| GET w2.9ybhay.shop/libs/frame-storage-proxy@0.0.11/index.min.js |  104.18.24.129 | 200 OK | 6.8 kB |
URL GET w2.9ybhay.shop/libs/frame-storage-proxy@0.0.11/index.min.js IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeJavaScript source, ASCII text, with very long lines (6761), with no line terminators Hash52acfde7053c1350377a911076e57ab2 f048e0ec17aa14d4d07e7f6861faa2429eae990e f3b498bc85cc8e2bf3d1fa081c4ef2097e973a8fd7f53bbce46072b20917a35f
GET /libs/frame-storage-proxy@0.0.11/index.min.js HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:51 GMT
content-type: text/javascript
x-oss-request-id: 68568E93B676933531000F60
etag: W/"52ACFDE7053C1350377A911076E57AB2"
last-modified: Thu, 19 Jun 2025 02:23:15 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 17032485662168923056
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.79-v6.1.88
cache-control: max-age=31622400
content-md5: Uqz95wU8E1A3epEQduV6sg==
x-oss-server-time: 3
cf-cache-status: HIT
age: 41790
priority: u=2,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 953a2e18de5556ab-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/siteadmin/skin/lobby_asset/1-0-common/common/_sprite/icon_dtfl_qp_1.avif?manualVersion=1&version=v6.1.102 | 104.18.25.129 | 200 OK | 2.1 kB |
URL GET o566mch.hcm665.com/siteadmin/skin/lobby_asset/1-0-common/common/_sprite/icon_dtfl_qp_1.avif?manualVersion=1&version=v6.1.102 IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
Hashb89d650887b77956b6b302ca914b279a 3640f9b100def709036b82738fc2f36eee68cedf e0f75409a27f37a51bc994afde504eb80f9675cf08d96834ab0701528487b4f6
GET /siteadmin/skin/lobby_asset/1-0-common/common/_sprite/icon_dtfl_qp_1.avif?manualVersion=1&version=v6.1.102 HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:54 GMT
content-type: image/avif
content-length: 2068
x-oss-request-id: 68566A73DA25D3B029034175
vary: Origin, Accept-Encoding
etag: "B89D650887B77956B6B302CA914B279A"
last-modified: Tue, 10 Jun 2025 03:23:05 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 15104775051050396667
x-oss-storage-class: Standard
cache-control: max-age=604800,public
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: uJ1lCIe3eVa2swLKkUsnmg==
x-oss-server-time: 27
cf-cache-status: HIT
age: 85083
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 953a2e279dee1c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/siteadmin/skin/lobby_asset/1-0-common/common/_sprite/icon_dtfl_ty_1.avif?manualVersion=1&version=v6.1.102 | 104.18.25.129 | 200 OK | 1.5 kB |
URL GET o566mch.hcm665.com/siteadmin/skin/lobby_asset/1-0-common/common/_sprite/icon_dtfl_ty_1.avif?manualVersion=1&version=v6.1.102 IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
Hash487de5852c1b243c0aaf7c7c0fa80001 2e8dca64156864e28f4276083c366d3622d0c0e0 654c49848cbb245978e7917e4e2c8db2eda2482d3d5992d49e392306cd54ebd6
GET /siteadmin/skin/lobby_asset/1-0-common/common/_sprite/icon_dtfl_ty_1.avif?manualVersion=1&version=v6.1.102 HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:54 GMT
content-type: image/avif
content-length: 1525
x-oss-request-id: 68566A731E3C924D7CE8BBF7
vary: Origin, Accept-Encoding
etag: "487DE5852C1B243C0AAF7C7C0FA80001"
last-modified: Tue, 10 Jun 2025 03:24:38 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 17626601959399675298
x-oss-storage-class: Standard
cache-control: max-age=604800,public
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: SH3lhSwbJDwKr3x8D6gAAQ==
x-oss-server-time: 40
cf-cache-status: HIT
age: 85083
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 953a2e27adf41c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/assets/theme-1/0_EntryLoginRegisterChunk.Bvzzzy28.js | 104.18.24.129 | 200 OK | 98 kB |
URL GET w2.9ybhay.shop/assets/theme-1/0_EntryLoginRegisterChunk.Bvzzzy28.js IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65508), with no line terminators Hash5bc699299d3e28677853218c468b1f75 5314d2db2d05744e9bd6aa63664c2dcd878891fe 7f6015480f879947dbd020636e6429ab11e444e71735135f410da1a4a1b9e17d
GET /assets/theme-1/0_EntryLoginRegisterChunk.Bvzzzy28.js HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/assets/theme-1/StyleIndex.SKmsOLto.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:56 GMT
content-type: text/javascript
x-oss-request-id: 685713937594F93233D35A98
etag: W/"5BC699299D3E28677853218C468B1F75"
last-modified: Sat, 21 Jun 2025 07:04:23 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 15143603590045306058
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.100-v6.1.102
cache-control: max-age=31622400
content-md5: W8aZKZ0+KGd4UyGMRosfdQ==
x-oss-server-time: 23
cf-cache-status: HIT
age: 41789
priority: u=3,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 953a2e35fb6856ab-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/hall/api/lobby/webapi/optimizationV2/site/config/language/vi.json | 104.18.25.129 | 200 OK | 19 kB |
URL GET o566mch.hcm665.com/hall/api/lobby/webapi/optimizationV2/site/config/language/vi.json IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typeASCII text, with very long lines (18604), with no line terminators Hash97a475f86441186e3bb4c053e2e9f379 51ad251866a9af272104ca47a4be7062be6c50ff 7c80d108cc3bb6940b83e19343d234d52e03ae5794fb9f3df8aee907e0c8ca91
GET /hall/api/lobby/webapi/optimizationV2/site/config/language/vi.json HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:56 GMT
content-type: application/json
vary: Accept-Encoding, Origin
x-oss-request-id: 68571393EE8E28D9232BBC53
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-expose-headers: Etag
access-control-max-age: 200
last-modified: Sat, 21 Jun 2025 19:17:08 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 10246681634361000077
x-oss-storage-class: Standard
cache-control: s-maxage=600,public,max-age=0
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: l6R1+GRBGG47tMBT4unzeQ==
x-oss-server-time: 5
content-encoding: gzip
cf-cache-status: REVALIDATED
priority: u=3,i=?0
server: cloudflare
cf-ray: 953a2e363ad61c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/siteadmin/skin/lobby_asset/1-0-11/common/common/bg_pattern_tile.avif?manualVersion=1&version=v6.1.102 | 104.18.25.129 | 200 OK | 526 B |
URL GET o566mch.hcm665.com/siteadmin/skin/lobby_asset/1-0-11/common/common/bg_pattern_tile.avif?manualVersion=1&version=v6.1.102 IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
Hash889285a3419ee717af24134ebf9411e8 3a82160c1e70b69766d21866a5ccc4e4b26bf85e 12daba66ca4ca0f1d1dad673e985c7931d59ab582107c66a16f69319d0a787ed
GET /siteadmin/skin/lobby_asset/1-0-11/common/common/bg_pattern_tile.avif?manualVersion=1&version=v6.1.102 HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:56 GMT
content-type: image/avif
content-length: 526
x-oss-request-id: 68565E191E3C924D7CC7AF7A
vary: Origin, Accept-Encoding
etag: "889285A3419EE717AF24134EBF9411E8"
last-modified: Wed, 18 Jun 2025 06:56:18 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 7665308491089984100
x-oss-storage-class: Standard
cache-control: max-age=604800,public
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: iJKFo0Ge5xevJBNOv5QR6A==
x-oss-server-time: 2
cf-cache-status: HIT
age: 83932
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 953a2e368b391c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/hall/api/gohal/staffAllV3/currency/VND/language/vi.json | 104.18.25.129 | 200 OK | 6.2 kB |
URL GET o566mch.hcm665.com/hall/api/gohal/staffAllV3/currency/VND/language/vi.json IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typeASCII text, with very long lines (6208), with no line terminators Hash80584e811ef3694af9e11c7c86934f4e d4ccb826033d917bccebc1384cdd9de6d3390bce 5aa72184e890e46736d6bbe71f78e2fbb1eebeb3b143627dcb21806b8a3e2d09
GET /hall/api/gohal/staffAllV3/currency/VND/language/vi.json HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:57 GMT
content-type: application/json
vary: Accept-Encoding, Origin
x-oss-request-id: 6857B6D0DE66936D31A87356
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-expose-headers: Etag
access-control-max-age: 200
last-modified: Sun, 22 Jun 2025 02:37:03 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 15356714369444857130
x-oss-storage-class: Standard
cache-control: s-maxage=600,max-age=0,public
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: gFhOgR7zaUr54Rx8hpNPTg==
x-oss-server-time: 1
content-encoding: gzip
cf-cache-status: HIT
age: 1
priority: u=3,i=?0
server: cloudflare
cf-ray: 953a2e403b741c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/pages/403/index.html?logId=page-403-log&payloadId=page-403-payload&title=HCM66&t=5835263 | 104.18.24.129 | 200 OK | 85 kB |
URL GET w2.9ybhay.shop/pages/403/index.html?logId=page-403-log&payloadId=page-403-payload&title=HCM66&t=5835263 IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (64480) Hash4ec1f8f9d87155823a48241604f5c6d3 e063f8f9aeef088ecee57cfd4e38281cb97475f1 bc29bc273251b932c7f9a06904ec29b7e08ffe55f4dca96e08f6bd61bbe152ad
GET /pages/403/index.html?logId=page-403-log&payloadId=page-403-payload&title=HCM66&t=5835263 HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:58 GMT
content-type: text/html
vary: Accept-Encoding
x-oss-request-id: 6857B6D275AAC53630D1CD80
last-modified: Tue, 17 Jun 2025 07:20:46 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 1792263190337624467
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.62
cache-control: no-cache
content-md5: 7DcWZIg5SKQozVC5+29tWw==
x-oss-server-time: 5
cf-cache-status: MISS
priority: u=4,i=?0
server: cloudflare
cf-ray: 953a2e40eed556ab-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET cdntoos.hcm2222.com/siteadmin/ssocdn.txt |  54.240.174.23 | 200 OK | 2 B |
URL GET cdntoos.hcm2222.com/siteadmin/ssocdn.txt IP54.240.174.23:443
CertificateIssuerAmazon Subjectcdntoos.hcm2222.com FingerprintD7:4B:C7:AA:DE:23:25:38:F5:EB:A6:22:5C:1D:54:7A:1A:4F:E4:71 ValidityFri, 27 Sep 2024 00:00:00 GMT - Sun, 26 Oct 2025 23:59:59 GMT
File typeASCII text, with no line terminators Hasha60852f204ed8028c1c58808b746d115 b0a98216a32426b9e66a4ac1eb6df2e96e1b495c 843ac01149cced785dfebd0028d3b03ba78e286e1c6f9517ebfcdb609d97af4c
GET /siteadmin/ssocdn.txt HTTP/1.1
Host: cdntoos.hcm2222.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://w2.9ybhay.shop/
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/plain
content-length: 2
server: AliyunOSS
date: Sat, 21 Jun 2025 21:00:55 GMT
x-oss-request-id: 68571D8712A9C862358A2998
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-expose-headers: Etag
access-control-max-age: 200
accept-ranges: bytes
etag: "A60852F204ED8028C1C58808B746D115"
last-modified: Thu, 25 Jul 2024 03:06:31 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 13902551060587900831
x-oss-storage-class: Standard
cache-control: max-age=86400
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: pghS8gTtgCjBxYgIt0bRFQ==
x-oss-server-time: 2
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: TwYuxr4G3bElYz9AAjmcpNYihnnl_n1D1kObMzVX08Feac3PUXY-Pg==
age: 39244
X-Firefox-Spdy: h2
|
|
| | 104.21.48.1 | 404 Not Found | 8.1 kB |
IP104.21.48.1:443
CertificateIssuerGoogle Trust Services Subjecthcm660.com FingerprintC7:D3:1B:A4:57:3F:29:34:CC:36:3C:EE:6A:9F:2C:EF:32:0E:26:72 ValidityFri, 13 Jun 2025 00:21:14 GMT - Thu, 11 Sep 2025 01:18:11 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (3943) Hashacee8b34118d308ca76ea7d700027d09 8930a6bf25b6c50fc82c5b88c34f7fe2b750d373 cd13205d8a211ef3837426997b1eb87cda9c1472033c8ce61b80b25855ebd1ae
GET / HTTP/1.1
Host: 674hl.hcm660.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: uDomain=674hl.hcm660.com; PHPSESSID=4sr7ag4lltc3su2b4i18o2mlft
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Sun, 22 Jun 2025 07:54:50 GMT
content-type: text/html; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NFiumBh8CcGhNGAxwaDyWDigQFnfdCS7oVaICItXfs5R2HFzGj97h%2BWuTYi3rQBQ9iYQKm0gMpF99JxLA8zsl74jD0NvNDNwQEMTe0Hoc8ZvTUalumha7e7WzmLTxZ%2FoVopm"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
content-encoding: br
cf-ray: 953a2e12e81156a4-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2047&min_rtt=478&rtt_var=1916&sent=141&recv=203&lost=0&retrans=0&sent_bytes=10802&recv_bytes=11410&delivery_rate=594761&ss_exit_cwnd=14908&ss_exit_reason=2&cwnd=12000&unsent_bytes=0&cid=0fd87d692209fe36&ts=407&inflight_dur=31&x=44"
|
|
| GET o566mch.hcm665.com/hall/api/game/hall/listVirtualBonusPoolV2/currency/VND.json | 104.18.25.129 | 200 OK | 128 B |
URL GET o566mch.hcm665.com/hall/api/game/hall/listVirtualBonusPoolV2/currency/VND.json IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typeASCII text, with no line terminators Hasha9674c1c7ed47919ea3cc5735753466c fa240f0ded35f2242041d7e676dab994ebcdb786 9a14abbaae2ba6a1cad9b6504b43a28552f4c0e642855317c9dc58d5f00aefce
GET /hall/api/game/hall/listVirtualBonusPoolV2/currency/VND.json HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:54 GMT
content-type: application/json
x-oss-request-id: 681CAC3F13F9D4DEBFD01312
vary: Origin, Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-expose-headers: Etag
access-control-max-age: 200
etag: W/"A9674C1C7ED47919EA3CC5735753466C"
last-modified: Wed, 07 May 2025 03:31:12 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 6948210594066550863
x-oss-storage-class: Standard
cache-control: s-maxage=300,public,max-age=0
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: qWdMHH7UeRnqPMVzV1NGbA==
x-oss-server-time: 2
cf-cache-status: REVALIDATED
priority: u=3,i=?0
server: cloudflare
cf-ray: 953a2e28deea1c0e-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/hall/api/active/tasks/pop_taskWeek/currency/VND/language/vi.json | 104.18.25.129 | 200 OK | 1.3 kB |
URL GET o566mch.hcm665.com/hall/api/active/tasks/pop_taskWeek/currency/VND/language/vi.json IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typeASCII text, with very long lines (1344), with no line terminators Hash2ec9701687d53bea28cf3ceda07c6529 f6cb24c144961b38cc06e8e06703326f9e8f57ba f34319bbe56dd73e6f22e44cd0b9fafb5e82ae7aa4526ff3dbee36c975e1b5f7
GET /hall/api/active/tasks/pop_taskWeek/currency/VND/language/vi.json HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:58 GMT
content-type: application/json
vary: Accept-Encoding, Origin
x-oss-request-id: 6857B6D2F53B5C8775B0A8B9
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-expose-headers: Etag
access-control-max-age: 200
last-modified: Sun, 22 Jun 2025 02:37:03 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 10891359539325411411
x-oss-storage-class: Standard
cache-control: s-maxage=600,max-age=0,public
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: LslwFofVO+oozzztoHxlKQ==
x-oss-server-time: 1
content-encoding: gzip
cf-cache-status: MISS
priority: u=3,i=?0
server: cloudflare
cf-ray: 953a2e415c451c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET hcm66awscdn.hcm2222.com/ipacdn.txt | 3.167.2.119 | 200 OK | 2 B |
URL GET hcm66awscdn.hcm2222.com/ipacdn.txt IP3.167.2.119:443
CertificateIssuerAmazon Subjecthcm66awscdn.hcm2222.com Fingerprint93:2C:1D:A9:5C:90:25:7D:73:A9:C6:F1:92:C5:52:AD:B8:35:B0:17 ValidityFri, 27 Sep 2024 00:00:00 GMT - Sun, 26 Oct 2025 23:59:59 GMT
File typeASCII text, with no line terminators Hashe0aa021e21dddbd6d8cecec71e9cf564 9ce3bd4224c8c1780db56b4125ecf3f24bf748b7 565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
GET /ipacdn.txt HTTP/1.1
Host: hcm66awscdn.hcm2222.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://w2.9ybhay.shop/
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/plain
content-length: 2
date: Tue, 18 Mar 2025 12:21:49 GMT
set-cookie: acw_tc=f06326e03314064fe783ee1bfa253b116fc37b04899864d32e7f64cd5b0ab262;path=/;HttpOnly;Max-Age=1800
cache-control: s-maxage=315360000,max-age=0,public
access-control-allow-origin: *
access-control-max-age: 3600
access-control-allow-credentials: true
x-cache: Hit from cloudfront
via: 1.1 1b7f8001b2b06f9624559a35b6822156.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: b5vQlMAVEnX8jTaGBs6BPBQd5oSgODBkNljReaIShn8LTgvuDu83DQ==
age: 8278390
X-Firefox-Spdy: h2
|
|
| GET w2.9ybhay.shop/libs/monitor/index.js?ver=1.0.2 | 104.18.24.129 | 200 OK | 2.5 kB |
URL GET w2.9ybhay.shop/libs/monitor/index.js?ver=1.0.2 IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeJavaScript source, Unicode text, UTF-8 text Hashf2021ad2d78cc5e30386bc1bb76f627d 3e994a987a526943b9e7bbe58339a51b31ac42b8 36129b3c2da2bcc128a7f5f1cc75811ab6b746477be643f51175bc8bc1fa009b
GET /libs/monitor/index.js?ver=1.0.2 HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:51 GMT
content-type: text/javascript
x-oss-request-id: 68568E9358A49D333399B64A
etag: W/"F2021AD2D78CC5E30386BC1BB76F627D"
last-modified: Thu, 19 Jun 2025 02:23:15 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 9299446289922162166
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.79-v6.1.88
cache-control: max-age=31622400
content-md5: 8gIa0teMxeMDhrwbt29ifQ==
x-oss-server-time: 5
cf-cache-status: HIT
age: 41790
priority: u=3,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 953a2e18de5b56ab-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/hall/api/active/tasks/pop_newcomerBenefit/currency/VND/language/vi.json | 104.18.25.129 | 200 OK | 768 B |
URL GET o566mch.hcm665.com/hall/api/active/tasks/pop_newcomerBenefit/currency/VND/language/vi.json IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typeASCII text, with very long lines (768), with no line terminators Hashafa1be77555155e893ca4457a5b6fd0d f8376c1514712bc35c93990c96d5157590bdb4ca 16a9e9297a539b13c87f4a713de7437274a93b1194caf9c7c96a0530271757b2
GET /hall/api/active/tasks/pop_newcomerBenefit/currency/VND/language/vi.json HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:58 GMT
content-type: application/json
x-oss-request-id: 6857B6D21E3C924D7CA72373
vary: Origin, Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-expose-headers: Etag
access-control-max-age: 200
etag: W/"AFA1BE77555155E893CA4457A5B6FD0D"
last-modified: Sun, 22 Jun 2025 02:37:03 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 17997745911451117576
x-oss-storage-class: Standard
cache-control: s-maxage=600,max-age=0,public
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: r6G+d1VRVeiTykRXpbb9DQ==
x-oss-server-time: 1
cf-cache-status: EXPIRED
priority: u=3,i=?0
server: cloudflare
cf-ray: 953a2e414c3a1c0e-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/hall/api/active/tasks/pop_newcomerBenefit/currency/VND/language/vi.json | 104.18.25.129 | 200 OK | 768 B |
URL GET o566mch.hcm665.com/hall/api/active/tasks/pop_newcomerBenefit/currency/VND/language/vi.json IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typeASCII text, with very long lines (768), with no line terminators Hashafa1be77555155e893ca4457a5b6fd0d f8376c1514712bc35c93990c96d5157590bdb4ca 16a9e9297a539b13c87f4a713de7437274a93b1194caf9c7c96a0530271757b2
GET /hall/api/active/tasks/pop_newcomerBenefit/currency/VND/language/vi.json HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:55:04 GMT
content-type: application/json
x-oss-request-id: 6857B6D21E3C924D7CA72373
vary: Origin, Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-expose-headers: Etag
access-control-max-age: 200
etag: W/"AFA1BE77555155E893CA4457A5B6FD0D"
last-modified: Sun, 22 Jun 2025 02:37:03 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 17997745911451117576
x-oss-storage-class: Standard
cache-control: s-maxage=600,max-age=0,public
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: r6G+d1VRVeiTykRXpbb9DQ==
x-oss-server-time: 1
cf-cache-status: HIT
age: 6
priority: u=3,i=?0
server: cloudflare
cf-ray: 953a2e698d711c0e-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/assets/vendors/vendor-.9Fs140A-.css | 104.18.24.129 | 200 OK | 5.0 kB |
URL GET w2.9ybhay.shop/assets/vendors/vendor-.9Fs140A-.css IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeASCII text, with very long lines (4825) Hash8395a0b3f19348fc7b95730e067db432 7d158911a42cd013eafe911b7cb84d9d8864c604 04dd101d3a1ffe31667e4783be95a4e21a9095446541c2ec5d913c903497aad0
GET /assets/vendors/vendor-.9Fs140A-.css HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:51 GMT
content-type: text/css
vary: Accept-Encoding
x-oss-request-id: 6857138DAFBCCE3735C8C2A4
last-modified: Tue, 17 Jun 2025 07:20:45 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 7487077606416589971
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.62
cache-control: max-age=31622400
content-md5: g5Wgs/GTSPx7lXMOBn20Mg==
x-oss-server-time: 21
content-encoding: gzip
cf-cache-status: HIT
age: 41790
priority: u=2,i=?0
server: cloudflare
cf-ray: 953a2e18ee6856ab-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/assets/vendors/vendor-swiper.CGEhtrpu.js | 104.18.24.129 | 200 OK | 104 kB |
URL GET w2.9ybhay.shop/assets/vendors/vendor-swiper.CGEhtrpu.js IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size104 kB (103909 bytes) Hash47179fb1458e350f8edb3f7fc561dfa6 b846c5726fc6d41f98233e05a48c1a6b9dffdef0 ef5efcddf800b478772dd288141f539d43ed261546c54a78ad5eca1a524586ba
GET /assets/vendors/vendor-swiper.CGEhtrpu.js HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/assets/theme-1/index.CqQlUlH0.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:51 GMT
content-type: text/javascript
x-oss-request-id: 6857138D94539430368F5832
etag: W/"47179FB1458E350F8EDB3F7FC561DFA6"
last-modified: Tue, 17 Jun 2025 07:20:45 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 11890246563348260368
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.62
cache-control: max-age=31622400
content-md5: RxefsUWONQ+O2z9/xWHfpg==
x-oss-server-time: 20
cf-cache-status: HIT
age: 41790
priority: u=3,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 953a2e197ef456ab-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/siteadmin/upload/img/1805897433322795010.avif | 104.18.25.129 | 200 OK | 24 kB |
URL GET o566mch.hcm665.com/siteadmin/upload/img/1805897433322795010.avif IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typeISO Media, AVIF Image Sequence Hashe1f5a2c25ccb57d109b3873d90635d2d cdac52d01ab4aedb862df210a87aea48e072a7cf 7a5189e7a0d2cd9cc5b8a2a6beb7cf5819b24bc23a7b4c65816348c8b033e495
GET /siteadmin/upload/img/1805897433322795010.avif HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:53 GMT
content-type: image/avif
content-length: 23933
x-oss-request-id: 683E2CEDEE8E28F62F801740
vary: Origin, Accept-Encoding
etag: "E1F5A2C25CCB57D109B3873D90635D2D"
last-modified: Fri, 16 Aug 2024 02:49:36 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 1481129568811392988
x-oss-storage-class: Standard
cache-control: s-maxage=86400,max-age=1800,public
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: 4fWiwlzLV9EJs4c9kGNdLQ==
x-oss-server-time: 22
cf-cache-status: HIT
age: 85082
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 953a2e26acfe1c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/siteadmin/layoutDesign/1728075406948155393.png | 104.18.25.129 | 200 OK | 2.4 kB |
URL GET o566mch.hcm665.com/siteadmin/layoutDesign/1728075406948155393.png IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typePNG image data, 80 x 70, 8-bit colormap, non-interlaced Hash22cba455d99642e1f4f4c4b6b2f33f21 024598d23b8eb74a9dc7fda5cde12cdc8ef43b1f 69c15e3cdebcfc429ef68858c675afe5e971cbd70ffe6d0ee21bb2a2938f29e2
GET /siteadmin/layoutDesign/1728075406948155393.png HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:53 GMT
content-type: image/png
content-length: 2392
x-oss-request-id: 68178B93DE669353D210E5F2
vary: Origin, Accept-Encoding
etag: "22CBA455D99642E1F4F4C4B6B2F33F21"
last-modified: Fri, 24 Nov 2023 15:37:38 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 9329623213453216742
x-oss-storage-class: Standard
cache-control: max-age=86400
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: IsukVdmWQuH09MS2svM/IQ==
x-oss-server-time: 1
cf-cache-status: HIT
age: 2698
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 953a2e26bd091c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/assets/theme-1/ContactUsIndex.NXv150cm.css | 104.18.24.129 | 200 OK | 489 B |
URL GET w2.9ybhay.shop/assets/theme-1/ContactUsIndex.NXv150cm.css IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeASCII text, with very long lines (488) Hash71cd5c6edb7bffadbd3a87c7f995a612 ea271e22349a17c27354b828226c1e2d44993ce5 19376a48511fb163cf743d2bf2e75327106e7b982890441e4abd20588affd0c3
GET /assets/theme-1/ContactUsIndex.NXv150cm.css HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:55 GMT
content-type: text/css
x-oss-request-id: 68571391A87B9A3430C181B4
etag: W/"71CD5C6EDB7BFFADBD3A87C7F995A612"
last-modified: Thu, 19 Jun 2025 02:23:15 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 18144194710045522854
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.79-v6.1.88
cache-control: max-age=31622400
content-md5: cc1cbtt7/629OofH+ZWmEg==
x-oss-server-time: 2
cf-cache-status: HIT
age: 41790
priority: u=2,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 953a2e317e9056ab-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET 674hl.hcm660.com/cdn-cgi/challenge-platform/scripts/jsd/main.js | 104.21.48.1 | 302 Found | 10 kB |
URL GET 674hl.hcm660.com/cdn-cgi/challenge-platform/scripts/jsd/main.js IP104.21.48.1:443
Requested byhttps://674hl.hcm660.com/ CertificateIssuerGoogle Trust Services Subjecthcm660.com FingerprintC7:D3:1B:A4:57:3F:29:34:CC:36:3C:EE:6A:9F:2C:EF:32:0E:26:72 ValidityFri, 13 Jun 2025 00:21:14 GMT - Thu, 11 Sep 2025 01:18:11 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: 674hl.hcm660.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: uDomain=674hl.hcm660.com; PHPSESSID=4sr7ag4lltc3su2b4i18o2mlft
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 302 Found
date: Sun, 22 Jun 2025 07:54:50 GMT
content-length: 0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Nsb1dqIpZCNILxUZ8utCrxhm4viB5jZgr4FvhmU2tfaTnSTMsle6aTh8klyOEB5zb3QZ7Q%2FymtNUU3dSkQroCUSWr3CPWz%2FDMnFjU2D9YM2FtNGLqwh71%2FYGPgwOvEhvLLKW"}],"group":"cf-nel","max_age":604800}
location: /cdn-cgi/challenge-platform/h/g/scripts/jsd/180b6a431d85/main.js?
