Report - zybrew.beer/

Report Overview

Submitted URL
zybrew.beer/
IP
169.61.14.33
ASN
#36351 SOFTLAYER
Submitted
2022-09-25 19:14:04
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
86

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.35
zybrew.beer	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	331 B	546 B	169.61.14.33
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	500 B	694 B	142.250.74.164
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.110
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
chat.chukouplus.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	9.3 kB	114 kB	152.32.188.233
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.7 kB	65 kB	34.120.237.76
www.google.no	25607	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	499 B	694 B	142.250.74.3
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.0 kB	6.3 kB	142.250.74.3
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	737 B	93.184.220.29
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	44.237.51.86
region1.google-analytics.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	669 B	562 B	216.239.34.36
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.1 kB	21 kB	142.250.74.174
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	3.5 kB	23.36.76.226
www.zybrew.beer	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	50 kB	2.1 MB	169.61.14.33
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	743 B	119 kB	142.250.74.72
stats.g.doubleclick.net	96	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	589 B	710 B	64.233.162.154

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-09-25	medium	zybrew.beer/	Phishing
2022-09-25	medium	www.zybrew.beer/	Phishing
2022-09-25	medium	www.zybrew.beer/themes/simplebootx/style/js/classie.js	Phishing
2022-09-25	medium	www.zybrew.beer/themes/simplebootx/style/js/index.js	Phishing
2022-09-25	medium	www.zybrew.beer/themes/simplebootx/style/js/jquery.SuperSlide.js	Phishing
2022-09-25	medium	www.zybrew.beer/themes/simplebootx/style/js/qiehuan.js	Phishing
2022-09-25	medium	www.zybrew.beer/themes/simplebootx/style/js/lunbo2.js	Phishing
2022-09-25	medium	www.zybrew.beer/themes/simplebootx/style/js/uisearch.js	Phishing
2022-09-25	medium	www.zybrew.beer/themes/simplebootx/style/js/smbanner.js	Phishing
2022-09-25	medium	www.zybrew.beer/themes/simplebootx/style/js/sm.js	Phishing
2022-09-25	medium	www.zybrew.beer/themes/simplebootx/style/js/jquery.js	Phishing
2022-09-25	medium	www.zybrew.beer/themes/simplebootx/style/js/resize.js	Phishing
2022-09-25	medium	www.zybrew.beer/themes/simplebootx/style/js/placeholder.js	Phishing
2022-09-25	medium	www.zybrew.beer/themes/simplebootx/style/form1.js	Phishing
2022-09-25	medium	www.zybrew.beer/fonts/OSWALDBOLD.woff2	Phishing
2022-09-25	medium	www.zybrew.beer/index.php/Portal/Index/error_html	Phishing
2022-09-25	medium	www.zybrew.beer/data/upload/20220601/6296d31cb48401920_632.webp	Phishing
2022-09-25	medium	www.zybrew.beer/data/upload/20220601/6296d33e476021920_632.webp	Phishing
2022-09-25	medium	www.zybrew.beer/index.php/Portal/Index/error_html	Phishing
2022-09-25	medium	www.zybrew.beer/fonts/OSWALDBOLD.woff	Phishing
2022-09-25	medium	www.zybrew.beer/fonts/iconfont.ttf?t=1561020571500	Phishing
2022-09-25	medium	www.zybrew.beer/index.php/Portal/Index/error_html	Phishing
2022-09-25	medium	www.zybrew.beer/themes/simplebootx/picbanners/huanying295_22.webp	Phishing
2022-09-25	medium	www.zybrew.beer/index.php/Portal/Index/error_html	Phishing
2022-09-25	medium	www.zybrew.beer/data/upload/20220601/6297093c268ea1920_632.webp	Phishing
2022-09-25	medium	www.zybrew.beer/data/upload/20220601/6296d3ba6ee491920_632.webp	Phishing
2022-09-25	medium	www.zybrew.beer/index.php/Portal/Index/error_html	Phishing
2022-09-25	medium	www.zybrew.beer/index.php/Portal/Index/error_html	Phishing
2022-09-25	medium	www.zybrew.beer/index.php/Portal/Index/error_html	Phishing
2022-09-25	medium	www.zybrew.beer/index.php/Portal/Index/error_html	Phishing
2022-09-25	medium	www.zybrew.beer/index.php/Portal/Index/error_html	Phishing
2022-09-25	medium	www.zybrew.beer/index.php/Portal/Index/error_html	Phishing
2022-09-25	medium	www.zybrew.beer/index.php/Portal/Index/error_html	Phishing
2022-09-25	medium	www.zybrew.beer/index.php/Portal/Index/error_html	Phishing
2022-09-25	medium	www.zybrew.beer/index.php/Portal/Index/error_html	Phishing
2022-09-25	medium	www.zybrew.beer/themes/simplebootx/style/fonts/iconfont.woff?t=1561020571500	Phishing
2022-09-25	medium	www.zybrew.beer/fonts/OSWALDBOLD.ttf	Phishing
2022-09-25	medium	www.zybrew.beer/index.php/Portal/Index/error_html	Phishing
2022-09-25	medium	www.zybrew.beer/index.php/Portal/Index/error_html	Phishing
2022-09-25	medium	www.zybrew.beer/index.php/Portal/Index/error_html	Phishing
2022-09-25	medium	www.zybrew.beer/index.php/Portal/Index/error_html	Phishing
2022-09-25	medium	www.zybrew.beer/index.php/Portal/Index/error_html	Phishing
2022-09-25	medium	www.zybrew.beer/themes/simplebootx/style/fonts/OSWALDBOLD.woff2	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (36)

