Overview

URL https://kanjinvivx.xyz/21117/2752/kg7dg8
IP37.49.225.10
ASNAS50673 Serverius Holding B.V.
Location Netherlands
Report completed2019-05-21 21:27:55 CEST
StatusLoading report..
urlquery Alerts Fake software update


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro
Timestamp Severity Source IP Destination IP Alert
2019-05-21 21:27:22 CEST 2  37.49.225.10 Client IP ET INFO Observed Let's Encrypt Certificate for Suspicious TLD (.xyz)


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter  No alerts detected
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 37.49.225.10

Date UQ / IDS / BL URL IP
2019-06-05 02:59:05 +0200
6 - 1 - 0 https://turbulencedqfxhe.xyz/41754/2779/ix7jqd/aal 37.49.225.10
2019-06-02 22:38:11 +0200
6 - 1 - 0 https://carousalkhkpde.xyz/21335/2796/5hrki 37.49.225.10
2019-05-23 22:56:55 +0200
6 - 1 - 0 https://alluviawwicc.xyz/231353/256/bxa8d/c9v (...) 37.49.225.10
2019-05-19 17:19:43 +0200
6 - 1 - 0 https://bivalencelyzlvvjol.xyz/19818/2797/ezn (...) 37.49.225.10
2019-05-18 22:56:54 +0200
6 - 1 - 0 https://bloopniglik.xyz/181354/256/w02p8w/g2f 37.49.225.10
2019-05-18 22:56:48 +0200
0 - 1 - 0 https://bloopniglik.xyz/aff/ 37.49.225.10
2019-05-16 10:00:44 +0200
6 - 1 - 0 https://goldsmithszxejspmlu.xyz/16059/2781/mw (...) 37.49.225.10
2019-05-16 00:56:47 +0200
6 - 0 - 0 https://vhkwsmalander.review/151555/197/6ncgnds 37.49.225.10
2019-05-15 06:16:58 +0200
0 - 1 - 0 corollasgcusna.xyz/affiliate/?affid=ODllOTI2N (...) 37.49.225.10
2019-05-13 13:17:25 +0200
6 - 1 - 0 https://rtr108adc.host/13350/2798/7iyu 37.49.225.10

Last 10 reports on ASN: AS50673 Serverius Holding B.V.

Date UQ / IDS / BL URL IP
2019-06-25 17:18:28 +0200
0 - 0 - 0 tre.tithis.com 185.53.163.220
2019-06-25 04:02:54 +0200
0 - 0 - 0 5.45.79.15/input/?mark=20190623-www.relations (...) 5.45.79.15
2019-06-21 09:06:12 +0200
0 - 0 - 0 https://2conv.com/youtube-mp3/ 5.45.73.21
2019-06-21 04:13:19 +0200
0 - 0 - 1 5.45.79.15/input/?mark=20190620-www.rksoundse (...) 5.45.79.15
2019-06-20 11:26:05 +0200
0 - 0 - 0 teenphotoclub.net/ 5.45.67.187
2019-06-20 08:08:12 +0200
0 - 0 - 0 5.45.79.15/input/?mark=20190619-h2806836.stra (...) 5.45.79.15
2019-06-20 02:52:33 +0200
0 - 0 - 1 www.officesaceserver.net/login.php 5.255.86.108
2019-06-19 17:43:52 +0200
0 - 0 - 0 bunnylust.info/ 5.45.67.187
2019-06-19 17:43:23 +0200
0 - 0 - 0 cutelils.info/ 37.1.201.205
2019-06-19 17:40:21 +0200
0 - 1 - 0 teenphotoclub.net/ 5.45.67.187

No other reports on domain: kanjinvivx.xyz



JavaScript

Executed Scripts (16)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (21)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: ocsp.int-x3.letsencrypt.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 117
Content-Type: application/ocsp-request