cache-control: max-age=300, stale-if-error=10800, stale-while-revalidate=10800, public
access-control-allow-origin: *
cf-ray: 953a2e14782a56a4-OSL
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1595&min_rtt=47&rtt_var=1456&sent=150&recv=209&lost=0&retrans=0&sent_bytes=17358&recv_bytes=12552&delivery_rate=1479944&ss_exit_cwnd=14908&ss_exit_reason=2&cwnd=12000&unsent_bytes=0&cid=0fd87d692209fe36&ts=562&inflight_dur=56&x=44"
|
|
| GET w2.9ybhay.shop/assets/theme-1/commonChunk.CXW_BbDR.js | 104.18.24.129 | 200 OK | 1.7 MB |
URL GET w2.9ybhay.shop/assets/theme-1/commonChunk.CXW_BbDR.js IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (60064) Size1.7 MB (1671109 bytes) Hash792727b12deb96d34e8ae2d046daf194 a97d5271618a0b3a70dae615a5ee775a083a49bc 0c75395e86db78a37819210bacae5f5a2cafcb334944c9a08d9e1f916f903b4f
GET /assets/theme-1/commonChunk.CXW_BbDR.js HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/assets/theme-1/index.CqQlUlH0.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:51 GMT
content-type: text/javascript
x-oss-request-id: 6857138DA846BB36317542E2
etag: W/"792727B12DEB96D34E8AE2D046DAF194"
last-modified: Sat, 21 Jun 2025 07:04:23 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 1979892845721275732
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.100-v6.1.102
cache-control: max-age=31622400
content-md5: eScnsS3rltNOiuLQRtrxlA==
x-oss-server-time: 30
cf-cache-status: HIT
age: 41790
priority: u=3,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 953a2e196ee056ab-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/assets/theme-1/AssemblyIndex.Ciydf0hk.css | 104.18.24.129 | 200 OK | 1.4 kB |
URL GET w2.9ybhay.shop/assets/theme-1/AssemblyIndex.Ciydf0hk.css IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeASCII text, with very long lines (1380) Hash04d7a41a14d8e5a65e0adc78ea3b5e88 206a26ae3465814474e25793968963054bcc2729 cd24e44fb4b92ebff1d420c0712f613f9badec2c067f89a139f4d7cbd15f59e1
GET /assets/theme-1/AssemblyIndex.Ciydf0hk.css HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:53 GMT
content-type: text/css
vary: Accept-Encoding
x-oss-request-id: 68568E977594F93136C3FC82
last-modified: Thu, 19 Jun 2025 02:23:15 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 4916789553667072638
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.79-v6.1.88
cache-control: max-age=31622400
content-md5: BNekGhTY5aZeCtx46jteiA==
x-oss-server-time: 6
content-encoding: gzip
cf-cache-status: HIT
age: 41790
priority: u=2,i=?0
server: cloudflare
cf-ray: 953a2e2479e656ab-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/assets/theme-1/LinkIndex.CzMatAlt.js | 104.18.24.129 | 200 OK | 7.6 kB |
URL GET w2.9ybhay.shop/assets/theme-1/LinkIndex.CzMatAlt.js IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeJava source, ASCII text, with very long lines (7553) Hash6af64474cffd1456610783a0f29b64c2 eb9dd35084737b1a22ac96007444dd09489afd3f eb87388965d0376601ecf23d7c7f6cdf1d37ced047f8f8009a2ac0cc4ffc3de9
GET /assets/theme-1/LinkIndex.CzMatAlt.js HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/assets/theme-1/StyleIndex.SKmsOLto.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:56 GMT
content-type: text/javascript
x-oss-request-id: 6857139315F04933376CEFC8
etag: W/"6AF64474CFFD1456610783A0F29B64C2"
last-modified: Sat, 21 Jun 2025 07:04:23 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 8480112962840413741
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.100-v6.1.102
cache-control: max-age=31622400
content-md5: avZEdM/9FFZhB4Og8ptkwg==
x-oss-server-time: 7
cf-cache-status: HIT
age: 41789
priority: u=3,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 953a2e35fb5f56ab-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| OPTIONS hcm2244.com/hall/ipCheck?siteCode=285¤cy=VND&language=vi&platformType=5 | 104.18.24.129 | 200 OK | 0 B |
URL OPTIONS hcm2244.com/hall/ipCheck?siteCode=285¤cy=VND&language=vi&platformType=5 IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjecthcm2244.com FingerprintD8:D9:04:B6:18:EC:36:72:BE:90:C6:62:09:66:0C:D4:20:45:A3:21 ValidityFri, 09 May 2025 12:39:10 GMT - Thu, 07 Aug 2025 13:39:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /hall/ipCheck?siteCode=285¤cy=VND&language=vi&platformType=5 HTTP/1.1
Host: hcm2244.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: appsystem,appversion,auth,browserfingerid,browsertype,clienttimezone,currency,device,devicebrand,devicemodel,devicetype,domain,language,nonce,operatingsystem,physicaldevicemodel,platformtype,sign,sitecode,timestamp,token,webauthndomain,x-custom-referer,x-data-mode,x-device,x-object-id,x-request-id,x-version
Referer: https://w2.9ybhay.shop/
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 22 Jun 2025 07:54:56 GMT
content-type: application/octet-stream
content-length: 0
set-cookie: acw_tc=0a0ccab217505788965065120e4794cad49d1a69b57d3aab7eb5c87f56b816;path=/;HttpOnly;Max-Age=1800
access-control-allow-methods: *
access-control-max-age: 3600
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-allow-headers: appsystem,appversion,auth,browserfingerid,browsertype,clienttimezone,currency,device,devicebrand,devicemodel,devicetype,domain,language,nonce,operatingsystem,physicaldevicemodel,platformtype,sign,sitecode,timestamp,token,webauthndomain,x-custom-referer,x-data-mode,x-device,x-object-id,x-request-id,x-version
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 953a2e367ea27127-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| GET hcm66gcdn.hcm2211.com/ipacdn.txt | 0.0.0.0 | | 0 B |
URL GET hcm66gcdn.hcm2211.com/ipacdn.txt IP0.0.0.0:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ipacdn.txt HTTP/1.1
Host: hcm66gcdn.hcm2211.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://w2.9ybhay.shop/
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
|
|
| GET o566mch.hcm665.com/hall/api/active/category/currency/VND/language/vi.json | 104.18.25.129 | 200 OK | 38 kB |
URL GET o566mch.hcm665.com/hall/api/active/category/currency/VND/language/vi.json IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typeASCII text, with very long lines (38444), with no line terminators Hash36ab708c9b6191681f61dcfe6e4b691d 253d537fc09bb586a40adacf560cf28bffed8d4a 7fa8b902101a2aae5d46c344a6e09964572b5d2fe9a23bbdbfc8c99265b37d08
GET /hall/api/active/category/currency/VND/language/vi.json HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:55:03 GMT
content-type: application/json
vary: Accept-Encoding, Origin
x-oss-request-id: 6857B6D713F9D443E0D8D723
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-expose-headers: Etag
access-control-max-age: 200
last-modified: Sun, 22 Jun 2025 00:27:02 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 10163139676815177220
x-oss-storage-class: Standard
cache-control: s-maxage=600,max-age=0,public
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: NqtwjJthkWgfYdz+bktpHQ==
x-oss-server-time: 5
content-encoding: gzip
cf-cache-status: EXPIRED
priority: u=3,i=?0
server: cloudflare
cf-ray: 953a2e6368a91c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/active/ActiveImg37430422109426829.avif | 104.18.25.129 | 200 OK | 98 kB |
URL GET o566mch.hcm665.com/active/ActiveImg37430422109426829.avif IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typeISO Media, AVIF Image Sequence Hash8d853684781d67cb4024baf84e311cd7 ed5da86d04aa868038f40cb9b9d2e1c0b3a739c9 fa07bac910d656a02e1187a7eb9ed7cb80bc9dfeb40cde782ec3e08c151b3806
GET /active/ActiveImg37430422109426829.avif HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:55:04 GMT
content-type: image/avif
content-length: 98475
x-oss-request-id: 681869811E3C9231C34122C5
vary: Origin, Accept-Encoding
etag: "8D853684781D67CB4024BAF84E311CD7"
last-modified: Tue, 03 Dec 2024 14:42:26 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 17420804801202428428
x-oss-storage-class: Standard
cache-control: max-age=86400
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: jYU2hHgdZ8tAJLr4TjEc1w==
x-oss-server-time: 33
cf-cache-status: HIT
age: 2698
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 953a2e679c051c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/siteadmin/layoutDesign/1728773758853615617.png | 104.18.25.129 | 200 OK | 1.6 kB |
URL GET o566mch.hcm665.com/siteadmin/layoutDesign/1728773758853615617.png IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typePNG image data, 70 x 70, 8-bit colormap, non-interlaced Hashaad33212f3b5221e27bd72c7b2872918 bfa7d007a2df422bd1c51d5b048246041f54267d 8cdae652e8d6758da66a8956e2a6e8f981150fd0745dfa6c654cd427448e71fa
GET /siteadmin/layoutDesign/1728773758853615617.png HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:54 GMT
content-type: image/png
content-length: 1591
x-oss-request-id: 68178B9312A9C8DCE87164F6
vary: Origin, Accept-Encoding
etag: "AAD33212F3B5221E27BD72C7B2872918"
last-modified: Sun, 26 Nov 2023 13:52:38 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 5418250699510221346
x-oss-storage-class: Standard
cache-control: max-age=86400
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: qtMyEvO1Ih4nvXLHsocpGA==
x-oss-server-time: 19
cf-cache-status: HIT
age: 2699
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 953a2e27de221c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/game_pictures/g/CL/200/3/2000074/default.avif?web_v=v6.1.102 | 104.18.25.129 | 200 OK | 10 kB |
URL GET o566mch.hcm665.com/game_pictures/g/CL/200/3/2000074/default.avif?web_v=v6.1.102 IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
Hashdfd35fa34dcafb187b3a0f87e39ff82a ce21feaf39754481fec37b095e14717dc79723bc f5bb285126b560384118b0b31d42eed55a342f88735c2021a41241e6698e3ed7
GET /game_pictures/g/CL/200/3/2000074/default.avif?web_v=v6.1.102 HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:54 GMT
content-type: image/avif
content-length: 10459
x-oss-request-id: 68566A73CD397201B31D324C
vary: Origin, Accept-Encoding
etag: "DFD35FA34DCAFB187B3A0F87E39FF82A"
last-modified: Mon, 02 Jun 2025 09:07:54 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 16117374488963003041
x-oss-storage-class: Standard
cache-control: max-age=2678400,stale-while-revalidate=86400,immutable,proxy-revalidate,public
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: 39Nfo03K+xh7Og+H45/4Kg==
x-oss-server-time: 16
cf-cache-status: HIT
age: 85083
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 953a2e299f8f1c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/hall/api/lobby/site/getSiteInfo/language/vi.json | 104.18.25.129 | 200 OK | 4.4 kB |
URL GET o566mch.hcm665.com/hall/api/lobby/site/getSiteInfo/language/vi.json IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typeASCII text, with very long lines (4376), with no line terminators Hash330baf55d5298c380ad2d133adfda546 f35e74c6eb1b8091b7051f0c374e87699c1349a7 ffb0462cc1ca36f52b5386fc78b8602f5dba93b0255705ce6ebfe65f02a68ee8
GET /hall/api/lobby/site/getSiteInfo/language/vi.json HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:56 GMT
content-type: application/json
vary: Accept-Encoding, Origin
x-oss-request-id: 68571392DA25D3B029FA2A90
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-expose-headers: Etag
access-control-max-age: 200
last-modified: Sat, 21 Jun 2025 19:17:08 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 7979276017652843627
x-oss-storage-class: Standard
cache-control: s-maxage=600,public,max-age=0
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: MwuvVdUpjDgK0tEzrf2lRg==
x-oss-server-time: 2
content-encoding: gzip
cf-cache-status: MISS
priority: u=3,i=?0
server: cloudflare
cf-ray: 953a2e3549ed1c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/assets/theme-1/0_WithdrawChunk.BrZATDq-.js | 104.18.24.129 | 200 OK | 204 kB |
URL GET w2.9ybhay.shop/assets/theme-1/0_WithdrawChunk.BrZATDq-.js IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (64789) Size204 kB (204098 bytes) Hashae114af64ce716425f47ea304445a5db 328005508d2fb3ad09cd8ba9ccf4bd3d49ab77f2 af927da1d20bf69c756899339710c02529c047cf9e28c5030466da4fa9c7ca45
GET /assets/theme-1/0_WithdrawChunk.BrZATDq-.js HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/assets/theme-1/StyleIndex.SKmsOLto.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:56 GMT
content-type: text/javascript
x-oss-request-id: 68571393843E7738381A9C7A
etag: W/"AE114AF64CE716425F47EA304445A5DB"
last-modified: Sat, 21 Jun 2025 07:04:23 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 17381407696627572769
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.100-v6.1.102
cache-control: max-age=31622400
content-md5: rhFK9kznFkJfR+owREWl2w==
x-oss-server-time: 24
cf-cache-status: HIT
age: 41789
priority: u=3,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 953a2e360b7456ab-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/siteadmin/skin/lobby_asset/common/common/common/comm_icon_gb.avif?manualVersion=1&version=v6.1.102 | 104.18.25.129 | 200 OK | 1.3 kB |
URL GET o566mch.hcm665.com/siteadmin/skin/lobby_asset/common/common/common/comm_icon_gb.avif?manualVersion=1&version=v6.1.102 IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
Hashbc1e82b026c2375fbfb26275d37d785c 5f6e2a428261f16c1a6d05806833e6be5644a8fb fe109f4b4ec0fdfdf95370109d9fb80a0b3d3d8f7fafefa820f4d832c1dbee7c
GET /siteadmin/skin/lobby_asset/common/common/common/comm_icon_gb.avif?manualVersion=1&version=v6.1.102 HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:55:04 GMT
content-type: image/avif
content-length: 1345
x-oss-request-id: 68565E24EE8E28D92312F9E2
vary: Origin, Accept-Encoding
etag: "BC1E82B026C2375FBFB26275D37D785C"
last-modified: Wed, 18 Jun 2025 07:08:09 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 8998093129681346611
x-oss-storage-class: Standard
cache-control: max-age=604800,public
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: vB6CsCbCN1+/smJ10314XA==
x-oss-server-time: 5
cf-cache-status: HIT
age: 85083
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 953a2e679c031c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/siteadmin/layoutDesign/1728773780637040642.png | 104.18.25.129 | 200 OK | 1.6 kB |
URL GET o566mch.hcm665.com/siteadmin/layoutDesign/1728773780637040642.png IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typePNG image data, 70 x 70, 8-bit colormap, non-interlaced Hashaad33212f3b5221e27bd72c7b2872918 bfa7d007a2df422bd1c51d5b048246041f54267d 8cdae652e8d6758da66a8956e2a6e8f981150fd0745dfa6c654cd427448e71fa
GET /siteadmin/layoutDesign/1728773780637040642.png HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:54 GMT
content-type: image/png
content-length: 1591
x-oss-request-id: 681CACECF53B5C3C9FD5ED40
vary: Origin, Accept-Encoding
etag: "AAD33212F3B5221E27BD72C7B2872918"
last-modified: Sun, 26 Nov 2023 13:52:43 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 5418250699510221346
x-oss-storage-class: Standard
cache-control: max-age=86400
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: qtMyEvO1Ih4nvXLHsocpGA==
x-oss-server-time: 1
cf-cache-status: HIT
age: 2699
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 953a2e27de1d1c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/hall/api/game/hall/listExtLinkV2/currency/VND/language/vi.json | 104.18.25.129 | 200 OK | 128 B |
URL GET o566mch.hcm665.com/hall/api/game/hall/listExtLinkV2/currency/VND/language/vi.json IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typeASCII text, with no line terminators Hash3402435351c938d68236dfe97332b69b 32efa34c2bd97e4d4a7a1fd09b2e212388349733 50be38549d58718e37afa474ccf2ddbdea1ac65c42897004274a6bf713629aff
GET /hall/api/game/hall/listExtLinkV2/currency/VND/language/vi.json HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:56 GMT
content-type: application/json
x-oss-request-id: 681CAC3F304E2E95F838BA0D
vary: Origin, Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-expose-headers: Etag
access-control-max-age: 200
etag: W/"3402435351C938D68236DFE97332B69B"
last-modified: Wed, 07 May 2025 03:31:12 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 7819780509773916382
x-oss-storage-class: Standard
cache-control: s-maxage=600,public,max-age=0
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: NAJDU1HJONaCNt/pczK2mw==
x-oss-server-time: 0
cf-cache-status: REVALIDATED
priority: u=3,i=?0
server: cloudflare
cf-ray: 953a2e34f98e1c0e-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/hall/api/lobby/h5/config/getAccessRestrictedInfo/language/vi.json | 104.18.25.129 | 200 OK | 3.3 kB |
URL GET o566mch.hcm665.com/hall/api/lobby/h5/config/getAccessRestrictedInfo/language/vi.json IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typeASCII text, with very long lines (3288), with no line terminators Hash16b2eb4e632e7daa65c161d6c296e53e 4c6f8f6cb212838ecd39bfbbfe0b66891d6f4e8e 7ed966a9d435ddb58db71a81babc24a62b246999f84efbce17b507672ccb9f4e
GET /hall/api/lobby/h5/config/getAccessRestrictedInfo/language/vi.json HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:57 GMT
content-type: application/json
vary: Accept-Encoding, Origin
x-oss-request-id: 68571393DA25D3B029FA30DF
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-expose-headers: Etag
access-control-max-age: 200
last-modified: Sat, 21 Jun 2025 19:17:08 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 15113048751334402183
x-oss-storage-class: Standard
cache-control: s-maxage=600,public,max-age=0
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: FrLrTmMufaplwWHWwpblPg==
x-oss-server-time: 9
content-encoding: gzip
cf-cache-status: EXPIRED
priority: u=3,i=?0
server: cloudflare
cf-ray: 953a2e3b4f671c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| POST hcm2244.com/hall/api/agent/promote/pointer/domain | 104.18.24.129 | 200 OK | 50 B |
URL POST hcm2244.com/hall/api/agent/promote/pointer/domain IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjecthcm2244.com FingerprintD8:D9:04:B6:18:EC:36:72:BE:90:C6:62:09:66:0C:D4:20:45:A3:21 ValidityFri, 09 May 2025 12:39:10 GMT - Thu, 07 Aug 2025 13:39:04 GMT
Hashf71e0fbfec61ed57212406321530c59d 0c974c525525ad1fdee7578f238f0bb24e385b44 0571ad838e9cc959bddc77154a608a06aa4296d582f29c3e67ffd9504d4b7f6c
POST /hall/api/agent/promote/pointer/domain HTTP/1.1
Host: hcm2244.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: vi
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
x-object-id: {"uid":"","browserLanguage":"en-US","init":{"device":"","created":1750578892437,"version":1750472258000}}
platformType: 5
devicetype: 3
x-device: 1-1
x-data-mode: plain
x-request-id: 1dced984-d760-4158-b5fe-1d9a545a4063
device: 7299ced1-ed36-4357-bbee-689c60a641d0
currency: VND
timestamp: 1750578895
nonce: 1dced984-d760-4158-b5fe-1d9a545a4063
sign: HOq6mYCcPOZnNdPqk0XCa90v0gGytENZjN80H7KYAUnH52BbH7hkYudQfujAJaEP
siteCode: 285
language: vi
token: b2e3d672-9d88-47a7-81b4-9d7ffc62054f
auth: undefined
deviceModel: Firefox v134.0
physicalDeviceModel: unknown
operatingSystem: Windows
deviceBrand: unknown
browserType: Firefox v134.0
appSystem: Windows 10
domain: w2.9ybhay.shop
webauthnDomain: w2.9ybhay.shop
clienttimezone: 0
x-custom-referer: https://w2.9ybhay.shop/
x-version: 6.1.102
browserfingerid:
appVersion: v6.1.102
Content-Length: 67
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:58 GMT
content-type: application/json; charset=utf-8
set-cookie: acw_tc=0a0ccab017505788982592240e594cbf07ecac12f81f6a74ed8df25dc832bd;path=/;HttpOnly;Max-Age=1800
api-cache: false
cache-control: no-cache
x-env-go-biz-agent-server: 0
x-env-go-biz-gateway: 0
x-server-version: 4.0.0
x-trace-id: 5b1cc7006b4d9180
access-control-allow-methods: *
access-control-max-age: 3600
access-control-allow-credentials: true
access-control-allow-origin: *
cf-cache-status: DYNAMIC
priority: u=3,i=?0
server: cloudflare
cf-ray: 953a2e416c860b4d-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| POST hcm2244.com/hall/api/statistics/domain/pointer | 104.18.24.129 | 200 OK | 50 B |
URL POST hcm2244.com/hall/api/statistics/domain/pointer IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjecthcm2244.com FingerprintD8:D9:04:B6:18:EC:36:72:BE:90:C6:62:09:66:0C:D4:20:45:A3:21 ValidityFri, 09 May 2025 12:39:10 GMT - Thu, 07 Aug 2025 13:39:04 GMT
Hashf71e0fbfec61ed57212406321530c59d 0c974c525525ad1fdee7578f238f0bb24e385b44 0571ad838e9cc959bddc77154a608a06aa4296d582f29c3e67ffd9504d4b7f6c
POST /hall/api/statistics/domain/pointer HTTP/1.1
Host: hcm2244.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: vi
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
x-object-id: {"uid":"","browserLanguage":"en-US","init":{"device":"","created":1750578892437,"version":1750472258000}}
platformType: 5
devicetype: 3
x-device: 1-1
x-data-mode: plain
x-request-id: 2378c05c-b305-4408-adfb-ba0acbdac77a
device: 7299ced1-ed36-4357-bbee-689c60a641d0
currency: VND
timestamp: 1750578895
nonce: 2378c05c-b305-4408-adfb-ba0acbdac77a
sign: B4UYIjmES/UJjTbLxx2sNY0S0ZfMp/OpSpps6s8yvbA4JlQRBuEBehDHfJAPDNcB
siteCode: 285
language: vi
token: b2e3d672-9d88-47a7-81b4-9d7ffc62054f
auth: undefined
deviceModel: Firefox v134.0
physicalDeviceModel: unknown
operatingSystem: Windows
deviceBrand: unknown
browserType: Firefox v134.0
appSystem: Windows 10
domain: w2.9ybhay.shop
webauthnDomain: w2.9ybhay.shop
clienttimezone: 0
x-custom-referer: https://w2.9ybhay.shop/
x-version: 6.1.102
browserfingerid:
appVersion: v6.1.102
Content-Length: 84
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:58 GMT
content-type: application/json; charset=utf-8
set-cookie: acw_tc=0a094e3917505788984181360e518fb714d9f0fdce5d0095e7a86c2f17adf6;path=/;HttpOnly;Max-Age=1800
api-cache: false
cache-control: no-cache
x-env-go-biz-gateway: 0
x-env-go-biz-statistics-server: 0
x-server-version: 4.0.0
x-trace-id: 7d3c9f11628769ca
access-control-allow-methods: *
access-control-max-age: 3600
access-control-allow-credentials: true
access-control-allow-origin: *
cf-cache-status: DYNAMIC
priority: u=3,i=?0
server: cloudflare
cf-ray: 953a2e417c990b4d-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/ | 104.18.24.129 | 200 OK | 86 kB |
IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (64297), with no line terminators Hash5f4e50e8a890523b46c2cba402e80624 85f653546206ff5fd281a31c3dd7826ee03226df 58cebad553f66841db63992e27f2dce4337411e49fd97e4494e4c43ed0aacec3
GET / HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://w2.9ybhay.shop/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:58 GMT
content-type: text/html
vary: Accept-Encoding
x-oss-request-id: 6857B6CB7859E439339A0E83
last-modified: Sun, 22 Jun 2025 03:39:45 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 17673124803514422613
x-oss-storage-class: Standard
cache-control: s-maxage=600,public,max-age=0
content-md5: X05Q6KiQUjtGwsukAugGJA==
x-oss-server-time: 4
cf-cache-status: HIT
age: 7
priority: u=4,i=?0
server: cloudflare
cf-ray: 953a2e461b8e56ab-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/assets/theme-1/2_EventDialogsChunk.B7KRXVjO.js | 104.18.24.129 | 200 OK | 131 kB |
URL GET w2.9ybhay.shop/assets/theme-1/2_EventDialogsChunk.B7KRXVjO.js IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeUnicode text, UTF-8 text, with very long lines (64519) Size131 kB (130802 bytes) Hash32e8db21e65195d86fad4705410b0845 10a238b185a54db6de1794a805bd3ea24ec62dc6 679a1921691a34acff1acf4eaabc8eef068ba09ca3a131e8ee0b40dacb641b6e
GET /assets/theme-1/2_EventDialogsChunk.B7KRXVjO.js HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/assets/theme-1/FindUsIndex.Cw0ZUnV7.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:55:03 GMT
content-type: text/javascript
x-oss-request-id: 6857139AAFBCCE35332320A5
etag: W/"32E8DB21E65195D86FAD4705410B0845"
last-modified: Sat, 21 Jun 2025 07:04:23 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 1371898893700123286
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.100-v6.1.102
cache-control: max-age=31622400
content-md5: MujbIeZRldhvrUcFQQsIRQ==
x-oss-server-time: 17
cf-cache-status: HIT
age: 41788
priority: u=3,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 953a2e62b9db56ab-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET 674hl.hcm660.com/cdn-cgi/challenge-platform/h/g/scripts/jsd/180b6a431d85/main.js? | 104.21.48.1 | 200 OK | 10 kB |
URL GET 674hl.hcm660.com/cdn-cgi/challenge-platform/h/g/scripts/jsd/180b6a431d85/main.js? IP104.21.48.1:443
Requested byhttps://674hl.hcm660.com/index2.php CertificateIssuerGoogle Trust Services Subjecthcm660.com FingerprintC7:D3:1B:A4:57:3F:29:34:CC:36:3C:EE:6A:9F:2C:EF:32:0E:26:72 ValidityFri, 13 Jun 2025 00:21:14 GMT - Thu, 11 Sep 2025 01:18:11 GMT
File typeJavaScript source, ASCII text, with very long lines (10125), with no line terminators Hash7bd76e383ec943dc01bb94accadf8ec3 27f07a11da32012bba372389a1e7db09efbdf274 b64d243c0a4b9a6a1b196be941aa2d949cbb71d7126941d951e515a22190d8aa
GET /cdn-cgi/challenge-platform/h/g/scripts/jsd/180b6a431d85/main.js? HTTP/1.1
Host: 674hl.hcm660.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: uDomain=674hl.hcm660.com; PHPSESSID=4sr7ag4lltc3su2b4i18o2mlft; uUrl=w2.9ybhay.shop; cf_clearance=vpOiP8ge2hvp0KLHnJh8XOEyK_fB5v_KbB1gx4eVXus-1750578891-1.2.1.1-zitqN19X3LXx7zFfC_0ZDCfNm7TVCq4ds0JYW4Kdt45nODea8UhgqaSc8hBdWPYPBDZ3QVpFdQKU9yO9B01.Q1PEpNkZOJRex_.4T.vjjO8GQcjZC9iQdH.xrSHqhACpIlHAzwbpp0AUmL98DR45We6gmBYsk03cz0n6z1z9JHd9me0uEPFXT4IsdWJnCoj9ZPg1Gf1hkmiim4tZBymd.L6TUmsCpIo9EVHX7icaUc56j_BN4k6J.RYAQl2aEHMpxJpkoS.PwxHPl4sl3kefTOT0avFsWm8Zs8QrN_ut.TPdiWQ50Fp_Y3sDu7nNCj23SyVxN1sPDQWxytpCa_vlgau_pdh4bs30k7GH6pIeweU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:51 GMT
content-type: application/javascript; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=X3Zh0vCTUkYRnbFK6VHOe1g0ugI7lOm5O11s5Auaj3J4fOM28S98sKeSNwOvxIBtO0uOesSjMptwU6%2Bu12ze%2Fa%2Fwb8R8h8RF7Evw6jYlzo1cDgt2kk3FXH3YH0gpTQQGb81x"}],"group":"cf-nel","max_age":604800}
cache-control: max-age=14400, stale-if-error=10800, stale-while-revalidate=10800, public
x-content-type-options: nosniff
content-encoding: br
cf-ray: 953a2e17184056a4-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1627&min_rtt=47&rtt_var=809&sent=170&recv=229&lost=0&retrans=0&sent_bytes=26917&recv_bytes=27112&delivery_rate=1479944&ss_exit_cwnd=14908&ss_exit_reason=2&cwnd=12000&unsent_bytes=0&cid=0fd87d692209fe36&ts=979&inflight_dur=130&x=44"
|
|
| GET w2.9ybhay.shop/assets/theme-1/AssemblyIndex.DrPx3nq9.js | 104.18.24.129 | 200 OK | 3.1 kB |
URL GET w2.9ybhay.shop/assets/theme-1/AssemblyIndex.DrPx3nq9.js IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeJava source, ASCII text, with very long lines (2108) Hash25a8b20fb60b54b2fcf894934387d00f a670531f1b5b5f538a4eb2ab370fd3e6a370b8ee f16d4d675fa44f924333d74a4418b92161e9d5c23408165f188bf5033a65d072
GET /assets/theme-1/AssemblyIndex.DrPx3nq9.js HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/assets/theme-1/BaseIndex.C1Bn1dTH.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:54 GMT
content-type: text/javascript
x-oss-request-id: 68571391C05EDB393344CE90
etag: W/"25A8B20FB60B54B2FCF894934387D00F"
last-modified: Sat, 21 Jun 2025 07:04:23 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 2373465535153991495
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.100-v6.1.102
cache-control: max-age=31622400
content-md5: JaiyD7YLVLL8+JSTQ4fQDw==
x-oss-server-time: 19
cf-cache-status: HIT
age: 41789
priority: u=3,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 953a2e2cda4d56ab-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/assets/theme-1/1_PromotionChunk.B-7hOZJr.css | 104.18.24.129 | 200 OK | 139 kB |
URL GET w2.9ybhay.shop/assets/theme-1/1_PromotionChunk.B-7hOZJr.css IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeASCII text, with very long lines (65536), with no line terminators Size139 kB (138658 bytes) Hash014b73a78828a5e2926542fe6b728473 48e5993b17cc75a1e905c5ad2b9098630f106143 2c4157fa201ba08f7bc343dc019902a43e4f0fdddc22bf473903d796d8b0766b
GET /assets/theme-1/1_PromotionChunk.B-7hOZJr.css HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:55:04 GMT
content-type: text/css
vary: Accept-Encoding
x-oss-request-id: 6857139C65E6673732243BD7
last-modified: Thu, 19 Jun 2025 02:23:15 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 252615287944026297
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.79-v6.1.88
cache-control: max-age=31622400
content-md5: AUtzp4gopeKSZUL+a3KEcw==
x-oss-server-time: 25
content-encoding: gzip
cf-cache-status: HIT
age: 41788
priority: u=2,i=?0
server: cloudflare
cf-ray: 953a2e69c8e456ab-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/hall/api/active/tasks/pop_taskThreeDay/currency/VND/language/vi.json | 104.18.25.129 | 200 OK | 216 B |
URL GET o566mch.hcm665.com/hall/api/active/tasks/pop_taskThreeDay/currency/VND/language/vi.json IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typeASCII text, with no line terminators Hash647d720cd6f8d4c6b24a9500eb800b00 c65b38c29c1661b45584e3eb4b94e5c4545074b8 8c02ba90cc28584395ebec43cae7d728639a9af333c12db1003a5ef444e56ddb
GET /hall/api/active/tasks/pop_taskThreeDay/currency/VND/language/vi.json HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:55:06 GMT
content-type: application/json
x-oss-request-id: 6857B6D21E3C924D7CA72372
vary: Origin, Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-expose-headers: Etag
access-control-max-age: 200
etag: W/"647D720CD6F8D4C6B24A9500EB800B00"
last-modified: Sun, 22 Jun 2025 02:37:03 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 14041678110192509043
x-oss-storage-class: Standard
cache-control: s-maxage=600,max-age=0,public
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: ZH1yDNb41MaySpUA64ALAA==