	URL	Size	First Seen	Last Seen
	chat.chukouplus.com/chat/home/index?cookie_id=1664133232876&site_host=https://www.zybrew.beer/	55 B	2023-03-08	2023-03-08
Pretty URL chat.chukouplus.com/chat/home/index?cookie_id=1664133232876&site_host=https://www.zybrew.beer/ IP 152.32.188.233 ASN #135377 UCLOUD INFORMATION TECHNOLOGY HK LIMITED Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:12:17 Last Seen2023-03-08 08:19:34 Times Seen1 Hash 6f9c67edea091acac6bea80f58236154 cb46d0beff5ebcb2ae3ceab3f8b02821c789474a 0dc6eb81cc1b1566b1768927e373800d49a0884cda426749c0fc03d57adbce42 Loading...

	www.googletagmanager.com/gtag/js?id=G-21V6DWWTHR&l=dataLayer&cx=c	214 kB	2023-03-08	2023-03-08
Pretty URL www.googletagmanager.com/gtag/js?id=G-21V6DWWTHR&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:12:17 Last Seen2023-03-08 01:12:17 Times Seen1 Hash a7ad300fd95e025feb474920ac978c2f 2a526bbbff0d9d949d81b7be9201a0e244885a2d 2e2bf185873cb1931cf9ff67e4adafa6d1b5a4c550ee586317fd46516a08d6e8 Loading...

	www.zybrew.beer/themes/simplebootx/style/js/classie.js	928 B	2023-03-08	2023-03-08
Pretty URL www.zybrew.beer/themes/simplebootx/style/js/classie.js IP 169.61.14.33 ASN #36351 SOFTLAYER Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:12:17 Last Seen2023-03-08 08:19:34 Times Seen1 Hash 3e78f2e9514c87bdef3a79f6641152c1 53a46fcf5d9aaa5c700d7ef652d794bb48ebfde5 8bba80c72bee8a02a2a9a35074a164e52a0ed0948cb6fac664b5b9ee65715716 Loading...

	www.zybrew.beer/	57 B	2023-03-08	2023-10-28
Pretty URL www.zybrew.beer/ IP 169.61.14.33 ASN #36351 SOFTLAYER Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:12:17 Last Seen2023-10-28 10:54:57 Times Seen3 Hash 29b45fa7357278c2e756ebe52ec7e5c8 fbb8d1bc54dd84d0369692f8e91b6ccaab07dce2 5ab5d8576e547c6a177420c9131c0a7ea887059259274e2abd360ab3f8193cfe Loading...

	chat.chukouplus.com/static/chat/js/index.js	730 B	2023-03-08	2024-03-21
Pretty URL chat.chukouplus.com/static/chat/js/index.js IP 152.32.188.233 ASN #135377 UCLOUD INFORMATION TECHNOLOGY HK LIMITED Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:12:17 Last Seen2024-03-21 07:10:02 Times Seen8 Hash afee19d9f87e5a50a5c5328b7f853901 47f388f6004b26689a8aa92c3acd9e81af089db9 0e0dcb52705b3117a84f02702a318a340d2ec9949e53ba843f75556aac487411 Loading...

	chat.chukouplus.com/chat/home/index?cookie_id=1664133232876&site_host=https://www.zybrew.beer/	634 B	2023-03-08	2023-03-08
Pretty URL chat.chukouplus.com/chat/home/index?cookie_id=1664133232876&site_host=https://www.zybrew.beer/ IP 152.32.188.233 ASN #135377 UCLOUD INFORMATION TECHNOLOGY HK LIMITED Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:12:17 Last Seen2023-03-08 08:19:34 Times Seen1 Hash bf1ad92d8bf931ce2f1afc05324a2fb2 5e50da2ef419ba88d72e3d8e34ec2d7e89ba799f ac040e086189fc32704555f173941e05d47f8d749070497e9939548a37fafc76 Loading...

	www.googletagmanager.com/gtag/js?id=UA-78057516-1	109 kB	2023-03-08	2023-03-08
Pretty URL www.googletagmanager.com/gtag/js?id=UA-78057516-1 IP 142.250.74.72 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:12:17 Last Seen2023-03-08 01:12:17 Times Seen1 Hash 6a959a7415af978ab0c867a5932704c1 b1a9c87baf83fbab5ed157c6458f2d0b745bfe64 5f35404f66df9e027aaee4a7e354303eb5762f0f0ebd36ef33bb3bbd3ca5123f Loading...

	www.zybrew.beer/	314 B	2023-03-08	2023-03-08
Pretty URL www.zybrew.beer/ IP 169.61.14.33 ASN #36351 SOFTLAYER Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:12:17 Last Seen2023-03-08 08:19:34 Times Seen1 Hash 2bfd354157dee799a7b98d8fcd0fd09b 1bba63cad2ea64db1d17a273312fb3eaf71225e9 150e36eb69d114ac99e7f0641e564e8b82c34f920889c7dc06c54fee5ef158d3 Loading...

	www.zybrew.beer/	172 B	2023-03-08	2024-03-21
Pretty URL www.zybrew.beer/ IP 169.61.14.33 ASN #36351 SOFTLAYER Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:12:17 Last Seen2024-03-21 07:09:58 Times Seen20 Hash 690633fe89d71d7c067b2a38b0a148c5 7b0d1634f35bba18a0d54f8d6fe5571542c90de2 3b8381db9d01d2730d135b2ce564b05d73f5ffddaa2ad3a848f7a4a00b7b5b3f Loading...

	unknown	0 B	2023-03-07	2024-04-18
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-18 13:25:37 Times Seen36940552 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.zybrew.beer/	1.2 kB	2023-03-08	2023-03-08
Pretty URL www.zybrew.beer/ IP 169.61.14.33 ASN #36351 SOFTLAYER Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:12:17 Last Seen2023-03-08 08:19:34 Times Seen1 Hash a69cc84c9cd3d1c9ee82be7eb801df42 fc58aec91dc8e1c1daae2543f3e6dc2d02698083 4313a1ac4fbb392036fa97304255646d350a030d35f0651ccafa074c07e494e4 Loading...