                                         
                                         80.239.159.24
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 527
Etag: "CCB23C2A7490D7B19F7C1FC0CE7E1F52E9464E324350E66B12F3D7A26C7ECF76"
Last-Modified: Tue, 21 May 2019 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=43192
Expires: Wed, 22 May 2019 07:27:13 GMT
Date: Tue, 21 May 2019 19:27:21 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   527
Md5:    3b305332366ad16bd8205c3f06060962
Sha1:   3327886fca7b2e7c3471b51dbc9362a9392a9678
Sha256: ccb23c2a7490d7b19f7c1fc0ce7e1f52e9464e324350e66b12f3d7a26c7ecf76
                                        
                                            POST / HTTP/1.1 
Host: isrg.trustid.ocsp.identrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         80.239.159.56
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Content-Transfer-Encoding: Binary
Last-Modified: Sat, 18 May 2019 23:21:14 GMT
Etag: "53eb4eb526983d12f4d0e7d5d6f97583e4a83622"
Content-Length: 1398
Cache-Control: public, no-transform, must-revalidate, max-age=6115
Expires: Tue, 21 May 2019 21:09:16 GMT
Date: Tue, 21 May 2019 19:27:21 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1398
Md5:    a87123bd1d322afc5990a4ccce594576
Sha1:   53eb4eb526983d12f4d0e7d5d6f97583e4a83622
Sha256: 0b50c846dbb78c92885c681139cfa3da783969b6950912985a438080b0916303
                                        
                                            GET /21117/2752/kg7dg8 HTTP/1.1 
Host: kanjinvivx.xyz
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         37.49.225.10
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Cache-Control: private
Server: Microsoft-IIS/8.5
Set-Cookie: ASP.NET_SessionId=mdeqvd2sowkultc0itwiw4bh; path=/; HttpOnly
X-AspNet-Version: 4.0.30319
X-AspNetMvc-Version: 3.0
X-Powered-By: ASP.NET, ARR/3.0
Date: Tue, 21 May 2019 19:27:21 GMT
Content-Length: 39414


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   39414
Md5:    f94355936980ef3bccc8ed96fb124464
Sha1:   a70c9665b95f18750cf27e380a39a5b4dc58c855
Sha256: 82fc6f191a4630527ccbbeb62da900978e85b9fabbaa813844fd61db7b0ce82f

Alerts:
  urlquery:
    - Fake software update
    - Fake software update
    - Fake software update
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 21 May 2019 19:27:22 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    060591c6e1f425192c736e9c21d3903b
Sha1:   f1da8738e6505e223766235cd5b2cfd930be529a
Sha256: 5456603daa36c44856c54ea2341efadbb36368f2d84a02ab7b649d1e0d1683fb
                                        
                                            POST /gsr2 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 112
Content-Type: application/ocsp-request

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 21 May 2019 19:27:22 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 468
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   468
Md5:    5be872b3fe0bb6f31385f91f811e9586
Sha1:   1192231bcb9ee73e9f619d433cdb66dddd9ae7f7
Sha256: db0ad6191770bff9043482b68acf62a4e25d4390a03274cfbe413675dd8c9cf5
                                        
                                            GET /Content/base_css?v=1d-1cfSqt6lOwl5heyrpAxjL1U7gghxeKvIiUv6U_MQ1 HTTP/1.1 
Host: kanjinvivx.xyz
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://kanjinvivx.xyz/21117/2752/kg7dg8
Cookie: ASP.NET_SessionId=mdeqvd2sowkultc0itwiw4bh

                                         
                                         37.49.225.10
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Cache-Control: public
Expires: Wed, 20 May 2020 19:27:16 GMT
Last-Modified: Tue, 21 May 2019 19:27:16 GMT
Vary: User-Agent
Server: Microsoft-IIS/8.5
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET, ARR/3.0
Date: Tue, 21 May 2019 19:27:22 GMT
Content-Length: 14851


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   14851
Md5:    177b8d19866d188bd800a3dd738c0a29
Sha1:   ccc87fcaf026331e478fb5e1960b5ea0ac34f0ec
Sha256: 2d7dd4d6e3748957bac988c43c39edc346b24cfa888d8756085992d731a6fafd
                                        