x-oss-server-time: 9
cf-cache-status: HIT
age: 8
priority: u=3,i=?0
server: cloudflare
cf-ray: 953a2e7578601c0e-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| | 104.21.64.1 | 301 Moved Permanently | 8.1 kB |
IP104.21.64.1:80
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: 674hl.hcm660.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Cookie: uDomain=674hl.hcm660.com; PHPSESSID=4sr7ag4lltc3su2b4i18o2mlft
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Sun, 22 Jun 2025 07:54:50 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://674hl.hcm660.com/
Vary: accept-encoding
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Q45DbCUyOISdDWvPY0yIKA4g1IGbOKZJ7j9OGNMCrQlP6%2BQ%2B5ZJoWqpByjuMvKm6Lxi75SxqhyLF2%2FSliQqsVhBVIxV1tEyY%2FQd6efUb"}]}
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Server: cloudflare
CF-RAY: 953a2e12ce5756b7-OSL
alt-svc: h2=":443"; ma=60
|
|
| GET o566mch.hcm665.com/hall/api/active/tasks/pop_taskDay/currency/VND/language/vi.json | 104.18.25.129 | 200 OK | 1.2 kB |
URL GET o566mch.hcm665.com/hall/api/active/tasks/pop_taskDay/currency/VND/language/vi.json IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typeASCII text, with very long lines (1176), with no line terminators Hashf32c62a2eb1f2c76e3bbbb0421574442 6c63f4e14a255a5a78a508c813bde564dbe937ea 1b16897813a97ffc36b233aad595390733487700959a38e458b1848be0fb56be
GET /hall/api/active/tasks/pop_taskDay/currency/VND/language/vi.json HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:55:05 GMT
content-type: application/json
vary: Accept-Encoding, Origin
x-oss-request-id: 6857B6D2CD397201B3DE1C4D
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-expose-headers: Etag
access-control-max-age: 200
last-modified: Sun, 22 Jun 2025 02:37:03 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 16891912387731136611
x-oss-storage-class: Standard
cache-control: s-maxage=600,max-age=0,public
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: 8yxiousfLHbju7sEIVdEQg==
x-oss-server-time: 1
content-encoding: gzip
cf-cache-status: HIT
age: 7
priority: u=3,i=?0
server: cloudflare
cf-ray: 953a2e6e494e1c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/siteadmin/skin/lobby_asset/1-0-11/common/_sprite/icon_dt_1gd.avif?manualVersion=1&version=v6.1.102 | 104.18.25.129 | 200 OK | 1.6 kB |
URL GET o566mch.hcm665.com/siteadmin/skin/lobby_asset/1-0-11/common/_sprite/icon_dt_1gd.avif?manualVersion=1&version=v6.1.102 IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
Hash6f5cb7ab09cc1025a87f620b9e3cc965 f1cd3c14492dae2fb5f6724eb59a4f96be28b98f 5332b11d91c00ee1fa4f29e94b5d689e5c5980827b984a3fbd999e3b5c0780f3
GET /siteadmin/skin/lobby_asset/1-0-11/common/_sprite/icon_dt_1gd.avif?manualVersion=1&version=v6.1.102 HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:53 GMT
content-type: image/avif
content-length: 1571
x-oss-request-id: 68566A737DAC2CE49B3236D7
vary: Origin, Accept-Encoding
etag: "6F5CB7AB09CC1025A87F620B9E3CC965"
last-modified: Wed, 18 Jun 2025 07:08:04 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 8353034930746110871
x-oss-storage-class: Standard
cache-control: max-age=604800,public
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: b1y3qwnMECWof2ILnjzJZQ==
x-oss-server-time: 32
cf-cache-status: HIT
age: 85082
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 953a2e26ed2a1c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/siteadmin/skin/lobby_asset/1-0-common/common/_sprite/icon_dtfl_zr_1.avif?manualVersion=1&version=v6.1.102 | 104.18.25.129 | 200 OK | 2.1 kB |
URL GET o566mch.hcm665.com/siteadmin/skin/lobby_asset/1-0-common/common/_sprite/icon_dtfl_zr_1.avif?manualVersion=1&version=v6.1.102 IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
Hash1e9cb491ec27c2412bbeed57c5817fa7 c66f806eb4deecd5cc6e7a65567372181b1bb67d 97fd80d0c69252435cc9bd0eb1934269105c2300dd72d83fe43ce80946921611
GET /siteadmin/skin/lobby_asset/1-0-common/common/_sprite/icon_dtfl_zr_1.avif?manualVersion=1&version=v6.1.102 HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:54 GMT
content-type: image/avif
content-length: 2113
x-oss-request-id: 68566A73048FEF426ABEB920
vary: Origin, Accept-Encoding
etag: "1E9CB491EC27C2412BBEED57C5817FA7"
last-modified: Tue, 10 Jun 2025 03:21:54 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 1468228297530659951
x-oss-storage-class: Standard
cache-control: max-age=604800,public
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: Hpy0kewnwkErvu1XxYF/pw==
x-oss-server-time: 12
cf-cache-status: HIT
age: 85083
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 953a2e279de61c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/hall/api/active/quickList/currency/VND/language/vi.json | 104.18.25.129 | 200 OK | 1.5 kB |
URL GET o566mch.hcm665.com/hall/api/active/quickList/currency/VND/language/vi.json IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typeASCII text, with very long lines (1536), with no line terminators Hash292c0c9663556174467228cd0ef88054 040999a8e255bad25db647d82223276ea29e62e7 fbca30b8441ec922f245013acfc37c5cbec8ef8857a13211f30c2a6eddc219df
GET /hall/api/active/quickList/currency/VND/language/vi.json HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:55:04 GMT
content-type: application/json
vary: Accept-Encoding, Origin
x-oss-request-id: 6857B6D8DE66936D31A88654
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-expose-headers: Etag
access-control-max-age: 200
last-modified: Sat, 21 Jun 2025 21:48:41 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 6731943321081793043
x-oss-storage-class: Standard
cache-control: s-maxage=600,max-age=0,public
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: KSwMlmNVYXRGcijNDviAVA==
x-oss-server-time: 1
content-encoding: gzip
cf-cache-status: EXPIRED
priority: u=3,i=?0
server: cloudflare
cf-ray: 953a2e65daae1c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/siteadmin/upload/img/1870484100930023426.avif | 104.18.25.129 | 200 OK | 80 kB |
URL GET o566mch.hcm665.com/siteadmin/upload/img/1870484100930023426.avif IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
Hashef7d69b6a698913b4769772456b9327c 408bb0f8285e26d09bd36dc4b2a3d382c69fb4e1 f3f0c875b3289e894044df77627c7c9ce1c8559428cd9edab69c9bc06917cc9a
GET /siteadmin/upload/img/1870484100930023426.avif HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:55:04 GMT
content-type: image/avif
content-length: 79702
x-oss-request-id: 681CAC50048FEF8C7FCADC76
vary: Origin, Accept-Encoding
etag: "EF7D69B6A698913B4769772456B9327C"
last-modified: Sat, 21 Dec 2024 14:58:59 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 15959515030272695650
x-oss-storage-class: Standard
cache-control: max-age=86400
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: 731ptqaYkTtHaXckVrkyfA==
x-oss-server-time: 8
cf-cache-status: HIT
age: 2698
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 953a2e68dce91c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/siteadmin/skin/lobby_asset/1-0-common/web/home/icon_dt_pmd.avif?manualVersion=1&version=v6.1.102 | 104.18.25.129 | 200 OK | 2.3 kB |
URL GET o566mch.hcm665.com/siteadmin/skin/lobby_asset/1-0-common/web/home/icon_dt_pmd.avif?manualVersion=1&version=v6.1.102 IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typeISO Media, AVIF Image Sequence Hashb3e4451cd7b496c753ceda422a05836f afd53da3eb0c2d27135b4d9178f61d5fe1b575bd b4ccc240a99ae6fc4fb8440a65fca3558a66479b18976ed0f04d1bcb5976189f
GET /siteadmin/skin/lobby_asset/1-0-common/web/home/icon_dt_pmd.avif?manualVersion=1&version=v6.1.102 HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:53 GMT
content-type: image/avif
content-length: 2333
x-oss-request-id: 68566A7359430712633A700D
vary: Origin, Accept-Encoding
etag: "B3E4451CD7B496C753CEDA422A05836F"
last-modified: Tue, 10 Jun 2025 03:21:42 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 5692496726147755846
x-oss-storage-class: Standard
cache-control: max-age=604800,public
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: s+RFHNe0lsdTztpCKgWDbw==
x-oss-server-time: 8
cf-cache-status: HIT
age: 85082
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 953a2e26bd0b1c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/siteadmin/skin/lobby_asset/1-0-11/web/common/btn_zc1_2.avif?manualVersion=1&version=v6.1.102 | 104.18.25.129 | 200 OK | 809 B |
URL GET o566mch.hcm665.com/siteadmin/skin/lobby_asset/1-0-11/web/common/btn_zc1_2.avif?manualVersion=1&version=v6.1.102 IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
Hashfe5be5352845740b75590eeb27cf8e98 2338c2a6d5b957e181089fcd62df62ff95af7914 0fa17cc174883b05cfd546b94574585333dc022e7430e86a83354bc2b0da9c87
GET /siteadmin/skin/lobby_asset/1-0-11/web/common/btn_zc1_2.avif?manualVersion=1&version=v6.1.102 HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:54 GMT
content-type: image/avif
content-length: 809
x-oss-request-id: 68566A7372F0665B4A044BFD
vary: Origin, Accept-Encoding
etag: "FE5BE5352845740B75590EEB27CF8E98"
last-modified: Wed, 18 Jun 2025 07:06:32 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 10579611477085031381
x-oss-storage-class: Standard
cache-control: max-age=604800,public
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: /lvlNShFdAt1WQ7rJ8+OmA==
x-oss-server-time: 41
cf-cache-status: HIT
age: 85083
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 953a2e279de11c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/siteadmin/skin/lobby_asset/1-0-common/common/_sprite/icon_dtfl_by_1.avif?manualVersion=1&version=v6.1.102 | 104.18.25.129 | 200 OK | 2.1 kB |
URL GET o566mch.hcm665.com/siteadmin/skin/lobby_asset/1-0-common/common/_sprite/icon_dtfl_by_1.avif?manualVersion=1&version=v6.1.102 IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
Hash798b36e4d178572233f953ac0528b8ce 7303077407e6cddc5e1eb08c9f39c9b5aeb07eda e7598920cb06042cf8d9696cc6b1f2c4ac57d08246f5334930cd05ff0082476d
GET /siteadmin/skin/lobby_asset/1-0-common/common/_sprite/icon_dtfl_by_1.avif?manualVersion=1&version=v6.1.102 HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:54 GMT
content-type: image/avif
content-length: 2053
x-oss-request-id: 68566A73DA25D3B02903417F
vary: Origin, Accept-Encoding
etag: "798B36E4D178572233F953AC0528B8CE"
last-modified: Tue, 10 Jun 2025 03:21:54 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 8531949581686361262
x-oss-storage-class: Standard
cache-control: max-age=604800,public
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: eYs25NF4VyIz+VOsBSi4zg==
x-oss-server-time: 14
cf-cache-status: HIT
age: 85083
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 953a2e279de91c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/siteadmin/layoutDesign/1728773685372276737.png | 104.18.25.129 | 200 OK | 742 B |
URL GET o566mch.hcm665.com/siteadmin/layoutDesign/1728773685372276737.png IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typePNG image data, 70 x 70, 8-bit colormap, non-interlaced Hasha19e5d2b54650bf68d0dd36f58665d7f 3aed06a16e4359006cfee8ade70317c86d68ff8b b9ed806692e64e2049c775e03734bdc454190f409e59d3e0a7cf34a48b67901f
GET /siteadmin/layoutDesign/1728773685372276737.png HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:54 GMT
content-type: image/png
content-length: 742
x-oss-request-id: 68178B93DA25D3580D86EA4D
vary: Origin, Accept-Encoding
etag: "A19E5D2B54650BF68D0DD36F58665D7F"
last-modified: Sun, 26 Nov 2023 13:52:20 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 3671943930116178714
x-oss-storage-class: Standard
cache-control: max-age=86400
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: oZ5dK1RlC/aNDdNvWGZdfw==
x-oss-server-time: 1
cf-cache-status: HIT
age: 2699
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 953a2e27ce0e1c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/siteadmin/upload/img/1870484376567570433.avif | 104.18.25.129 | 200 OK | 60 kB |
URL GET o566mch.hcm665.com/siteadmin/upload/img/1870484376567570433.avif IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
Hash679d664568ea499be3949fb5c3c6e3bd 3068a25587aa00138d2d2f66f606c5aa4c42e46e 58fed5022879cf1cc87ff736a47e26cebb9bd8e6a5c097f5f5ed90197600c830
GET /siteadmin/upload/img/1870484376567570433.avif HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:54 GMT
content-type: image/avif
content-length: 59820
x-oss-request-id: 681C0E7733781B65515B3363
vary: Origin, Accept-Encoding
etag: "679D664568EA499BE3949FB5C3C6E3BD"
last-modified: Sat, 21 Dec 2024 15:00:08 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 8698087316082907771
x-oss-storage-class: Standard
cache-control: max-age=86400
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: Z51mRWjqSZvjlJ+1w8bjvQ==
x-oss-server-time: 29
cf-cache-status: HIT
age: 85083
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 953a2e28cee71c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/game_pictures/g/CL/315/3/3150049/default.avif?web_v=v6.1.102 | 104.18.25.129 | 200 OK | 9.9 kB |
URL GET o566mch.hcm665.com/game_pictures/g/CL/315/3/3150049/default.avif?web_v=v6.1.102 IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
Hash64f4ba5918ae1cfd881f636a58c82c8f 953fda202fca9baf4ef751b9a7aab82ab2811ca3 b01b0f494261e0e064990323f83e81d39f27c1a9bd77c3a910017c959e57d2b6
GET /game_pictures/g/CL/315/3/3150049/default.avif?web_v=v6.1.102 HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:54 GMT
content-type: image/avif
content-length: 9861
x-oss-request-id: 68566A7333781B40886EBD5C
vary: Origin, Accept-Encoding
etag: "64F4BA5918AE1CFD881F636A58C82C8F"
last-modified: Mon, 02 Jun 2025 09:09:01 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 5214947714691178319
x-oss-storage-class: Standard
cache-control: max-age=2678400,stale-while-revalidate=86400,immutable,proxy-revalidate,public
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: ZPS6WRiuHP2IH2NqWMgsjw==
x-oss-server-time: 21
cf-cache-status: HIT
age: 85083
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 953a2e299f8d1c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/assets/theme-1/2_NoticePageChunk.0PZ2Wemk.css | 104.18.24.129 | 200 OK | 70 kB |
URL GET w2.9ybhay.shop/assets/theme-1/2_NoticePageChunk.0PZ2Wemk.css IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hashbbc6c5c9d83efca6910afa28e16a6980 afe347019fb9231acc0e30aa7321bf31a111c366 be751c965db7341b508dad780d042d07812dee6a450e39c75ac14dd0a1dc4236
GET /assets/theme-1/2_NoticePageChunk.0PZ2Wemk.css HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:55 GMT
content-type: text/css
vary: Accept-Encoding
x-oss-request-id: 685713916590933631956FDC
last-modified: Thu, 19 Jun 2025 02:23:15 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 14426291148899607890
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.79-v6.1.88
cache-control: max-age=31622400
content-md5: u8bFydg+/KaRCvoo4WppgA==
x-oss-server-time: 27
content-encoding: gzip
cf-cache-status: HIT
age: 41790
priority: u=2,i=?0
server: cloudflare
cf-ray: 953a2e317e8e56ab-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/siteadmin/skin/lobby_asset/1-0-11/common/_sprite/icon_dt_1xx_wd.avif?manualVersion=1&version=v6.1.102 | 104.18.25.129 | 200 OK | 1.2 kB |
URL GET o566mch.hcm665.com/siteadmin/skin/lobby_asset/1-0-11/common/_sprite/icon_dt_1xx_wd.avif?manualVersion=1&version=v6.1.102 IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
Hashadbb21d29e8ab05d1faa4e9746805a95 7cf63d5be591a934d861a5a8bb3fc7c14e243507 19c600b7292395b10199f27eb249fe029ca2f5d675ea9f3fa2a766f7f74d8d8d
GET /siteadmin/skin/lobby_asset/1-0-11/common/_sprite/icon_dt_1xx_wd.avif?manualVersion=1&version=v6.1.102 HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:55 GMT
content-type: image/avif
content-length: 1235
x-oss-request-id: 68565E24DE66936D31C5BE8B
vary: Origin, Accept-Encoding
etag: "ADBB21D29E8AB05D1FAA4E9746805A95"
last-modified: Wed, 18 Jun 2025 07:06:44 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 11597177543994830412
x-oss-storage-class: Standard
cache-control: max-age=604800,public
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: rbsh0p6KsF0fqk6XRoBalQ==
x-oss-server-time: 4
cf-cache-status: HIT
age: 85083
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 953a2e3398571c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/hall/api/game/hall/gameVersion/currency/VND.json | 104.18.25.129 | 200 OK | 192 B |
URL GET o566mch.hcm665.com/hall/api/game/hall/gameVersion/currency/VND.json IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typeASCII text, with no line terminators Hash8a7eaa0511038b217e7fa88276a7fe38 71c5db75bcb8d0576daa963a1d0f0bd142dd8f2c 1f95b9f42e7749fe86e752c97b3da01b8a182464841c69ff8d8c45306972a494
GET /hall/api/game/hall/gameVersion/currency/VND.json HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:56 GMT
content-type: application/json
x-oss-request-id: 683F44A740D0029A5CFB0ED5
vary: Origin, Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-expose-headers: Etag
access-control-max-age: 200
etag: W/"8A7EAA0511038B217E7FA88276A7FE38"
last-modified: Tue, 03 Jun 2025 08:09:00 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 11307035208965056445
x-oss-storage-class: Standard
cache-control: s-maxage=600,public,max-age=0
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: in6qBREDiyF+f6iCdqf+OA==
x-oss-server-time: 2
cf-cache-status: REVALIDATED
priority: u=3,i=?0
server: cloudflare
cf-ray: 953a2e34e9831c0e-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/active/ActiveImg5982610369756591.avif | 104.18.25.129 | 200 OK | 61 kB |
URL GET o566mch.hcm665.com/active/ActiveImg5982610369756591.avif IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typeISO Media, AVIF Image Sequence Hashc2b86e9646346ee07a9b8beac32a7790 ac0c11c320a3beb2b5e10720cd2afefe2928870d d6db28f65dbb64e9b8294fa2aeaf6d603dc7de983b588c83456c6223687cd892
GET /active/ActiveImg5982610369756591.avif HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:55:04 GMT
content-type: image/avif
content-length: 60749
x-oss-request-id: 68203E09CD3972C8C2DF3DE0
vary: Origin, Accept-Encoding
etag: "C2B86E9646346EE07A9B8BEAC32A7790"
last-modified: Mon, 02 Dec 2024 16:19:58 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 17482064432510967809
x-oss-storage-class: Standard
cache-control: max-age=86400
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: wrhulkY0buB6m4vqwyp3kA==
x-oss-server-time: 134
cf-cache-status: HIT
age: 2698
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 953a2e679bfd1c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/hall/api/active/tasks/pop_taskWeek/currency/VND/language/vi.json | 104.18.25.129 | 200 OK | 1.3 kB |
URL GET o566mch.hcm665.com/hall/api/active/tasks/pop_taskWeek/currency/VND/language/vi.json IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typeASCII text, with very long lines (1344), with no line terminators Hash2ec9701687d53bea28cf3ceda07c6529 f6cb24c144961b38cc06e8e06703326f9e8f57ba f34319bbe56dd73e6f22e44cd0b9fafb5e82ae7aa4526ff3dbee36c975e1b5f7
GET /hall/api/active/tasks/pop_taskWeek/currency/VND/language/vi.json HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:55:05 GMT
content-type: application/json
vary: Accept-Encoding, Origin
x-oss-request-id: 6857B6D2F53B5C8775B0A8B9
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-expose-headers: Etag
access-control-max-age: 200
last-modified: Sun, 22 Jun 2025 02:37:03 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 10891359539325411411
x-oss-storage-class: Standard
cache-control: s-maxage=600,max-age=0,public
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: LslwFofVO+oozzztoHxlKQ==
x-oss-server-time: 1
content-encoding: gzip
cf-cache-status: HIT
age: 7
priority: u=3,i=?0
server: cloudflare
cf-ray: 953a2e71ed1e1c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/hall/api/lobby/config/getAppDownloadInfo.json | 104.18.25.129 | 200 OK | 2.2 kB |
URL GET o566mch.hcm665.com/hall/api/lobby/config/getAppDownloadInfo.json IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typeASCII text, with very long lines (2200), with no line terminators Hash0369170ff3a73ba1f82ae683fd427024 983ae153917c4cc6a1c826db4b627d2f17faa9e3 75efcc525101517157b9441d0a0c82a6bd98d87a6da8d0feb6050936dcc5e418
GET /hall/api/lobby/config/getAppDownloadInfo.json HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 22 Jun 2025 07:54:53 GMT
content-type: application/json
vary: Accept-Encoding, Origin
x-oss-request-id: 6857138FCD397201B31448A2
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-expose-headers: Etag
access-control-max-age: 200
last-modified: Sat, 21 Jun 2025 19:17:08 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 7383683401357440477
x-oss-storage-class: Standard
cache-control: s-maxage=600,public,max-age=0
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: A2kXD/OnO6H4KuaD/UJwJA==
x-oss-server-time: 4
content-encoding: gzip
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 953a2e20c8d0b4f3-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| GET o566mch.hcm665.com/hall/api/backstage/system/status/currency/VND/language/vi/osType/4/platformType/5.json | 104.18.25.129 | 200 OK | 18 kB |
URL GET o566mch.hcm665.com/hall/api/backstage/system/status/currency/VND/language/vi/osType/4/platformType/5.json IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typeASCII text, with very long lines (17984), with no line terminators Hash2846ee889b965582c03161202a65258a 39a42470736e04d352bed60dc46243ce42aa3398 890b87acc2e4087e43fd69b8b7ba3de2120881e73c6b114f10f2e3e752f8143e
GET /hall/api/backstage/system/status/currency/VND/language/vi/osType/4/platformType/5.json HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:56 GMT
content-type: application/json
vary: Accept-Encoding, Origin
x-oss-request-id: 6857B6D072F0665B4AC5F551
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-expose-headers: Etag
access-control-max-age: 200
last-modified: Sun, 22 Jun 2025 02:35:11 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 827429868371223248
x-oss-storage-class: Standard
cache-control: s-maxage=600,max-age=0,public
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: KEbuiJuWVYLAMWEgKmUlig==
x-oss-server-time: 2
content-encoding: gzip
cf-cache-status: EXPIRED
priority: u=3,i=?0
server: cloudflare
cf-ray: 953a2e355a041c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET cdntoos.hcm2211.com/siteadmin/ssocdn.txt | 0.0.0.0 | | 0 B |
URL GET cdntoos.hcm2211.com/siteadmin/ssocdn.txt IP0.0.0.0:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /siteadmin/ssocdn.txt HTTP/1.1
Host: cdntoos.hcm2211.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://w2.9ybhay.shop/
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
|
|
| GET w2.9ybhay.shop/assets/theme-1/FindUsIndex.Cw0ZUnV7.js | 104.18.24.129 | 200 OK | 11 kB |
URL GET w2.9ybhay.shop/assets/theme-1/FindUsIndex.Cw0ZUnV7.js IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeASCII text, with very long lines (10583) Hash1436394ee13a65214d1b7bcbca21e512 1525f0c57224ba24f2c6b9d972ed45bb668c25a7 e242d7df868cb28a2e9d06965f7efb652ffb76965c0a1a9a6e582e0033b575cb
GET /assets/theme-1/FindUsIndex.Cw0ZUnV7.js HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/assets/theme-1/commonChunk.CXW_BbDR.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:55:03 GMT
content-type: text/javascript
x-oss-request-id: 6857139A9A633634348B07BD
etag: W/"1436394EE13A65214D1B7BCBCA21E512"
last-modified: Sat, 21 Jun 2025 07:04:23 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 12527922858020105490
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.100-v6.1.102
cache-control: max-age=31622400
content-md5: FDY5TuE6ZSFNG3vLyiHlEg==
x-oss-server-time: 42
cf-cache-status: HIT
age: 41789
priority: u=3,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 953a2e62599956ab-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/siteadmin/layoutDesign/1728774109036003329.png | 104.18.25.129 | 200 OK | 2.6 kB |
URL GET o566mch.hcm665.com/siteadmin/layoutDesign/1728774109036003329.png IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typePNG image data, 70 x 70, 8-bit colormap, non-interlaced Hash3359bad288765fac5907fc69ecd4750d 8848fd70b929d3b4a4626f8d7854d7aa18cdc38b 6f065c70b2c762ffcbdde389feb514ecfb323172d1f868348e932429debac29f
GET /siteadmin/layoutDesign/1728774109036003329.png HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:54 GMT
content-type: image/png
content-length: 2578
x-oss-request-id: 683E2CFAEE8E28F62F8027E0
vary: Origin, Accept-Encoding
etag: "3359BAD288765FAC5907FC69ECD4750D"
last-modified: Sun, 26 Nov 2023 13:54:02 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 18399242154719494049
x-oss-storage-class: Standard
cache-control: max-age=86400
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: M1m60oh2X6xZB/xp7NR1DQ==
x-oss-server-time: 39
cf-cache-status: HIT
age: 85083
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 953a2e27ee371c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/assets/theme-1/IframeIndex.C1lVpAnk.css | 104.18.24.129 | 200 OK | 1.0 kB |
URL GET w2.9ybhay.shop/assets/theme-1/IframeIndex.C1lVpAnk.css IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeASCII text, with very long lines (1006) Hash3eb653eb6083aec3a3a2b8e1eea76a95 1af9ddffe27982394fae1a2df82381981f5bd141 8fbb049e2701b54fcfe0001a11de8d3f23a97c2f87c9402f23f9e8ab587d6fb3
GET /assets/theme-1/IframeIndex.C1lVpAnk.css HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:58 GMT
content-type: text/css
x-oss-request-id: 68568E998211433930FF08F6
etag: W/"3EB653EB6083AEC3A3A2B8E1EEA76A95"
last-modified: Tue, 17 Jun 2025 07:20:45 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 4392531840645696237
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.62
cache-control: max-age=31622400
content-md5: PrZT62CDrsOjorjh7qdqlQ==
x-oss-server-time: 19
cf-cache-status: HIT
age: 41789
priority: u=2,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 953a2e407e5156ab-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/assets/theme-1/2_DownloadDialogsChunk.BEKXK0_V.css | 104.18.24.129 | 200 OK | 34 kB |
URL GET w2.9ybhay.shop/assets/theme-1/2_DownloadDialogsChunk.BEKXK0_V.css IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeASCII text, with very long lines (33862) Hashda56e874cb4cefb258e0d230c6baccaf 79ff33cdb0631c0b2e3d0e95afb2d30983aee21a f8870e30e90988e0ebf9fca7fff5d5a85b4f1bff1298f89aa0cb3e26004c4f1d
GET /assets/theme-1/2_DownloadDialogsChunk.BEKXK0_V.css HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:55:02 GMT
content-type: text/css
vary: Accept-Encoding
x-oss-request-id: 685713990900E63337DAB396
last-modified: Fri, 20 Jun 2025 12:24:53 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 16729834436450906640
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.96-v6.1.100
cache-control: max-age=31622400
content-md5: 2lbodMtM77JY4NIwxrrMrw==
x-oss-server-time: 30
content-encoding: gzip
cf-cache-status: HIT
age: 41789
priority: u=2,i=?0
server: cloudflare
cf-ray: 953a2e5dfd4e56ab-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/hall/api/lobby/webapi/forceUpdate/getForceUpdate.json | 104.18.25.129 | 200 OK | 492 B |
URL GET o566mch.hcm665.com/hall/api/lobby/webapi/forceUpdate/getForceUpdate.json IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typeASCII text, with very long lines (492), with no line terminators Hashfcec88022dbf33810c9b495c8725d3fa 1915140cd56a6a0ec92a370ea8e260e15885c60b ca48e011744d74305e11233f08903083eea671dc6393e9f36d425334d8d779ca
GET /hall/api/lobby/webapi/forceUpdate/getForceUpdate.json HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:55:03 GMT
content-type: application/json
x-oss-request-id: 68571391690BB9415CCB70B2
vary: Origin, Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-expose-headers: Etag
access-control-max-age: 200
etag: W/"FCEC88022DBF33810C9B495C8725D3FA"
last-modified: Sat, 21 Jun 2025 19:17:08 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 758668628226280537
x-oss-storage-class: Standard
cache-control: s-maxage=600,public,max-age=0
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: /OyIAi2/M4EMm0lchyXT+g==
x-oss-server-time: 2
cf-cache-status: HIT
age: 7
priority: u=3,i=?0
server: cloudflare
cf-ray: 953a2e612f0f1c0e-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/assets/theme-1/FindUsIndex.7WQwkSiN.css | 104.18.24.129 | 200 OK | 5.8 kB |
URL GET w2.9ybhay.shop/assets/theme-1/FindUsIndex.7WQwkSiN.css IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeASCII text, with very long lines (5751) Hashaeb0c59cbe8f102f6ac35ffb4f66cd64 dfff725cdd84e3d1cbece9ae7186254a9a1834c9 4ff26c1df494920412e059ed0eecac2982a6c9f69c8d9b5bf8b167302f8ac13c
GET /assets/theme-1/FindUsIndex.7WQwkSiN.css HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:55:03 GMT
content-type: text/css
vary: Accept-Encoding
x-oss-request-id: 6857139A9A633638397F07BD
last-modified: Thu, 19 Jun 2025 02:23:15 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 5923471231457556127
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.79-v6.1.88
cache-control: max-age=31622400
content-md5: rrDFnL6PEC9qw1/7T2bNZA==
x-oss-server-time: 22
content-encoding: gzip
cf-cache-status: HIT
age: 41789
priority: u=2,i=?0
server: cloudflare
cf-ray: 953a2e62499056ab-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/hall/api/message/list/all/currency/VND/language/vi/page/1/type/99.json | 104.18.25.129 | 200 OK | 4.5 kB |
