"0f251921a0f570de0f378e7d68986736"
expires: Fri, 12 May 2023 08:43:54 GMT
last-modified: Mon, 08 May 2023 12:32:48 GMT
x-bce-content-crc32: 2133490345
x-bce-debug-id: NSexvRTV0lZWQYtbdWLSgX+v6Hr/56aCZJ1ADylLSrA41ImIsmNUOALc2+imcrFlB95XXzUoxQ6mngOJKiIOKA==
x-bce-request-id: ebaa8284-e667-42db-a2f8-0aab2662e8dc
x-bce-storage-class: STANDARD
x-ccdn-expires: 712327
via: EU-GER-frankfurt-EDGE5-CACHE2[2],EU-GER-frankfurt-EDGE5-CACHE2[0,TCP_HIT,0],EU-GER-frankfurt-GLOBAL1-CACHE5[36],EU-GER-frankfurt-GLOBAL1-CACHE2[0,TCP_HIT,32]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 2592000
nginx-hit: 1
age: 17537876
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

www.1024tera.com/api/analytics?type=web_firebase_init_success_key_way&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159905391

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?type=web_firebase_init_success_key_way&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159905391
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
44069a5b17a180d9491fefde55da9cba
307b8a84dbe6510766cf8a6843079ff93bc804f9
8dbd4675c5458c431eab5c5524850b65369fce3a14c2b0c02381e65514c42367

HTTP Headers

GET /api/analytics?type=web_firebase_init_success_key_way&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159905391 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej; browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; lang=en; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; __bid_n=18c150826f3eec17074207
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Tue, 28 Nov 2023 08:25:01 GMT
Flow-Level: 3
Logid: 8845611029684961029
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8845611029684961029
Yme: ZIGW+Ss3QEsTdTcHUmr/tG1MvuUYQhz0rwpNwySDzJVRP2wJiT+F6IWU3A==
Content-Length: 44

s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/cashier~copyright-feedback~failPay~goldCenter~landing~login~membership~oneAnniversary~other~recycleb~fcf1883d.54946d2b.js

90.84.161.20

200 OK

19 kB

URL GET HTTP/2
s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/cashier~copyright-feedback~failPay~goldCenter~landing~login~membership~oneAnniversary~other~recycleb~fcf1883d.54946d2b.js
IP
90.84.161.20:443
ASN
#0

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert Inc
Subject*.teraboxcdn.com
Fingerprint4C:36:32:B9:A0:68:F6:C2:A7:95:E4:E6:DA:DA:D7:AF:7A:C3:41:44
ValidityTue, 28 Mar 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT

File type

Size
19 kB (18671 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /fe-opera-static/node-static-v4/fe-webv4-main/js/cashier~copyright-feedback~failPay~goldCenter~landing~login~membership~oneAnniversary~other~recycleb~fcf1883d.54946d2b.js HTTP/1.1
Host: s2.teraboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 28 Nov 2023 08:25:01 GMT
content-type: application/javascript
server: openresty
content-md5: TzIMBidie558Yw5wV87q8A==
etag: W/"4f320c0627627b9e7c630e7057ceeaf0"
expires: Thu, 30 Nov 2023 08:59:34 GMT
last-modified: Mon, 27 Nov 2023 03:06:49 GMT
x-bce-content-crc32: 4270220429
x-bce-debug-id: 7lgkaI9ORFpOxiD/EiikNYltJ4lsw3+O/nP4YRwK6fxx+oGFjUA37sB/QymDLBpulvJvieguQXNn6B1ZvQ3aKA==
x-bce-flow-control-type: -1
x-bce-is-transition: false
x-bce-request-id: 5c2e7fc9-a757-400b-ae5b-d7321717e578
x-bce-storage-class: STANDARD
x-ccdn-expires: 2548290
via: EU-GER-frankfurt-EDGE5-CACHE2[2],EU-GER-frankfurt-EDGE5-CACHE2[0,TCP_HIT,0],EU-GER-frankfurt-GLOBAL1-CACHE5[18],EU-GER-frankfurt-GLOBAL1-CACHE7[0,TCP_HIT,16]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 2592000
nginx-hit: 1
age: 83600
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-1dcd7f8a.2b42216f.js

90.84.161.20

200 OK

16 kB

URL GET HTTP/2
s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-1dcd7f8a.2b42216f.js
IP
90.84.161.20:443
ASN
#0

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert Inc
Subject*.teraboxcdn.com
Fingerprint4C:36:32:B9:A0:68:F6:C2:A7:95:E4:E6:DA:DA:D7:AF:7A:C3:41:44
ValidityTue, 28 Mar 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT

File type
ASCII text, with very long lines (16064), with no line terminators
Size
16 kB (16064 bytes)
Hash
8334b653e31ffd870836904fa540f9ce
5b1fc5423940bd27d5df9f215ad9d4db6c666668
a6899ed227f04b484d74815a564fda0bc224c9c74fa35a6cd8febb416c7fced8