	chat.chukouplus.com/static/js/layer/layer.js	22 kB	2023-03-08	2024-03-21
Pretty URL chat.chukouplus.com/static/js/layer/layer.js IP 152.32.188.233 ASN #135377 UCLOUD INFORMATION TECHNOLOGY HK LIMITED Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:12:17 Last Seen2024-03-21 07:10:02 Times Seen17 Hash 043365ab158e8fadf90e68784182db76 ba053ed7066a3860fe16db0f4a4d4bf9c8451a32 f7a8ebd36df16d9e0e5b5fb0f3582907c71069081d4162f0058cd86ac9c5cb2f Loading...

	chat.chukouplus.com/static/chat/js/kefu_chat.js	12 kB	2023-03-08	2023-05-26
Pretty URL chat.chukouplus.com/static/chat/js/kefu_chat.js IP 152.32.188.233 ASN #135377 UCLOUD INFORMATION TECHNOLOGY HK LIMITED Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:12:17 Last Seen2023-05-26 09:46:01 Times Seen2 Hash af3061b60994ec54b0193fe78bcc11e1 7272ecda5cf3a7cef315eb3158877a673e6bc674 3f402b00d75e6ba283687b95279c70dfe0b768445c21ee31e0b3de33b0090367 Loading...

	chat.chukouplus.com/chat/home/index?cookie_id=1664133232876&site_host=https://www.zybrew.beer/	4.0 kB	2023-03-08	2023-03-08
Pretty URL chat.chukouplus.com/chat/home/index?cookie_id=1664133232876&site_host=https://www.zybrew.beer/ IP 152.32.188.233 ASN #135377 UCLOUD INFORMATION TECHNOLOGY HK LIMITED Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:12:17 Last Seen2023-03-08 01:12:17 Times Seen1 Hash 0d4ca987456fe1d631d3cbf15dbbe517 477b1b8e2877902bf208ebff1e3521494cd91243 f46d153f6836fb84e27b5b900bfd09d1039ddbc25dafd4fd44c8ec28187e1e76 Loading...

	chat.chukouplus.com/static/chat/js/jqurey-form.js	48 kB	2023-03-08	2024-03-21
Pretty URL chat.chukouplus.com/static/chat/js/jqurey-form.js IP 152.32.188.233 ASN #135377 UCLOUD INFORMATION TECHNOLOGY HK LIMITED Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:12:17 Last Seen2024-03-21 07:10:02 Times Seen12 Hash 221f2f935f4452279ea39d94b64edea5 674502b3ec5c0edcb46b71bd0dddadc977ac2678 1d01643ba6bbf798e1e35d0bf15235a94ff0db4e8a25ac62b66001bbda83f2a8 Loading...

	chat.chukouplus.com/static/chat/js/upload.js	2.8 kB	2023-03-08	2024-03-21
Pretty URL chat.chukouplus.com/static/chat/js/upload.js IP 152.32.188.233 ASN #135377 UCLOUD INFORMATION TECHNOLOGY HK LIMITED Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:12:17 Last Seen2024-03-21 07:10:02 Times Seen8 Hash 33e840da6d83511de5d72eec9df517db 5393ec4e618f3abc3019e7e27565ec04258c9021 326e585cbff8dec4ff891651ba67aa4ba0bf3db0099cded30b520e4a81e89f3e Loading...

	www.zybrew.beer/	154 B	2023-03-08	2023-03-08
Pretty URL www.zybrew.beer/ IP 169.61.14.33 ASN #36351 SOFTLAYER Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:12:17 Last Seen2023-03-08 08:19:34 Times Seen1 Hash 462a36785c600b3bb2de93636337a8e8 4fe842f16358b831ec26a7415e65ea1be2c4508a 2a9693ef62e0575c6188baada205133a34563bf659b95ad45c05d05d14cf5b78 Loading...

	www.zybrew.beer/themes/simplebootx/style/js/smbanner.js	5.2 kB	2023-03-08	2023-03-08
Pretty URL www.zybrew.beer/themes/simplebootx/style/js/smbanner.js IP 169.61.14.33 ASN #36351 SOFTLAYER Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:12:17 Last Seen2023-03-08 08:19:34 Times Seen1 Hash 994115e50f243e33de062d734acc50b9 3997b027df647b5ee8ad83c3efa3e270e94b4feb 108b827854d9c497885a7f100fffab6e57d62e49b3ed10d2966c9ac6220fd8c8 Loading...

	www.zybrew.beer/themes/simplebootx/style/js/qiehuan.js	3.3 kB	2023-03-08	2023-03-08
Pretty URL www.zybrew.beer/themes/simplebootx/style/js/qiehuan.js IP 169.61.14.33 ASN #36351 SOFTLAYER Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:12:17 Last Seen2023-03-08 08:19:34 Times Seen1 Hash 7ad5d9abb57b752f273791287d46bb9e 93629f7fb39f777abaebf0c829a75afd1d217717 001ec8a405007ae6983b72c37706fbd9e6248a4b207f24058cffa0750f17b8ea Loading...

	www.zybrew.beer/themes/simplebootx/style/js/lunbo2.js	1.2 kB	2023-03-08	2023-05-26
Pretty URL www.zybrew.beer/themes/simplebootx/style/js/lunbo2.js IP 169.61.14.33 ASN #36351 SOFTLAYER Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:12:17 Last Seen2023-05-26 09:46:01 Times Seen3 Hash 888a163734db10bbb7e32ad9986dd28a b6885f8561b6d75affd0e6978e18998b008ae8d4 ee0b50df7d690da83da1f8e2100595e32b26c03a873516efeb03865b5223e92e Loading...