URL GET o566mch.hcm665.com/hall/api/message/list/all/currency/VND/language/vi/page/1/type/99.json IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typeASCII text, with very long lines (4504), with no line terminators Hash2d5c0f1224cbc26a06778f5b13030bc0 4d9a9b989e8bd2801b92654f29b2862558a2fbaf 31cd67042d24cb3af35f4bbae47b0c37178d87f94c0ccb410d1f17491ae45a82
GET /hall/api/message/list/all/currency/VND/language/vi/page/1/type/99.json HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:55:03 GMT
content-type: application/json
vary: Accept-Encoding, Origin
x-oss-request-id: 6854BB56F53B5C8775091F49
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-expose-headers: Etag
access-control-max-age: 200
last-modified: Fri, 20 Jun 2025 00:42:41 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 269419786627245281
x-oss-storage-class: Standard
cache-control: s-maxage=600,max-age=0,public
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: LVwPEiTLwmoGd49bEwMLwA==
x-oss-server-time: 1
content-encoding: gzip
cf-cache-status: HIT
age: 9
priority: u=3,i=?0
server: cloudflare
cf-ray: 953a2e6378bd1c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/assets/theme-1/FastEntryIndex.Cu_hm6wc.css | 104.18.24.129 | 200 OK | 1.8 kB |
URL GET w2.9ybhay.shop/assets/theme-1/FastEntryIndex.Cu_hm6wc.css IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeASCII text, with very long lines (1801) Hash0a222d68d3649fc1625f74e66d94e40d 52e60d9151673e643e942278d7a090c666baf20f 775bae203d47dfb033358293ac5f94d36cb95ded71871efcfc879dc2ad5ee51e
GET /assets/theme-1/FastEntryIndex.Cu_hm6wc.css HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:55:03 GMT
content-type: text/css
vary: Accept-Encoding
x-oss-request-id: 6857139A227B6F36324044AE
last-modified: Tue, 17 Jun 2025 07:20:45 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 17472006804707989275
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.62
cache-control: max-age=31622400
content-md5: CiItaNNkn8FiX3TmbZTkDQ==
x-oss-server-time: 4
content-encoding: gzip
cf-cache-status: HIT
age: 41789
priority: u=2,i=?0
server: cloudflare
cf-ray: 953a2e657c8256ab-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/assets/theme-1/2_EventOthersChunk.DSAfQL6h.js | 104.18.24.129 | 200 OK | 18 kB |
URL GET w2.9ybhay.shop/assets/theme-1/2_EventOthersChunk.DSAfQL6h.js IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeJavaScript source, ASCII text, with very long lines (17443) Hash166b71ace7d4bac6d6ab488e518f3401 acbc1db6e397c9b2ee07b2ddd052253fec3dbbca 7d52c2a042ce98496b67ffc8e768511859c9ef14b5882ae9658ceddccdf85557
GET /assets/theme-1/2_EventOthersChunk.DSAfQL6h.js HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/assets/theme-1/commonChunk.CXW_BbDR.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:55:04 GMT
content-type: text/javascript
x-oss-request-id: 6857139CA846BB3631AFA3E2
etag: W/"166B71ACE7D4BAC6D6AB488E518F3401"
last-modified: Sat, 21 Jun 2025 07:04:23 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 8315154659632539371
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.100-v6.1.102
cache-control: max-age=31622400
content-md5: FmtxrOfUusbWq0iOUY80AQ==
x-oss-server-time: 10
cf-cache-status: HIT
age: 41788
priority: u=3,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 953a2e69d8f456ab-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/assets/theme-1/Devtools.-pQm2ncu.css | 104.18.24.129 | 200 OK | 290 B |
URL GET w2.9ybhay.shop/assets/theme-1/Devtools.-pQm2ncu.css IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
Hash12cc5962a91a4786a7e7897d69725b2b fb3dde9dfc722f4c09f2f06165603dbe5c91032a bb208401e5a19b300ef44bd9f5797ef5986d85983f50c25aa4bc66f093935215
GET /assets/theme-1/Devtools.-pQm2ncu.css HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:58 GMT
content-type: text/css
x-oss-request-id: 68568E9972154E3239D6A4D9
etag: W/"12CC5962A91A4786A7E7897D69725B2B"
last-modified: Thu, 19 Jun 2025 02:23:15 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 13312220784772747521
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.79-v6.1.88
cache-control: max-age=31622400
content-md5: EsxZYqkaR4an54l9aXJbKw==
x-oss-server-time: 3
cf-cache-status: HIT
age: 41789
priority: u=2,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 953a2e40decb56ab-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/hall/api/active/active_popRecharge/currency/VND/language/vi.json | 104.18.25.129 | 200 OK | 88 B |
URL GET o566mch.hcm665.com/hall/api/active/active_popRecharge/currency/VND/language/vi.json IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typeASCII text, with no line terminators Hashea718d048e06ab74694fd108fe6e014f 40de500b737475f6cce7c2c5999a63eba04b9f13 727d9037f36ceb59d502fad2b85f91649f029cd57c9608cf1bfa1ca9e0a74c51
GET /hall/api/active/active_popRecharge/currency/VND/language/vi.json HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:55:04 GMT
content-type: application/json
x-oss-request-id: 685586F240D0021B7699E193
vary: Origin, Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-expose-headers: Etag
access-control-max-age: 200
etag: W/"EA718D048E06AB74694FD108FE6E014F"
last-modified: Fri, 20 Jun 2025 14:41:32 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 5476735590776258546
x-oss-storage-class: Standard
cache-control: s-maxage=600,max-age=0,public
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: 6nGNBI4Gq3RpT9EI/m4BTw==
x-oss-server-time: 2
cf-cache-status: REVALIDATED
priority: u=3,i=?0
server: cloudflare
cf-ray: 953a2e6499941c0e-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/assets/theme-1/vendorChunk.D7TmZIHS.js | 104.18.24.129 | 200 OK | 2.5 kB |
URL GET w2.9ybhay.shop/assets/theme-1/vendorChunk.D7TmZIHS.js IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeJavaScript source, ASCII text, with very long lines (2453) Hash385b3d981ec180895499bf90ddf50d6e e5792ad0f1df4971a60ae8d62173d3780ce00a87 cb6bc7e686c808edcebf111fdd042eb43fcd55019b65446925718de269be1709
GET /assets/theme-1/vendorChunk.D7TmZIHS.js HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/assets/theme-1/index.CqQlUlH0.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:51 GMT
content-type: text/javascript
x-oss-request-id: 6857138D400584313521854B
etag: W/"385B3D981EC180895499BF90DDF50D6E"
last-modified: Tue, 17 Jun 2025 07:20:45 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 14357787392347401165
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.62
cache-control: max-age=31622400
content-md5: OFs9mB7BgIlUmb+Q3fUNbg==
x-oss-server-time: 33
cf-cache-status: HIT
age: 41790
priority: u=3,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 953a2e197ee356ab-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/cocos/config_data.json?timestamp=1750578892673 | 104.18.25.129 | 200 OK | 3.5 kB |
URL GET o566mch.hcm665.com/cocos/config_data.json?timestamp=1750578892673 IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typeASCII text, with very long lines (3500), with no line terminators Hash231d7d7fcd89a8c7b060cfe97a0abcce 822be6d119f1c04e0a233159b2f4301729c6bafb 1201d427ad4d9f4758c2f1297587efc98a66e86fa8a1282c82b680461e696049
GET /cocos/config_data.json?timestamp=1750578892673 HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 22 Jun 2025 07:54:53 GMT
content-type: application/json
vary: Accept-Encoding, Origin
x-oss-request-id: 6857B6CDDE66936D31A86C39
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-expose-headers: Etag
access-control-max-age: 200
last-modified: Tue, 10 Jun 2025 10:10:45 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 16036266590946867552
x-oss-storage-class: Standard
cache-control: max-age=86400
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: Ix19f82JqMewYM/pegq8zg==
x-oss-server-time: 1
content-encoding: gzip
cf-cache-status: MISS
server: cloudflare
cf-ray: 953a2e203853b4f3-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| GET o566mch.hcm665.com/game_pictures/p/285/L1/315/3/default_VND.avif?web_v=v6.1.102 | 104.18.25.129 | 200 OK | 9.3 kB |
URL GET o566mch.hcm665.com/game_pictures/p/285/L1/315/3/default_VND.avif?web_v=v6.1.102 IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
Hashf0ced521db6f92e5efc7b1bb617909ac 74d58e81ac816fcc48a422b2a32db3095b94dae5 006f1e36f5594c0b168d6c3b1f4e31f22c0bd6e71efa7b8a7fa12de2fa12379f
GET /game_pictures/p/285/L1/315/3/default_VND.avif?web_v=v6.1.102 HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:53 GMT
content-type: image/avif
content-length: 9269
x-oss-request-id: 68566A73690BB9415CD4E71E
vary: Origin, Accept-Encoding
etag: "F0CED521DB6F92E5EFC7B1BB617909AC"
last-modified: Mon, 02 Jun 2025 09:12:41 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 11141934929196843531
x-oss-storage-class: Standard
cache-control: max-age=2678400,stale-while-revalidate=86400,immutable,proxy-revalidate,public
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: 8M7VIdtvkuXvx7G7YXkJrA==
x-oss-server-time: 18
cf-cache-status: HIT
age: 85082
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 953a2e275db61c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/siteadmin/skin/lobby_asset/1-0-common/common/_sprite/icon_dtfl_cp_1.avif?manualVersion=1&version=v6.1.102 | 104.18.25.129 | 200 OK | 2.5 kB |
URL GET o566mch.hcm665.com/siteadmin/skin/lobby_asset/1-0-common/common/_sprite/icon_dtfl_cp_1.avif?manualVersion=1&version=v6.1.102 IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
Hashc6523d0afe5ffcf603bb67ad1167a76c d791edbc7a75ef3fe2c0448d0500cbfd9d38fe7c 6f73dd618756fa244e62f14647c63a769bac1cc22e425d8563363cdeb83f3a3d
GET /siteadmin/skin/lobby_asset/1-0-common/common/_sprite/icon_dtfl_cp_1.avif?manualVersion=1&version=v6.1.102 HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:54 GMT
content-type: image/avif
content-length: 2515
x-oss-request-id: 68566A73304E2E031B55B013
vary: Origin, Accept-Encoding
etag: "C6523D0AFE5FFCF603BB67AD1167A76C"
last-modified: Tue, 10 Jun 2025 03:08:01 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 9558610672453288934
x-oss-storage-class: Standard
cache-control: max-age=604800,public
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: xlI9Cv5f/PYDu2etEWenbA==
x-oss-server-time: 18
cf-cache-status: HIT
age: 85083
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 953a2e27adf31c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/assets/theme-1/1_PromoteChunk.BWGmeExZ.css | 104.18.24.129 | 200 OK | 160 kB |
URL GET w2.9ybhay.shop/assets/theme-1/1_PromoteChunk.BWGmeExZ.css IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeASCII text, with very long lines (65536), with no line terminators Size160 kB (160050 bytes) Hashae7f7c19511b2f927fdeeb997a37eb8d 09f6098d4d84c52179abd5e8c27515f58e3dc96e b81d70e5c4b594f894c6ef05dcaec63ca4f2b535f07f6a165977c55f2003d065
GET /assets/theme-1/1_PromoteChunk.BWGmeExZ.css HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:55 GMT
content-type: text/css
vary: Accept-Encoding
x-oss-request-id: 6857139189FDF539334B4F34
last-modified: Thu, 19 Jun 2025 02:23:15 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 4083655959926110363
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.79-v6.1.88
cache-control: max-age=31622400
content-md5: rn98GVEbL5J/3uuZejfrjQ==
x-oss-server-time: 21
content-encoding: gzip
cf-cache-status: HIT
age: 41790
priority: u=2,i=?0
server: cloudflare
cf-ray: 953a2e316e8056ab-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/siteadmin/ssocdn.txt | 104.18.25.129 | 200 OK | 2 B |
URL GET o566mch.hcm665.com/siteadmin/ssocdn.txt IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typeASCII text, with no line terminators Hasha60852f204ed8028c1c58808b746d115 b0a98216a32426b9e66a4ac1eb6df2e96e1b495c 843ac01149cced785dfebd0028d3b03ba78e286e1c6f9517ebfcdb609d97af4c
GET /siteadmin/ssocdn.txt HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://w2.9ybhay.shop/
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:59 GMT
content-type: text/plain
content-length: 2
x-oss-request-id: 681CAC44B724A511D3CD0156
vary: Origin, Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-expose-headers: Etag
access-control-max-age: 200
etag: "A60852F204ED8028C1C58808B746D115"
last-modified: Thu, 25 Jul 2024 03:06:31 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 13902551060587900831
x-oss-storage-class: Standard
cache-control: max-age=86400
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: pghS8gTtgCjBxYgIt0bRFQ==
x-oss-server-time: 2
cf-cache-status: REVALIDATED
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 953a2e45c8721c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| POST hcm2244.com/hall/api/agent/promote/binding/reportViewV2 | 104.18.24.129 | 200 OK | 80 B |
URL POST hcm2244.com/hall/api/agent/promote/binding/reportViewV2 IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjecthcm2244.com FingerprintD8:D9:04:B6:18:EC:36:72:BE:90:C6:62:09:66:0C:D4:20:45:A3:21 ValidityFri, 09 May 2025 12:39:10 GMT - Thu, 07 Aug 2025 13:39:04 GMT
Hashd8c48baed95085957e9a09f6ba2916ed 388bf38d5669937e874d13ec2096711af86aec1c 338f1670d538cead180f327f54dee22c30834254975a200ce0a0a14c1d4fa7a3
POST /hall/api/agent/promote/binding/reportViewV2 HTTP/1.1
Host: hcm2244.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: vi
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
x-object-id: {"uid":"","browserLanguage":"en-US","init":{"device":"","created":1750578892437,"version":1750472258000}}
platformType: 5
devicetype: 3
x-device: 1-1
x-data-mode: plain
x-request-id: b0cbc576-ad2d-4f2a-9925-301769b56942
device: 7299ced1-ed36-4357-bbee-689c60a641d0
currency: VND
timestamp: 1750578892
nonce: b0cbc576-ad2d-4f2a-9925-301769b56942
sign: yfbG1iCIFRDJeEgNBwPEg9ln7kLAPp5G95jcoENVU+fU8cqPeQYvxkBK17vNIAWW
siteCode: 285
language: vi
token: b2e3d672-9d88-47a7-81b4-9d7ffc62054f
auth: undefined
deviceModel: Firefox v134.0
physicalDeviceModel: unknown
operatingSystem: Windows
deviceBrand: unknown
browserType: Firefox v134.0
appSystem: Windows 10
domain: w2.9ybhay.shop
webauthnDomain: w2.9ybhay.shop
clienttimezone: 0
x-custom-referer: https://w2.9ybhay.shop/
x-version: 6.1.102
browserfingerid:
appVersion: v6.1.102
Content-Length: 112
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 22 Jun 2025 07:54:53 GMT
content-type: application/json; charset=utf-8
set-cookie: acw_tc=0a0ccab217505788933064866e47949c169705dc5e7d0acd17e49116ee6824;path=/;HttpOnly;Max-Age=1800
api-cache: false
cache-control: no-cache
x-env-go-biz-agent-server: 0
x-env-go-biz-gateway: 0
x-server-version: 4.0.0
x-trace-id: 0770a1f0de933536
access-control-allow-methods: *
access-control-max-age: 3600
access-control-allow-credentials: true
access-control-allow-origin: *
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 953a2e226b4d7127-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| GET o566mch.hcm665.com/siteadmin/skin/lobby_asset/1-0-common/common/_sprite/icon_dtfl_douji_1.avif?manualVersion=1&version=v6.1.102 | 104.18.25.129 | 200 OK | 1.8 kB |
URL GET o566mch.hcm665.com/siteadmin/skin/lobby_asset/1-0-common/common/_sprite/icon_dtfl_douji_1.avif?manualVersion=1&version=v6.1.102 IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
Hash8044df90bf507d53aecf10f77d73044f 3b7ab847a57f462684087ea44b54bae0fa75120f 1f837b34be944818d6f73625fb4580f4f7cb1e33c9b9f26c435997cdf57877eb
GET /siteadmin/skin/lobby_asset/1-0-common/common/_sprite/icon_dtfl_douji_1.avif?manualVersion=1&version=v6.1.102 HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:54 GMT
content-type: image/avif
content-length: 1825
x-oss-request-id: 68566A7333781B40886EBE5E
vary: Origin, Accept-Encoding
etag: "8044DF90BF507D53AECF10F77D73044F"
last-modified: Tue, 10 Jun 2025 03:21:58 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 10368695116963475275
x-oss-storage-class: Standard
cache-control: max-age=604800,public
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: gETfkL9QfVOuzxD3fXMETw==
x-oss-server-time: 27
cf-cache-status: HIT
age: 85082
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 953a2e27adf91c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/assets/theme-1/OfficeChannelIndex.0eZbsn2J.css | 104.18.24.129 | 200 OK | 530 B |
URL GET w2.9ybhay.shop/assets/theme-1/OfficeChannelIndex.0eZbsn2J.css IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeASCII text, with very long lines (529) Hashb8f167c9bcfb7d2bfd58a49091d55e33 b24ea1d282fbaa436546d2b2798933aaf3513637 b877d12c948e5ffb2f8b9225662a12ade059efbbbb86bceb7b5249ad7ad14d67
GET /assets/theme-1/OfficeChannelIndex.0eZbsn2J.css HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:55 GMT
content-type: text/css
x-oss-request-id: 68568E9993460A30394021D8
etag: W/"B8F167C9BCFB7D2BFD58A49091D55E33"
last-modified: Thu, 19 Jun 2025 02:23:15 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 10369389398360745224
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.79-v6.1.88
cache-control: max-age=31622400
content-md5: uPFnybz7fSv9WKSQkdVeMw==
x-oss-server-time: 5
cf-cache-status: HIT
age: 41790
priority: u=2,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 953a2e318e9956ab-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/hall/api/gohal/staffAllV3/currency/VND/language/vi.json | 104.18.25.129 | 200 OK | 6.2 kB |
URL GET o566mch.hcm665.com/hall/api/gohal/staffAllV3/currency/VND/language/vi.json IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typeASCII text, with very long lines (6208), with no line terminators Hash80584e811ef3694af9e11c7c86934f4e d4ccb826033d917bccebc1384cdd9de6d3390bce 5aa72184e890e46736d6bbe71f78e2fbb1eebeb3b143627dcb21806b8a3e2d09
GET /hall/api/gohal/staffAllV3/currency/VND/language/vi.json HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:56 GMT
content-type: application/json
vary: Accept-Encoding, Origin
x-oss-request-id: 6857B6D0DE66936D31A87356
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-expose-headers: Etag
access-control-max-age: 200
last-modified: Sun, 22 Jun 2025 02:37:03 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 15356714369444857130
x-oss-storage-class: Standard
cache-control: s-maxage=600,max-age=0,public
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: gFhOgR7zaUr54Rx8hpNPTg==
x-oss-server-time: 1
content-encoding: gzip
cf-cache-status: EXPIRED
priority: u=3,i=?0
server: cloudflare
cf-ray: 953a2e320eff1c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/assets/theme-1/OfficeChannelIndex.CSOtmTsB.js | 104.18.24.129 | 200 OK | 1.2 kB |
URL GET w2.9ybhay.shop/assets/theme-1/OfficeChannelIndex.CSOtmTsB.js IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeJava source, ASCII text, with very long lines (1176) Hash2b036b4776a0d202f831929d4f4d85ab 28503bed940ad2ec74a27a8fcb632b5d3de9ea47 8fa6997e3b701561ed4344886f726b2fd9df3a8d27afeaf2b7b75c711dc3116a
GET /assets/theme-1/OfficeChannelIndex.CSOtmTsB.js HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/assets/theme-1/StyleIndex.SKmsOLto.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:56 GMT
content-type: text/javascript
x-oss-request-id: 6857139375AAC53631AA679A
etag: W/"2B036B4776A0D202F831929D4F4D85AB"
last-modified: Sat, 21 Jun 2025 07:04:23 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 17216379860639511084
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.100-v6.1.102
cache-control: max-age=31622400
content-md5: KwNrR3ag0gL4MZKdT02Fqw==
x-oss-server-time: 15
cf-cache-status: HIT
age: 41789
priority: u=3,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 953a2e35fb6656ab-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/hall/api/backstage/customer/getWebTrans/language/vi.json | 104.18.25.129 | 200 OK | 1.5 MB |
URL GET o566mch.hcm665.com/hall/api/backstage/customer/getWebTrans/language/vi.json IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typeASCII text, with very long lines (65536), with no line terminators Size1.5 MB (1452352 bytes) Hash03857374ed16014eacfb78660b1f39a3 856453ecb828dca6f9916ea122c6f813e1b31379 d73da794cd39b624ec327d235f79021949939af018b9f430dc2c8460b82fe9a5
GET /hall/api/backstage/customer/getWebTrans/language/vi.json HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:57 GMT
content-type: application/json
vary: Accept-Encoding, Origin
x-oss-request-id: 6857B6D1048FEF426A7DBC4C
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-expose-headers: Etag
access-control-max-age: 200
last-modified: Sun, 22 Jun 2025 02:37:04 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 11498265029451505779
x-oss-storage-class: Standard
cache-control: s-maxage=600,max-age=0,public
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: A4VzdO0WAU6s+3hmCx85ow==
x-oss-server-time: 1
content-encoding: gzip
cf-cache-status: EXPIRED
priority: u=3,i=?0
server: cloudflare
cf-ray: 953a2e3cb8621c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/assets/theme-1/FastEntryIndex.BBXp5_Hq.js | 104.18.24.129 | 200 OK | 6.2 kB |
URL GET w2.9ybhay.shop/assets/theme-1/FastEntryIndex.BBXp5_Hq.js IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeJavaScript source, ASCII text, with very long lines (6109) Hash54c9b24053b042822a4e252b790dd48e 4fc3cfc414e9159f7da1567e27ccc4732c3f19b0 b3c9e61360ed0af9454029bf7085b709a6489d075a02fa946cc41f1472583190
GET /assets/theme-1/FastEntryIndex.BBXp5_Hq.js HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/assets/theme-1/commonChunk.CXW_BbDR.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:55:03 GMT
content-type: text/javascript
x-oss-request-id: 6857139A400584333705E04B
etag: W/"54C9B24053B042822A4E252B790DD48E"
last-modified: Sat, 21 Jun 2025 07:04:23 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 10361373139366752960
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.100-v6.1.102
cache-control: max-age=31622400
content-md5: VMmyQFOwQoIqTiUreQ3Ujg==
x-oss-server-time: 21
cf-cache-status: HIT
age: 41788
priority: u=3,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 953a2e659ca856ab-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET 674hl.hcm660.com/index2.php | 104.21.48.1 | 404 Not Found | 2.4 kB |
URL GET 674hl.hcm660.com/index2.php IP104.21.48.1:443
Requested byhttps://674hl.hcm660.com/ CertificateIssuerGoogle Trust Services Subjecthcm660.com FingerprintC7:D3:1B:A4:57:3F:29:34:CC:36:3C:EE:6A:9F:2C:EF:32:0E:26:72 ValidityFri, 13 Jun 2025 00:21:14 GMT - Thu, 11 Sep 2025 01:18:11 GMT
File typeJavaScript source, ASCII text, with very long lines (946) Hashf092673cc36dd0d15ac96c594bcb34af 33d6be19eb53ba17f1a498fbf75ee504f4005722 fc4bfa6a1cfde05ccff200fe9f08c7766091294fe2b29ab5be22bc6c449c0de5
GET /index2.php HTTP/1.1
Host: 674hl.hcm660.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://674hl.hcm660.com/
Cookie: uDomain=674hl.hcm660.com; PHPSESSID=4sr7ag4lltc3su2b4i18o2mlft
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Sun, 22 Jun 2025 07:54:50 GMT
content-type: text/html; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KrlWQcFELpU%2FIrkcCn%2Fp2d8cgErqDeffQc9s5hIiZQKCe1f%2BXKRH0cc9TcaJjKxRjMc%2FEaCGioN1Hh%2BLDx6%2B%2BAPyfkh2f%2By4VOvzjUPg%2Bm%2FNq%2F0YzMEKELR35VNoKyJBZf%2FP"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: uUrl=w2.9ybhay.shop; expires=Tue, 22-Jul-2025 07:54:50 GMT; Max-Age=2592000; path=/; domain=hcm660.com
cf-cache-status: DYNAMIC
content-encoding: br
cf-ray: 953a2e14282856a4-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1722&min_rtt=47&rtt_var=1602&sent=147&recv=207&lost=0&retrans=0&sent_bytes=15485&recv_bytes=12205&delivery_rate=1479944&ss_exit_cwnd=14908&ss_exit_reason=2&cwnd=12000&unsent_bytes=0&cid=0fd87d692209fe36&ts=555&inflight_dur=54&x=44"
|
|
| GET o566mch.hcm665.com/siteadmin/layoutDesign/1728774269309186050.png | 104.18.25.129 | 200 OK | 1.7 kB |
URL GET o566mch.hcm665.com/siteadmin/layoutDesign/1728774269309186050.png IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typePNG image data, 70 x 70, 8-bit colormap, non-interlaced Hash1596f777caeaa626ff6ab488bfab850f 4bc1204493f0544e8b27b56d8fa021baa67e8941 fae6c0dac5882e0220f61592adb6869cb77169bbb979d85badfec1cc98a7c137
GET /siteadmin/layoutDesign/1728774269309186050.png HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:54 GMT
content-type: image/png
content-length: 1728
x-oss-request-id: 68178B9340D0029A5C830D89
vary: Origin, Accept-Encoding
etag: "1596F777CAEAA626FF6AB488BFAB850F"
last-modified: Sun, 26 Nov 2023 13:54:40 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 11314776702876108948
x-oss-storage-class: Standard
cache-control: max-age=86400
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: FZb3d8rqpib/arSIv6uFDw==
x-oss-server-time: 16
cf-cache-status: HIT
age: 2699
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 953a2e27fe411c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET hcm2244.com/ipacdn.txt | 104.18.24.129 | 200 OK | 2 B |
IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjecthcm2244.com FingerprintD8:D9:04:B6:18:EC:36:72:BE:90:C6:62:09:66:0C:D4:20:45:A3:21 ValidityFri, 09 May 2025 12:39:10 GMT - Thu, 07 Aug 2025 13:39:04 GMT
File typeASCII text, with no line terminators Hashe0aa021e21dddbd6d8cecec71e9cf564 9ce3bd4224c8c1780db56b4125ecf3f24bf748b7 565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
GET /ipacdn.txt HTTP/1.1
Host: hcm2244.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://w2.9ybhay.shop/
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:58 GMT
content-type: text/plain
content-length: 2
cache-control: s-maxage=315360000,max-age=0,public
access-control-allow-origin: *
access-control-max-age: 3600
access-control-allow-credentials: true
last-modified: Thu, 05 Jun 2025 23:56:23 GMT
cf-cache-status: HIT
age: 1389877
accept-ranges: bytes
priority: u=4,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 953a2e45a8c60b4d-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET cdntoos.hcm2255.com/siteadmin/ssocdn.txt | 13.107.246.67 | 200 OK | 2 B |
URL GET cdntoos.hcm2255.com/siteadmin/ssocdn.txt IP13.107.246.67:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
CertificateIssuerDigiCert, Inc. Subjectcdntoos.hcm2255.com Fingerprint6B:0F:B3:8C:B4:2C:50:0A:C0:2C:DF:00:F4:FE:F8:1A:CE:58:D9:D0 ValidityMon, 17 Feb 2025 00:00:00 GMT - Sun, 17 Aug 2025 23:59:59 GMT
File typeASCII text, with no line terminators Hasha60852f204ed8028c1c58808b746d115 b0a98216a32426b9e66a4ac1eb6df2e96e1b495c 843ac01149cced785dfebd0028d3b03ba78e286e1c6f9517ebfcdb609d97af4c
GET /siteadmin/ssocdn.txt HTTP/1.1
Host: cdntoos.hcm2255.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://w2.9ybhay.shop/
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 22 Jun 2025 07:54:59 GMT
content-type: text/plain
content-length: 2
x-oss-request-id: 68533AB8DE66936D3135EA69
vary: Origin
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-expose-headers: Etag
access-control-max-age: 200
etag: "A60852F204ED8028C1C58808B746D115"
last-modified: Thu, 25 Jul 2024 03:06:31 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 13902551060587900831
x-oss-storage-class: Standard
cache-control: max-age=86400
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: pghS8gTtgCjBxYgIt0bRFQ==
x-oss-server-time: 3
x-azure-ref: 20250622T075459Z-17dfff74684r47xvhC1SVGm2uw00000007tg000000002146
x-fd-int-roxy-purgeid: 3518
x-cache-info: L1_T2
x-cache: TCP_HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| GET o566mch.hcm665.com/siteadmin/layoutDesign/1728774201106386946.png | 104.18.25.129 | 200 OK | 2.2 kB |
URL GET o566mch.hcm665.com/siteadmin/layoutDesign/1728774201106386946.png IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typePNG image data, 70 x 70, 8-bit colormap, non-interlaced Hasha3ceaf1257032190f5f0939661822b2b c4382af586c230e15394cd34d670aa4c269e41fb dc774990ed1ea2646bde031a98634dc3c87c75510320873c9d306945de4b7a64
GET /siteadmin/layoutDesign/1728774201106386946.png HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:54 GMT
content-type: image/png
content-length: 2191
x-oss-request-id: 68178B937DAC2CB4E21B9691
vary: Origin, Accept-Encoding
etag: "A3CEAF1257032190F5F0939661822B2B"
last-modified: Sun, 26 Nov 2023 13:54:24 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 12772827520453480773
x-oss-storage-class: Standard
cache-control: max-age=86400
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: o86vElcDIZD18JOWYYIrKw==
x-oss-server-time: 5
cf-cache-status: HIT
age: 2699
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 953a2e27ee351c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/hall/api/active/tasks/pop_taskDay/currency/VND/language/vi.json | 104.18.25.129 | 200 OK | 1.2 kB |
URL GET o566mch.hcm665.com/hall/api/active/tasks/pop_taskDay/currency/VND/language/vi.json IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typeASCII text, with very long lines (1176), with no line terminators Hashf32c62a2eb1f2c76e3bbbb0421574442 6c63f4e14a255a5a78a508c813bde564dbe937ea 1b16897813a97ffc36b233aad595390733487700959a38e458b1848be0fb56be
GET /hall/api/active/tasks/pop_taskDay/currency/VND/language/vi.json HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:58 GMT
content-type: application/json
vary: Accept-Encoding, Origin
x-oss-request-id: 6857B6D2CD397201B3DE1C4D
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-expose-headers: Etag
access-control-max-age: 200
last-modified: Sun, 22 Jun 2025 02:37:03 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 16891912387731136611
x-oss-storage-class: Standard
cache-control: s-maxage=600,max-age=0,public
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: 8yxiousfLHbju7sEIVdEQg==
x-oss-server-time: 1
content-encoding: gzip
cf-cache-status: EXPIRED
priority: u=3,i=?0
server: cloudflare
cf-ray: 953a2e415c3e1c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| OPTIONS hcm2244.com/hall/home/heartbeat | 104.18.24.129 | 200 OK | 0 B |