HTTP Headers

GET /fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-1dcd7f8a.2b42216f.js HTTP/1.1
Host: s2.teraboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 28 Nov 2023 08:25:01 GMT
content-type: application/javascript
server: openresty
content-md5: gzS2U+Mf/YcINpBPpUD5zg==
etag: W/"8334b653e31ffd870836904fa540f9ce"
expires: Fri, 12 May 2023 08:43:54 GMT
last-modified: Mon, 08 May 2023 12:32:40 GMT
x-bce-content-crc32: 4120287129
x-bce-debug-id: Teo3loV3wqW/js/c3F+flnexjxNYfbmQInRoUF9QRAMJ7CFnw1D4NuX6sDdmfzinUfOqZghCnAt7txHYBz0myw==
x-bce-request-id: afcc4a4d-fd1a-4520-9662-3523bce519be
x-bce-storage-class: STANDARD
x-ccdn-expires: 861170
via: EU-GER-frankfurt-EDGE5-CACHE2[3],EU-GER-frankfurt-EDGE5-CACHE3[0,TCP_HIT,0],EU-GER-frankfurt-GLOBAL1-CACHE2[17],EU-GER-frankfurt-GLOBAL1-CACHE8[0,TCP_HIT,15]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 2592000
nginx-hit: 1
age: 17537775
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

www.1024tera.com/api/analytics?time=5441&type=web_share_page_show_TTI&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159905739

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?time=5441&type=web_share_page_show_TTI&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159905739
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
474c96460116049b36520fa25e871364
e5572e244b2e8bef144a617acc3d4fd56fe4e821
b5495e0ca15d9f7d905f481c01ef2bebe6b0643d47da3f899e04b0291c71e9f9

HTTP Headers

GET /api/analytics?time=5441&type=web_share_page_show_TTI&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159905739 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej; browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; lang=en; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; __bid_n=18c150826f3eec17074207
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Tue, 28 Nov 2023 08:25:03 GMT
Flow-Level: 3
Logid: 8845611525905786497
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8845611525905786497
Yme: ZIGW+Ss3QE0RYisCTHb+qnFLufkASwbxtAFLxiqBmOiwCw9sdXqbIjEDnTY=
Content-Length: 44

www.1024tera.com/api/analytics?time=3155&type=web_share_page_show_FP_SECOND&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159905721

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?time=3155&type=web_share_page_show_FP_SECOND&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159905721
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
980d7596465d428540dfd57c03fb975a
f39236090cbe7f1a393aa6d220f80fbe21067f31
fbd8fe29e90f5cca88261243bc35bdef152b71378378bbf658b741e112d6e968

HTTP Headers

GET /api/analytics?time=3155&type=web_share_page_show_FP_SECOND&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159905721 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej; browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; lang=en; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; __bid_n=18c150826f3eec17074207
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Tue, 28 Nov 2023 08:25:02 GMT
Flow-Level: 3
Logid: 8845611117915867292
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8845611117915867292
Yme: ZIGW+Ss3QE0WaSsESWLiq29Xvv4cVAP2oh5GyiqBmOq25IuVfg==
Content-Length: 44

s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-2d225855.7faaefb6.js

90.84.161.20

200 OK

37 kB

URL GET HTTP/2
s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-2d225855.7faaefb6.js
IP
90.84.161.20:443
ASN
#0

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert Inc
Subject*.teraboxcdn.com
Fingerprint4C:36:32:B9:A0:68:F6:C2:A7:95:E4:E6:DA:DA:D7:AF:7A:C3:41:44
ValidityTue, 28 Mar 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT

File type
ASCII text, with very long lines (36937), with no line terminators
Size
37 kB (36937 bytes)
Hash
8b0f7f0b1d3875e84b572a4b8da14d5a
78079f8d4d5512d24244b0e2a3ba6a2880af5bc1
e635ce270e45d33ae75ee0b14f4598cfcd5c20c93abfd0bf562e952b95a35198

HTTP Headers

GET /fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-2d225855.7faaefb6.js HTTP/1.1
Host: s2.teraboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 28 Nov 2023 08:25:01 GMT
content-type: application/javascript
server: openresty
content-md5: iw9/Cx04dehLVypLjaFNWg==
etag: W/"8b0f7f0b1d3875e84b572a4b8da14d5a"
expires: Fri, 12 May 2023 08:44:00 GMT
last-modified: Mon, 08 May 2023 12:32:41 GMT
x-bce-content-crc32: 2125762108
x-bce-debug-id: iB6onZAdB5cwEu/eon/SnJwxjW+yEqUyso3lZkAtI8tqGqTqF5hKti5HQUqq4Il08RRUnC4QmZj/Wzs2YTkdMg==
x-bce-request-id: 6c4f78e6-e6e6-495c-8abe-dec67424c79d
x-bce-storage-class: STANDARD
x-ccdn-expires: 880105
via: EU-GER-frankfurt-EDGE5-CACHE2[2],EU-GER-frankfurt-EDGE5-CACHE6[0,TCP_HIT,0],EU-GER-frankfurt-GLOBAL1-CACHE3[22],EU-GER-frankfurt-GLOBAL1-CACHE12[0,TCP_HIT,20]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 2592000
nginx-hit: 1
age: 17537840
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

cdn.cloudimagesb.com/cti/51/bb/80/51bb807c8b914e3cc08eace2b0587473/1628586935.jpg

45.133.44.9

200 OK

30 kB

URL GET HTTP/2
cdn.cloudimagesb.com/cti/51/bb/80/51bb807c8b914e3cc08eace2b0587473/1628586935.jpg
IP
45.133.44.9:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:EC:C0:22:20:76:60:90:92:4C:5C:F3:AD:17:3C:41:B5:00:25:AF
ValidityThu, 23 Nov 2023 05:00:53 GMT - Wed, 21 Feb 2024 05:00:52 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 320x240, components 3\012- data
Size
30 kB (30127 bytes)
Hash
a87779ccaaa4021b0b4f33812742679a
87322480f885dc0b6463c182b7bdb3eb60ab2592
a8f8dbc930527f94496d5a9883b6034e27a673090a89b518596d6e2b656df96f