                                            GET /Content/installer_css?v=_JfUKt2235VBDROysvy-geeSoFUQLeERl3VNLwRqVjg1 HTTP/1.1 
Host: kanjinvivx.xyz
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://kanjinvivx.xyz/21117/2752/kg7dg8
Cookie: ASP.NET_SessionId=mdeqvd2sowkultc0itwiw4bh

                                         
                                         37.49.225.10
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Cache-Control: public
Expires: Wed, 20 May 2020 19:27:16 GMT
Last-Modified: Tue, 21 May 2019 19:27:16 GMT
Vary: User-Agent
Server: Microsoft-IIS/8.5
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET, ARR/3.0
Date: Tue, 21 May 2019 19:27:22 GMT
Content-Length: 2731


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   2731
Md5:    38e525c5a8563c0b7f57f6aa424700ba
Sha1:   dc6bc76ce37b7aae2938cfcb9229dfcd01b7f226
Sha256: 3bb9273a426a0f38f2a206c579db0d24f1b3e8bd1951d7998b18b21e8efad1a8
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 21 May 2019 19:27:22 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    212ca4c755d4f4c0c15e78a70362bbaa
Sha1:   95582a0969562b958700d7be27da19f2005aed02
Sha256: 5f5221d5674c41ca3997b741627b88d99696426442a0b957806cba4e5d8a3bed
                                        
                                            GET /firebasejs/5.7.3/firebase-app.js HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://kanjinvivx.xyz/21117/2752/kg7dg8

                                         
                                         172.217.21.131
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 12439
Date: Fri, 19 Apr 2019 15:20:45 GMT
Expires: Sat, 18 Apr 2020 15:20:45 GMT
Last-Modified: Thu, 10 Jan 2019 22:17:13 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Cache-Control: public, max-age=31536000
Age: 2779597
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   12439
Md5:    c807bcf394a0eab42220348927b10335
Sha1:   1151f352652e6945e8544b813c5c5424b6b50eb1
Sha256: ab0dd7166be9496f4b81aa83c4cf460380caee670a1f678e06b44b236b81d14b
                                        
                                            GET /ajax/libs/jquery/1.8.1/jquery.min.js HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://kanjinvivx.xyz/21117/2752/kg7dg8

                                         
                                         216.58.207.234
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 33396
Date: Fri, 19 Apr 2019 15:03:28 GMT
Expires: Sat, 18 Apr 2020 15:03:28 GMT
Last-Modified: Tue, 20 Dec 2016 18:17:03 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 2780634
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   33396
Md5:    dcbc552778305133e394afce2e9bf721
Sha1:   3fbecf315de38a54bf0c7cff631c6f8c1bb25505
Sha256: c2c6434e716fdb0254ffd7b34dcbc5b24fd22d511d41cca99f84b75ed6bc3ff2
                                        
                                            GET /firebasejs/5.7.3/firebase-messaging.js HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://kanjinvivx.xyz/21117/2752/kg7dg8

                                         
                                         172.217.21.131
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 10096
Date: Fri, 19 Apr 2019 15:34:54 GMT
Expires: Sat, 18 Apr 2020 15:34:54 GMT
Last-Modified: Thu, 10 Jan 2019 22:17:19 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Cache-Control: public, max-age=31536000
Age: 2778748
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   10096
Md5:    c26b7c1f25de454a1f20a34faf32d299
Sha1:   b8a6e733eb0906af5b19195f87cacba7250a3570
Sha256: e840d71893721addc70412e97a6476951beb118515e0a490a0bdc7a8d90faae3
                                        
                                            GET /firebasejs/5.7.3/firebase-auth.js HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://kanjinvivx.xyz/21117/2752/kg7dg8