URL OPTIONS hcm2244.com/hall/home/heartbeat IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjecthcm2244.com FingerprintD8:D9:04:B6:18:EC:36:72:BE:90:C6:62:09:66:0C:D4:20:45:A3:21 ValidityFri, 09 May 2025 12:39:10 GMT - Thu, 07 Aug 2025 13:39:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /hall/home/heartbeat HTTP/1.1
Host: hcm2244.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: appsystem,appversion,auth,browserfingerid,browsertype,clienttimezone,currency,device,devicebrand,devicemodel,devicetype,domain,language,nonce,operatingsystem,physicaldevicemodel,platformtype,sign,sitecode,timestamp,token,webauthndomain,x-custom-referer,x-data-mode,x-device,x-object-id,x-request-id,x-version
Referer: https://w2.9ybhay.shop/
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:55:02 GMT
content-type: application/octet-stream
content-length: 0
set-cookie: acw_tc=0a0f6b7217505789028011554e613ea0bf172eb249385768d7f7a072c171bf;path=/;HttpOnly;Max-Age=1800
access-control-allow-methods: *
access-control-max-age: 3600
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-allow-headers: appsystem,appversion,auth,browserfingerid,browsertype,clienttimezone,currency,device,devicebrand,devicemodel,devicetype,domain,language,nonce,operatingsystem,physicaldevicemodel,platformtype,sign,sitecode,timestamp,token,webauthndomain,x-custom-referer,x-data-mode,x-device,x-object-id,x-request-id,x-version
cf-cache-status: DYNAMIC
priority: u=4,i=?0
server: cloudflare
cf-ray: 953a2e5dca4a0b4d-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/assets/theme-1/MessagePopupIndex.BjLZlmqj.css | 104.18.24.129 | 200 OK | 16 kB |
URL GET w2.9ybhay.shop/assets/theme-1/MessagePopupIndex.BjLZlmqj.css IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeASCII text, with very long lines (15734) Hash96ef20fe436231c9217f9acd2c8c27d5 057fc244faa043f9512ecc1b991c00ed736554f4 cc79cfe100050bbf1f2ca25eff86d1f5025a7edcec21076bd2344693be66f527
GET /assets/theme-1/MessagePopupIndex.BjLZlmqj.css HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:55:03 GMT
content-type: text/css
vary: Accept-Encoding
x-oss-request-id: 6857139BA846BB3137349BE2
last-modified: Thu, 19 Jun 2025 02:23:15 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 17882093310088494762
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.79-v6.1.88
cache-control: max-age=31622400
content-md5: lu8g/kNiMckhf5rNLIwn1Q==
x-oss-server-time: 16
content-encoding: gzip
cf-cache-status: HIT
age: 41788
priority: u=2,i=?0
server: cloudflare
cf-ray: 953a2e63cacf56ab-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/assets/locales/vi.BTk-TU-q.js | 104.18.24.129 | 200 OK | 399 kB |
URL GET w2.9ybhay.shop/assets/locales/vi.BTk-TU-q.js IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeUnicode text, UTF-8 text, with very long lines (54504), with no line terminators Size399 kB (399433 bytes) Hashe11f9a93e725c69e5bccdf7d882e1e26 81f4864bfda3d64728dac1ce22d6ac00c4d30c2b 9fa6e1f78cd0c2bca38d7a6f7014231bb23aef2b9269a48628a9059d7c8411a5
GET /assets/locales/vi.BTk-TU-q.js HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/assets/theme-1/commonChunk.CXW_BbDR.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:52 GMT
content-type: text/javascript
x-oss-request-id: 6857138FF9AF8939321C9B6A
etag: W/"A31F1088BB7EE5500B4F74AC27CD2071"
last-modified: Fri, 20 Jun 2025 12:24:53 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 11124463975198374248
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.96-v6.1.100
cache-control: max-age=31622400
content-md5: ox8QiLt+5VALT3SsJ80gcQ==
x-oss-server-time: 43
cf-cache-status: HIT
age: 41789
priority: u=3,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 953a2e1fdd7e56ab-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/siteadmin/layoutDesign/1728774290824462337.png | 104.18.25.129 | 200 OK | 1.7 kB |
URL GET o566mch.hcm665.com/siteadmin/layoutDesign/1728774290824462337.png IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typePNG image data, 70 x 70, 8-bit colormap, non-interlaced Hash1596f777caeaa626ff6ab488bfab850f 4bc1204493f0544e8b27b56d8fa021baa67e8941 fae6c0dac5882e0220f61592adb6869cb77169bbb979d85badfec1cc98a7c137
GET /siteadmin/layoutDesign/1728774290824462337.png HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:54 GMT
content-type: image/png
content-length: 1728
x-oss-request-id: 68178B93690BB9B4A18D8D84
vary: Origin, Accept-Encoding
etag: "1596F777CAEAA626FF6AB488BFAB850F"
last-modified: Sun, 26 Nov 2023 13:54:45 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 11314776702876108948
x-oss-storage-class: Standard
cache-control: max-age=86400
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: FZb3d8rqpib/arSIv6uFDw==
x-oss-server-time: 12
cf-cache-status: HIT
age: 2699
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 953a2e27ee391c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/game_pictures/g/CL/200/3/2000087/default.avif?web_v=v6.1.102 | 104.18.25.129 | 200 OK | 12 kB |
URL GET o566mch.hcm665.com/game_pictures/g/CL/200/3/2000087/default.avif?web_v=v6.1.102 IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
Hashf592da8e3a28898c8a2712300581ba19 c780d650f0b395e162b591565f15b431527bce23 a23f84a43965952d61f63283d2f09c0f8020313e6e5304db1149a74c417c77ba
GET /game_pictures/g/CL/200/3/2000087/default.avif?web_v=v6.1.102 HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:54 GMT
content-type: image/avif
content-length: 11757
x-oss-request-id: 68566A731E3C924D7CE8BC89
vary: Origin, Accept-Encoding
etag: "F592DA8E3A28898C8A2712300581BA19"
last-modified: Mon, 02 Jun 2025 09:07:54 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 11034582195939746175
x-oss-storage-class: Standard
cache-control: max-age=2678400,stale-while-revalidate=86400,immutable,proxy-revalidate,public
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: 9ZLajjooiYyKJxIwBYG6GQ==
x-oss-server-time: 32
cf-cache-status: HIT
age: 85083
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 953a2e2a08031c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/assets/theme-1/PhotographIndex.Cl3GlipS.css | 104.18.24.129 | 200 OK | 2.2 kB |
URL GET w2.9ybhay.shop/assets/theme-1/PhotographIndex.Cl3GlipS.css IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeASCII text, with very long lines (2181) Hash13bebc0e99b329ed5751c90d34b8e585 e0008412a2d7b443a090410f52832e65a4e02937 025dfedb46632c50b297d8558d64f02150845b9c0df3212faa6d21e7bd0a9735
GET /assets/theme-1/PhotographIndex.Cl3GlipS.css HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:55 GMT
content-type: text/css
vary: Accept-Encoding
x-oss-request-id: 68568E99659093313545A4C8
last-modified: Thu, 19 Jun 2025 02:23:15 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 4196801105178508831
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.79-v6.1.88
cache-control: max-age=31622400
content-md5: E768DpmzKe1XUckNNLjlhQ==
x-oss-server-time: 6
content-encoding: gzip
cf-cache-status: HIT
age: 41790
priority: u=2,i=?0
server: cloudflare
cf-ray: 953a2e315e6956ab-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/assets/theme-1/polyfills.BHSyO4m2.js | 104.18.24.129 | 200 OK | 107 kB |
URL GET w2.9ybhay.shop/assets/theme-1/polyfills.BHSyO4m2.js IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65524), with no line terminators Size107 kB (107348 bytes) Hash80f44369387fbf348c307b898dc17cea cf7226dad725bd4bfd9a11994bececea68039ad9 642862b37720cc8ccddd7bb6d29063ed82b6917dace36c912d160cb6cab2939b
GET /assets/theme-1/polyfills.BHSyO4m2.js HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:51 GMT
content-type: text/javascript
x-oss-request-id: 6857138D1AC7F934312CBA4E
etag: W/"80F44369387FBF348C307B898DC17CEA"
last-modified: Thu, 19 Jun 2025 02:23:15 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 783434674072933269
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.79-v6.1.88
cache-control: max-age=31622400
content-md5: gPRDaTh/vzSMMHuJjcF86g==
x-oss-server-time: 21
cf-cache-status: HIT
age: 41790
priority: u=3,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 953a2e18ce4956ab-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/siteadmin/skin/lobby_asset/common/web/common/comm_icon_jzgd.svg?manualVersion=1&version=v6.1.102 | 104.18.25.129 | 200 OK | 602 B |
URL GET o566mch.hcm665.com/siteadmin/skin/lobby_asset/common/web/common/comm_icon_jzgd.svg?manualVersion=1&version=v6.1.102 IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typeSVG Scalable Vector Graphics image Hash738425e9aecacb59f0fe00de5ce15b11 28a6e082d25dae2bfd467f01608808bcea7c822f 50272b2c641494014e65eb5fd691b8dd0424e8de19ed702e9e2f03332906abf0
GET /siteadmin/skin/lobby_asset/common/web/common/comm_icon_jzgd.svg?manualVersion=1&version=v6.1.102 HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:54 GMT
content-type: image/svg+xml
x-oss-request-id: 685676E7CD397201B33E3B3C
vary: Origin, Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-expose-headers: Etag
access-control-max-age: 200
etag: W/"738425E9AECACB59F0FE00DE5CE15B11"
last-modified: Wed, 18 Jun 2025 07:07:57 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 9237853658913805688
x-oss-storage-class: Standard
cache-control: public, max-age=691200
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: c4Ql6a7Ky1nw/gDeXOFbEQ==
x-oss-server-time: 2
cf-cache-status: HIT
age: 41790
expires: Mon, 30 Jun 2025 07:54:54 GMT
priority: u=3,i=?0
server: cloudflare
cf-ray: 953a2e28deef1c0e-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| OPTIONS hcm2244.com/hall/api/agent/promote/pointer/domain | 104.18.24.129 | 200 OK | 0 B |
URL OPTIONS hcm2244.com/hall/api/agent/promote/pointer/domain IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjecthcm2244.com FingerprintD8:D9:04:B6:18:EC:36:72:BE:90:C6:62:09:66:0C:D4:20:45:A3:21 ValidityFri, 09 May 2025 12:39:10 GMT - Thu, 07 Aug 2025 13:39:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /hall/api/agent/promote/pointer/domain HTTP/1.1
Host: hcm2244.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: appsystem,appversion,auth,browserfingerid,browsertype,clienttimezone,content-type,currency,device,devicebrand,devicemodel,devicetype,domain,language,nonce,operatingsystem,physicaldevicemodel,platformtype,sign,sitecode,timestamp,token,webauthndomain,x-custom-referer,x-data-mode,x-device,x-object-id,x-request-id,x-version
Referer: https://w2.9ybhay.shop/
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:58 GMT
content-type: application/octet-stream
content-length: 0
set-cookie: acw_tc=0a094e3a17505788980446830e50f7623e45b2fd024d0e5539755158e75b8b;path=/;HttpOnly;Max-Age=1800
access-control-allow-methods: *
access-control-max-age: 3600
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-allow-headers: appsystem,appversion,auth,browserfingerid,browsertype,clienttimezone,content-type,currency,device,devicebrand,devicemodel,devicetype,domain,language,nonce,operatingsystem,physicaldevicemodel,platformtype,sign,sitecode,timestamp,token,webauthndomain,x-custom-referer,x-data-mode,x-device,x-object-id,x-request-id,x-version
cf-cache-status: DYNAMIC
priority: u=4,i=?0
server: cloudflare
cf-ray: 953a2e400b0e0b4d-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET hcm66awscdn.hcm2233.com/ipacdn.txt | 3.167.2.10 | 200 OK | 2 B |
URL GET hcm66awscdn.hcm2233.com/ipacdn.txt IP3.167.2.10:443
CertificateIssuerAmazon Subjecthcm66awscdn.hcm2233.com FingerprintF9:45:21:C4:0F:8A:18:89:F1:CD:59:3A:C8:89:0C:08:B7:E2:FB:57 ValidityWed, 02 Oct 2024 00:00:00 GMT - Fri, 31 Oct 2025 23:59:59 GMT
File typeASCII text, with no line terminators Hashe0aa021e21dddbd6d8cecec71e9cf564 9ce3bd4224c8c1780db56b4125ecf3f24bf748b7 565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
GET /ipacdn.txt HTTP/1.1
Host: hcm66awscdn.hcm2233.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://w2.9ybhay.shop/
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/plain
content-length: 2
date: Thu, 17 Apr 2025 18:29:30 GMT
set-cookie: acw_tc=0a0cca8417449145700647243e4dd35f2ed8fd04d804cdf9785be45cdc678b;path=/;HttpOnly;Max-Age=1800
cache-control: s-maxage=315360000,max-age=0,public
access-control-allow-origin: *
access-control-max-age: 3600
access-control-allow-credentials: true
x-cache: Hit from cloudfront
via: 1.1 0bc6ea800eda1e813056323cb53f8c70.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: MCipAmL91JqPExbI8RUbdlEA9yLrvSJmpdit3Dn73zotwOWj55VjmA==
age: 5664329
X-Firefox-Spdy: h2
|
|
| GET 674hl.hcm660.com/cdn-cgi/challenge-platform/h/g/scripts/jsd/180b6a431d85/main.js? | 104.21.48.1 | 200 OK | 10 kB |
URL GET 674hl.hcm660.com/cdn-cgi/challenge-platform/h/g/scripts/jsd/180b6a431d85/main.js? IP104.21.48.1:443
Requested byhttps://674hl.hcm660.com/ CertificateIssuerGoogle Trust Services Subjecthcm660.com FingerprintC7:D3:1B:A4:57:3F:29:34:CC:36:3C:EE:6A:9F:2C:EF:32:0E:26:72 ValidityFri, 13 Jun 2025 00:21:14 GMT - Thu, 11 Sep 2025 01:18:11 GMT
File typeJavaScript source, ASCII text, with very long lines (10046), with no line terminators Hashe5915d15b8d63821e125e8ba945a4564 f132622ac2dcbd6947d9cff4f37cead8694c71f6 a0e237902aeb0b4d3f4dd7afb81538b34f4fb2e611ef3d6ab7aabedfbdb42781
GET /cdn-cgi/challenge-platform/h/g/scripts/jsd/180b6a431d85/main.js? HTTP/1.1
Host: 674hl.hcm660.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: uDomain=674hl.hcm660.com; PHPSESSID=4sr7ag4lltc3su2b4i18o2mlft; uUrl=w2.9ybhay.shop
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:50 GMT
content-type: application/javascript; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CNe7AE1uwX4ayEma7zIs3uJWdvblSjC%2F3bFIwx39SP7zb0Jvj5n%2BJdqMem0T%2F2mK9jOI753dqTyjf2fKj%2BecCKd%2FTg4wF%2BnjAURQONM09f44Psdpbhz4hB4dt5ZFiUKxHCjK"}],"group":"cf-nel","max_age":604800}
cache-control: max-age=14400, stale-if-error=10800, stale-while-revalidate=10800, public
x-content-type-options: nosniff
content-encoding: br
cf-ray: 953a2e14a82b56a4-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1485&min_rtt=47&rtt_var=1311&sent=152&recv=211&lost=0&retrans=0&sent_bytes=18089&recv_bytes=12928&delivery_rate=1479944&ss_exit_cwnd=14908&ss_exit_reason=2&cwnd=12000&unsent_bytes=0&cid=0fd87d692209fe36&ts=588&inflight_dur=77&x=44"
|
|
| POST 674hl.hcm660.com/cdn-cgi/challenge-platform/h/g/jsd/r/0.2786944958507953:1750577190:pMmmUn5NQwFu0efVEzuP_2JavPYYZNjU4uPu3OXACYw/953a2e14282856a4 | 104.21.48.1 | 200 OK | 0 B |
URL POST 674hl.hcm660.com/cdn-cgi/challenge-platform/h/g/jsd/r/0.2786944958507953:1750577190:pMmmUn5NQwFu0efVEzuP_2JavPYYZNjU4uPu3OXACYw/953a2e14282856a4 IP104.21.48.1:443
Requested byhttps://674hl.hcm660.com/index2.php CertificateIssuerGoogle Trust Services Subjecthcm660.com FingerprintC7:D3:1B:A4:57:3F:29:34:CC:36:3C:EE:6A:9F:2C:EF:32:0E:26:72 ValidityFri, 13 Jun 2025 00:21:14 GMT - Thu, 11 Sep 2025 01:18:11 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/challenge-platform/h/g/jsd/r/0.2786944958507953:1750577190:pMmmUn5NQwFu0efVEzuP_2JavPYYZNjU4uPu3OXACYw/953a2e14282856a4 HTTP/1.1
Host: 674hl.hcm660.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 12103
Origin: https://674hl.hcm660.com
DNT: 1
Connection: keep-alive
Referer: https://674hl.hcm660.com/index2.php
Cookie: uDomain=674hl.hcm660.com; PHPSESSID=4sr7ag4lltc3su2b4i18o2mlft; uUrl=w2.9ybhay.shop; cf_clearance=vpOiP8ge2hvp0KLHnJh8XOEyK_fB5v_KbB1gx4eVXus-1750578891-1.2.1.1-zitqN19X3LXx7zFfC_0ZDCfNm7TVCq4ds0JYW4Kdt45nODea8UhgqaSc8hBdWPYPBDZ3QVpFdQKU9yO9B01.Q1PEpNkZOJRex_.4T.vjjO8GQcjZC9iQdH.xrSHqhACpIlHAzwbpp0AUmL98DR45We6gmBYsk03cz0n6z1z9JHd9me0uEPFXT4IsdWJnCoj9ZPg1Gf1hkmiim4tZBymd.L6TUmsCpIo9EVHX7icaUc56j_BN4k6J.RYAQl2aEHMpxJpkoS.PwxHPl4sl3kefTOT0avFsWm8Zs8QrN_ut.TPdiWQ50Fp_Y3sDu7nNCj23SyVxN1sPDQWxytpCa_vlgau_pdh4bs30k7GH6pIeweU
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:51 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aKkAEkWdTeK11WSsKuGPY83V%2FKXHq1CSoSn3Y%2FnB227844ZUz3X8BjRl5eCNk60L5uQuP2e4S2giuTEL0rY2zLJhUJI0Xm0c%2F6K8i7CbE%2Boaap%2BtnRH1iov%2FLj0cvy8ivYax"}],"group":"cf-nel","max_age":604800}
set-cookie: cf_clearance=hAbgCdYywtOMugr4vCncwv0MfJTyw42pLCzN3J0zt_g-1750578891-1.2.1.1-rZktKcNwUJ2N6_qYbvIUttEvdn7aSMzCd19xO5CR6etL7JuwIcc3I9sxPM83xvaxLwQmP1095YldhWh6dg07Fo22GkV6etDT7mQF5g28vwRQKasPWgXMTaFOZFbCa4RgCsH3wpQAgNYyHGtBQZsEvnTa03rOMPT.X8Vnsz2gxuPiWvJ34FWry.uByvu0pKOPSLd541Tv5Kz.3UgdvO_G6JrJiYTr1KRJPMN12pdg4OXQScGKG58Phd6OjPOV3Sw49OuN9PjcsdH7MCDt5EHruhuevmFqD3.iwlMXgrZvypvJWwU8gmfuUDkIXCzmtrd3aK5LuTHhp03ZPFppbSCK3xd8vFfNfe9nMhupWrf8yXs; HttpOnly; SameSite=None; Partitioned; Secure; Path=/; Domain=hcm660.com; Expires=Mon, 22 Jun 2026 07:54:51 GMT
cf-ray: 953a2e18884a56a4-OSL
server: cloudflare
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1541&min_rtt=47&rtt_var=780&sent=184&recv=240&lost=0&retrans=0&sent_bytes=32641&recv_bytes=40445&delivery_rate=1479944&ss_exit_cwnd=14908&ss_exit_reason=2&cwnd=12000&unsent_bytes=0&cid=0fd87d692209fe36&ts=1210&inflight_dur=136&x=44"
|
|
| GET o566mch.hcm665.com/game_pictures/p/285/L1/316/3/default_VND.avif?web_v=v6.1.102 | 104.18.25.129 | 200 OK | 19 kB |
URL GET o566mch.hcm665.com/game_pictures/p/285/L1/316/3/default_VND.avif?web_v=v6.1.102 IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
Hash8e1f338634f527a7e23ee07d8eee7b8a 2f61ac00cc0e4a19e07f0f478751b4c9ed34ac43 af7f7decfe26b2bd0d4912aece4c7d71db0abb5caf8ceaf14ae917287e80475b
GET /game_pictures/p/285/L1/316/3/default_VND.avif?web_v=v6.1.102 HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:53 GMT
content-type: image/avif
content-length: 18962
x-oss-request-id: 68566A73690BB9415CD4E6F8
vary: Origin, Accept-Encoding
etag: "8E1F338634F527A7E23EE07D8EEE7B8A"
last-modified: Mon, 02 Jun 2025 09:12:41 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 9945629842684851848
x-oss-storage-class: Standard
cache-control: max-age=2678400,stale-while-revalidate=86400,immutable,proxy-revalidate,public
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: jh8zhjT1J6fiPuB9ju57ig==
x-oss-server-time: 19
cf-cache-status: HIT
age: 85082
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 953a2e275dae1c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/game_pictures/p/285/L1/13/3/default_VND.avif?web_v=v6.1.102 | 104.18.25.129 | 200 OK | 12 kB |
URL GET o566mch.hcm665.com/game_pictures/p/285/L1/13/3/default_VND.avif?web_v=v6.1.102 IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
Hashab5d03e03af96fa326615b867a81d329 7d736a0f50b49a155c44b26a93474f716f5f0f5c c631b93ad4ba0bc675a26fcc4837d86e71254b5de7d4bb93c20a9ba82019f207
GET /game_pictures/p/285/L1/13/3/default_VND.avif?web_v=v6.1.102 HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:53 GMT
content-type: image/avif
content-length: 12310
x-oss-request-id: 68566A73CD397201B31D32FD
vary: Origin, Accept-Encoding
etag: "AB5D03E03AF96FA326615B867A81D329"
last-modified: Mon, 02 Jun 2025 09:12:41 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 10550241642286691105
x-oss-storage-class: Standard
cache-control: max-age=2678400,stale-while-revalidate=86400,immutable,proxy-revalidate,public
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: q10D4Dr5b6MmYVuGeoHTKQ==
x-oss-server-time: 19
cf-cache-status: HIT
age: 85082
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 953a2e275db81c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/siteadmin/skin/lobby_asset/1-0-common/common/_sprite/icon_dtfl_rm_1.avif?manualVersion=1&version=v6.1.102 | 104.18.25.129 | 200 OK | 1.6 kB |
URL GET o566mch.hcm665.com/siteadmin/skin/lobby_asset/1-0-common/common/_sprite/icon_dtfl_rm_1.avif?manualVersion=1&version=v6.1.102 IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
Hasha366b847023f63075861a071a1b1344c eacac4b5edbfcfa19ae5ecc66a2f916113e6401c d26274fa743c32dd7ba036ca81b9efceb71fb219148dee10a2295aca81016093
GET /siteadmin/skin/lobby_asset/1-0-common/common/_sprite/icon_dtfl_rm_1.avif?manualVersion=1&version=v6.1.102 HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:54 GMT
content-type: image/avif
content-length: 1643
x-oss-request-id: 68566A73048FEF426ABEB932
vary: Origin, Accept-Encoding
etag: "A366B847023F63075861A071A1B1344C"
last-modified: Tue, 10 Jun 2025 03:21:42 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 13110171119037869978
x-oss-storage-class: Standard
cache-control: max-age=604800,public
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: o2a4RwI/YwdYYaBxobE0TA==
x-oss-server-time: 16
cf-cache-status: HIT
age: 85083
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 953a2e278dd61c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/hall/api/active/isShowV2/default.json | 104.18.25.129 | 200 OK | 832 B |
URL GET o566mch.hcm665.com/hall/api/active/isShowV2/default.json IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typeASCII text, with very long lines (832), with no line terminators Hashb5d5a53f016c665406643361d1a39a6c cafc91528b7f144a9f48e6f9a67d840269358fb2 d74f775000b2fb972b99e14dd89210c379e76b4456de4772cc602c980efa3099
GET /hall/api/active/isShowV2/default.json HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:54 GMT
content-type: application/json
x-oss-request-id: 6857B6CE1E3C924D7CA71916
vary: Origin, Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-expose-headers: Etag
access-control-max-age: 200
etag: W/"B5D5A53F016C665406643361D1A39A6C"
last-modified: Sun, 22 Jun 2025 02:37:03 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 17517439923376991734
x-oss-storage-class: Standard
cache-control: s-maxage=600,max-age=0,public
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: tdWlPwFsZlQGZDNh0aOabA==
x-oss-server-time: 1
cf-cache-status: EXPIRED
priority: u=3,i=?0
server: cloudflare
cf-ray: 953a2e28cee81c0e-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/hall/api/lobby/footerConfigV2/getInfo/language/vi.json | 104.18.25.129 | 200 OK | 3.1 kB |
URL GET o566mch.hcm665.com/hall/api/lobby/footerConfigV2/getInfo/language/vi.json IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typeASCII text, with very long lines (3116), with no line terminators Hashe344d33b28fc638bbba0ee0fa59131e1 635306600562f4b7917c85c707363ba2e8a7effd e3c150a048a155dda569237e171aeeaa8958de328d3df92fd7993f3337b4f5a3
GET /hall/api/lobby/footerConfigV2/getInfo/language/vi.json HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:54 GMT
content-type: application/json
vary: Accept-Encoding, Origin
x-oss-request-id: 68571390048FEF426AB4706C
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-expose-headers: Etag
access-control-max-age: 200
last-modified: Sat, 21 Jun 2025 19:17:08 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 9933469802588456257
x-oss-storage-class: Standard
cache-control: s-maxage=600,public,max-age=0
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: 40TTOyj8Y4u7oO4PpZEx4Q==
x-oss-server-time: 4
content-encoding: gzip
cf-cache-status: REVALIDATED
priority: u=3,i=?0
server: cloudflare
cf-ray: 953a2e28def01c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/siteadmin/skin/lobby_asset/common/web/home/btn_sc_off_2.avif?manualVersion=1&version=v6.1.102 | 104.18.25.129 | 200 OK | 1.0 kB |
URL GET o566mch.hcm665.com/siteadmin/skin/lobby_asset/common/web/home/btn_sc_off_2.avif?manualVersion=1&version=v6.1.102 IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
Hashf9b6a776dcb8e53a1e22c1c1a7db2b1e 52638a0c4fef4928975943596e67228a2b068de9 12f53b8b3a8f1b20e8e5ed3d3f5edfde34f5859d49d0055950828630f26d2695
GET /siteadmin/skin/lobby_asset/common/web/home/btn_sc_off_2.avif?manualVersion=1&version=v6.1.102 HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:54 GMT
content-type: image/avif
content-length: 1036
x-oss-request-id: 68566A73CD397201B31D324E
vary: Origin, Accept-Encoding
etag: "F9B6A776DCB8E53A1E22C1C1A7DB2B1E"
last-modified: Wed, 18 Jun 2025 06:57:23 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 13757394480033944417
x-oss-storage-class: Standard
cache-control: max-age=604800,public
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: +bandty45ToeIsHBp9srHg==
x-oss-server-time: 19
cf-cache-status: HIT
age: 85083
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 953a2e299f891c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/game_pictures/p/285/CL/hot/316/3/default_VND.avif?web_v=v6.1.102 | 104.18.25.129 | 200 OK | 14 kB |
URL GET o566mch.hcm665.com/game_pictures/p/285/CL/hot/316/3/default_VND.avif?web_v=v6.1.102 IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
Hashe75fe3df1ca505b2fed35cf2bec8db18 27afe431dc28772b3894afa2f612d81661d4bb62 61b00bd20e5bc712d6ab7f050a6f5b33dc69d5bc283b62af256e94b5e7258fee
GET /game_pictures/p/285/CL/hot/316/3/default_VND.avif?web_v=v6.1.102 HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:54 GMT
content-type: image/avif
content-length: 13511
x-oss-request-id: 68566A73048FEF426ABEB9E5
vary: Origin, Accept-Encoding
etag: "E75FE3DF1CA505B2FED35CF2BEC8DB18"
last-modified: Mon, 02 Jun 2025 09:12:40 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 3475782741911691126
x-oss-storage-class: Standard
cache-control: max-age=2678400,stale-while-revalidate=86400,immutable,proxy-revalidate,public
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: 51/j3xylBbL+01zyvsjbGA==
x-oss-server-time: 11
cf-cache-status: HIT
age: 85083
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 953a2e299f911c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/assets/theme-1/0_WithdrawChunk.DbFxEteO.css | 104.18.24.129 | 200 OK | 31 kB |
URL GET w2.9ybhay.shop/assets/theme-1/0_WithdrawChunk.DbFxEteO.css IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeASCII text, with very long lines (30588) Hashf70f6e32c900ad064b878c1ebec583d3 8bb7d5b4e97d36d3299d426115fd312a7ee47e32 84a1dd34111bbb05aa3ce7c635746d461a969966c7a49d4c87e85185d668b6e7
GET /assets/theme-1/0_WithdrawChunk.DbFxEteO.css HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:55 GMT
content-type: text/css
vary: Accept-Encoding
x-oss-request-id: 685713915F471E37306BB31D
last-modified: Thu, 19 Jun 2025 02:23:15 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 73633999174135355
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.79-v6.1.88
cache-control: max-age=31622400
content-md5: 9w9uMskArQZLh4wevsWD0w==
x-oss-server-time: 32
content-encoding: gzip
cf-cache-status: HIT
age: 41790
priority: u=2,i=?0
server: cloudflare
cf-ray: 953a2e315e7156ab-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/hall/api/message/popupcfg/currency/VND.json | 104.18.25.129 | 200 OK | 88 B |
URL GET o566mch.hcm665.com/hall/api/message/popupcfg/currency/VND.json IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typeASCII text, with no line terminators Hashaa159f69d23655a28d9e813765852596 99c9247260d19153ba1b62fe16e6718418aec3a7 65189822417c6850f470139cdf5c0d93c2ece3acc200cc88f4ac924085826ee0
GET /hall/api/message/popupcfg/currency/VND.json HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:58 GMT
content-type: application/json
x-oss-request-id: 6854F43672F0665B4AA0FB17
vary: Origin, Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-expose-headers: Etag
access-control-max-age: 200
etag: W/"AA159F69D23655A28D9E813765852596"
last-modified: Fri, 20 Jun 2025 01:34:41 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 10931586182033818291
x-oss-storage-class: Standard
cache-control: s-maxage=600,max-age=0,public
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: qhWfadI2VaKNnoE3ZYUllg==
x-oss-server-time: 2
cf-cache-status: REVALIDATED
priority: u=3,i=?0
server: cloudflare
cf-ray: 953a2e418c661c0e-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/assets/theme-1/LoginRegisterIndex.BEJPUgXI.css | 104.18.24.129 | 200 OK | 474 B |
URL GET w2.9ybhay.shop/assets/theme-1/LoginRegisterIndex.BEJPUgXI.css IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeASCII text, with very long lines (473) Hashf16e6d6cf7c80c783493bc411f742ecb 4474f52187a22369a1b8da89b87fa26cfea126e8 457f9f6bfb07b334c2da21c1ca56a7774c6acb64e294503e58f0c9fc79289506
GET /assets/theme-1/LoginRegisterIndex.BEJPUgXI.css HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:55:02 GMT
content-type: text/css
x-oss-request-id: 6857139958A49D353460B360
etag: W/"F16E6D6CF7C80C783493BC411F742ECB"
last-modified: Thu, 19 Jun 2025 02:23:15 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 14424854000673204721
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.79-v6.1.88
cache-control: max-age=31622400
content-md5: 8W5tbPfIDHg0k7xBH3Quyw==
x-oss-server-time: 4
cf-cache-status: HIT
age: 41789
priority: u=2,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 953a2e5e7db956ab-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/assets/theme-1/2_EventDialogsChunk.D2M0Y-Hv.css | 104.18.24.129 | 200 OK | 100 kB |
URL GET w2.9ybhay.shop/assets/theme-1/2_EventDialogsChunk.D2M0Y-Hv.css IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hash57904ea8f915de7dbb753c793233cae5 473155a77ca1cad941f4d26d9ef6e0ba803b18d6 20b5007c5f2b731808ec5b159ea7efb4931dbadbf7a45587fae9567e5ca97cd7
GET /assets/theme-1/2_EventDialogsChunk.D2M0Y-Hv.css HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:55:03 GMT
content-type: text/css
vary: Accept-Encoding
x-oss-request-id: 6857139AB676933937E99574
last-modified: Thu, 19 Jun 2025 02:23:15 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 1756045941097500031
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.79-v6.1.88
cache-control: max-age=31622400
content-md5: V5BOqPkV3n27dTx5MjPK5Q==
x-oss-server-time: 22
content-encoding: gzip
cf-cache-status: HIT
age: 41789
priority: u=2,i=?0
server: cloudflare