	www.zybrew.beer/themes/simplebootx/style/js/resize.js	621 B	2023-03-08	2023-03-10
Pretty URL www.zybrew.beer/themes/simplebootx/style/js/resize.js IP 169.61.14.33 ASN #36351 SOFTLAYER Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:12:17 Last Seen2023-03-10 14:32:56 Times Seen1 Hash 56b22f81356bcfea631444eb2cb5318a 62ca274470ccbd7df123943bb776049c13cb41c9 2adf59a323364353dd41f163e9ea2b5714716b1f7386cec4cae0bb0d3f941895 Loading...

	www.zybrew.beer/themes/simplebootx/style/js/jquery.js	93 kB	2023-03-08	2023-03-08
Pretty URL www.zybrew.beer/themes/simplebootx/style/js/jquery.js IP 169.61.14.33 ASN #36351 SOFTLAYER Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:12:17 Last Seen2023-03-08 08:19:34 Times Seen1 Hash dbf590f487dee709741c922bd580044f 963cae8dd838500db62d13cddeccc48d444e168e 6a8b81ca2508bbbbbd5c8290c8a846766a6de722df534c9ea6e7b4684501c165 Loading...

	www.zybrew.beer/themes/simplebootx/style/js/index.js	229 B	2023-03-08	2023-03-08
Pretty URL www.zybrew.beer/themes/simplebootx/style/js/index.js IP 169.61.14.33 ASN #36351 SOFTLAYER Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:12:17 Last Seen2023-03-08 08:19:34 Times Seen1 Hash 427f99febef888d2cf7692d8572d2973 cb59c06987be41559e27ffc666fd89f836af9a26 4ee8085bcc952ee65945f50d7ee4c20ce6c382f16613a1a3ac5904810218ac97 Loading...

	www.zybrew.beer/themes/simplebootx/style/js/jquery.SuperSlide.js	11 kB	2023-03-08	2023-11-01
Pretty URL www.zybrew.beer/themes/simplebootx/style/js/jquery.SuperSlide.js IP 169.61.14.33 ASN #36351 SOFTLAYER Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:12:17 Last Seen2023-11-01 11:07:45 Times Seen3 Hash 26f603c00352c8dced3246fb85f6795a d66d31aec1ba854805d4b6f431f2421380174e67 1dc6a8a2b54d9fb136a9b2ad9c61a149ba23dfde88d13404507cd5658920a1ac Loading...

	www.zybrew.beer/themes/simplebootx/style/js/sm.js	863 B	2023-03-08	2023-03-08
Pretty URL www.zybrew.beer/themes/simplebootx/style/js/sm.js IP 169.61.14.33 ASN #36351 SOFTLAYER Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:12:17 Last Seen2023-03-08 08:19:34 Times Seen1 Hash d33478ec64b75e9a02e617060afaceec c2d609b81b0b3a7bc92deeb0364dd59ef2cc38ca 2e886cf56acd2c787811d1c2e73caddc3fc18630fa8e8c5f53aa5bcae095d167 Loading...

	www.zybrew.beer/themes/simplebootx/style/js/placeholder.js	446 B	2023-03-08	2023-11-01
Pretty URL www.zybrew.beer/themes/simplebootx/style/js/placeholder.js IP 169.61.14.33 ASN #36351 SOFTLAYER Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:12:17 Last Seen2023-11-01 11:07:45 Times Seen4 Hash 3c9a70a6304dbd01174d14bbebbd90e4 a4730ec483112730c23b57844a128e1a8f5951bb ca0f8215e724732c6e8c7cede25c0882915053259a2d2787fa2e795edc213036 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-07	2024-01-06
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 18:05:31 Last Seen2024-01-06 17:39:53 Times Seen66 Hash 99ba52a15d2da967b023016d1af58cbd 5c2246049c43834d17113877b4731bd4f9803d55 9e25469f734732205f33dd80ff8ca12080406c18d2fa99a1f368103e51f7999f Loading...

	chat.chukouplus.com/static/chat/js/webuploader.js	99 kB	2023-03-08	2023-06-19
Pretty URL chat.chukouplus.com/static/chat/js/webuploader.js IP 152.32.188.233 ASN #135377 UCLOUD INFORMATION TECHNOLOGY HK LIMITED Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:12:17 Last Seen2023-06-19 12:03:57 Times Seen3 Hash c7a4594df3153b61f84a49dce0038a52 18265a60a2487e06b5bd809f704025d409b7bdde 2275167cc438ec5fb8bd9c3c06cde9c6b6b0e4d4cdcab15a0b0b9877d07caca9 Loading...

	www.zybrew.beer/	248 B	2023-03-08	2023-03-08
Pretty URL www.zybrew.beer/ IP 169.61.14.33 ASN #36351 SOFTLAYER Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:12:17 Last Seen2023-03-08 08:19:34 Times Seen1 Hash ec2a2aadc2c4d05da107d05fb473e5b9 75d511620b511b793977710c20162908d1c6291b 22e6cca35ef0d9865f11777c98a1138cc55f26f816bfdb0e255ffc7bc877d4f0 Loading...

	www.zybrew.beer/themes/simplebootx/style/js/uisearch.js	4.8 kB	2023-03-08	2023-11-01
Pretty URL www.zybrew.beer/themes/simplebootx/style/js/uisearch.js IP 169.61.14.33 ASN #36351 SOFTLAYER Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:12:17 Last Seen2023-11-01 11:07:45 Times Seen3 Hash c84a3b6b2041ed5629f346c336c728ff 7eb383ab5f9d61481696485e485e6755e814bc72 6b02bdfc66ecff57bb7f66267df4dedfce95b611c547c8543c71ad5218f2b947 Loading...

	www.zybrew.beer/themes/simplebootx/style/form1.js	3.1 kB	2023-03-08	2023-03-08
Pretty URL www.zybrew.beer/themes/simplebootx/style/form1.js IP 169.61.14.33 ASN #36351 SOFTLAYER Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:12:17 Last Seen2023-03-08 08:19:34 Times Seen1 Hash 910680bd8ab8325d0f92acb131b96828 fc13406361aea00ca2bdf8bac5eaa370f8241217 b257647b45ae3ed9562f6beb39b5c307c7a16368f762acb2d5f4c9fc3069af52 Loading...