                                         
                                         172.217.21.131
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 49130
Date: Fri, 19 Apr 2019 15:25:47 GMT
Expires: Sat, 18 Apr 2020 15:25:47 GMT
Last-Modified: Thu, 10 Jan 2019 22:17:19 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Cache-Control: public, max-age=31536000
Age: 2779295
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   49130
Md5:    8a997e55bcd4c2a40c3cd060bb9cb009
Sha1:   1d1465fc54bbf3af21d19679e7ff23e2407e153f
Sha256: 0a7b7fd6267dda0b40c8597bd7a699d338b9d51f881ec9c754c5e9ff198a6cff
                                        
                                            GET /Scripts/helpers?v=jl0dnMa1Mj7nUjzvl4qPSaf1uYI7zmel6ZBZGpQuj0I1 HTTP/1.1 
Host: kanjinvivx.xyz
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://kanjinvivx.xyz/21117/2752/kg7dg8
Cookie: ASP.NET_SessionId=mdeqvd2sowkultc0itwiw4bh

                                         
                                         37.49.225.10
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
                                        
Cache-Control: public
Expires: Wed, 20 May 2020 19:27:15 GMT
Last-Modified: Tue, 21 May 2019 19:27:15 GMT
Vary: User-Agent
Server: Microsoft-IIS/8.5
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET, ARR/3.0
Date: Tue, 21 May 2019 19:27:22 GMT
Content-Length: 7681


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   7681
Md5:    4e604ddd6c7525e79c82d43aac09b4ec
Sha1:   c74dbfab4c1bcbcc9c483561a49c4ef6fad17a7a
Sha256: 62fd34d2c1be2bb0bb61b54e12f72f5700df265a7ea418bbc0d1785e227630e6
                                        
                                            GET /scripts/moment-with-locales.min.js HTTP/1.1 
Host: kanjinvivx.xyz
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://kanjinvivx.xyz/21117/2752/kg7dg8
Cookie: ASP.NET_SessionId=mdeqvd2sowkultc0itwiw4bh

                                         
                                         37.49.225.10
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Encoding: gzip
Last-Modified: Fri, 18 Jan 2019 17:08:34 GMT
Accept-Ranges: bytes
Etag: "015ad7150afd41:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET, ARR/3.0
Date: Tue, 21 May 2019 19:27:22 GMT
Content-Length: 66729


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), max speed
Size:   66729
Md5:    7e93d3391f16e8bc601e2fcfca99ffc0
Sha1:   ec1ba18cc141c8bfe2af13005a67ed61f99f23df
Sha256: 4decfc42fe01397557f74284925ea21deccfc13c80beaee68abd0a0e5500c501
                                        
                                            GET /Content/images/installer_button.jpg HTTP/1.1 
Host: kanjinvivx.xyz
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://kanjinvivx.xyz/Content/installer_css?v=_JfUKt2235VBDROysvy-geeSoFUQLeERl3VNLwRqVjg1
Cookie: ASP.NET_SessionId=mdeqvd2sowkultc0itwiw4bh

                                         
                                         37.49.225.10
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: max-age=1800
Last-Modified: Thu, 13 Mar 2014 00:23:06 GMT
Accept-Ranges: bytes
Etag: "0d16567523ecf1:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET, ARR/3.0
Date: Tue, 21 May 2019 19:27:22 GMT
Content-Length: 1851


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   1851
Md5:    5d211f9206495b550cc4269be5da405c
Sha1:   9f24ea514edebf87aacfec4981fbf18e7700972e
Sha256: c85ebc9d6fa2c83f4cc94114d30a2d61cc207375478a7e0374590967fe1aa0d3
                                        
                                            GET /Content/images/firefox_download_hint.png HTTP/1.1 
Host: kanjinvivx.xyz
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://kanjinvivx.xyz/21117/2752/kg7dg8
Cookie: ASP.NET_SessionId=mdeqvd2sowkultc0itwiw4bh

                                         
                                         37.49.225.10
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Cache-Control: max-age=1800
Last-Modified: Wed, 12 Mar 2014 21:33:18 GMT
Accept-Ranges: bytes
Etag: "063e0ae3a3ecf1:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET, ARR/3.0
Date: Tue, 21 May 2019 19:27:22 GMT
Content-Length: 72129