cf-ray: 953a2e62498c56ab-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/assets/theme-1/2_EventOthersChunk.DXkS4XN-.css | 104.18.24.129 | 200 OK | 6.9 kB |
URL GET w2.9ybhay.shop/assets/theme-1/2_EventOthersChunk.DXkS4XN-.css IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeASCII text, with very long lines (6880) Hash3ac4029538e81d3115a7b097a8eb5a03 da3ff549ce50461dfd95421d5a979535db6117e3 eba852e3c91420b9ce73b2e7fa40047f638387fbf15824c568e64f65cb758ab5
GET /assets/theme-1/2_EventOthersChunk.DXkS4XN-.css HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:55:04 GMT
content-type: text/css
vary: Accept-Encoding
x-oss-request-id: 6857139CCA1C633337DB63B4
last-modified: Thu, 19 Jun 2025 02:23:15 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 9254968189289974518
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.79-v6.1.88
cache-control: max-age=31622400
content-md5: OsQClTjoHTEVp7CXqOtaAw==
x-oss-server-time: 15
content-encoding: gzip
cf-cache-status: HIT
age: 41788
priority: u=2,i=?0
server: cloudflare
cf-ray: 953a2e69d8ed56ab-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/assets/theme-1/index.CqQlUlH0.js | 104.18.24.129 | 200 OK | 3.6 kB |
URL GET w2.9ybhay.shop/assets/theme-1/index.CqQlUlH0.js IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeASCII text, with very long lines (415) Hashe88c2229da0d7ee5e3d985a32e9d24ce 16382dbbb0b610ba051e46226975b9d08d5a3df2 23660fb5af3c88f4c0ec604b4c65161b0be423dea844ab09e985def25ed134fd
GET /assets/theme-1/index.CqQlUlH0.js HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:51 GMT
content-type: text/javascript
x-oss-request-id: 6857138DE702E239378ED88D
etag: W/"E88C2229DA0D7EE5E3D985A32E9D24CE"
last-modified: Sat, 21 Jun 2025 07:04:23 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 6899724568969665596
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.100-v6.1.102
cache-control: max-age=31622400
content-md5: 6IwiKdoNfuXj2YWjLp0kzg==
x-oss-server-time: 27
cf-cache-status: HIT
age: 41790
priority: u=3,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 953a2e18ee6756ab-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/siteadmin/skin/lobby_asset/1-0-common/common/_sprite/icon_dtfl_qkl_1.avif?manualVersion=1&version=v6.1.102 | 104.18.25.129 | 200 OK | 2.0 kB |
URL GET o566mch.hcm665.com/siteadmin/skin/lobby_asset/1-0-common/common/_sprite/icon_dtfl_qkl_1.avif?manualVersion=1&version=v6.1.102 IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
Hash4b1543ba162d0655077a82c1dd631ce1 9c5aa7a5a6537bef992d51d189f615c5939924d8 d428f3e0f5d9dc7de6a79f129139f33e6170b6d47bb07bf484b1464ec78a0697
GET /siteadmin/skin/lobby_asset/1-0-common/common/_sprite/icon_dtfl_qkl_1.avif?manualVersion=1&version=v6.1.102 HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:54 GMT
content-type: image/avif
content-length: 1996
x-oss-request-id: 68566A73CC39EAA338002CC3
vary: Origin, Accept-Encoding
etag: "4B1543BA162D0655077A82C1DD631CE1"
last-modified: Tue, 10 Jun 2025 03:06:45 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 4693715331554725992
x-oss-storage-class: Standard
cache-control: max-age=604800,public
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: SxVDuhYtBlUHeoLB3WMc4Q==
x-oss-server-time: 13
cf-cache-status: HIT
age: 85083
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 953a2e27bdff1c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/hall/api/lobby/aboutUs/index/getInfo/language/vi.json | 104.18.25.129 | 200 OK | 128 B |
URL GET o566mch.hcm665.com/hall/api/lobby/aboutUs/index/getInfo/language/vi.json IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typeASCII text, with no line terminators Hashffb2dcd1607666015583cdd8fdb73d37 1c72516c0e7c751426e61b1b669b599693c10f6f 497b6f2a980280f43cbd912aff591f34245fbd59996f37ccbb53bcc9932405fd
GET /hall/api/lobby/aboutUs/index/getInfo/language/vi.json HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:54 GMT
content-type: application/json
x-oss-request-id: 68571390CC39EAA338F73525
vary: Origin, Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-expose-headers: Etag
access-control-max-age: 200
etag: W/"FFB2DCD1607666015583CDD8FDB73D37"
last-modified: Sat, 21 Jun 2025 19:17:08 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 5073008459613157828
x-oss-storage-class: Standard
cache-control: s-maxage=600,public,max-age=0
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: /7Lc0WB2ZgFVg83Y/bc9Nw==
x-oss-server-time: 0
cf-cache-status: REVALIDATED
priority: u=3,i=?0
server: cloudflare
cf-ray: 953a2e28def11c0e-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/hall/api/game/hall/listPlatformCateLoadV2/currency/VND/language/vi.json | 104.18.25.129 | 200 OK | 24 kB |
URL GET o566mch.hcm665.com/hall/api/game/hall/listPlatformCateLoadV2/currency/VND/language/vi.json IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typeASCII text, with very long lines (23576), with no line terminators Hash18512e4123d288e4ac30fa358a327d34 64ad4c3c6dd12e24d3189807ecf01043e82d89ce 30b246ac81ff9be96dca0e02b1457e6cd3b31063453d820931f345d62b57d0a9
GET /hall/api/game/hall/listPlatformCateLoadV2/currency/VND/language/vi.json HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:56 GMT
content-type: application/json
vary: Accept-Encoding, Origin
x-oss-request-id: 685676E733781B40888FC739
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-expose-headers: Etag
access-control-max-age: 200
last-modified: Sat, 21 Jun 2025 08:27:46 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 7805756743507987717
x-oss-storage-class: Standard
cache-control: s-maxage=600,public,max-age=0
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: GFEuQSPSiOSsMPo1ijJ9NA==
x-oss-server-time: 2
content-encoding: gzip
cf-cache-status: REVALIDATED
priority: u=3,i=?0
server: cloudflare
cf-ray: 953a2e34d96a1c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/assets/theme-1/PhotographIndex.CZsRgIP5.js | 104.18.24.129 | 200 OK | 4.4 kB |
URL GET w2.9ybhay.shop/assets/theme-1/PhotographIndex.CZsRgIP5.js IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeJava source, ASCII text, with very long lines (4335) Hash520fe4af9e7686db0605391d60535fe5 5be6d0f019f5a12be283f9bbe69cb131b9f0377c 150efb5b07a6186990e83f26e5699a777f608af331db6334635b864900902c51
GET /assets/theme-1/PhotographIndex.CZsRgIP5.js HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/assets/theme-1/StyleIndex.SKmsOLto.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:56 GMT
content-type: text/javascript
x-oss-request-id: 685713930A93063532939CAC
etag: W/"520FE4AF9E7686DB0605391D60535FE5"
last-modified: Sat, 21 Jun 2025 07:04:23 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 8449527150480521001
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.100-v6.1.102
cache-control: max-age=31622400
content-md5: Ug/kr552htsGBTkdYFNf5Q==
x-oss-server-time: 12
cf-cache-status: HIT
age: 41789
priority: u=3,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 953a2e35fb5456ab-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET hcm2244.com/hall/ipCheck?siteCode=285¤cy=VND&language=vi&platformType=5 | 104.18.24.129 | 200 OK | 236 B |
URL GET hcm2244.com/hall/ipCheck?siteCode=285¤cy=VND&language=vi&platformType=5 IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjecthcm2244.com FingerprintD8:D9:04:B6:18:EC:36:72:BE:90:C6:62:09:66:0C:D4:20:45:A3:21 ValidityFri, 09 May 2025 12:39:10 GMT - Thu, 07 Aug 2025 13:39:04 GMT
Hash128548803888505e2ad501a91e3a9402 ee743c190e3fc3b87b874414af8b03f0bc3463e6 039718e6ef1422b4505096b6be62ffedc129e6bf942758e66fe003698fdaac23
GET /hall/ipCheck?siteCode=285¤cy=VND&language=vi&platformType=5 HTTP/1.1
Host: hcm2244.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: vi
Accept-Encoding: gzip, deflate, br
x-object-id: {"uid":"","browserLanguage":"en-US","init":{"device":"","created":1750578892437,"version":1750472258000}}
platformType: 5
devicetype: 3
x-device: 1-1
x-data-mode: plain
x-request-id: 548a3ccd-e536-4102-8067-799ab8a9d320
device: 7299ced1-ed36-4357-bbee-689c60a641d0
currency: VND
timestamp: 1750578894
nonce: 548a3ccd-e536-4102-8067-799ab8a9d320
sign: CYztFUURUUyqhWUU22tes7WMRu4MOpyU73Vh+H9yw6t6gkbytC9uqustPreIA2fu
siteCode: 285
language: vi
token:
auth: undefined
deviceModel: Firefox v134.0
physicalDeviceModel: unknown
operatingSystem: Windows
deviceBrand: unknown
browserType: Firefox v134.0
appSystem: Windows 10
domain: w2.9ybhay.shop
webauthnDomain: w2.9ybhay.shop
clienttimezone: 0
x-custom-referer: https://w2.9ybhay.shop/
x-version: 6.1.102
browserfingerid:
appVersion: v6.1.102
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:56 GMT
content-type: application/json; charset=utf-8
set-cookie: acw_tc=0a094e3417505788967492043e40bc151741c4cbbf8dc9fecfa839bf4dd924;path=/;HttpOnly;Max-Age=1800
cache-control: no-cache
x-env-go-biz-gateway: 0
x-server-version: 4.0.0
x-trace-id: 58625571fd4b434e
access-control-allow-methods: *
access-control-max-age: 3600
access-control-allow-credentials: true
access-control-allow-origin: *
cf-cache-status: DYNAMIC
priority: u=3,i=?0
server: cloudflare
cf-ray: 953a2e37e9360b4d-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/assets/theme-1/2_DownloadDialogsChunk.CvGKOUgd.js | 104.18.24.129 | 200 OK | 38 kB |
URL GET w2.9ybhay.shop/assets/theme-1/2_DownloadDialogsChunk.CvGKOUgd.js IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeASCII text, with very long lines (37295) Hash1b383cdccacdfeebfb01f3b88bf4366a 40af48e513e916c47b044d1e2c98c3e4ed912185 5f9f17b32c453d29dca8df4c8a5b8778c2330bce9bbfc4db7e34f7888f7049ea
GET /assets/theme-1/2_DownloadDialogsChunk.CvGKOUgd.js HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/assets/theme-1/commonChunk.CXW_BbDR.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:55:02 GMT
content-type: text/javascript
x-oss-request-id: 685713992319383533776A37
etag: W/"1B383CDCCACDFEEBFB01F3B88BF4366A"
last-modified: Sat, 21 Jun 2025 07:04:23 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 7784018665127622988
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.100-v6.1.102
cache-control: max-age=31622400
content-md5: Gzg83MrN/uv7AfO4i/Q2ag==
x-oss-server-time: 12
cf-cache-status: HIT
age: 41789
priority: u=3,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 953a2e5dfd5656ab-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/hall/api/active/tasks/newcomer_benefit_reward/default.json | 104.18.25.129 | 200 OK | 748 B |
URL GET o566mch.hcm665.com/hall/api/active/tasks/newcomer_benefit_reward/default.json IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typeASCII text, with very long lines (748), with no line terminators Hash1a03a3697c559d001a7d00315444911b 0f1c7d3bd282010976a90279a49c219932ddae62 2a3bece09da466a3e170148bded16713fc028918b18fa5606990e3d77af5e760
GET /hall/api/active/tasks/newcomer_benefit_reward/default.json HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:55:03 GMT
content-type: application/json
x-oss-request-id: 6857139133781B4088664E3F
vary: Origin, Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-expose-headers: Etag
access-control-max-age: 200
etag: W/"1A03A3697C559D001A7D00315444911B"
last-modified: Sat, 21 Jun 2025 18:34:42 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 13277543343156434720
x-oss-storage-class: Standard
cache-control: s-maxage=600,max-age=0,public
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: GgOjaXxVnQAafQAxVESRGw==
x-oss-server-time: 2
cf-cache-status: HIT
age: 7
priority: u=3,i=?0
server: cloudflare
cf-ray: 953a2e611f031c0e-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/hall/api/active/tasks/newcomer_benefit_reward/default.json | 104.18.25.129 | 200 OK | 748 B |
URL GET o566mch.hcm665.com/hall/api/active/tasks/newcomer_benefit_reward/default.json IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typeASCII text, with very long lines (748), with no line terminators Hash1a03a3697c559d001a7d00315444911b 0f1c7d3bd282010976a90279a49c219932ddae62 2a3bece09da466a3e170148bded16713fc028918b18fa5606990e3d77af5e760
GET /hall/api/active/tasks/newcomer_benefit_reward/default.json HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:55:03 GMT
content-type: application/json
x-oss-request-id: 6857139133781B4088664E3F
vary: Origin, Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-expose-headers: Etag
access-control-max-age: 200
etag: W/"1A03A3697C559D001A7D00315444911B"
last-modified: Sat, 21 Jun 2025 18:34:42 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 13277543343156434720
x-oss-storage-class: Standard
cache-control: s-maxage=600,max-age=0,public
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: GgOjaXxVnQAafQAxVESRGw==
x-oss-server-time: 2
cf-cache-status: HIT
age: 7
priority: u=3,i=?0
server: cloudflare
cf-ray: 953a2e655a421c0e-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| | 104.21.48.1 | 301 Moved Permanently | 7.1 kB |
IP104.21.48.1:443
CertificateIssuerGoogle Trust Services Subjecthcm660.com FingerprintC7:D3:1B:A4:57:3F:29:34:CC:36:3C:EE:6A:9F:2C:EF:32:0E:26:72 ValidityFri, 13 Jun 2025 00:21:14 GMT - Thu, 11 Sep 2025 01:18:11 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: g1zkx.hcm660.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Sun, 22 Jun 2025 07:54:50 GMT
content-type: text/html; charset=UTF-8
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
location: //674hl.hcm660.com/
cf-cache-status: DYNAMIC
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=UKKPkBycWnwWJa33FIv0Ya2snxg1KiajUcLKHhJyCo24hV%2F7%2Fplrj4XuBlO8i7Ci3sMTmXnYx%2FnQxPnLjPa3F4JaKbri0DxQ9LVYU6dk"}]}
set-cookie: PHPSESSID=oep6357otngqs6m1pe50pc4kmn; Path=/
uDomain=674hl.hcm660.com; Path=/; Domain=hcm660.com; Max-Age=2592000; Expires=Tue, 22 Jul 2025 07:54:50 GMT
cf-ray: 953a2e1059660b3d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| GET w2.9ybhay.shop/assets/theme-1/commonChunk.BoYrolLR.css | 104.18.24.129 | 200 OK | 315 kB |
URL GET w2.9ybhay.shop/assets/theme-1/commonChunk.BoYrolLR.css IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeASCII text, with very long lines (65536), with no line terminators Size315 kB (315192 bytes) Hashf715fd05dad0cb9be58b0a7d2d67c6b9 78de32460191c3ca6b1fce2eb1aba15d6efe870a 28acc82bdc4c7f491d66e5c9469a036861a3fbe8353bccff6631298bd5b5b370
GET /assets/theme-1/commonChunk.BoYrolLR.css HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:51 GMT
content-type: text/css
vary: Accept-Encoding
x-oss-request-id: 6857138D5354653231580161
last-modified: Sat, 21 Jun 2025 07:04:23 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 8991409523284700498
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.100-v6.1.102
cache-control: max-age=31622400
content-md5: 9xX9BdrQy5vliwp9LWfGuQ==
x-oss-server-time: 27
content-encoding: gzip
cf-cache-status: HIT
age: 41790
priority: u=2,i=?0
server: cloudflare
cf-ray: 953a2e18fe7056ab-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/assets/vendors/vendor-swiper.CoXUCMPL.css | 104.18.24.129 | 200 OK | 25 kB |
URL GET w2.9ybhay.shop/assets/vendors/vendor-swiper.CoXUCMPL.css IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeASCII text, with very long lines (24555) Hash62969e2091dbbfb534454be94155e731 44338e52f955d955a597485f9d7f9d605dd04a9f a604dfa4233199eaa49cce3d38d3828b7961c31d129a8f7116a62f5118b47143
GET /assets/vendors/vendor-swiper.CoXUCMPL.css HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:51 GMT
content-type: text/css
vary: Accept-Encoding
x-oss-request-id: 6857138D9453943032275632
last-modified: Tue, 17 Jun 2025 07:20:45 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 2900298986903795848
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.62
cache-control: max-age=31622400
content-md5: YpaeIJHbv7U0RUvpQVXnMQ==
x-oss-server-time: 16
content-encoding: gzip
cf-cache-status: HIT
age: 41790
priority: u=2,i=?0
server: cloudflare
cf-ray: 953a2e18ee6b56ab-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/siteadmin/layoutDesign/1728076451578531841.png | 104.18.25.129 | 200 OK | 2.5 kB |
URL GET o566mch.hcm665.com/siteadmin/layoutDesign/1728076451578531841.png IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typePNG image data, 80 x 70, 8-bit colormap, non-interlaced Hash770ef922d57d6b06ba224696a419f531 02511e819803fc0022839680a71382d9ed2b9607 4c2108d9033b6ee25ddb636d96a888224fffec5ece7adb7944220c933888ee03
GET /siteadmin/layoutDesign/1728076451578531841.png HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:53 GMT
content-type: image/png
content-length: 2477
x-oss-request-id: 68178B9372F06605DE7F164E
vary: Origin, Accept-Encoding
etag: "770EF922D57D6B06BA224696A419F531"
last-modified: Fri, 24 Nov 2023 15:41:48 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 10491443143967824292
x-oss-storage-class: Standard
cache-control: max-age=86400
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: dw75ItV9awa6IkaWpBn1MQ==
x-oss-server-time: 5
cf-cache-status: HIT
age: 85082
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 953a2e26dd1f1c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/siteadmin/skin/lobby_asset/1-0-11/assets.hash.json?timestamp=1750578896299 | 104.18.25.129 | 200 OK | 123 kB |
URL GET o566mch.hcm665.com/siteadmin/skin/lobby_asset/1-0-11/assets.hash.json?timestamp=1750578896299 IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
Size123 kB (122726 bytes) Hashdc238e4e5ced4b94f316c47695d16778 c261d09963c53a8b4edcdd11613d1e3bd2304741 2332980e8e64136c61dfcd944fe6d9efb82e79001b23242fb196b5a60679bd0d
GET /siteadmin/skin/lobby_asset/1-0-11/assets.hash.json?timestamp=1750578896299 HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:56 GMT
content-type: application/json
vary: Accept-Encoding, Origin
x-oss-request-id: 6857B6D01E3C924D7CA71EDC
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-expose-headers: Etag
access-control-max-age: 200
last-modified: Wed, 18 Jun 2025 07:08:06 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 10650828152965482250
x-oss-storage-class: Standard
cache-control: max-age=604800,public
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: 3COOTlztS5TzFsR2ldFneA==
x-oss-server-time: 1
content-encoding: gzip
cf-cache-status: MISS
priority: u=3,i=?0
server: cloudflare
cf-ray: 953a2e363ae51c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/bewcdn.txt?1750578897917 | 104.18.24.129 | 200 OK | 2 B |
URL GET w2.9ybhay.shop/bewcdn.txt?1750578897917 IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeASCII text, with no line terminators Hashe0aa021e21dddbd6d8cecec71e9cf564 9ce3bd4224c8c1780db56b4125ecf3f24bf748b7 565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
GET /bewcdn.txt?1750578897917 HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://w2.9ybhay.shop/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:58 GMT
content-type: text/plain
content-length: 2
x-oss-request-id: 6857B6D28E4DB93936767BE1
etag: "E0AA021E21DDDBD6D8CECEC71E9CF564"
last-modified: Tue, 17 Jun 2025 07:20:46 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 4312349438756823821
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.62
cache-control: s-maxage=31622400,max-age=0,public
content-md5: 4KoCHiHd29bYzs7HHpz1ZA==
x-oss-server-time: 5
cf-cache-status: MISS
accept-ranges: bytes
priority: u=4,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 953a2e400df756ab-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/assets/vendors/vendor-.FOGm4fvI.js | 104.18.24.129 | 200 OK | 304 kB |
URL GET w2.9ybhay.shop/assets/vendors/vendor-.FOGm4fvI.js IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (60089) Size304 kB (303881 bytes) Hashc757a28375d20bb7cc142498bff4b346 439b48f47dc74c88b984d630c6db92a55722e02b 9fca5bd428b665281d22bfcd4a053a921c7516d4620083381702e52602e4e03d
GET /assets/vendors/vendor-.FOGm4fvI.js HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/assets/theme-1/index.CqQlUlH0.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:51 GMT
content-type: text/javascript
x-oss-request-id: 6857138D7594F93738313398
etag: W/"C757A28375D20BB7CC142498BFF4B346"
last-modified: Thu, 19 Jun 2025 02:23:15 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 11035265405670772661
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.79-v6.1.88
cache-control: max-age=31622400
content-md5: x1eig3XSC7fMFCSYv/SzRg==
x-oss-server-time: 25
cf-cache-status: HIT
age: 41790
priority: u=3,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 953a2e196ee156ab-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/siteadmin/layoutDesign/1728075556858904578.png | 104.18.25.129 | 200 OK | 4.3 kB |
URL GET o566mch.hcm665.com/siteadmin/layoutDesign/1728075556858904578.png IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typePNG image data, 80 x 70, 8-bit colormap, non-interlaced Hash9219c305d50c2dca99e31e278cf06083 af3434f604d71e616cec276de96e6e1093ab7bed e5e353a8b9930fced1bfb715f84e2eab6697a2dc8ff01173a62419120b0cd2f4
GET /siteadmin/layoutDesign/1728075556858904578.png HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:53 GMT
content-type: image/png
content-length: 4293
x-oss-request-id: 68178B937DAC2CB4E21B95BF
vary: Origin, Accept-Encoding
etag: "9219C305D50C2DCA99E31E278CF06083"
last-modified: Fri, 24 Nov 2023 15:38:14 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 7561906033790911191
x-oss-storage-class: Standard
cache-control: max-age=86400
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: khnDBdUMLcqZ4x4njPBggw==
x-oss-server-time: 3
cf-cache-status: HIT
age: 2698
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 953a2e26dd1e1c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/siteadmin/layoutDesign/1728077270935040001.png | 104.18.25.129 | 200 OK | 2.3 kB |
URL GET o566mch.hcm665.com/siteadmin/layoutDesign/1728077270935040001.png IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typePNG image data, 80 x 70, 8-bit colormap, non-interlaced Hasha60fd4c9b6097e317fdcc00a963c6e72 319db80ce3e46a74814bac3288b4ef33e6193d99 97561be905b7d0ee3cd90422c635f3c8397c2a33197e76d6ffc46f5aaf705f28
GET /siteadmin/layoutDesign/1728077270935040001.png HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:53 GMT
content-type: image/png
content-length: 2346
x-oss-request-id: 681C0E6DB724A511D35A2883
vary: Origin, Accept-Encoding
etag: "A60FD4C9B6097E317FDCC00A963C6E72"
last-modified: Fri, 24 Nov 2023 15:45:03 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 8298407260899052042
x-oss-storage-class: Standard
cache-control: max-age=86400
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: pg/UybYJfjF/3MAKljxucg==
x-oss-server-time: 33
cf-cache-status: HIT
age: 2698
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 953a2e26dd281c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/assets/theme-1/0_SubgameChunk.B3FLDL9h.css | 104.18.24.129 | 200 OK | 9.4 kB |
URL GET w2.9ybhay.shop/assets/theme-1/0_SubgameChunk.B3FLDL9h.css IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeASCII text, with very long lines (9407) Hashfa5bae13f23519b546ddb7fefccb1765 810f23c8807a9f7d5b6a05d0b922e0550f064456 94e052c86eeca601c994adf10720060853af63ac2dca4ab12695bcc63df5bd90
GET /assets/theme-1/0_SubgameChunk.B3FLDL9h.css HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:55 GMT
content-type: text/css
vary: Accept-Encoding
x-oss-request-id: 685713917859E4323993F39E
last-modified: Thu, 19 Jun 2025 02:23:15 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 13052413370834304532
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.79-v6.1.88
cache-control: max-age=31622400
content-md5: +luuE/I1GbVG3bf+/MsXZQ==
x-oss-server-time: 16
content-encoding: gzip
cf-cache-status: HIT
age: 41790
priority: u=2,i=?0
server: cloudflare
cf-ray: 953a2e317e8c56ab-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/assets/theme-1/LinkIndex.BqKr20-Z.css | 104.18.24.129 | 200 OK | 4.1 kB |
URL GET w2.9ybhay.shop/assets/theme-1/LinkIndex.BqKr20-Z.css IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeASCII text, with very long lines (4094) Hash9e46ce153143585ef187744de212a4da b62865b92fa49a188af5631e5d2ba1078abe55fb 3b4daf4dc83040b14b898e92d8703aaa18cfa7981f7ebf941b1ed1a3fe509a2c
GET /assets/theme-1/LinkIndex.BqKr20-Z.css HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:55 GMT
content-type: text/css
vary: Accept-Encoding
x-oss-request-id: 68568E9975EC4634317F0DA0
last-modified: Thu, 19 Jun 2025 02:23:15 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 10043700959242848912
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.79-v6.1.88
cache-control: max-age=31622400
content-md5: nkbOFTFDWF7xh3RN4hKk2g==
x-oss-server-time: 7
content-encoding: gzip
cf-cache-status: HIT
age: 41790
priority: u=2,i=?0
server: cloudflare
cf-ray: 953a2e317e9256ab-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET hcm66cfcdn.hcm2200.com/ipacdn.txt | 104.18.25.129 | 200 OK | 2 B |
URL GET hcm66cfcdn.hcm2200.com/ipacdn.txt IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecthcm66cfcdn.hcm2200.com Fingerprint45:A1:DC:37:5C:F7:66:6F:9C:8F:3D:AC:E8:2B:26:53:FF:6A:FF:3B ValidityThu, 22 May 2025 02:57:14 GMT - Wed, 20 Aug 2025 03:57:07 GMT
File typeASCII text, with no line terminators Hashe0aa021e21dddbd6d8cecec71e9cf564 9ce3bd4224c8c1780db56b4125ecf3f24bf748b7 565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
GET /ipacdn.txt HTTP/1.1
Host: hcm66cfcdn.hcm2200.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://w2.9ybhay.shop/
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 22 Jun 2025 07:54:58 GMT
content-type: text/plain
content-length: 2
cache-control: s-maxage=315360000,max-age=0,public
access-control-allow-origin: *
access-control-max-age: 3600
access-control-allow-credentials: true
last-modified: Thu, 05 Jun 2025 23:56:22 GMT
cf-cache-status: HIT
age: 1389877
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 953a2e464ca30b41-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| GET cdntoos.hcm2233.com/siteadmin/ssocdn.txt | 3.167.2.7 | 200 OK | 2 B |
URL GET cdntoos.hcm2233.com/siteadmin/ssocdn.txt IP3.167.2.7:443
CertificateIssuerAmazon Subjectcdntoos.hcm2233.com Fingerprint9E:9F:D9:0F:D7:B2:AC:4A:9E:7C:90:FD:2C:D0:AA:F8:84:CC:3E:B6 ValidityWed, 02 Oct 2024 00:00:00 GMT - Fri, 31 Oct 2025 23:59:59 GMT
File typeASCII text, with no line terminators Hasha60852f204ed8028c1c58808b746d115 b0a98216a32426b9e66a4ac1eb6df2e96e1b495c 843ac01149cced785dfebd0028d3b03ba78e286e1c6f9517ebfcdb609d97af4c
GET /siteadmin/ssocdn.txt HTTP/1.1
Host: cdntoos.hcm2233.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://w2.9ybhay.shop/
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/plain
content-length: 2
server: AliyunOSS
date: Sun, 22 Jun 2025 07:10:00 GMT
x-oss-request-id: 6857AC4840D0021B761670D6
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-expose-headers: Etag
access-control-max-age: 200
accept-ranges: bytes
etag: "A60852F204ED8028C1C58808B746D115"
last-modified: Thu, 25 Jul 2024 03:06:31 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 13902551060587900831
x-oss-storage-class: Standard
cache-control: max-age=86400
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: pghS8gTtgCjBxYgIt0bRFQ==
x-oss-server-time: 3
x-cache: Hit from cloudfront
via: 1.1 677df3933c00907ecb7cdafc768e98fc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: NFFj7Skj4fMbXpmNRI8Qq1olGPgjAc7Dr8E0lOdnzM3J8OJKd5AaEQ==
age: 2699
X-Firefox-Spdy: h2
|
|
| GET o566mch.hcm665.com/hall/api/lobby/config/getAppDownloadInfo.json | 104.18.25.129 | 200 OK | 2.2 kB |
URL GET o566mch.hcm665.com/hall/api/lobby/config/getAppDownloadInfo.json IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typeASCII text, with very long lines (2200), with no line terminators Hash0369170ff3a73ba1f82ae683fd427024 983ae153917c4cc6a1c826db4b627d2f17faa9e3 75efcc525101517157b9441d0a0c82a6bd98d87a6da8d0feb6050936dcc5e418
GET /hall/api/lobby/config/getAppDownloadInfo.json HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:55:02 GMT
content-type: application/json
vary: Accept-Encoding, Origin
x-oss-request-id: 6857138FCD397201B31448A2
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-expose-headers: Etag
access-control-max-age: 200
last-modified: Sat, 21 Jun 2025 19:17:08 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 7383683401357440477
x-oss-storage-class: Standard
cache-control: s-maxage=600,public,max-age=0
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: A2kXD/OnO6H4KuaD/UJwJA==
x-oss-server-time: 4
content-encoding: gzip
cf-cache-status: HIT
age: 9
priority: u=3,i=?0
server: cloudflare
cf-ray: 953a2e5dbc5e1c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET 674hl.hcm660.com/cdn-cgi/challenge-platform/scripts/jsd/main.js | 104.21.48.1 | 302 Found | 10 kB |
URL GET 674hl.hcm660.com/cdn-cgi/challenge-platform/scripts/jsd/main.js IP104.21.48.1:443
Requested byhttps://674hl.hcm660.com/index2.php CertificateIssuerGoogle Trust Services Subjecthcm660.com FingerprintC7:D3:1B:A4:57:3F:29:34:CC:36:3C:EE:6A:9F:2C:EF:32:0E:26:72 ValidityFri, 13 Jun 2025 00:21:14 GMT - Thu, 11 Sep 2025 01:18:11 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: 674hl.hcm660.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: uDomain=674hl.hcm660.com; PHPSESSID=4sr7ag4lltc3su2b4i18o2mlft; uUrl=w2.9ybhay.shop
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 302 Found
date: Sun, 22 Jun 2025 07:54:51 GMT
content-length: 0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pdkXfQGJIY8iGCSH4r%2BxcNEgULsC8FVTdbDDnBWlG%2FNZ7RIlEcrb2AhDQigv%2B2virxqhRNGBpsWTPtMB9W6ym95mlEz56q5sYw4O%2Boi37%2BKzEHze2Wk0XGJCCEJj0nAsgiOf"}],"group":"cf-nel","max_age":604800}
location: /cdn-cgi/challenge-platform/h/g/scripts/jsd/180b6a431d85/main.js?