	chat.chukouplus.com/static/js/init_kefu.js?time=0.22385464176029313	5.8 kB	2023-03-08	2023-03-08
Pretty URL chat.chukouplus.com/static/js/init_kefu.js?time=0.22385464176029313 IP 152.32.188.233 ASN #135377 UCLOUD INFORMATION TECHNOLOGY HK LIMITED Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:12:17 Last Seen2023-03-08 08:19:34 Times Seen1 Hash 85708e691abdfd129f435370212cef1b 8aacdde9ddfd8d8141ba49cfd6c89231719fdeaa 2945ea9b5b7116d4b1b6f8c3ba8c93d824c09d87493e769b3fe142a4522c36b9 Loading...

	chat.chukouplus.com/static/js/placeholder.js	668 B	2023-03-08	2024-03-21
Pretty URL chat.chukouplus.com/static/js/placeholder.js IP 152.32.188.233 ASN #135377 UCLOUD INFORMATION TECHNOLOGY HK LIMITED Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:12:17 Last Seen2024-03-21 07:10:02 Times Seen8 Hash 57b8f3e9b0708597f0ed33b8924429f2 6f6391e1a658009ae624b8361a9ff63cd6bb565a c35c958ba8bd0b29e3f1fc376f09515eb66ceee7bc2eeb641546663b66c94246 Loading...

	www.zybrew.beer/	153 B	2023-03-08	2023-03-08
Pretty URL www.zybrew.beer/ IP 169.61.14.33 ASN #36351 SOFTLAYER Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:12:17 Last Seen2023-03-08 08:19:34 Times Seen1 Hash 950a7fa3a9a72ea54cef6c5f37345031 09e34869d7a90fed49fb7e388b19ad13d104ec83 78bd17812380a11646df70dd2bf00fe56a7c31202f5255890f96df6ca0322816 Loading...

	www.zybrew.beer/	1.2 kB	2023-03-08	2023-03-08
Pretty URL www.zybrew.beer/ IP 169.61.14.33 ASN #36351 SOFTLAYER Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:12:17 Last Seen2023-03-08 08:19:34 Times Seen1 Hash bcc248ba1f36daa8a3286df6417dab6b 4620853d5aa68fa15b8ed4b4d074964c5c76c1c9 13779db5ba6962fdb12ac613533cab7591df7613b51a3537f0f2ccc7b49da395 Loading...

	chat.chukouplus.com/static/chat/js/upload2.js	2.9 kB	2023-03-08	2024-03-21
Pretty URL chat.chukouplus.com/static/chat/js/upload2.js IP 152.32.188.233 ASN #135377 UCLOUD INFORMATION TECHNOLOGY HK LIMITED Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:12:17 Last Seen2024-03-21 07:10:02 Times Seen8 Hash 93857207ab200353ff9a0e63a4712e3c 5f0dbcc7b27955aac5d4118facee07a41ffc316a c3ee75ace3e09363624325e389cd63d110ea3b2fa5ad37e59781d972218e71ca Loading...

HTTP Transactions (157)

URL IP Response Size

firefox.settings.services.mozilla.com/v1/

143.204.55.35

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.35:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
1b3053fa528e28810f8a2cc9284cc921
cca9eb471d941881a6b9a1793aecb6c281908f6a
a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 25 Sep 2022 18:15:03 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 3n_Kgv8CEQFwtfrmnF4IGaZQd2I4oWfyugt68EBxQXxIyb82ELT7gw==
Age: 3530

zybrew.beer/

169.61.14.33

301 Moved Permanently

232 B

URL HTTP/1.1
zybrew.beer/
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
232 B (232 bytes)
Hash
f7173dcb825897184c2bb64508912035
2b910c6a1d37ab5cfccd3689c21dec1e3de55e3d
b297c944876cf4d6977dd9c4d2d664ae08745bf40daf8193f8eaed55e059884b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Sun, 25 Sep 2022 19:13:53 GMT
Server: Apache
Location: https://www.zybrew.beer/
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:53 GMT
Content-Length: 232
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
09a973de929ab7452edc342c780d3668
3f14f6e0a36f76863c0aea6fb561c266404a7ea3
e82ca5f310e37267fbf792427747e65c2bb35e684d3f629c0aa302f688bc4f80

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E82CA5F310E37267FBF792427747E65C2BB35E684D3F629C0AA302F688BC4F80"
Last-Modified: Fri, 23 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12429
Expires: Sun, 25 Sep 2022 22:41:02 GMT
Date: Sun, 25 Sep 2022 19:13:53 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain

143.204.55.110

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
143.204.55.110:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 25 Sep 2022 04:35:15 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ZRA4PsmOdjrOnYrCzPPtuT8k7DIVmAeNU5sG4RMhUoPGI1Z1FbAn5w==
age: 52719
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 19:13:53 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.35

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.35:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Sun, 25 Sep 2022 19:04:17 GMT
Expires: Sun, 25 Sep 2022 19:18:02 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Q81k_rsEqbGXuUTLmsHPwugaCxWSBFx9qv52zBiQFgZdZD22jUA0UA==
Age: 576

www.zybrew.beer/

169.61.14.33

200 OK

12 kB

URL HTTP/1.1
www.zybrew.beer/
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (17637), with CRLF, LF line terminators
Size
12 kB (12254 bytes)
Hash
0aab960e4d1e9b9ee412def4ed43a61e
e6e37345259cac7cf54953b09e3ee16fb6f2eccd
7877350799bcdeee7adecd7a31f731b042ab5e336c93c9838419874b46c8aee2