HTTP Headers

GET /cti/51/bb/80/51bb807c8b914e3cc08eace2b0587473/1628586935.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 28 Nov 2023 08:25:07 GMT
content-type: image/jpeg
content-length: 30127
server: nginx/1.21.6
last-modified: Tue, 10 Aug 2021 09:15:44 GMT
etag: "611243c0-75af"
expires: Thu, 30 Nov 2023 08:25:07 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

joblouder.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSzWsd1Rs%2Bk%2BYH%2FelCWgQRXVxFRcHczGdmrl0Ua60Ua1PaStfna5JjzswZzpm5k2bVWpAuuoiu1NXkuWmjNRT7Byhy46YUhNyNBDQLd66F4lJuGoi%2Bi3nfZ5538TzPez7baPaJj4buXfrIrCmt6XzS93tvXlOlMK3rXbzaC%2Fy%2Bf6p3TZUL8ane6vRjh%2B8EftL33%2Bp9IPmKmQ%2F9wPcDP%2BidU1bmZnX%2BgIWqtgdBf%2BD347AfJDFW7X%2Bxazw46kEM98lJKDH53%2FKjh1B8jLL4%2Fqx0K7Wp3n6%2FaDStjcVQbH1crpSmLVEcjbn1kJdbh9swbkLIlzMw5dahA5jh5tQBmJoQ79cArNw6lAk2vPtUKdOQJZh4Fu1wDKnHUHQMbm5BiV0CcIGLiyiLexeNben1pyydshMy%2B%2BQvqHZCZn9%2FHmXx4IxWq70rRje1MqXDat5BrY6hlsaomh3Uax5UuwNefwolfiHzTy6gLDYXnTZQYu%2B1zGcLKYvzuVBG0Vyc02husDAI51ge8SRLeZhl7CAipcZQ%2BRharoO6GTTOQ6M8NLmHpvJQiL0eTQa576c5y6MoiznnUcR5ki2IRERxlvto%2BNTDOupqHVyvg9sbqOzNb0SUyojxeINiRX2%2Bm5yEbX6CW%2B7ghAdXEwxFh1YStI6gpQStImhrgnbY3RXaha67J7RrWHDYw8MedSNTL23Qu6ZekiXZqPbJiWmM3gubx7Ei93oLYSrDPKNxGA3ShPGYiZSmC0GY8VAkSQinOig3A%2Bo8rKkJeeWlO6jUhPw%2F3QajO3B6B1ydAG0C0HaUhj7o8ijOfKyV24EfxrW0tM9NAWE6VPUs6uveht4nLx6cs%2Ff6HUj%2B%2BPT9l7ePB2%2F8CW47VLbDJ%2BpngiV9e3TZtGTzsmkdebhY1apQa3R66is1reWx%2Bx%2FK662x4vxZt%2F7tu3xKTMftq9LVF2gpVLnkyHdnlBDSnjOWS%2FLDeXdNskuNWz7T2LKpLlx679z5orLSOWXKMajaXfwbXE3I7M0fDx7xc5MHUHYM23QomsfksKDMDnh1A646Uu8MgdVHO6zy0DbdyIbs6KdWBFoeYco6uH9hdjRvuNtYsjOg9S2URYeh7TDUHaheh2ueGdWVfXz60VfT%2BhpMz4yYtjObTFv9xUG0E%2FLqsd%2Fg1F4vCWKZsSzlQjDJRZCGURb5fihEnA5kMEDtJlKO%2FvgHAAD%2F%2FwEAAP%2F%2FjcQzwqEEAAA%3D

173.233.137.44

200 OK

0 B

URL GET HTTP/1.1
joblouder.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSzWsd1Rs%2Bk%2BYH%2FelCWgQRXVxFRcHczGdmrl0Ua60Ua1PaStfna5JjzswZzpm5k2bVWpAuuoiu1NXkuWmjNRT7Byhy46YUhNyNBDQLd66F4lJuGoi%2Bi3nfZ5538TzPez7baPaJj4buXfrIrCmt6XzS93tvXlOlMK3rXbzaC%2Fy%2Bf6p3TZUL8ane6vRjh%2B8EftL33%2Bp9IPmKmQ%2F9wPcDP%2BidU1bmZnX%2BgIWqtgdBf%2BD347AfJDFW7X%2Bxazw46kEM98lJKDH53%2FKjh1B8jLL4%2Fqx0K7Wp3n6%2FaDStjcVQbH1crpSmLVEcjbn1kJdbh9swbkLIlzMw5dahA5jh5tQBmJoQ79cArNw6lAk2vPtUKdOQJZh4Fu1wDKnHUHQMbm5BiV0CcIGLiyiLexeNben1pyydshMy%2B%2BQvqHZCZn9%2FHmXx4IxWq70rRje1MqXDat5BrY6hlsaomh3Uax5UuwNefwolfiHzTy6gLDYXnTZQYu%2B1zGcLKYvzuVBG0Vyc02husDAI51ge8SRLeZhl7CAipcZQ%2BRharoO6GTTOQ6M8NLmHpvJQiL0eTQa576c5y6MoiznnUcR5ki2IRERxlvto%2BNTDOupqHVyvg9sbqOzNb0SUyojxeINiRX2%2Bm5yEbX6CW%2B7ghAdXEwxFh1YStI6gpQStImhrgnbY3RXaha67J7RrWHDYw8MedSNTL23Qu6ZekiXZqPbJiWmM3gubx7Ei93oLYSrDPKNxGA3ShPGYiZSmC0GY8VAkSQinOig3A%2Bo8rKkJeeWlO6jUhPw%2F3QajO3B6B1ydAG0C0HaUhj7o8ijOfKyV24EfxrW0tM9NAWE6VPUs6uveht4nLx6cs%2Ff6HUj%2B%2BPT9l7ePB2%2F8CW47VLbDJ%2BpngiV9e3TZtGTzsmkdebhY1apQa3R66is1reWx%2Bx%2FK662x4vxZt%2F7tu3xKTMftq9LVF2gpVLnkyHdnlBDSnjOWS%2FLDeXdNskuNWz7T2LKpLlx679z5orLSOWXKMajaXfwbXE3I7M0fDx7xc5MHUHYM23QomsfksKDMDnh1A646Uu8MgdVHO6zy0DbdyIbs6KdWBFoeYco6uH9hdjRvuNtYsjOg9S2URYeh7TDUHaheh2ueGdWVfXz60VfT%2BhpMz4yYtjObTFv9xUG0E%2FLqsd%2Fg1F4vCWKZsSzlQjDJRZCGURb5fihEnA5kMEDtJlKO%2FvgHAAD%2F%2FwEAAP%2F%2FjcQzwqEEAAA%3D
IP
173.233.137.44:443
ASN
#7979 SERVERS-COM