cache-control: max-age=300, stale-if-error=10800, stale-while-revalidate=10800, public
access-control-allow-origin: *
cf-ray: 953a2e16983a56a4-OSL
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1538&min_rtt=47&rtt_var=840&sent=168&recv=227&lost=0&retrans=0&sent_bytes=26184&recv_bytes=26387&delivery_rate=1479944&ss_exit_cwnd=14908&ss_exit_reason=2&cwnd=12000&unsent_bytes=0&cid=0fd87d692209fe36&ts=900&inflight_dur=108&x=44"
|
|
| GET o566mch.hcm665.com/siteadmin/skin/lobby_asset/1-0-common/common/_sprite/icon_dtfl_dz_1.avif?manualVersion=1&version=v6.1.102 | 104.18.25.129 | 200 OK | 3.0 kB |
URL GET o566mch.hcm665.com/siteadmin/skin/lobby_asset/1-0-common/common/_sprite/icon_dtfl_dz_1.avif?manualVersion=1&version=v6.1.102 IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
Hashe5db367392767675839524cde8e7dcda e97983146524f3279c337c721e31cf56e1b7ca17 ff09067ae6c396daf90119f3cd597fcfd355493d22fc3202af682f1063baa98e
GET /siteadmin/skin/lobby_asset/1-0-common/common/_sprite/icon_dtfl_dz_1.avif?manualVersion=1&version=v6.1.102 HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:53 GMT
content-type: image/avif
content-length: 3019
x-oss-request-id: 68566A73304E2E031B55AEAA
vary: Origin, Accept-Encoding
etag: "E5DB367392767675839524CDE8E7DCDA"
last-modified: Tue, 10 Jun 2025 03:24:05 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 1691347070242699491
x-oss-storage-class: Standard
cache-control: max-age=604800,public
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: 5ds2c5J2dnWDlSTN6Ofc2g==
x-oss-server-time: 19
cf-cache-status: HIT
age: 85082
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 953a2e26ed351c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/siteadmin/skin/lobby_asset/1-0-common/common/_sprite/icon_dtfl_sw_1.avif?manualVersion=1&version=v6.1.102 | 104.18.25.129 | 200 OK | 1.4 kB |
URL GET o566mch.hcm665.com/siteadmin/skin/lobby_asset/1-0-common/common/_sprite/icon_dtfl_sw_1.avif?manualVersion=1&version=v6.1.102 IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
Hash2e03e10988891acc9cc637ca119c46a9 638db2bc149f4284a01d7263bee1e1da1a9451de aaa12a64882b9ae721e85f8e02fd5a8fb3ddcc01094837e49fa20d0295c3616d
GET /siteadmin/skin/lobby_asset/1-0-common/common/_sprite/icon_dtfl_sw_1.avif?manualVersion=1&version=v6.1.102 HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:54 GMT
content-type: image/avif
content-length: 1438
x-oss-request-id: 68566A73DE66936D31E6E81B
vary: Origin, Accept-Encoding
etag: "2E03E10988891ACC9CC637CA119C46A9"
last-modified: Tue, 10 Jun 2025 03:21:42 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 12509173059260600885
x-oss-storage-class: Standard
cache-control: max-age=604800,public
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: LgPhCYiJGsycxjfKEZxGqQ==
x-oss-server-time: 35
cf-cache-status: HIT
age: 85083
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 953a2e27ce0a1c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/hall/api/message/list/all/currency/VND/language/vi/page/1/type/99.json | 104.18.25.129 | 200 OK | 4.5 kB |
URL GET o566mch.hcm665.com/hall/api/message/list/all/currency/VND/language/vi/page/1/type/99.json IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typeASCII text, with very long lines (4504), with no line terminators Hash2d5c0f1224cbc26a06778f5b13030bc0 4d9a9b989e8bd2801b92654f29b2862558a2fbaf 31cd67042d24cb3af35f4bbae47b0c37178d87f94c0ccb410d1f17491ae45a82
GET /hall/api/message/list/all/currency/VND/language/vi/page/1/type/99.json HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:54 GMT
content-type: application/json
vary: Accept-Encoding, Origin
x-oss-request-id: 6854BB56F53B5C8775091F49
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-expose-headers: Etag
access-control-max-age: 200
last-modified: Fri, 20 Jun 2025 00:42:41 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 269419786627245281
x-oss-storage-class: Standard
cache-control: s-maxage=600,max-age=0,public
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: LVwPEiTLwmoGd49bEwMLwA==
x-oss-server-time: 1
content-encoding: gzip
cf-cache-status: REVALIDATED
priority: u=3,i=?0
server: cloudflare
cf-ray: 953a2e28deee1c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/assets/theme-1/L1Index.BkMGRVqR.css | 104.18.24.129 | 200 OK | 635 B |
URL GET w2.9ybhay.shop/assets/theme-1/L1Index.BkMGRVqR.css IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeASCII text, with very long lines (634) Hashc2acb2f0cecc9e72039269069196d4ec e600a4d1b47948db6e42abd156b5ef19ec074bc8 dbefed41d382f6e7b286e7cb53aaae7ab03a2608439c6ef8b1e80fde4d344cdb
GET /assets/theme-1/L1Index.BkMGRVqR.css HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:54 GMT
content-type: text/css
x-oss-request-id: 68568E9782114339306EF0F5
etag: W/"C2ACB2F0CECC9E72039269069196D4EC"
last-modified: Thu, 19 Jun 2025 02:23:15 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 9190490981405366282
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.79-v6.1.88
cache-control: max-age=31622400
content-md5: wqyy8M7MnnIDkmkGkZbU7A==
x-oss-server-time: 2
cf-cache-status: HIT
age: 41790
priority: u=2,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 953a2e291e9e56ab-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/assets/theme-1/L1Index.06YxNkEy.js | 104.18.24.129 | 200 OK | 637 B |
URL GET w2.9ybhay.shop/assets/theme-1/L1Index.06YxNkEy.js IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeJava source, ASCII text, with very long lines (591) Hash069560101b2458667adf51ebfdfb095d 42e7170a0cddfcf9cf6a82f5dd8c632f05c4cd7e 4e97891e2e5c7b35b94f5938ffbdf13915e5beacfbd33610b09aa2b7268086ae
GET /assets/theme-1/L1Index.06YxNkEy.js HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/assets/theme-1/commonChunk.CXW_BbDR.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:54 GMT
content-type: text/javascript
x-oss-request-id: 68571390A846BB30370F56E2
etag: W/"069560101B2458667ADF51EBFDFB095D"
last-modified: Sat, 21 Jun 2025 07:04:23 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 15183105734466817766
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.100-v6.1.102
cache-control: max-age=31622400
content-md5: BpVgEBskWGZ631Hr/fsJXQ==
x-oss-server-time: 2
cf-cache-status: HIT
age: 41790
priority: u=3,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 953a2e2b68b756ab-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/assets/theme-1/0_GameSearchChunk.B1_8GHZL.js | 104.18.24.129 | 200 OK | 12 kB |
URL GET w2.9ybhay.shop/assets/theme-1/0_GameSearchChunk.B1_8GHZL.js IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeJavaScript source, ASCII text, with very long lines (12085) Hash74e3035020088e954937a89c5f33de61 43d5f1035d4336d3f5dd47d34518c39eacd6f1bd 6e336c1f573f9bf6018d33302f6337d39155be9881120e8e16f291c214f190a6
GET /assets/theme-1/0_GameSearchChunk.B1_8GHZL.js HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/assets/theme-1/StyleIndex.SKmsOLto.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:56 GMT
content-type: text/javascript
x-oss-request-id: 685713930A93063532F39CAC
etag: W/"74E3035020088E954937A89C5F33DE61"
last-modified: Sat, 21 Jun 2025 07:04:23 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 17199402387847187081
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.100-v6.1.102
cache-control: max-age=31622400
content-md5: dOMDUCAIjpVJN6icXzPeYQ==
x-oss-server-time: 16
cf-cache-status: HIT
age: 41789
priority: u=3,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 953a2e360b7756ab-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| OPTIONS hcm2244.com/hall/api/statistics/domain/pointer | 104.18.24.129 | 200 OK | 0 B |
URL OPTIONS hcm2244.com/hall/api/statistics/domain/pointer IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjecthcm2244.com FingerprintD8:D9:04:B6:18:EC:36:72:BE:90:C6:62:09:66:0C:D4:20:45:A3:21 ValidityFri, 09 May 2025 12:39:10 GMT - Thu, 07 Aug 2025 13:39:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /hall/api/statistics/domain/pointer HTTP/1.1
Host: hcm2244.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: appsystem,appversion,auth,browserfingerid,browsertype,clienttimezone,content-type,currency,device,devicebrand,devicemodel,devicetype,domain,language,nonce,operatingsystem,physicaldevicemodel,platformtype,sign,sitecode,timestamp,token,webauthndomain,x-custom-referer,x-data-mode,x-device,x-object-id,x-request-id,x-version
Referer: https://w2.9ybhay.shop/
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:58 GMT
content-type: application/octet-stream
content-length: 0
set-cookie: acw_tc=0a094e3917505788980521230e518f91601eee9768b8bc595d5f7c93e480e0;path=/;HttpOnly;Max-Age=1800
access-control-allow-methods: *
access-control-max-age: 3600
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-allow-headers: appsystem,appversion,auth,browserfingerid,browsertype,clienttimezone,content-type,currency,device,devicebrand,devicemodel,devicetype,domain,language,nonce,operatingsystem,physicaldevicemodel,platformtype,sign,sitecode,timestamp,token,webauthndomain,x-custom-referer,x-data-mode,x-device,x-object-id,x-request-id,x-version
cf-cache-status: DYNAMIC
priority: u=4,i=?0
server: cloudflare
cf-ray: 953a2e401b240b4d-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| POST hcm2244.com/hall/home/heartbeat | 104.18.24.129 | 200 OK | 88 B |
URL POST hcm2244.com/hall/home/heartbeat IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjecthcm2244.com FingerprintD8:D9:04:B6:18:EC:36:72:BE:90:C6:62:09:66:0C:D4:20:45:A3:21 ValidityFri, 09 May 2025 12:39:10 GMT - Thu, 07 Aug 2025 13:39:04 GMT
File typeASCII text, with no line terminators Hash7f8f5cbb5b34715c5219365a7870f25c 773bc6dcf23d3a6d14a662ad6c42dfb26b8b3435 4be217073fefaa6a1c34a06950044c3a469fe5e302aa48f0707b79173cbef8ef
POST /hall/home/heartbeat HTTP/1.1
Host: hcm2244.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: vi
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
x-object-id: {"uid":"","browserLanguage":"en-US","init":{"device":"","created":1750578892437,"version":1750472258000}}
platformType: 5
devicetype: 3
x-device: 1-1
x-data-mode: chipher
x-request-id: ea37b185-20d7-468b-b769-c0748b77e1d1
device: 7299ced1-ed36-4357-bbee-689c60a641d0
currency: VND
timestamp: 1750578901
nonce: ea37b185-20d7-468b-b769-c0748b77e1d1
sign: aAkzNgaLlYUkPlCSzNuyPQCVkPE4Mzoev6D6FXnhPGAoeRwa3OzBAwhGXGXhz+bj
siteCode: 285
language: vi
token: b2e3d672-9d88-47a7-81b4-9d7ffc62054f
auth: undefined
deviceModel: Firefox v134.0
physicalDeviceModel: unknown
operatingSystem: Windows
deviceBrand: unknown
browserType: Firefox v134.0
appSystem: Windows 10
domain: w2.9ybhay.shop
webauthnDomain: w2.9ybhay.shop
clienttimezone: 0
x-custom-referer: https://w2.9ybhay.shop/
x-version: 6.1.102
browserfingerid:
appVersion: v6.1.102
Content-Length: 44
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:55:03 GMT
content-type: text/plain; charset=utf-8
set-cookie: acw_tc=0a094e3917505789030003108e518fcc8784695c0d4e6e0d7bdf70ac3416ec;path=/;HttpOnly;Max-Age=1800
UserKey=gPYJRz1fSJnLqz_Wndh_f-lvTcO7Zo01VmrV8wewbgK_0GaZ5LS3awJhpzVrr6sD; Path=/; Expires=Mon, 22 Jun 2026 07:55:03 GMT; Max-Age=31535999; HttpOnly
api-cache: false
cache-control: no-cache
x-env-go-biz-gateway: 0
x-env-go-biz-gohal-server: 0
x-server-version: 4.0.0
x-trace-id: 72910668dd56ac45
access-control-allow-methods: *
access-control-max-age: 3600
access-control-allow-credentials: true
access-control-allow-origin: *
cf-cache-status: DYNAMIC
priority: u=3,i=?0
server: cloudflare
cf-ray: 953a2e5f2bd00b4d-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/assets/vendors/vendor-stable.Cmdczaq4.js | 104.18.24.129 | 200 OK | 413 kB |
URL GET w2.9ybhay.shop/assets/vendors/vendor-stable.Cmdczaq4.js IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65534), with no line terminators Size413 kB (412836 bytes) Hashfd3e9662605a9ba82dc318c1eedfb8d8 7d421bcec10eb83f143e1c466eb3a21a02dfa961 e91ce7c0ff61c2e584d7bc1acb6d92e6160fb4504d5135b91a524d296e939633
GET /assets/vendors/vendor-stable.Cmdczaq4.js HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/assets/theme-1/index.CqQlUlH0.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:51 GMT
content-type: text/javascript
x-oss-request-id: 6857138DE702E23937D9DA8D
etag: W/"FD3E9662605A9BA82DC318C1EEDFB8D8"
last-modified: Thu, 19 Jun 2025 02:23:15 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 3050327005531103507
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.79-v6.1.88
cache-control: max-age=31622400
content-md5: /T6WYmBam6gtwxjB7t+42A==
x-oss-server-time: 37
cf-cache-status: HIT
age: 41790
priority: u=3,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 953a2e197ef556ab-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/cocos/maintain-time.json?timestamp=1750578892980 | 104.18.25.129 | 404 Not Found | 400 B |
URL GET o566mch.hcm665.com/cocos/maintain-time.json?timestamp=1750578892980 IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typeXML 1.0 document, ASCII text Hash35d3a6f609bcc157d5ed915daee2bc74 b8f17c28ef8b33720147209421d157969a6f43fe 7ce5e3cab2523e1d86c3a94e0d997faaebef0cd980d1c69a914a9a71efd8aabc
GET /cocos/maintain-time.json?timestamp=1750578892980 HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Sun, 22 Jun 2025 07:54:53 GMT
content-type: application/xml
x-oss-request-id: 6857B6CD048FEF426A7DB2CD
vary: Origin, Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-expose-headers: Etag
access-control-max-age: 200
x-oss-server-time: 1
x-oss-ec: 0026-00000001
cf-cache-status: MISS
server: cloudflare
cf-ray: 953a2e213967b4f3-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| GET o566mch.hcm665.com/game_pictures/p/285/CL/hot/1012/4/default_VND.avif?web_v=v6.1.102 | 104.18.25.129 | 200 OK | 5.6 kB |
URL GET o566mch.hcm665.com/game_pictures/p/285/CL/hot/1012/4/default_VND.avif?web_v=v6.1.102 IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
Hash6c4c95e6b360fbb712d3c94997984ff1 ba5cfa02d27699b3d87a1f2efbc789f616e5a1d1 a4e9955a9fdb1268a3480f704bf8fb25dea659e928d6f24ea7555eb61cbbcbc8
GET /game_pictures/p/285/CL/hot/1012/4/default_VND.avif?web_v=v6.1.102 HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:54 GMT
content-type: image/avif
content-length: 5599
x-oss-request-id: 68566A73CC39EAA338002D73
vary: Origin, Accept-Encoding
etag: "6C4C95E6B360FBB712D3C94997984FF1"
last-modified: Mon, 02 Jun 2025 09:12:39 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 14460844565367270613
x-oss-storage-class: Standard
cache-control: max-age=2678400,stale-while-revalidate=86400,immutable,proxy-revalidate,public
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: bEyV5rNg+7cS08lJl5hP8Q==
x-oss-server-time: 18
cf-cache-status: HIT
age: 85083
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 953a2e299f8b1c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/assets/theme-1/1_RechargeDialogsChunk.Dr3DKZnd.css | 104.18.24.129 | 200 OK | 21 kB |
URL GET w2.9ybhay.shop/assets/theme-1/1_RechargeDialogsChunk.Dr3DKZnd.css IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeASCII text, with very long lines (20936) Hash405df44221b70bb366fd437474ab00a8 949e984fad98dd3d4940b2ee9ca8953ecefb6f61 1dd1e6996d68fb95cb54c3fc7011c989a4632df6c3ea354d400fc186e9998833
GET /assets/theme-1/1_RechargeDialogsChunk.Dr3DKZnd.css HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:55 GMT
content-type: text/css
vary: Accept-Encoding
x-oss-request-id: 685713917859E4393237F39E
last-modified: Thu, 19 Jun 2025 02:23:15 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 8336066352146269239
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.79-v6.1.88
cache-control: max-age=31622400
content-md5: QF30QiG3C7Nm/UN0dKsAqA==
x-oss-server-time: 35
content-encoding: gzip
cf-cache-status: HIT
age: 41790
priority: u=2,i=?0
server: cloudflare
cf-ray: 953a2e316e8656ab-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/hall/api/active/tasks/newcomer_benefit_reward/default.json | 104.18.25.129 | 200 OK | 748 B |
URL GET o566mch.hcm665.com/hall/api/active/tasks/newcomer_benefit_reward/default.json IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typeASCII text, with very long lines (748), with no line terminators Hash1a03a3697c559d001a7d00315444911b 0f1c7d3bd282010976a90279a49c219932ddae62 2a3bece09da466a3e170148bded16713fc028918b18fa5606990e3d77af5e760
GET /hall/api/active/tasks/newcomer_benefit_reward/default.json HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:56 GMT
content-type: application/json
x-oss-request-id: 6857139133781B4088664E3F
vary: Origin, Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-expose-headers: Etag
access-control-max-age: 200
etag: W/"1A03A3697C559D001A7D00315444911B"
last-modified: Sat, 21 Jun 2025 18:34:42 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 13277543343156434720
x-oss-storage-class: Standard
cache-control: s-maxage=600,max-age=0,public
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: GgOjaXxVnQAafQAxVESRGw==
x-oss-server-time: 2
cf-cache-status: REVALIDATED
priority: u=3,i=?0
server: cloudflare
cf-ray: 953a2e325f441c0e-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/assets/theme-1/2_NoticePageChunk._rMQeUcO.js | 104.18.24.129 | 200 OK | 72 kB |
URL GET w2.9ybhay.shop/assets/theme-1/2_NoticePageChunk._rMQeUcO.js IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65522), with no line terminators Hash328c5669bc3be841015fc64b7dfd3fe3 fcba56ace3f35c2e36483f633c2795a8fe151d6a 621e22aac799fec7de3724f9d9da61d0abf9fb2556c829b1a37687c8ed623fa8
GET /assets/theme-1/2_NoticePageChunk._rMQeUcO.js HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/assets/theme-1/StyleIndex.SKmsOLto.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:56 GMT
content-type: text/javascript
x-oss-request-id: 68571393108AF53735AEEC80
etag: W/"328C5669BC3BE841015FC64B7DFD3FE3"
last-modified: Sat, 21 Jun 2025 07:04:23 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 17841156678771166973
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.100-v6.1.102
cache-control: max-age=31622400
content-md5: MoxWabw76EEBX8ZLff0/4w==
x-oss-server-time: 18
cf-cache-status: HIT
age: 41789
priority: u=3,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 953a2e360b6956ab-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/assets/theme-1/1_RechargeDialogsChunk.BIG6dWA7.js | 104.18.24.129 | 200 OK | 50 kB |
URL GET w2.9ybhay.shop/assets/theme-1/1_RechargeDialogsChunk.BIG6dWA7.js IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (49962) Hash1a45d1f1b74fb072d017df3cd10ed508 df9646939d6551b274c0887e14e4471a1a66cafa ddb06a6984dd9f9e281afbf8093a4a3ebfb82b50035c34dc4bd913c85cef37ca
GET /assets/theme-1/1_RechargeDialogsChunk.BIG6dWA7.js HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/assets/theme-1/StyleIndex.SKmsOLto.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:56 GMT
content-type: text/javascript
x-oss-request-id: 6857139358A49D34349E8960
etag: W/"1A45D1F1B74FB072D017DF3CD10ED508"
last-modified: Sat, 21 Jun 2025 07:04:23 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 6096384776165405528
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.100-v6.1.102
cache-control: max-age=31622400
content-md5: GkXR8bdPsHLQF9880Q7VCA==
x-oss-server-time: 16
cf-cache-status: HIT
age: 41789
priority: u=3,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 953a2e360b6a56ab-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/assets/theme-1/LoginRegisterIndex.DOiXXvRr.js | 104.18.24.129 | 200 OK | 942 B |
URL GET w2.9ybhay.shop/assets/theme-1/LoginRegisterIndex.DOiXXvRr.js IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeJava source, ASCII text, with very long lines (885) Hash9206a190c862bd24110c408134aa576f 32810e54d0c36b220253cd5e58e16a1b07b53de4 2bcf4fecc215de0d6d0845b312c8ec7aa315e34a97662a9d0645ee791338cb84
GET /assets/theme-1/LoginRegisterIndex.DOiXXvRr.js HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/assets/theme-1/commonChunk.CXW_BbDR.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:55:02 GMT
content-type: text/javascript
x-oss-request-id: 68571399637FD2393842987E
etag: W/"9206A190C862BD24110C408134AA576F"
last-modified: Sat, 21 Jun 2025 07:04:23 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 11073896529936607072
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.100-v6.1.102
cache-control: max-age=31622400
content-md5: kgahkMhivSQRDECBNKpXbw==
x-oss-server-time: 20
cf-cache-status: HIT
age: 41789
priority: u=3,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 953a2e5e7dcb56ab-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/assets/theme-1/MessagePopupIndex.yHemcbPj.js | 104.18.24.129 | 200 OK | 12 kB |
URL GET w2.9ybhay.shop/assets/theme-1/MessagePopupIndex.yHemcbPj.js IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeJavaScript source, ASCII text, with very long lines (11967) Hasha275d7f082d6c0d50ddff43103d4cb58 3e5098612e9c6e8eeacda9a50aeda26aa00d7bb9 33b0afd6f5b2fd988c62ef7943abd01c70cb71b324eb58b6052cd78041141c85
GET /assets/theme-1/MessagePopupIndex.yHemcbPj.js HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/assets/theme-1/commonChunk.CXW_BbDR.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:55:03 GMT
content-type: text/javascript
x-oss-request-id: 6857139BEE884532326994EF
etag: W/"A275D7F082D6C0D50DDFF43103D4CB58"
last-modified: Sat, 21 Jun 2025 07:04:23 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 6164290152166142193
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.100-v6.1.102
cache-control: max-age=31622400
content-md5: onXX8ILWwNUN3/QxA9TLWA==
x-oss-server-time: 69
cf-cache-status: HIT
age: 41788
priority: u=3,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 953a2e63cad356ab-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/hall/api/lobby/webapi/forceUpdate/getForceUpdate.json | 104.18.25.129 | 200 OK | 492 B |
URL GET o566mch.hcm665.com/hall/api/lobby/webapi/forceUpdate/getForceUpdate.json IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typeASCII text, with very long lines (492), with no line terminators Hashfcec88022dbf33810c9b495c8725d3fa 1915140cd56a6a0ec92a370ea8e260e15885c60b ca48e011744d74305e11233f08903083eea671dc6393e9f36d425334d8d779ca
GET /hall/api/lobby/webapi/forceUpdate/getForceUpdate.json HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:55:03 GMT
content-type: application/json
x-oss-request-id: 68571391690BB9415CCB70B2
vary: Origin, Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-expose-headers: Etag
access-control-max-age: 200
etag: W/"FCEC88022DBF33810C9B495C8725D3FA"
last-modified: Sat, 21 Jun 2025 19:17:08 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 758668628226280537
x-oss-storage-class: Standard
cache-control: s-maxage=600,public,max-age=0
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: /OyIAi2/M4EMm0lchyXT+g==
x-oss-server-time: 2
cf-cache-status: HIT
age: 7
priority: u=3,i=?0
server: cloudflare
cf-ray: 953a2e657a521c0e-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/assets/workers-qy9Jwbtu.js | 104.18.24.129 | 200 OK | 4.4 kB |
URL GET w2.9ybhay.shop/assets/workers-qy9Jwbtu.js IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeJavaScript source, ASCII text Hashd6e1cc2d959d07155b487d4911b6087e 6334fce87963b6c07edbcc4277bf01565b9d0798 b5b10a66bb72a298d200bc6c64734fc38faf8770a3e0f2a8ed5de79a0e07ef7a
GET /assets/workers-qy9Jwbtu.js HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:52 GMT
content-type: text/javascript
x-oss-request-id: 68568E9593460A3131BFF4D7
etag: W/"D6E1CC2D959D07155B487D4911B6087E"
last-modified: Sat, 21 Jun 2025 07:04:23 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 10918190586927633353
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.100-v6.1.102
cache-control: max-age=31622400
content-md5: 1uHMLZWdBxVbSH1JEbYIfg==
x-oss-server-time: 12
cf-cache-status: HIT
age: 41790
priority: u=4,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 953a2e1e9c1b56ab-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/siteadmin/skin/lobby_asset/1-0-11/common/_sprite/icon_dt_1xx.avif?manualVersion=1&version=v6.1.102 | 104.18.25.129 | 200 OK | 1.3 kB |
URL GET o566mch.hcm665.com/siteadmin/skin/lobby_asset/1-0-11/common/_sprite/icon_dt_1xx.avif?manualVersion=1&version=v6.1.102 IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
Hash86b6c451f07f497385935dca4efbf1f7 e4c276712cb399312755e23d8593fee027083fc5 04714965c0700fc4b11d76c95122433b2a86a534deffdd71b5e3b0269952f006
GET /siteadmin/skin/lobby_asset/1-0-11/common/_sprite/icon_dt_1xx.avif?manualVersion=1&version=v6.1.102 HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:53 GMT
content-type: image/avif
content-length: 1330
x-oss-request-id: 68566A731E3C924D7CE8BBD4
vary: Origin, Accept-Encoding
etag: "86B6C451F07F497385935DCA4EFBF1F7"
last-modified: Wed, 18 Jun 2025 07:07:28 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 17515970133573215696
x-oss-storage-class: Standard
cache-control: max-age=604800,public
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: hrbEUfB/SXOFk13KTvvx9w==
x-oss-server-time: 17
cf-cache-status: HIT
age: 85082
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 953a2e26cd171c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/game_pictures/p/285/CL/hot/79/4/default_VND.avif?web_v=v6.1.102 | 104.18.25.129 | 200 OK | 6.5 kB |
URL GET o566mch.hcm665.com/game_pictures/p/285/CL/hot/79/4/default_VND.avif?web_v=v6.1.102 IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
Hash341cd54c82d275e733d903ac679035a6 051519f03b12f075e54259c17a79a1910334c414 6dc0a8326d37456dd710ddbacbf4f4ed0139d9ee8422ee417506002f31ea3149
GET /game_pictures/p/285/CL/hot/79/4/default_VND.avif?web_v=v6.1.102 HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:54 GMT
content-type: image/avif
content-length: 6520
x-oss-request-id: 68566A73DE66936D31E6E8B0
vary: Origin, Accept-Encoding
etag: "341CD54C82D275E733D903AC679035A6"
last-modified: Mon, 02 Jun 2025 09:12:41 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 8746126986700318710
x-oss-storage-class: Standard
cache-control: max-age=2678400,stale-while-revalidate=86400,immutable,proxy-revalidate,public
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: NBzVTILSdecz2QOsZ5A1pg==
x-oss-server-time: 19
cf-cache-status: HIT
age: 85083
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 953a2e29dfcf1c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/assets/theme-1/0_EntryLoginRegisterChunk.Bvy64PHk.css | 104.18.24.129 | 200 OK | 32 kB |
URL GET w2.9ybhay.shop/assets/theme-1/0_EntryLoginRegisterChunk.Bvy64PHk.css IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeASCII text, with very long lines (32474) Hasha0385c54d7274792c6d689ebe46cdea5 b1e7184e6e64a2987ff152aa015c80cb5464defd d9db60ecbc6faaf5a4d39e4255b179a2a1ae6c68559b28bc223929610dd108ed
GET /assets/theme-1/0_EntryLoginRegisterChunk.Bvy64PHk.css HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:55 GMT
content-type: text/css
vary: Accept-Encoding
x-oss-request-id: 685713919A6336313592CABC
last-modified: Thu, 19 Jun 2025 02:23:15 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 13462942480378070821
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.79-v6.1.88
cache-control: max-age=31622400
content-md5: oDhcVNcnR5LG1onr5GzepQ==
x-oss-server-time: 39
content-encoding: gzip
cf-cache-status: HIT
age: 41790
priority: u=2,i=?0
server: cloudflare
cf-ray: 953a2e315e6e56ab-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/assets/theme-1/IframeIndex.B8xHgNVX.js | 104.18.24.129 | 200 OK | 2.2 kB |
URL GET w2.9ybhay.shop/assets/theme-1/IframeIndex.B8xHgNVX.js IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeJava source, ASCII text, with very long lines (2179) Hashae29249eefe29f0711f9e1332370d93e bd6b868b5250479e025f4a6a8837767155d6dc3d a20211c5ea60795521fdff64863e2c083b1d4b9c9ac84ed75a02717b478b7e48
GET /assets/theme-1/IframeIndex.B8xHgNVX.js HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/assets/theme-1/commonChunk.CXW_BbDR.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:58 GMT
content-type: text/javascript
x-oss-request-id: 685713957732EB34333675A2
etag: W/"AE29249EEFE29F0711F9E1332370D93E"
last-modified: Sat, 21 Jun 2025 07:04:23 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 9911726714741759209
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.100-v6.1.102
cache-control: max-age=31622400
content-md5: rikknu/inwcR+eEzI3DZPg==
x-oss-server-time: 27
cf-cache-status: HIT
age: 41789
priority: u=3,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 953a2e407e5556ab-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/assets/theme-1/Devtools.DEBSxP54.js | 104.18.24.129 | 200 OK | 846 B |
URL GET w2.9ybhay.shop/assets/theme-1/Devtools.DEBSxP54.js IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeJava source, ASCII text, with very long lines (799) Hash9bd8b00742c322eef6c9acaf25f48665 86c901052d1e7a00660c910a0e410a29c4107d2a 241be73d27e0f2048f9c1d56fb8ea62a26abc41011e0fc91c22e7996ae42753d
GET /assets/theme-1/Devtools.DEBSxP54.js HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/assets/theme-1/commonChunk.CXW_BbDR.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:58 GMT
content-type: text/javascript
x-oss-request-id: 68571395AA0DCC313096575C
etag: W/"9BD8B00742C322EEF6C9ACAF25F48665"
last-modified: Sat, 21 Jun 2025 07:04:23 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 10006560256397791709
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.100-v6.1.102
cache-control: max-age=31622400
content-md5: m9iwB0LDIu72yayvJfSGZQ==
x-oss-server-time: 16
cf-cache-status: HIT
age: 41789
priority: u=3,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 953a2e410efd56ab-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/hall/api/active/tasks/pop_taskThreeDay/currency/VND/language/vi.json | 104.18.25.129 | 200 OK | 216 B |
URL GET o566mch.hcm665.com/hall/api/active/tasks/pop_taskThreeDay/currency/VND/language/vi.json IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typeASCII text, with no line terminators Hash647d720cd6f8d4c6b24a9500eb800b00 c65b38c29c1661b45584e3eb4b94e5c4545074b8 8c02ba90cc28584395ebec43cae7d728639a9af333c12db1003a5ef444e56ddb
GET /hall/api/active/tasks/pop_taskThreeDay/currency/VND/language/vi.json HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:58 GMT
content-type: application/json
x-oss-request-id: 6857B6D21E3C924D7CA72372
vary: Origin, Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-expose-headers: Etag
access-control-max-age: 200
etag: W/"647D720CD6F8D4C6B24A9500EB800B00"
last-modified: Sun, 22 Jun 2025 02:37:03 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 14041678110192509043
x-oss-storage-class: Standard
cache-control: s-maxage=600,max-age=0,public
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: ZH1yDNb41MaySpUA64ALAA==
x-oss-server-time: 9
cf-cache-status: EXPIRED
priority: u=3,i=?0
server: cloudflare
cf-ray: 953a2e416c471c0e-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET 674hl.hcm660.com/favicon.ico | 104.21.48.1 | 200 OK | 1.2 kB |
URL GET 674hl.hcm660.com/favicon.ico IP104.21.48.1:443
Requested byhttps://674hl.hcm660.com/ CertificateIssuerGoogle Trust Services Subjecthcm660.com FingerprintC7:D3:1B:A4:57:3F:29:34:CC:36:3C:EE:6A:9F:2C:EF:32:0E:26:72 ValidityFri, 13 Jun 2025 00:21:14 GMT - Thu, 11 Sep 2025 01:18:11 GMT
File typeMS Windows icon resource - 1 icon, 16x16, 32 bits/pixel Hashfb57e287756afe49ecd44b2098a75b68 c312858fc623acedfb07c6809276397048394545 9d85bc53d5f9b3df2b91e4c18d67db99d39f9f25cce55f7e0682168645f95629
GET /favicon.ico HTTP/1.1
Host: 674hl.hcm660.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://674hl.hcm660.com/
Cookie: uDomain=674hl.hcm660.com; PHPSESSID=4sr7ag4lltc3su2b4i18o2mlft
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:51 GMT
content-type: image/x-icon
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9tQaE5ctjqItiXqaOjukUHYLcEA7kwGPvwn7KcxaCOIaFaQUSu%2FjNepgJynmr8rDkx3ucuzouWaZi7%2FCrWZCooys07urGusK0E7PReEP0V56jPlHxBG5eM%2Fvc7kVmNYg8SR3"}],"group":"cf-nel","max_age":604800}
last-modified: Thu, 22 Aug 2024 06:09:37 GMT
etag: W/"66c6d621-47e"
cache-control: max-age=14400
cf-cache-status: MISS
content-encoding: br
cf-ray: 953a2e14782956a4-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1450&min_rtt=47&rtt_var=1066&sent=157&recv=213&lost=0&retrans=0&sent_bytes=23630&recv_bytes=13016&delivery_rate=1479944&ss_exit_cwnd=14908&ss_exit_reason=2&cwnd=12000&unsent_bytes=0&cid=0fd87d692209fe36&ts=656&inflight_dur=82&x=44"
|
|
| GET w2.9ybhay.shop/assets/vendors/vendor-bignumber.D7tUMeU1.js | 104.18.24.129 | 200 OK | 38 kB |
URL GET w2.9ybhay.shop/assets/vendors/vendor-bignumber.D7tUMeU1.js IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (37688) Hash2c1e15abce5e994c4ca2954551db55ac 8f9949467e6c1e06c5e075ee579fb3d14dddc6f8 91a2966e30d053d084f3e2b6a08d8690c703bedb5674b2341241f407bc278bcb
GET /assets/vendors/vendor-bignumber.D7tUMeU1.js HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/assets/theme-1/index.CqQlUlH0.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:51 GMT
content-type: text/javascript
x-oss-request-id: 6857138D65909332395F54DC
etag: W/"2D63EF622586B06C52CC7F77BECDF5B9"
last-modified: Tue, 17 Jun 2025 07:20:45 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 15246632376342952865
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.62
cache-control: max-age=31622400
content-md5: LWPvYiWGsGxSzH93vs31uQ==
x-oss-server-time: 21
cf-cache-status: HIT
age: 41790
priority: u=3,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 953a2e197ee656ab-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/siteadmin/layoutDesign/1728773652860682242.png | 104.18.25.129 | 200 OK | 742 B |
URL GET o566mch.hcm665.com/siteadmin/layoutDesign/1728773652860682242.png IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typePNG image data, 70 x 70, 8-bit colormap, non-interlaced Hasha19e5d2b54650bf68d0dd36f58665d7f 3aed06a16e4359006cfee8ade70317c86d68ff8b b9ed806692e64e2049c775e03734bdc454190f409e59d3e0a7cf34a48b67901f
GET /siteadmin/layoutDesign/1728773652860682242.png HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:54 GMT
content-type: image/png
content-length: 742
x-oss-request-id: 68178B94690BB9B4A18D8F24
vary: Origin, Accept-Encoding
etag: "A19E5D2B54650BF68D0DD36F58665D7F"
last-modified: Sun, 26 Nov 2023 13:52:13 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 3671943930116178714
x-oss-storage-class: Standard
cache-control: max-age=86400
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: oZ5dK1RlC/aNDdNvWGZdfw==
x-oss-server-time: 19
cf-cache-status: HIT
age: 2699
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 953a2e27de171c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/game_pictures/p/285/CL/hot/13/2/default_VND.avif?web_v=v6.1.102 | 104.18.25.129 | 200 OK | 9.1 kB |
URL GET o566mch.hcm665.com/game_pictures/p/285/CL/hot/13/2/default_VND.avif?web_v=v6.1.102 IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
Hash4f9d67a77826b73c0f46e8d8c2d3b71d 16e4ca0527e710657ae2861c4afe6b7144cf15b1 075141123367456fcdcc082f040e0f43ef17a05b6290cd96a49ef76703a44a38
GET /game_pictures/p/285/CL/hot/13/2/default_VND.avif?web_v=v6.1.102 HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:54 GMT
content-type: image/avif
content-length: 9066
x-oss-request-id: 68566A7433781B40886EBF2D
vary: Origin, Accept-Encoding
etag: "4F9D67A77826B73C0F46E8D8C2D3B71D"
last-modified: Mon, 02 Jun 2025 09:12:39 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 1121875457358877846
x-oss-storage-class: Standard
cache-control: max-age=2678400,stale-while-revalidate=86400,immutable,proxy-revalidate,public
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: T51np3gmtzwPRujYwtO3HQ==
x-oss-server-time: 22
cf-cache-status: HIT
age: 85082
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 953a2e29efe01c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/game_pictures/p/285/CL/hot/13/3/default_VND.avif?web_v=v6.1.102 | 104.18.25.129 | 200 OK | 6.4 kB |
URL GET o566mch.hcm665.com/game_pictures/p/285/CL/hot/13/3/default_VND.avif?web_v=v6.1.102 IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
Hash63d3981434da2accc4378f1e3f0865fc 699b07e3aed1c4d185971fde0fcb4b334728b01f a9106dfaab4fa5013f8ff58194c2380e0cc3c0d16160c6cf00e6fb5141578909
GET /game_pictures/p/285/CL/hot/13/3/default_VND.avif?web_v=v6.1.102 HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:54 GMT
content-type: image/avif
content-length: 6406
x-oss-request-id: 68566A73EE8E28D92334572F
vary: Origin, Accept-Encoding
etag: "63D3981434DA2ACCC4378F1E3F0865FC"
last-modified: Mon, 02 Jun 2025 09:12:39 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 12262798022657831471
x-oss-storage-class: Standard
cache-control: max-age=2678400,stale-while-revalidate=86400,immutable,proxy-revalidate,public
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: Y9OYFDTaKszEN48ePwhl/A==
x-oss-server-time: 17
cf-cache-status: HIT
age: 85083
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 953a2e2a08041c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/hall/api/lobby/webapi/forceUpdate/getForceUpdate.json | 104.18.25.129 | 200 OK | 492 B |
URL GET o566mch.hcm665.com/hall/api/lobby/webapi/forceUpdate/getForceUpdate.json IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typeASCII text, with very long lines (492), with no line terminators Hashfcec88022dbf33810c9b495c8725d3fa 1915140cd56a6a0ec92a370ea8e260e15885c60b ca48e011744d74305e11233f08903083eea671dc6393e9f36d425334d8d779ca
GET /hall/api/lobby/webapi/forceUpdate/getForceUpdate.json HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:56 GMT
content-type: application/json
x-oss-request-id: 68571391690BB9415CCB70B2
vary: Origin, Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-expose-headers: Etag
access-control-max-age: 200
etag: W/"FCEC88022DBF33810C9B495C8725D3FA"
last-modified: Sat, 21 Jun 2025 19:17:08 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 758668628226280537
x-oss-storage-class: Standard
cache-control: s-maxage=600,public,max-age=0
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: /OyIAi2/M4EMm0lchyXT+g==
x-oss-server-time: 2
cf-cache-status: REVALIDATED
priority: u=3,i=?0
server: cloudflare
cf-ray: 953a2e327f541c0e-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET p0gceg-285-ppp.oss-accelerate.aliyuncs.com/cocos/lg/access-restricted-image.png |  47.254.188.10 | 200 OK | 41 kB |
URL GET p0gceg-285-ppp.oss-accelerate.aliyuncs.com/cocos/lg/access-restricted-image.png IP47.254.188.10:443 ASN#45102 Alibaba US Technology Co., Ltd.