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:53 GMT
Server: Apache
Last-Modified: Mon, 19 Sep 2022 09:22:59 GMT
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:53 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 12254
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
58b52380a6b5c598d1ad88e8da148137
a56206a0277aea6e8e2f7629793aba713d8edd0c
561a57c27dfa1f8651a89292428576b626e8700b9cd6b8173a0ce121aa8f9f4a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 19:13:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
58b52380a6b5c598d1ad88e8da148137
a56206a0277aea6e8e2f7629793aba713d8edd0c
561a57c27dfa1f8651a89292428576b626e8700b9cd6b8173a0ce121aa8f9f4a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 19:13:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=UA-78057516-1

142.250.74.72

200 OK

42 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=UA-78057516-1
IP
142.250.74.72:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1720)
Size
42 kB (42259 bytes)
Hash
1cd3d88353b9afd0d3b4a120ecd52e1f
4c6d4b46a2ceed0a21178787b988c6400740abb3
9cd8ede64d6eaa5469a1684ab43a8b5b3746ac853816cef947487c115dec2b02

HTTP Headers

GET /gtag/js?id=UA-78057516-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 25 Sep 2022 19:13:53 GMT
expires: Sun, 25 Sep 2022 19:13:53 GMT
cache-control: private, max-age=900
last-modified: Sun, 25 Sep 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42259
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
fd3b36dc2b620b48de491a8d9ba00fc0
be67ba7db5215dcb7c9225876e35a5e0a5005c9e
28205ee62c77b1caad6cc24c1ce98ddb92d26f67d41270f7d5278208a907c62f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1628
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 19:13:53 GMT
Last-Modified: Sun, 25 Sep 2022 18:46:45 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471

www.googletagmanager.com/gtag/js?id=G-21V6DWWTHR

142.250.74.72

200 OK

75 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=G-21V6DWWTHR
IP
142.250.74.72:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (20189)
Size
75 kB (75082 bytes)
Hash
035064f2ab8252aede5b86feb285b4f0
6fd1424d14a7fe8bf3be617e35e243f07b5a90d3
db8b09c29d6db3f922bd31c307ed361e1cf1f3011404714374a025523c58dc8b

HTTP Headers

GET /gtag/js?id=G-21V6DWWTHR HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 25 Sep 2022 19:13:53 GMT
expires: Sun, 25 Sep 2022 19:13:53 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 75082
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
58b52380a6b5c598d1ad88e8da148137
a56206a0277aea6e8e2f7629793aba713d8edd0c
561a57c27dfa1f8651a89292428576b626e8700b9cd6b8173a0ce121aa8f9f4a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 19:13:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.zybrew.beer/themes/simplebootx/style/js/classie.js

169.61.14.33

200 OK

355 B

URL HTTP/1.1
www.zybrew.beer/themes/simplebootx/style/js/classie.js
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
ASCII text, with very long lines (928), with no line terminators
Size
355 B (355 bytes)
Hash
e3198494d7788a8e602cb89455c1a773
d9636e89f50de3348ce063e9b2d444ffba41f91b
638b8a9af38d89f8911f244ef4b2a9283ae8e4530dfa6c4178326fdbfc181885

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /themes/simplebootx/style/js/classie.js HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:53 GMT
Server: Apache
Last-Modified: Fri, 16 Mar 2018 14:50:14 GMT
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:53 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 355
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/x-javascript

www.zybrew.beer/themes/simplebootx/style/js/index.js

169.61.14.33

200 OK

166 B

URL HTTP/1.1
www.zybrew.beer/themes/simplebootx/style/js/index.js
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
ASCII text, with CRLF line terminators
Size
166 B (166 bytes)
Hash
465483499338751c32bdca331da866f6
051138ae260141f0d924701d76efb08fb744532c
456e2e4dea0ab549b3498d5e1657b2bf0d156b4b5987a63065209ac23a7047f4

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /themes/simplebootx/style/js/index.js HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:54 GMT
Server: Apache
Last-Modified: Sat, 11 Jun 2022 06:59:18 GMT
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:54 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 166
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/x-javascript

www.zybrew.beer/themes/simplebootx/style/js/jquery.SuperSlide.js

169.61.14.33

200 OK

3.3 kB

URL HTTP/1.1
www.zybrew.beer/themes/simplebootx/style/js/jquery.SuperSlide.js
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
ASCII text, with very long lines (5080), with CRLF line terminators
Size
3.3 kB (3316 bytes)
Hash
0077fdbe28ac13cc64130f633429b168
4aefebbf7254e0ea72db96771af3aa92716b6e75
9c09e5569e4697bc095850934d4fa820d8599bcb3d996c5afbfe4cc4fc72d886

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /themes/simplebootx/style/js/jquery.SuperSlide.js HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:54 GMT
Server: Apache
Last-Modified: Sat, 08 Jul 2017 04:16:34 GMT
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:54 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3316
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/x-javascript

www.zybrew.beer/themes/simplebootx/style/js/qiehuan.js

169.61.14.33

200 OK

395 B

URL HTTP/1.1
www.zybrew.beer/themes/simplebootx/style/js/qiehuan.js
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
ASCII text, with very long lines (3296), with no line terminators
Size
395 B (395 bytes)
Hash
e05c0300a2b8a9f76b932ca45b67f824
16f640fc68b1043d0162012c595991e1881092bc
e5a65961af56c7a0513bccaf73dbc3e7a70a1f87b884cec874fc61d2941cd73e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /themes/simplebootx/style/js/qiehuan.js HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:54 GMT
Server: Apache
Last-Modified: Sun, 24 Sep 2017 06:36:28 GMT
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:54 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 395
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/x-javascript