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerLet's Encrypt
Subjectjoblouder.com
Fingerprint30:FD:12:BB:38:60:1D:88:0D:67:03:0F:82:44:A4:FB:76:96:FD:83
ValiditySat, 25 Nov 2023 07:50:03 GMT - Fri, 23 Feb 2024 07:50:02 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSzWsd1Rs%2Bk%2BYH%2FelCWgQRXVxFRcHczGdmrl0Ua60Ua1PaStfna5JjzswZzpm5k2bVWpAuuoiu1NXkuWmjNRT7Byhy46YUhNyNBDQLd66F4lJuGoi%2Bi3nfZ5538TzPez7baPaJj4buXfrIrCmt6XzS93tvXlOlMK3rXbzaC%2Fy%2Bf6p3TZUL8ane6vRjh%2B8EftL33%2Bp9IPmKmQ%2F9wPcDP%2BidU1bmZnX%2BgIWqtgdBf%2BD347AfJDFW7X%2Bxazw46kEM98lJKDH53%2FKjh1B8jLL4%2Fqx0K7Wp3n6%2FaDStjcVQbH1crpSmLVEcjbn1kJdbh9swbkLIlzMw5dahA5jh5tQBmJoQ79cArNw6lAk2vPtUKdOQJZh4Fu1wDKnHUHQMbm5BiV0CcIGLiyiLexeNben1pyydshMy%2B%2BQvqHZCZn9%2FHmXx4IxWq70rRje1MqXDat5BrY6hlsaomh3Uax5UuwNefwolfiHzTy6gLDYXnTZQYu%2B1zGcLKYvzuVBG0Vyc02husDAI51ge8SRLeZhl7CAipcZQ%2BRharoO6GTTOQ6M8NLmHpvJQiL0eTQa576c5y6MoiznnUcR5ki2IRERxlvto%2BNTDOupqHVyvg9sbqOzNb0SUyojxeINiRX2%2Bm5yEbX6CW%2B7ghAdXEwxFh1YStI6gpQStImhrgnbY3RXaha67J7RrWHDYw8MedSNTL23Qu6ZekiXZqPbJiWmM3gubx7Ei93oLYSrDPKNxGA3ShPGYiZSmC0GY8VAkSQinOig3A%2Bo8rKkJeeWlO6jUhPw%2F3QajO3B6B1ydAG0C0HaUhj7o8ijOfKyV24EfxrW0tM9NAWE6VPUs6uveht4nLx6cs%2Ff6HUj%2B%2BPT9l7ePB2%2F8CW47VLbDJ%2BpngiV9e3TZtGTzsmkdebhY1apQa3R66is1reWx%2Bx%2FK662x4vxZt%2F7tu3xKTMftq9LVF2gpVLnkyHdnlBDSnjOWS%2FLDeXdNskuNWz7T2LKpLlx679z5orLSOWXKMajaXfwbXE3I7M0fDx7xc5MHUHYM23QomsfksKDMDnh1A646Uu8MgdVHO6zy0DbdyIbs6KdWBFoeYco6uH9hdjRvuNtYsjOg9S2URYeh7TDUHaheh2ueGdWVfXz60VfT%2BhpMz4yYtjObTFv9xUG0E%2FLqsd%2Fg1F4vCWKZsSzlQjDJRZCGURb5fihEnA5kMEDtJlKO%2FvgHAAD%2F%2FwEAAP%2F%2FjcQzwqEEAAA%3D HTTP/1.1
Host: joblouder.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Cookie: u_pl=18326536; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; uid_id2=80b67b4f-2e33-4fa3-9692-bf3c587c288b:2:1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 28 Nov 2023 08:25:07 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 08a9c10e435160ea1f142f644cb656ea
Strict-Transport-Security: max-age=0; includeSubdomains

s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/assets/libs/facebook.min.js

90.84.161.20

200 OK

4.1 kB

URL GET HTTP/2
s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/assets/libs/facebook.min.js
IP
90.84.161.20:443
ASN
#0

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert Inc
Subject*.teraboxcdn.com
Fingerprint4C:36:32:B9:A0:68:F6:C2:A7:95:E4:E6:DA:DA:D7:AF:7A:C3:41:44
ValidityTue, 28 Mar 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT

File type
ASCII text, with very long lines (4246), with no line terminators
Size
4.1 kB (4053 bytes)
Hash
a80e27408d2ae3596aadac56d9c72ed0
37348a3ed8934ee41f99a05149abce511cc9ba67
bd7f1f57a1a99c9473f1c10db30eee2abfdcbffda0c1992ece9948db001502eb

HTTP Headers

GET /fe-opera-static/node-static-v4/fe-webv4-main/assets/libs/facebook.min.js HTTP/1.1
Host: s2.teraboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 28 Nov 2023 08:25:00 GMT
content-type: application/javascript
server: openresty
access-control-allow-credentials: true
access-control-allow-methods: GET, HEAD, POST, PUT
access-control-expose-headers: ETag, Content-Length, x-bce-next-append-offset, x-bce-object-type, x-bce-request-id
access-control-max-age: 1800
content-md5: Aowl118tEMuXoOFINDERYw==
etag: W/"028c25d75f2d10cb97a0e14834311163"
expires: Sat, 24 Sep 2022 06:46:06 GMT
last-modified: Wed, 21 Sep 2022 05:03:33 GMT
x-bce-content-crc32: 3600293201
x-bce-debug-id: drF3pXV387iC2EyFCn4G8jIjxuuDcbNW6JT4jDmhDeNosKMTV4jVPaeR4QxYWsldtHHLV0pqg9KhEHfx+45FOQ==
x-bce-request-id: 1e1dfa93-d4b6-4000-b380-bdf1ecb59464
x-bce-restore-cache: -
x-bce-restore-tier: -
x-bce-storage-class: STANDARD
x-ccdn-expires: 1729907
via: EU-GER-frankfurt-EDGE5-CACHE2[10],EU-GER-frankfurt-EDGE5-CACHE2[0,TCP_HIT,0],EU-GER-frankfurt-GLOBAL1-CACHE3[3],EU-GER-frankfurt-GLOBAL1-CACHE10[0,TCP_HIT,2],EA-SGP-GLOBAL1-CACHE9[4],EA-SGP-GLOBAL1-CACHE30[0,TCP_HIT,2]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 2592000
nginx-hit: 1
age: 24209757
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-5e25226a.54e0bcd6.js

90.84.161.20

200 OK

26 kB

URL GET HTTP/2
s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-5e25226a.54e0bcd6.js
IP
90.84.161.20:443
ASN
#0

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert Inc
Subject*.teraboxcdn.com
Fingerprint4C:36:32:B9:A0:68:F6:C2:A7:95:E4:E6:DA:DA:D7:AF:7A:C3:41:44
ValidityTue, 28 Mar 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT

File type

Size
26 kB (26541 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-5e25226a.54e0bcd6.js HTTP/1.1
Host: s2.teraboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 28 Nov 2023 08:25:01 GMT
content-type: application/javascript
server: openresty
content-md5: xC9jHcTnsHHf7cEqVH+buQ==
etag: W/"c42f631dc4e7b071dfedc12a547f9bb9"
expires: Thu, 30 Nov 2023 08:59:34 GMT
last-modified: Mon, 27 Nov 2023 03:06:50 GMT
x-bce-content-crc32: 92452786
x-bce-debug-id: K2X9lIphgkqRGFiI7g2dxoflLasFhxFan7a9znE54WJIwSZLJZXggPZuat+M+km5R80v2P3AL+YMFSIyxxF/4A==
x-bce-flow-control-type: -1
x-bce-is-transition: false
x-bce-request-id: 6c1014ef-9775-4a4e-9e48-35c5e3c172b1
x-bce-storage-class: STANDARD
x-ccdn-expires: 2548290
via: EU-GER-frankfurt-EDGE5-CACHE2[1],EU-GER-frankfurt-EDGE5-CACHE6[0,TCP_HIT,0],EU-GER-frankfurt-GLOBAL1-CACHE8[3],EU-GER-frankfurt-GLOBAL1-CACHE6[0,TCP_HIT,2]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 2592000
nginx-hit: 1
age: 83599
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/assets/libs/kakao.min.js

90.84.161.20

200 OK

115 kB

URL GET HTTP/2
s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/assets/libs/kakao.min.js
IP
90.84.161.20:443
ASN
#0

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert Inc
Subject*.teraboxcdn.com
Fingerprint4C:36:32:B9:A0:68:F6:C2:A7:95:E4:E6:DA:DA:D7:AF:7A:C3:41:44
ValidityTue, 28 Mar 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT

File type

Size
115 kB (114576 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /fe-opera-static/node-static-v4/fe-webv4-main/assets/libs/kakao.min.js HTTP/1.1
Host: s2.teraboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 28 Nov 2023 08:25:00 GMT
content-type: application/javascript
server: openresty
access-control-allow-credentials: true
access-control-allow-methods: GET, HEAD, POST, PUT
access-control-expose-headers: ETag, Content-Length, x-bce-next-append-offset, x-bce-object-type, x-bce-request-id
access-control-max-age: 1800
content-md5: Ng3YsEXIR8ylP6d+vhUKPw==
etag: W/"360dd8b045c847cca53fa77ebe150a3f"
expires: Sat, 24 Sep 2022 06:46:06 GMT
last-modified: Wed, 21 Sep 2022 05:03:33 GMT
x-bce-content-crc32: 3787281588
x-bce-debug-id: NdXOHvJhWdykwQRMkfwzkNsOZ5AZbm+dI56Adia+fvxzTQbCnAlm9HuK5oYXV0mvHXmPazsRbY1yj9LO6Ud5AQ==
x-bce-request-id: 95d5b42d-7d75-47b4-acd7-57e276abb336
x-bce-restore-cache: -
x-bce-restore-tier: -
x-bce-storage-class: STANDARD
x-ccdn-expires: 1729907
via: EU-GER-frankfurt-EDGE5-CACHE2[5],EU-GER-frankfurt-EDGE5-CACHE3[0,TCP_HIT,0],EU-GER-frankfurt-GLOBAL1-CACHE4[3],EU-GER-frankfurt-GLOBAL1-CACHE9[0,TCP_HIT,2],EA-SGP-GLOBAL1-CACHE5[4],EA-SGP-GLOBAL1-CACHE7[0,TCP_HIT,3]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 2592000
nginx-hit: 1
age: 24209757
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-3c39bfc4.baa0ab5e.js