--- Additional Info ---
Magic:  PNG image, 840 x 326, 8-bit/color RGBA, non-interlaced
Size:   72129
Md5:    9417a22237c973c9193ad093a0aff6ec
Sha1:   79a6722ae541d87e2812bc5dc4d022e5d9174983
Sha256: 0c1d593b4d1ad9c8049eb8c1b1770dcc645ad1d5127c8764f034e0fb45561f23
                                        
                                            GET /Content/images/jv_background_nologo.png HTTP/1.1 
Host: kanjinvivx.xyz
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://kanjinvivx.xyz/21117/2752/kg7dg8
Cookie: ASP.NET_SessionId=mdeqvd2sowkultc0itwiw4bh

                                         
                                         37.49.225.10
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Cache-Control: max-age=1800
Last-Modified: Mon, 27 Nov 2017 17:14:28 GMT
Accept-Ranges: bytes
Etag: "0726b2ea367d31:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET, ARR/3.0
Date: Tue, 21 May 2019 19:27:22 GMT
Content-Length: 17797


--- Additional Info ---
Magic:  PNG image, 507 x 376, 8-bit/color RGBA, non-interlaced
Size:   17797
Md5:    9730ff9a0069e534eb6f739ab191f02b
Sha1:   7d1b41c9fc689bafb6030ed576d0ab00dc370f14
Sha256: 6687e3eceec082a8068c2028b09c9b2f05ede065847eb374d32007edd8c788d8
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: kanjinvivx.xyz
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: ASP.NET_SessionId=mdeqvd2sowkultc0itwiw4bh

                                         
                                         37.49.225.10
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Cache-Control: max-age=1800
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET, ARR/3.0
Date: Tue, 21 May 2019 19:27:22 GMT
Content-Length: 1245


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1245
Md5:    5343c1a8b203c162a3bf3870d9f50fd4
Sha1:   04b5b886c20d88b57eea6d8ff882624a4ac1e51d
Sha256: dc1d54dab6ec8c00f70137927504e4f222c8395f10760b6beecfcfa94e08249f
                                        
                                            POST /Download/Refresh?lpm_id=2752&page=/21117/2752/kg7dg8 HTTP/1.1 
Host: kanjinvivx.xyz
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
X-Requested-With: XMLHttpRequest
Referer: https://kanjinvivx.xyz/21117/2752/kg7dg8
Cookie: ASP.NET_SessionId=mdeqvd2sowkultc0itwiw4bh
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0

                                         
                                         37.49.225.10
HTTP/1.1 200 OK
Content-Type: application/json; charset=utf-8
                                        
Cache-Control: private
Server: Microsoft-IIS/8.5
X-AspNet-Version: 4.0.30319
X-AspNetMvc-Version: 3.0
X-Powered-By: ASP.NET, ARR/3.0
Date: Tue, 21 May 2019 19:27:24 GMT
Content-Length: 89


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   89
Md5:    23b44d5959d1bfc8bd63d1b1be3751a1
Sha1:   0251266b9795e276a65661ae73d017a8d1cf8f67
Sha256: ea8ec79d002b01bef8aaaa5bd860f8d0a9a86bf7b9b9f6c7cd9d69a33c2280ed
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: kanjinvivx.xyz
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: ASP.NET_SessionId=mdeqvd2sowkultc0itwiw4bh

                                         
                                         37.49.225.10
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Cache-Control: max-age=1800
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET, ARR/3.0
Date: Tue, 21 May 2019 19:27:26 GMT
Content-Length: 1245


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1245
Md5:    5343c1a8b203c162a3bf3870d9f50fd4
Sha1:   04b5b886c20d88b57eea6d8ff882624a4ac1e51d
Sha256: dc1d54dab6ec8c00f70137927504e4f222c8395f10760b6beecfcfa94e08249f
                                        
                                            GET /dl.min.js HTTP/1.1 
Host: js.todayfarmmega.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://kanjinvivx.xyz/21117/2752/kg7dg8

                                         
                                         0.0.0.0
                                        


--- Additional Info ---