www.zybrew.beer/themes/simplebootx/style/js/lunbo2.js

169.61.14.33

200 OK

322 B

URL HTTP/1.1
www.zybrew.beer/themes/simplebootx/style/js/lunbo2.js
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
ASCII text, with very long lines (1216), with no line terminators
Size
322 B (322 bytes)
Hash
6998b62f5640c3b9910ba2f72b900403
f99e13f1477545270af8e90a107ebafd5a8ddf3e
c5b3047292d05e0ec386a4c37ef1c82f1baa3a894373a3d9a801cf7d11e7b73a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /themes/simplebootx/style/js/lunbo2.js HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:54 GMT
Server: Apache
Last-Modified: Sat, 08 Jul 2017 04:16:26 GMT
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:54 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 322
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/x-javascript

push.services.mozilla.com/

44.237.51.86

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
44.237.51.86:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: y0crtz5w1u4CLZ35L8rOfg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: +znHiV3MoXMPtvppQD0HNQPIfek=

www.zybrew.beer/themes/simplebootx/style/js/uisearch.js

169.61.14.33

200 OK

2.3 kB

URL HTTP/1.1
www.zybrew.beer/themes/simplebootx/style/js/uisearch.js
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
ASCII text, with very long lines (4828), with no line terminators
Size
2.3 kB (2273 bytes)
Hash
22a5ab164a62a2dcae24b73056bf9ec0
11853d83c6c9ebf3523a27934c1df90270e6241b
657180650c984b6c4f40b542b08c9cf6d5419a2d70ca558c06fc8d95b95932ad

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /themes/simplebootx/style/js/uisearch.js HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:54 GMT
Server: Apache
Last-Modified: Thu, 06 Jul 2017 05:21:20 GMT
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:54 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2273
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/x-javascript

www.zybrew.beer/themes/simplebootx/style/js/smbanner.js

169.61.14.33

200 OK

1.1 kB

URL HTTP/1.1
www.zybrew.beer/themes/simplebootx/style/js/smbanner.js
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
ASCII text, with very long lines (5015), with CRLF line terminators
Size
1.1 kB (1090 bytes)
Hash
254ee4d6f028184b0175e381b097fa0d
53f0157847c6a962de00522574a97707fa1e34ee
95b49733d5cafd2595085eb51886a70819093043d5c6712333710e8d4b082f70

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /themes/simplebootx/style/js/smbanner.js HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:54 GMT
Server: Apache
Last-Modified: Thu, 26 Oct 2017 04:33:52 GMT
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:54 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1090
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/x-javascript

www.zybrew.beer/themes/simplebootx/style/js/sm.js

169.61.14.33

200 OK

427 B

URL HTTP/1.1
www.zybrew.beer/themes/simplebootx/style/js/sm.js
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
ASCII text, with very long lines (863), with no line terminators
Size
427 B (427 bytes)
Hash
c63f0c04d1d158abdf0011ccbd11e508
43fcd0aa1868778a9a7908238d3392f71e360bce
dc96bda49fd97435958ec531e6936d21cde568897299dc70847622c8bb82d299

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /themes/simplebootx/style/js/sm.js HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:54 GMT
Server: Apache
Last-Modified: Sat, 28 Oct 2017 05:10:06 GMT
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:54 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 427
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/x-javascript

www.zybrew.beer/themes/simplebootx/style/js/jquery.js

169.61.14.33

200 OK

33 kB

URL HTTP/1.1
www.zybrew.beer/themes/simplebootx/style/js/jquery.js
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
Unicode text, UTF-8 text, with very long lines (65478), with CRLF line terminators
Size
33 kB (33074 bytes)
Hash
46d77a7432ae88c70c71c66e6e94f568
cfce6593e76d8d82ae6ad01c96a1bab88691a6a6
ba970774cf33b65694bc8df5440bc85fc8fdd325ef4e5d76f1cb6d0565adc6e5

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /themes/simplebootx/style/js/jquery.js HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:54 GMT
Server: Apache
Last-Modified: Sat, 11 Jun 2022 06:42:14 GMT
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:54 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 33074
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/x-javascript

www.zybrew.beer/themes/simplebootx/style/js/resize.js

169.61.14.33

200 OK

255 B

URL HTTP/1.1
www.zybrew.beer/themes/simplebootx/style/js/resize.js
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
ASCII text, with very long lines (621), with no line terminators
Size
255 B (255 bytes)
Hash
278e508404805c0def9b043865807240
9319b9fb8b8d0310c9537ebfd6dbe515ed2e2a9e
7c110ab010961d8176cd6e270eae898d1cb3bf3f5ddd7e7ea297cb677816c2b0

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /themes/simplebootx/style/js/resize.js HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:54 GMT
Server: Apache
Last-Modified: Wed, 02 Aug 2017 05:55:44 GMT
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:54 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 255
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/x-javascript

www.zybrew.beer/themes/simplebootx/style/js/placeholder.js

169.61.14.33

200 OK

202 B

URL HTTP/1.1
www.zybrew.beer/themes/simplebootx/style/js/placeholder.js
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
ASCII text, with very long lines (446), with no line terminators
Size
202 B (202 bytes)
Hash
b9bdc1402e54ea729807d88b86c42859
45f2edb15efff995a5dd6886271a0b2443a5b7a0
04cd214563ef76809eba8b2e6add541d645e07c4b23439d7c93d8e3f2440dc59