90.84.161.20

200 OK

547 kB

URL GET HTTP/2
s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-3c39bfc4.baa0ab5e.js
IP
90.84.161.20:443
ASN
#0

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert Inc
Subject*.teraboxcdn.com
Fingerprint4C:36:32:B9:A0:68:F6:C2:A7:95:E4:E6:DA:DA:D7:AF:7A:C3:41:44
ValidityTue, 28 Mar 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT

File type

Size
547 kB (547317 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-3c39bfc4.baa0ab5e.js HTTP/1.1
Host: s2.teraboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 28 Nov 2023 08:25:05 GMT
content-type: application/javascript
server: openresty
content-md5: J2TcvyWm6gv2Eaqsv2udoA==
etag: W/"2764dcbf25a6ea0bf611aaacbf6b9da0"
expires: Sat, 04 Nov 2023 08:02:39 GMT
last-modified: Wed, 01 Nov 2023 07:11:44 GMT
x-bce-content-crc32: 568789530
x-bce-debug-id: xbaDKK50jlBZJ18L45fu3bSp+fDzE/r7QhsyaypWutuc/ChXmeJlm9RANAVDEiI6LAFEIbdQCthtn8HiVncnMQ==
x-bce-flow-control-type: -1
x-bce-is-transition: false
x-bce-request-id: 45ec87e7-f8da-4b01-bf46-6d2b8c70cc37
x-bce-storage-class: STANDARD
x-ccdn-expires: 273453
via: EU-GER-frankfurt-EDGE5-CACHE2[2],EU-GER-frankfurt-EDGE5-CACHE5[0,TCP_HIT,0],EU-GER-frankfurt-GLOBAL1-CACHE6[31],EU-GER-frankfurt-GLOBAL1-CACHE14[0,TCP_HIT,29]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 2592000
nginx-hit: 1
age: 2333767
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

sofire.bdstatic.com/js/fsec-hd.js

60.190.116.48

200 OK

295 kB

URL GET HTTP/2
sofire.bdstatic.com/js/fsec-hd.js
IP
60.190.116.48:443
ASN
#4134 Chinanet

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT

File type

Size
295 kB (295197 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /js/fsec-hd.js HTTP/1.1
Host: sofire.bdstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: JSP3/2.0.14
date: Tue, 28 Nov 2023 08:25:01 GMT
content-type: text/javascript
expires: Thu, 30 Nov 2023 03:12:08 GMT
last-modified: Fri, 30 Jun 2023 07:31:01 GMT
etag: "834113d1867d8ec45fc41e3c692fdead"
content-encoding: br
age: 94325
accept-ranges: bytes
content-md5: g0ET0YZ9jsRfxB48aS/erQ==
x-bce-content-crc32: 1744549445
x-bce-debug-id: OpAI/YsGDxPA7KJwy3hkIg/Qi7pvbu7nGDz77YfG2ongeXSU84MMeDcIpIgQ9RIQAc+BUAU3z3NpX7Ups27V8Q==
x-bce-flow-control-type: -1
x-bce-is-transition: false
x-bce-request-id: acf1816d-2c7d-4d27-946b-d819e10fa80f
x-bce-storage-class: STANDARD
ohc-global-saved-time: Mon, 27 Nov 2023 03:12:08 GMT
ohc-cache-hit: wz2ct50 [2], nb2ctcache78 [2]
ohc-response-time: 1 0 0 0 0 0
X-Firefox-Spdy: h2

s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-fdedac32.68a159c0.js

90.84.161.20

200 OK

66 kB

URL GET HTTP/2
s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-fdedac32.68a159c0.js
IP
90.84.161.20:443
ASN
#0

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert Inc
Subject*.teraboxcdn.com
Fingerprint4C:36:32:B9:A0:68:F6:C2:A7:95:E4:E6:DA:DA:D7:AF:7A:C3:41:44
ValidityTue, 28 Mar 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65473), with no line terminators
Size
66 kB (65473 bytes)
Hash
7ef31ee9994bb8ea5f0546db9d84f5a2
96677ba8663e1a15b90a28b317a621c44288d4b4
a127c7a05c4834b7ccccedbb750031e366b1494bbb719a2f082c92eac19a9d50