Requested byhttps://w2.9ybhay.shop/pages/403/index.html?logId=page-403-log&payloadId=page-403-payload&title=HCM66&t=5835263 CertificateIssuerGlobalSign nv-sa Subject*.oss-eu-central-1.aliyuncs.com Fingerprint82:9E:ED:B3:E5:61:6D:0D:52:77:3B:4A:1E:DF:68:54:AE:39:DA:01 ValidityTue, 06 May 2025 02:12:11 GMT - Tue, 03 Feb 2026 06:31:07 GMT
File typePNG image data, 720 x 680, 8-bit colormap, non-interlaced Hashd2422848b70f94c8efac4754e43024f2 23a671903f129c5f2cd6bbe71dcfbecea675dce5 b119a708a5bc2a05da0a5f5db4e1c64a7dedb37bc226966fbad4febe70a3d3e2
GET /cocos/lg/access-restricted-image.png HTTP/1.1
Host: p0gceg-285-ppp.oss-accelerate.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Sun, 22 Jun 2025 07:55:01 GMT
Content-Type: image/png
Content-Length: 40803
Connection: keep-alive
x-oss-request-id: 6857B6D55943071263FDAC48
Vary: Origin
Accept-Ranges: bytes
ETag: "D2422848B70F94C8EFAC4754E43024F2"
Last-Modified: Fri, 16 Aug 2024 02:45:11 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 15798498559294082751
x-oss-storage-class: Standard
Cache-Control: s-maxage=86400,max-age=1800,public
x-oss-ec: 0048-00000110
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: 0kIoSLcPlMjvrEdU5DAk8g==
x-oss-server-time: 12
|
|
| GET o566mch.hcm665.com/hall/api/lobby/config/getAppDownloadInfo.json | 104.18.25.129 | 200 OK | 2.2 kB |
URL GET o566mch.hcm665.com/hall/api/lobby/config/getAppDownloadInfo.json IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typeASCII text, with very long lines (2200), with no line terminators Hash0369170ff3a73ba1f82ae683fd427024 983ae153917c4cc6a1c826db4b627d2f17faa9e3 75efcc525101517157b9441d0a0c82a6bd98d87a6da8d0feb6050936dcc5e418
GET /hall/api/lobby/config/getAppDownloadInfo.json HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:55:03 GMT
content-type: application/json
vary: Accept-Encoding, Origin
x-oss-request-id: 6857138FCD397201B31448A2
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-expose-headers: Etag
access-control-max-age: 200
last-modified: Sat, 21 Jun 2025 19:17:08 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 7383683401357440477
x-oss-storage-class: Standard
cache-control: s-maxage=600,public,max-age=0
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: A2kXD/OnO6H4KuaD/UJwJA==
x-oss-server-time: 4
content-encoding: gzip
cf-cache-status: HIT
age: 10
priority: u=3,i=?0
server: cloudflare
cf-ray: 953a2e620fae1c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/game_pictures/g/CL/56/1/560006/default.avif?web_v=v6.1.102 | 104.18.25.129 | 200 OK | 14 kB |
URL GET o566mch.hcm665.com/game_pictures/g/CL/56/1/560006/default.avif?web_v=v6.1.102 IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
Hash516b9eb2b7c7492fd9f0b4c57135062c 5f799803a8e785238cbb82e798eb8a4c6be9480d 27c684039452b55c5f28db33e637786fe028df0c9f16e4cefca63fe1e1d6c0e6
GET /game_pictures/g/CL/56/1/560006/default.avif?web_v=v6.1.102 HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:54 GMT
content-type: binary/octet-stream
content-length: 14038
x-oss-request-id: 68566A73048FEF426ABEB9CC
vary: Origin, Accept-Encoding
etag: "516B9EB2B7C7492FD9F0B4C57135062C"
last-modified: Mon, 02 Jun 2025 09:09:53 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 10059140012361436889
x-oss-storage-class: Standard
cache-control: max-age=2678400,stale-while-revalidate=86400,immutable,proxy-revalidate,public
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: UWuesrfHSS/Z8LTFcTUGLA==
x-oss-server-time: 12
cf-cache-status: HIT
age: 85083
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 953a2e29fff61c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/assets/theme-1/0_GameSearchChunk.DiSLZ0sv.css | 104.18.24.129 | 200 OK | 5.3 kB |
URL GET w2.9ybhay.shop/assets/theme-1/0_GameSearchChunk.DiSLZ0sv.css IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeASCII text, with very long lines (5343) Hash73b4789a155cdd5226f0be3ec33d7cd3 fa025ae6b6f857f0f8f62abbbedf5945f9c42eda 6599e7a258e01f69702ddaff52f04b7ec54347464fc4f6fefaeec2c36758d21a
GET /assets/theme-1/0_GameSearchChunk.DiSLZ0sv.css HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:55 GMT
content-type: text/css
vary: Accept-Encoding
x-oss-request-id: 6857139149824C3933AC2090
last-modified: Thu, 19 Jun 2025 02:23:15 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 15874063867571986211
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.79-v6.1.88
cache-control: max-age=31622400
content-md5: c7R4mhVc3VIm8L4+wz180w==
x-oss-server-time: 21
content-encoding: gzip
cf-cache-status: HIT
age: 41790
priority: u=2,i=?0
server: cloudflare
cf-ray: 953a2e317e8756ab-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/assets/theme-1/1_PromotionChunk.CnoaCZ7m.js | 104.18.24.129 | 200 OK | 188 kB |
URL GET w2.9ybhay.shop/assets/theme-1/1_PromotionChunk.CnoaCZ7m.js IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeUnicode text, UTF-8 text, with very long lines (65529), with no line terminators Size188 kB (188255 bytes) Hash7959f11b6c3a185b9e718c100bcddb9f e30ac4febd148febe7e9b0ee0c2364bd9b0d4cf0 36d1c70e53747790c12fb1d5067b0e5384bf7ce077716e7077c3d16127e756aa
GET /assets/theme-1/1_PromotionChunk.CnoaCZ7m.js HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/assets/theme-1/2_EventOthersChunk.DSAfQL6h.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:55:04 GMT
content-type: text/javascript
x-oss-request-id: 6857139D2319383034838237
etag: W/"7959F11B6C3A185B9E718C100BCDDB9F"
last-modified: Sat, 21 Jun 2025 07:04:23 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 10912962230781028850
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.100-v6.1.102
cache-control: max-age=31622400
content-md5: eVnxG2w6GFuecYwQC83bnw==
x-oss-server-time: 16
cf-cache-status: HIT
age: 41787
priority: u=3,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 953a2e6a295356ab-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/assets/vendors/vendor-@sentry.6viaZao7.js | 104.18.24.129 | 200 OK | 336 kB |
URL GET w2.9ybhay.shop/assets/vendors/vendor-@sentry.6viaZao7.js IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size336 kB (336043 bytes) Hash87fbeb79c5e7a17a5b12566307cfd347 5d96f270dca53747441fc8452b857dd0e510d48a d57cbf2f3d44db5cabac8a14bc6ab6ccfa54ede78ef9ea135f4661c3b77826dd
GET /assets/vendors/vendor-@sentry.6viaZao7.js HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/assets/theme-1/index.CqQlUlH0.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:51 GMT
content-type: text/javascript
x-oss-request-id: 6857138D669A4C34370EB8DF
etag: W/"87FBEB79C5E7A17A5B12566307CFD347"
last-modified: Tue, 17 Jun 2025 07:20:45 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 8011717243618773825
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.62
cache-control: max-age=31622400
content-md5: h/vrecXnoXpbElZjB8/TRw==
x-oss-server-time: 23
cf-cache-status: HIT
age: 41790
priority: u=3,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 953a2e197ef656ab-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| OPTIONS hcm2244.com/hall/api/agent/promote/binding/reportViewV2 | 104.18.24.129 | 200 OK | 0 B |
URL OPTIONS hcm2244.com/hall/api/agent/promote/binding/reportViewV2 IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjecthcm2244.com FingerprintD8:D9:04:B6:18:EC:36:72:BE:90:C6:62:09:66:0C:D4:20:45:A3:21 ValidityFri, 09 May 2025 12:39:10 GMT - Thu, 07 Aug 2025 13:39:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /hall/api/agent/promote/binding/reportViewV2 HTTP/1.1
Host: hcm2244.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: appsystem,appversion,auth,browserfingerid,browsertype,clienttimezone,content-type,currency,device,devicebrand,devicemodel,devicetype,domain,language,nonce,operatingsystem,physicaldevicemodel,platformtype,sign,sitecode,timestamp,token,webauthndomain,x-custom-referer,x-data-mode,x-device,x-object-id,x-request-id,x-version
Referer: https://w2.9ybhay.shop/
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 22 Jun 2025 07:54:53 GMT
content-type: application/octet-stream
content-length: 0
set-cookie: acw_tc=0a0f6b7417505788930823116e4f1c7cab664faa8dc81793a8b5bca2bfeb6a;path=/;HttpOnly;Max-Age=1800
access-control-allow-methods: *
access-control-max-age: 3600
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-allow-headers: appsystem,appversion,auth,browserfingerid,browsertype,clienttimezone,content-type,currency,device,devicebrand,devicemodel,devicetype,domain,language,nonce,operatingsystem,physicaldevicemodel,platformtype,sign,sitecode,timestamp,token,webauthndomain,x-custom-referer,x-data-mode,x-device,x-object-id,x-request-id,x-version
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 953a2e20c9e77127-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| GET o566mch.hcm665.com/hall/api/finance/maxChargeRate/currency/VND/osType/4.json | 104.18.25.129 | 200 OK | 108 B |
URL GET o566mch.hcm665.com/hall/api/finance/maxChargeRate/currency/VND/osType/4.json IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typeASCII text, with no line terminators Hash3953cdefd385a35b44a22d0b20a8ca86 1cf0520230f40c299be9834093175613bd927062 c53bbd8562030658bcfedf59f4be969dbbe7bd373717ccddda8a2dceb5a304d8
GET /hall/api/finance/maxChargeRate/currency/VND/osType/4.json HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:55 GMT
content-type: application/json
x-oss-request-id: 6857B6CE33781B40883113FA
vary: Origin, Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-expose-headers: Etag
access-control-max-age: 200
etag: W/"3953CDEFD385A35B44A22D0B20A8CA86"
last-modified: Sun, 22 Jun 2025 06:56:07 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 5792793051877936873
x-oss-storage-class: Standard
cache-control: s-maxage=600,max-age=0,public
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: OVPN79OFo1tEoi0LIKjKhg==
x-oss-server-time: 2
cf-cache-status: EXPIRED
priority: u=3,i=?0
server: cloudflare
cf-ray: 953a2e28cee91c0e-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/assets/theme-1/StyleIndex.SKmsOLto.js | 104.18.24.129 | 200 OK | 1.5 kB |
URL GET w2.9ybhay.shop/assets/theme-1/StyleIndex.SKmsOLto.js IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeJava source, ASCII text, with very long lines (1496) Hash0591237ac5060a5338d1a46c6ba8d689 3a079e1a8f2442f6fa4b539b29485707ff188e42 9bfbe75f8823289cdd57b85a7c28caf8687ff20a05d2e3ce84016d394586e4e1
GET /assets/theme-1/StyleIndex.SKmsOLto.js HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/assets/theme-1/AssemblyIndex.DrPx3nq9.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:56 GMT
content-type: text/javascript
x-oss-request-id: 68571392637FD2313876677E
etag: W/"0591237AC5060A5338D1A46C6BA8D689"
last-modified: Sat, 21 Jun 2025 07:04:23 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 2799554620501220580
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.100-v6.1.102
cache-control: max-age=31622400
content-md5: BZEjesUGClM40aRsa6jWiQ==
x-oss-server-time: 24
cf-cache-status: HIT
age: 41790
priority: u=3,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 953a2e352a6c56ab-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/assets/theme-1/ContactUsIndex.DT2s2dBL.js | 104.18.24.129 | 200 OK | 2.4 kB |
URL GET w2.9ybhay.shop/assets/theme-1/ContactUsIndex.DT2s2dBL.js IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeJava source, ASCII text, with very long lines (2366) Hash6360f8d8535ae0d267c1b57dbc49f404 8a052b684e06d23c420f95673220ed75794057b9 4ad74ff861c69fa698a9f5d3ad3a44d0d2027cbbe5a6a1cb249329e6a11e836d
GET /assets/theme-1/ContactUsIndex.DT2s2dBL.js HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/assets/theme-1/StyleIndex.SKmsOLto.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:56 GMT
content-type: text/javascript
x-oss-request-id: 68571393CA1C6333372B27B4
etag: W/"6360F8D8535AE0D267C1B57DBC49F404"
last-modified: Sat, 21 Jun 2025 07:04:23 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 7497556809099157701
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.100-v6.1.102
cache-control: max-age=31622400
content-md5: Y2D42FNa4NJnwbV9vEn0BA==
x-oss-server-time: 17
cf-cache-status: HIT
age: 41789
priority: u=3,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 953a2e35fb5c56ab-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET www.hcm2244.com/ipacdn.txt | 104.18.24.129 | 200 OK | 2 B |
URL GET www.hcm2244.com/ipacdn.txt IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectwww.hcm2244.com FingerprintF5:91:42:F5:05:80:9C:EF:8F:FE:29:60:2F:60:2F:91:39:65:5C:00 ValidityFri, 09 May 2025 10:17:05 GMT - Thu, 07 Aug 2025 11:16:55 GMT
File typeASCII text, with no line terminators Hashe0aa021e21dddbd6d8cecec71e9cf564 9ce3bd4224c8c1780db56b4125ecf3f24bf748b7 565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
GET /ipacdn.txt HTTP/1.1
Host: www.hcm2244.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://w2.9ybhay.shop/
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 22 Jun 2025 07:54:58 GMT
content-type: text/plain
content-length: 2
cache-control: s-maxage=315360000,max-age=0,public
access-control-allow-origin: *
access-control-max-age: 3600
access-control-allow-credentials: true
last-modified: Thu, 05 Jun 2025 23:56:24 GMT
cf-cache-status: HIT
age: 1389877
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 953a2e465fd1568a-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| | 104.21.48.1 | 404 Not Found | 7.1 kB |
IP104.21.48.1:443
CertificateIssuerGoogle Trust Services Subjecthcm660.com FingerprintC7:D3:1B:A4:57:3F:29:34:CC:36:3C:EE:6A:9F:2C:EF:32:0E:26:72 ValidityFri, 13 Jun 2025 00:21:14 GMT - Thu, 11 Sep 2025 01:18:11 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (3943) Hashe34dec1bb4de760d448edb61c98d26f6 16c576247dc793e1502a4b0e5c615666ec428ea2 48cfe785e2313f68cb93f9266724aed7b1b089c98a24dd157084decd4c6be28f
GET / HTTP/1.1
Host: 674hl.hcm660.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: uDomain=674hl.hcm660.com
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Sun, 22 Jun 2025 07:54:50 GMT
content-type: text/html; charset=UTF-8
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: Accept-Encoding
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=oTIoBJNtNO8ElWC0iRtDiLBDHHaxauoCIo0VSxxZ0LN5VAAa8N4SVLzY2Lq%2FMwAKZUGuv6Jm4092dM8Yal%2BtyXR4MuJcPABR2pa0zZzc"}]}
cf-cache-status: DYNAMIC
content-encoding: br
set-cookie: PHPSESSID=4sr7ag4lltc3su2b4i18o2mlft; Path=/
cf-ray: 953a2e112a2c0b3d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| GET w2.9ybhay.shop/assets/theme-1/index.BFcOs8oT.js | 104.18.24.129 | 200 OK | 2.2 kB |
URL GET w2.9ybhay.shop/assets/theme-1/index.BFcOs8oT.js IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeJavaScript source, ASCII text, with very long lines (2127) Hash97b26a4357ab9d4881c5b0adea9fb2c7 1d7108cbadc05c1b8a789d90ae108dd6554f4881 55cd2a35aab44e18af128cabb10e484465e3ccab66874ec3a8a22b928d407847
GET /assets/theme-1/index.BFcOs8oT.js HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/assets/theme-1/commonChunk.CXW_BbDR.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:52 GMT
content-type: text/javascript
x-oss-request-id: 6857138FA846BB3633F24AE2
etag: W/"97B26A4357AB9D4881C5B0ADEA9FB2C7"
last-modified: Thu, 19 Jun 2025 02:23:15 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 12475489457173132753
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.79-v6.1.88
cache-control: max-age=31622400
content-md5: l7JqQ1ernUiBxbCt6p+yxw==
x-oss-server-time: 17
cf-cache-status: HIT
age: 41789
priority: u=3,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 953a2e1f3cd756ab-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET o566mch.hcm665.com/hall/api/game/hall/hotListV2/currency/VND/language/vi.json | 104.18.25.129 | 200 OK | 7.8 kB |
URL GET o566mch.hcm665.com/hall/api/game/hall/hotListV2/currency/VND/language/vi.json IP104.18.25.129:443
CertificateIssuerGoogle Trust Services Subjecto566mch.hcm665.com Fingerprint8D:AE:CB:2C:0B:AB:E1:F3:83:28:02:42:8C:29:CA:88:30:6C:DA:FD ValiditySun, 04 May 2025 14:35:15 GMT - Sat, 02 Aug 2025 15:35:05 GMT
File typeASCII text, with very long lines (7768), with no line terminators Hash9bda8f48a152fa7e03224a2abc78d942 e5fee58c45395abc272311fa431a925d9c2c1f4b 2ead62476b9893e0ad979377bd77046db2e11b14bd3677ac7b11aa951ba2212c
GET /hall/api/game/hall/hotListV2/currency/VND/language/vi.json HTTP/1.1
Host: o566mch.hcm665.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:55 GMT
content-type: application/json
vary: Accept-Encoding, Origin
x-oss-request-id: 6857B6CF7DAC2CE49BF599E6
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-expose-headers: Etag
access-control-max-age: 200
last-modified: Sun, 22 Jun 2025 03:31:17 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 15320083005530660356
x-oss-storage-class: Standard
cache-control: s-maxage=600,public,max-age=0
x-oss-ec: 0048-00000110
content-disposition: attachment
x-oss-force-download: true
content-md5: m9qPSKFS+n4DIkoqvHjZQg==
x-oss-server-time: 2
content-encoding: gzip
cf-cache-status: EXPIRED
priority: u=3,i=?0
server: cloudflare
cf-ray: 953a2e28deec1c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/assets/theme-1/BaseIndex.C1Bn1dTH.js | 104.18.24.129 | 200 OK | 469 B |
URL GET w2.9ybhay.shop/assets/theme-1/BaseIndex.C1Bn1dTH.js IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeJava source, ASCII text, with very long lines (421) Hashbb53b407e012d2d8ed19da61967bcb83 56ecfe9478c672fe283fb359a9fd296d19f5e87d 389124eaa286d6495408dd17967a5b6a75c2ecbb709e7cfbf2ac913d0a70b34a
GET /assets/theme-1/BaseIndex.C1Bn1dTH.js HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/assets/theme-1/commonChunk.CXW_BbDR.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:54 GMT
content-type: text/javascript
x-oss-request-id: 68571390B6769335368F5574
etag: W/"BB53B407E012D2D8ED19DA61967BCB83"
last-modified: Sat, 21 Jun 2025 07:04:23 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 5217666884408068089
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.100-v6.1.102
cache-control: max-age=31622400
content-md5: u1O0B+AS0tjtGdphlnvLgw==
x-oss-server-time: 2
cf-cache-status: HIT
age: 41790
priority: u=3,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 953a2e2b68b556ab-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/assets/theme-1/0_SubgameChunk.BX-O2MAw.js | 104.18.24.129 | 200 OK | 22 kB |
URL GET w2.9ybhay.shop/assets/theme-1/0_SubgameChunk.BX-O2MAw.js IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeUnicode text, UTF-8 text, with very long lines (21670) Hashbadc494d51436e0114445019b1cf6b42 ee9c68b5bb8ec49ca506e529cc4a6630af4c2030 473afdba6e38751f2c97f25523d722b46016c2a70d3878614a814d1f55adc2af
GET /assets/theme-1/0_SubgameChunk.BX-O2MAw.js HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/assets/theme-1/StyleIndex.SKmsOLto.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:56 GMT
content-type: text/javascript
x-oss-request-id: 685713935354653231182B61
etag: W/"BADC494D51436E0114445019B1CF6B42"
last-modified: Sat, 21 Jun 2025 07:04:23 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 555100240302672162
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.100-v6.1.102
cache-control: max-age=31622400
content-md5: utxJTVFDbgEURFAZsc9rQg==
x-oss-server-time: 29
cf-cache-status: HIT
age: 41789
priority: u=3,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 953a2e360b7656ab-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET hcm66cfcdn.hcm2244.com/ipacdn.txt | 104.18.24.129 | 200 OK | 2 B |
URL GET hcm66cfcdn.hcm2244.com/ipacdn.txt IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjecthcm66cfcdn.hcm2244.com FingerprintB8:63:D4:7B:02:48:94:15:5B:70:7B:13:82:02:63:01:E6:4B:6B:A1 ValidityMon, 09 Jun 2025 22:02:50 GMT - Sun, 07 Sep 2025 23:02:47 GMT
File typeASCII text, with no line terminators Hashe0aa021e21dddbd6d8cecec71e9cf564 9ce3bd4224c8c1780db56b4125ecf3f24bf748b7 565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
GET /ipacdn.txt HTTP/1.1
Host: hcm66cfcdn.hcm2244.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://w2.9ybhay.shop/
Origin: https://w2.9ybhay.shop
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 22 Jun 2025 07:54:58 GMT
content-type: text/plain
content-length: 2
cache-control: s-maxage=315360000,max-age=0,public
access-control-allow-origin: *
access-control-max-age: 3600
access-control-allow-credentials: true
last-modified: Thu, 05 Jun 2025 23:56:22 GMT
cf-cache-status: HIT
age: 1389877
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 953a2e464b817127-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| GET w2.9ybhay.shop/ | 104.18.24.129 | 200 OK | 86 kB |
IP104.18.24.129:443
Requested byhttps://674hl.hcm660.com/index2.php CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (64297), with no line terminators Hash5f4e50e8a890523b46c2cba402e80624 85f653546206ff5fd281a31c3dd7826ee03226df 58cebad553f66841db63992e27f2dce4337411e49fd97e4494e4c43ed0aacec3
GET / HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://674hl.hcm660.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 22 Jun 2025 07:54:51 GMT
content-type: text/html
vary: Accept-Encoding
x-oss-request-id: 6857B6CB7859E439339A0E83
last-modified: Sun, 22 Jun 2025 03:39:45 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 17673124803514422613
x-oss-storage-class: Standard
cache-control: s-maxage=600,public,max-age=0
content-md5: X05Q6KiQUjtGwsukAugGJA==
x-oss-server-time: 4
cf-cache-status: EXPIRED
server: cloudflare
cf-ray: 953a2e15f89b0b55-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| POST 674hl.hcm660.com/cdn-cgi/challenge-platform/h/g/jsd/r/0.32707623610045194:1750577190:v2dMbb1TVd8X73DxgOzrMQSkMWxDqg4L0mF9y5JnmY0/953a2e12e81156a4 | 104.21.48.1 | 200 OK | 0 B |
URL POST 674hl.hcm660.com/cdn-cgi/challenge-platform/h/g/jsd/r/0.32707623610045194:1750577190:v2dMbb1TVd8X73DxgOzrMQSkMWxDqg4L0mF9y5JnmY0/953a2e12e81156a4 IP104.21.48.1:443
Requested byhttps://674hl.hcm660.com/ CertificateIssuerGoogle Trust Services Subjecthcm660.com FingerprintC7:D3:1B:A4:57:3F:29:34:CC:36:3C:EE:6A:9F:2C:EF:32:0E:26:72 ValidityFri, 13 Jun 2025 00:21:14 GMT - Thu, 11 Sep 2025 01:18:11 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/challenge-platform/h/g/jsd/r/0.32707623610045194:1750577190:v2dMbb1TVd8X73DxgOzrMQSkMWxDqg4L0mF9y5JnmY0/953a2e12e81156a4 HTTP/1.1
Host: 674hl.hcm660.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 12090
Origin: https://674hl.hcm660.com
DNT: 1
Connection: keep-alive
Referer: https://674hl.hcm660.com/
Cookie: uDomain=674hl.hcm660.com; PHPSESSID=4sr7ag4lltc3su2b4i18o2mlft; uUrl=w2.9ybhay.shop
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:51 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=S6EEkhNRejCKqLrcNmSAf%2BVy7xRHiyMpvtNGaPNhnIBpFQJoW%2BbnGzlrZUZNqlhcF7T34WrGsmgFBHMbsMBXZI5mOAaZ1v6aR1yytzftguHO8S5THvmo4kqUNRk%2BNFYre1iT"}],"group":"cf-nel","max_age":604800}
set-cookie: cf_clearance=vpOiP8ge2hvp0KLHnJh8XOEyK_fB5v_KbB1gx4eVXus-1750578891-1.2.1.1-zitqN19X3LXx7zFfC_0ZDCfNm7TVCq4ds0JYW4Kdt45nODea8UhgqaSc8hBdWPYPBDZ3QVpFdQKU9yO9B01.Q1PEpNkZOJRex_.4T.vjjO8GQcjZC9iQdH.xrSHqhACpIlHAzwbpp0AUmL98DR45We6gmBYsk03cz0n6z1z9JHd9me0uEPFXT4IsdWJnCoj9ZPg1Gf1hkmiim4tZBymd.L6TUmsCpIo9EVHX7icaUc56j_BN4k6J.RYAQl2aEHMpxJpkoS.PwxHPl4sl3kefTOT0avFsWm8Zs8QrN_ut.TPdiWQ50Fp_Y3sDu7nNCj23SyVxN1sPDQWxytpCa_vlgau_pdh4bs30k7GH6pIeweU; HttpOnly; SameSite=None; Partitioned; Secure; Path=/; Domain=hcm660.com; Expires=Mon, 22 Jun 2026 07:54:51 GMT
cf-ray: 953a2e16683556a4-OSL
server: cloudflare
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1525&min_rtt=47&rtt_var=1085&sent=166&recv=225&lost=0&retrans=0&sent_bytes=25117&recv_bytes=26022&delivery_rate=1479944&ss_exit_cwnd=14908&ss_exit_reason=2&cwnd=12000&unsent_bytes=0&cid=0fd87d692209fe36&ts=876&inflight_dur=105&x=44"
|
|
| GET w2.9ybhay.shop/assets/theme-1/StyleIndex.c-E9mx8Z.css | 104.18.24.129 | 200 OK | 1.2 kB |
URL GET w2.9ybhay.shop/assets/theme-1/StyleIndex.c-E9mx8Z.css IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeASCII text, with very long lines (1220) Hash4fcc92f061e9b808adda0616914a7dec 93a251341adac62d570c900ad128cd026cf8323c b96013562ceceb970a80784e983b50430a5c5bbb361d4f5fedba39d6b6cb518e
GET /assets/theme-1/StyleIndex.c-E9mx8Z.css HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:55 GMT
content-type: text/css
vary: Accept-Encoding
x-oss-request-id: 68571391F9AF89383842AD6A
last-modified: Thu, 19 Jun 2025 02:23:15 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 4998151079244409075
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.79-v6.1.88
cache-control: max-age=31622400
content-md5: T8yS8GHpuAit2gYWkUp97A==
x-oss-server-time: 20
content-encoding: gzip
cf-cache-status: HIT
age: 41790
priority: u=2,i=?0
server: cloudflare
cf-ray: 953a2e318ea056ab-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET w2.9ybhay.shop/assets/theme-1/1_PromoteChunk.CAl6wxat.js | 104.18.24.129 | 200 OK | 216 kB |
URL GET w2.9ybhay.shop/assets/theme-1/1_PromoteChunk.CAl6wxat.js IP104.18.24.129:443
CertificateIssuerGoogle Trust Services Subjectw2.9ybhay.shop FingerprintA0:FF:D8:A6:A0:11:85:95:19:0A:DF:44:EA:09:95:4B:11:E0:AD:F5 ValiditySun, 11 May 2025 12:14:09 GMT - Sat, 09 Aug 2025 13:14:04 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65508), with no line terminators Size216 kB (216518 bytes) Hashb9ab20f68969fdf74f442db928e886a2 8b2864cb6d209f2bc3b4a9f4925177c9971783ee 6bbfe54964a61f64102df435e932d92bf1306ba5956260ab1c6c36ac36440312
GET /assets/theme-1/1_PromoteChunk.CAl6wxat.js HTTP/1.1
Host: w2.9ybhay.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.9ybhay.shop/assets/theme-1/StyleIndex.SKmsOLto.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 22 Jun 2025 07:54:56 GMT
content-type: text/javascript
x-oss-request-id: 685713934005843336DAAB4B
etag: W/"B9AB20F68969FDF74F442DB928E886A2"
last-modified: Sat, 21 Jun 2025 07:04:23 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 13050545294273021388
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.100-v6.1.102
cache-control: max-age=31622400
content-md5: uasg9olp/fdPRC25KOiGog==
x-oss-server-time: 7
cf-cache-status: HIT
age: 41789
priority: u=3,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 953a2e360b6b56ab-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
0.0.0.0