HTTP Headers

GET /fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-fdedac32.68a159c0.js HTTP/1.1
Host: s2.teraboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 28 Nov 2023 08:25:05 GMT
content-type: application/javascript
server: openresty
content-md5: fvMe6ZlLuOpfBUbbnYT1og==
etag: W/"7ef31ee9994bb8ea5f0546db9d84f5a2"
expires: Thu, 17 Aug 2023 11:01:40 GMT
last-modified: Mon, 14 Aug 2023 05:25:49 GMT
x-bce-content-crc32: 3183863461
x-bce-debug-id: AQBq72xN1KX+ruW3aqp1xkmekXXaYh0i39b8sd2sQtmjC5dG590ZtpaEFSUwE16V73TOukcLyO6ly/sQLIZ4bg==
x-bce-flow-control-type: -1
x-bce-is-transition: false
x-bce-request-id: b4d412dc-3e8c-456b-bf34-9d06ca0b4fd9
x-bce-storage-class: STANDARD
via: EU-GER-frankfurt-EDGE5-CACHE2[4],EU-GER-frankfurt-EDGE5-CACHE3[0,TCP_HIT,0],EU-GER-frankfurt-GLOBAL1-CACHE6[1934],EU-GER-frankfurt-GLOBAL1-CACHE14[953,TCP_MISS,1933]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 2592000
nginx-hit: 1
age: 9149004
x-ccdn-expires: 1471038
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/assets/libs/apple.min.js

90.84.161.20

200 OK

42 kB

URL GET HTTP/2
s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/assets/libs/apple.min.js
IP
90.84.161.20:443
ASN
#0

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert Inc
Subject*.teraboxcdn.com
Fingerprint4C:36:32:B9:A0:68:F6:C2:A7:95:E4:E6:DA:DA:D7:AF:7A:C3:41:44
ValidityTue, 28 Mar 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT

File type

Size
42 kB (42477 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /fe-opera-static/node-static-v4/fe-webv4-main/assets/libs/apple.min.js HTTP/1.1
Host: s2.teraboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 28 Nov 2023 08:25:00 GMT
content-type: application/javascript
server: openresty
content-md5: FF9mC4xH7SHLDq/gVBei9Q==
etag: W/"145f660b8c47ed21cb0eafe05417a2f5"
expires: Sun, 05 Feb 2023 11:19:03 GMT
last-modified: Thu, 02 Feb 2023 02:44:27 GMT
x-bce-content-crc32: 3041762371
x-bce-debug-id: GooNofUHCftVSaaHEC+AzAr4FYXPEZIzOsKJwWjn94XbPwUKv4MuSNK5CZJOH/HsmlldVHL9LxC5wuj+MNetYw==
x-bce-request-id: 96560a78-91ad-47e1-a285-8df2f8efcb9d
x-bce-storage-class: STANDARD
x-ccdn-expires: 1729907
via: EU-GER-frankfurt-EDGE5-CACHE2[4],EU-GER-frankfurt-EDGE5-CACHE2[0,TCP_HIT,0],EU-GER-frankfurt-GLOBAL1-CACHE6[3],EU-GER-frankfurt-GLOBAL1-CACHE2[0,TCP_HIT,2]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 2592000
nginx-hit: 1
age: 24209757
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-94864b88.e650f8c9.js

90.84.161.20

200 OK

42 kB

URL GET HTTP/2
s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-94864b88.e650f8c9.js
IP
90.84.161.20:443
ASN
#0

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert Inc
Subject*.teraboxcdn.com
Fingerprint4C:36:32:B9:A0:68:F6:C2:A7:95:E4:E6:DA:DA:D7:AF:7A:C3:41:44
ValidityTue, 28 Mar 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT

File type
ASCII text, with very long lines (42360), with no line terminators
Size
42 kB (42360 bytes)
Hash
b01f195e94b0848122ac3314f5395721
b87bc53a44a6234f7c089f3119066f9647d21903
09ae6d6c48f2c2b47426e8c362471444673201e2583c5525b442133a8b5c80cb

HTTP Headers

GET /fe-opera-static/node-static-v4/fe-webv4-main/js/chunk-94864b88.e650f8c9.js HTTP/1.1
Host: s2.teraboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 28 Nov 2023 08:25:01 GMT
content-type: application/javascript
server: openresty
content-md5: sB8ZXpSwhIEirDMU9TlXIQ==
etag: W/"b01f195e94b0848122ac3314f5395721"
expires: Mon, 22 May 2023 08:06:09 GMT
last-modified: Fri, 19 May 2023 06:11:01 GMT
x-bce-content-crc32: 1763380652
x-bce-debug-id: 6/t1aZ0T4wIW5Mpdrs6rwONcVe50LnzXyMl/KxoZOSjgTHz/QchFlwkYo5YFdGxYjuFFLRMdxpL02NaFeSWQqg==
x-bce-request-id: 3b4dea47-19f8-48e2-a389-1652fd45a67a
x-bce-storage-class: STANDARD
via: EU-GER-frankfurt-EDGE5-CACHE2[1],EU-GER-frankfurt-EDGE5-CACHE5[0,TCP_HIT,0],EU-GER-frankfurt-GLOBAL1-CACHE14[1059],EU-GER-frankfurt-GLOBAL1-CACHE12[774,TCP_MISS,1057]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 2592000
nginx-hit: 1
age: 16676331
x-ccdn-expires: 1741617
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

cdn.creative-bars1.com/sb/ssp/vpn/classic-push/big1/js/script.js

0.0.0.0

958 B

URL GET
cdn.creative-bars1.com/sb/ssp/vpn/classic-push/big1/js/script.js
IP
0.0.0.0:0
ASN
#0

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT

File type
ASCII text, with very long lines (1009), with no line terminators
Size
958 B (958 bytes)
Hash
04835fd7dd7f8cfbad901bee8cff2170
38e9ed1e93f8f0beba9447a99afe3995e63b6f3e
be63bbd38c66ca9a9ee1c8abfed042fd5fc090c40b91ad561e922744ece47c41

HTTP Headers

GET /sb/ssp/vpn/classic-push/big1/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.1024tera.com
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 28 Nov 2023 08:25:13 GMT
content-type: application/javascript
last-modified: Mon, 21 Feb 2022 10:06:46 GMT
etag: W/"62136436-3be"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 151377
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cJVC38%2FaILa3qw7ZGlkeUGt%2FZhCJnHtebOVa%2FSxQMe4RWci416tDRKxAD%2B1fMytzxx5mF7X7NkuwYzZsSKMJjictre%2BF2LdkJB1ZZqDbB%2FEr%2BC4qs4LdQMqYI5ssu5QCOAOu0e0oZzp1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82d13813bae388c1-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/share.fe18f530.js

90.84.161.20

200 OK

1.1 MB

URL GET HTTP/2
s2.teraboxcdn.com/fe-opera-static/node-static-v4/fe-webv4-main/js/share.fe18f530.js
IP
90.84.161.20:443
ASN
#0

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert Inc
Subject*.teraboxcdn.com
Fingerprint4C:36:32:B9:A0:68:F6:C2:A7:95:E4:E6:DA:DA:D7:AF:7A:C3:41:44
ValidityTue, 28 Mar 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT

File type

Size
1.1 MB (1053282 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /fe-opera-static/node-static-v4/fe-webv4-main/js/share.fe18f530.js HTTP/1.1
Host: s2.teraboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 28 Nov 2023 08:25:00 GMT
content-type: application/javascript
server: openresty
content-md5: rdWS6ofs8OpmcmYSiGnOhg==
etag: W/"add592ea87ecf0ea667266128869ce86"
expires: Thu, 30 Nov 2023 08:59:35 GMT
last-modified: Mon, 27 Nov 2023 03:07:00 GMT
x-bce-content-crc32: 2351142310
x-bce-debug-id: Euh2TOBZCzLFdtEsMdWSrmbSkF9sbDOwY8VdofX9HAZ3X8rsCZvQrVlOmDj8VEi/NLcP/QhSeYa0dgerGwdj1w==
x-bce-flow-control-type: -1
x-bce-is-transition: false
x-bce-request-id: dfde89f1-160f-472f-a72c-786ef119905c
x-bce-storage-class: STANDARD
x-ccdn-expires: 2523621
via: EU-GER-frankfurt-EDGE5-CACHE2[19],EU-GER-frankfurt-EDGE5-CACHE4[0,TCP_HIT,0],EU-GER-frankfurt-GLOBAL1-CACHE7[19],EU-GER-frankfurt-GLOBAL1-CACHE4[0,TCP_HIT,16]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 2592000
nginx-hit: 1
age: 83593
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

www.1024tera.com/api/analytics?errno=-6&newno=&request_id=8845611366401347000&show_msg=&hasError=true&params=%7B%22bdstoken%22%3A%22%22%7D&uk=0&type=%2Fshare%2Fwebmaster%2Fcheck_web_interface_error&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159906958

210.148.85.59

200 OK

44 B

URL GET HTTP/1.1
www.1024tera.com/api/analytics?errno=-6&newno=&request_id=8845611366401347000&show_msg=&hasError=true&params=%7B%22bdstoken%22%3A%22%22%7D&uk=0&type=%2Fshare%2Fwebmaster%2Fcheck_web_interface_error&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159906958
IP
210.148.85.59:443
ASN
#2497 Internet Initiative Japan Inc.

Requested by
https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Certificate
IssuerDigiCert, Inc.
Subject*.1024tera.com
Fingerprint9E:0F:BF:36:D3:08:81:C2:8D:06:5F:95:19:D2:19:F6:1D:B7:E8:AA
ValidityFri, 13 Jan 2023 00:00:00 GMT - Fri, 12 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
e7e4d7afe9d4adcb7ed012cc800b5fe2
dd6ce7e2a2ec13f0d08a5009318c145f57c9e13b
157ae843f5e0d0c8dd65403328f47c8b0d58036aadee017c15864834ecc1843e

HTTP Headers

GET /api/analytics?errno=-6&newno=&request_id=8845611366401347000&show_msg=&hasError=true&params=%7B%22bdstoken%22%3A%22%22%7D&uk=0&type=%2Fshare%2Fwebmaster%2Fcheck_web_interface_error&clienttype=0&version=v5&currentUrl=https%3A%2F%2Fwww.1024tera.com%2Fsharing%2Flink%3Fsurl%3DCdjAXlai_BSgrgOd4RzKGw&client=web&t=1701159906958 HTTP/1.1
Host: www.1024tera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.1024tera.com/sharing/link?surl=CdjAXlai_BSgrgOd4RzKGw
Cookie: csrfToken=4Vt6CgohbqkZ3cirKQJBR5Ej; browserid=AUfkmen4zPJBF4QFNgpghon-7jUVSBTUQ-HC_zz50O9YedwwEqCbq8WMvEk=; lang=en; TSID=8oGr5SqlmU4uDDMb2BoYCzDaEyG9vBu4; __bid_n=18c150826f3eec17074207
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: keep-alive
Content-Type: image/jpeg; charset=UTF-8
Date: Tue, 28 Nov 2023 08:25:03 GMT
Flow-Level: 3
Logid: 8845611446160685925
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: nginx
X-Powered-By: DuboxServer
Yld: 8845611446160685925
Yme: ZIGW+Ss3QEobdTcAUmr/tG1MvuUZTBz0qwpNwyKAKUKCpxU=
Content-Length: 44

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (74)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by