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /themes/simplebootx/style/js/placeholder.js HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:54 GMT
Server: Apache
Last-Modified: Sat, 08 Jul 2017 04:16:06 GMT
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:54 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 202
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/x-javascript

www.zybrew.beer/themes/simplebootx/style/form1.js

169.61.14.33

200 OK

505 B

URL HTTP/1.1
www.zybrew.beer/themes/simplebootx/style/form1.js
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
ASCII text, with CRLF line terminators
Size
505 B (505 bytes)
Hash
c5010195608c228fc6165f1dbcc8c1a6
166dbbd5001fb4188e805a9a195dd88ddba48a0c
072de33d4196eac97255a64b3409c550f568f47145abb5da3f75647d681df98d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /themes/simplebootx/style/form1.js HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:54 GMT
Server: Apache
Last-Modified: Tue, 24 May 2022 20:01:38 GMT
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:54 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 505
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/x-javascript

www.zybrew.beer/themes/simplebootx/style/img/twitter.jpg

169.61.14.33

200 OK

683 B

URL HTTP/1.1
www.zybrew.beer/themes/simplebootx/style/img/twitter.jpg
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
PNG image data, 26 x 26, 8-bit/color RGBA, non-interlaced\012- data
Size
683 B (683 bytes)
Hash
7d659a3c78b2b87836a312b393d31652
d368bb3abb0c1d0bef4da21e494f62823d17b1a4
e036025f7cba36eeec9e0d9e941e9a8e4cb90312e0404c2cf659b39a33a3ccb3

HTTP Headers

GET /themes/simplebootx/style/img/twitter.jpg HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:54 GMT
Server: Apache
Last-Modified: Mon, 13 Jun 2022 01:38:33 GMT
Accept-Ranges: bytes
Content-Length: 683
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:54 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg

www.zybrew.beer/themes/simplebootx/style/img/5.png

169.61.14.33

200 OK

3.4 kB

URL HTTP/1.1
www.zybrew.beer/themes/simplebootx/style/img/5.png
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
PNG image data, 26 x 26, 8-bit/color RGBA, non-interlaced\012- data
Size
3.4 kB (3370 bytes)
Hash
ecc17358c5aadc68bd2ce324ef4fd869
ca37c2f15ca0f45da672ca94c063bef6499e33c3
4a0e2497255da521dd19581008766de1656f006528de5fc8d255a757cc8b44fd

HTTP Headers

GET /themes/simplebootx/style/img/5.png HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:54 GMT
Server: Apache
Last-Modified: Tue, 26 Nov 2019 17:58:42 GMT
Accept-Ranges: bytes
Content-Length: 3370
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:54 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png

www.zybrew.beer/themes/simplebootx/style/img/linkedin.jpg

169.61.14.33

200 OK

514 B

URL HTTP/1.1
www.zybrew.beer/themes/simplebootx/style/img/linkedin.jpg
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
PNG image data, 26 x 26, 8-bit/color RGBA, non-interlaced\012- data
Size
514 B (514 bytes)
Hash
2ae693b79a553c5ccf683998e21f5edf
11fb3d84561f23a2efe1892531d2ad07112bff82
4a19920a614a6e706f7934e39182074be2ed902f0ad98419f9b0761a29074707

HTTP Headers

GET /themes/simplebootx/style/img/linkedin.jpg HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:54 GMT
Server: Apache
Last-Modified: Mon, 13 Jun 2022 01:38:33 GMT
Accept-Ranges: bytes
Content-Length: 514
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:54 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg

www.zybrew.beer/data/upload/20220601/6296d5aa56bec.png

169.61.14.33

200 OK

4.9 kB

URL HTTP/1.1
www.zybrew.beer/data/upload/20220601/6296d5aa56bec.png
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
PNG image data, 139 x 132, 8-bit/color RGBA, non-interlaced\012- data
Size
4.9 kB (4860 bytes)
Hash
05c1db9abbb5e2f587aaa0faf27e1e7d
3a553d5ba97953cdf4cde138da753bd148b05e7f
c5aaf66b5cd8ebebd0ab55ba00dff96ec44d4b57b51f99b1a6bf17f8beb8786d

HTTP Headers

GET /data/upload/20220601/6296d5aa56bec.png HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:54 GMT
Server: Apache
Last-Modified: Wed, 01 Jun 2022 02:57:46 GMT
Accept-Ranges: bytes
Content-Length: 4860
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:54 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png

www.zybrew.beer/fonts/OSWALDBOLD.woff2

169.61.14.33

301 Moved Permanently

265 B

URL HTTP/1.1
www.zybrew.beer/fonts/OSWALDBOLD.woff2
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
265 B (265 bytes)
Hash
afa4e3b9f4383750f97a4f848c99db53
b0aac11c7ec7fb4cb150f6a44d86c402b2e01a7f
58fe0a893de8f9c315cfba77f17df840667aa099a9273edfb0ed823a007f9e26

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /fonts/OSWALDBOLD.woff2 HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.zybrew.beer/
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 301 Moved Permanently
Date: Sun, 25 Sep 2022 19:13:54 GMT
Server: Apache
Location: https://www.zybrew.beer/index.php/Portal/Index/error_html
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:54 GMT
Content-Length: 265
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

www.zybrew.beer/fonts/iconfont.woff?t=1561020571500

169.61.14.33

301 Moved Permanently

265 B

URL HTTP/1.1
www.zybrew.beer/fonts/iconfont.woff?t=1561020571500
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
265 B (265 bytes)
Hash
afa4e3b9f4383750f97a4f848c99db53
b0aac11c7ec7fb4cb150f6a44d86c402b2e01a7f
58fe0a893de8f9c315cfba77f17df840667aa099a9273edfb0ed823a007f9e26

HTTP Headers

GET /fonts/iconfont.woff?t=1561020571500 HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.zybrew.beer/
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 301 Moved Permanently
Date: Sun, 25 Sep 2022 19:13:54 GMT
Server: Apache
Location: https://www.zybrew.beer/index.php/Portal/Index/error_html
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:54 GMT
Content-Length: 265
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

www.zybrew.beer/img/beijing.jpg

169.61.14.33

301 Moved Permanently

265 B

URL HTTP/1.1
www.zybrew.beer/img/beijing.jpg
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
265 B (265 bytes)
Hash
afa4e3b9f4383750f97a4f848c99db53
b0aac11c7ec7fb4cb150f6a44d86c402b2e01a7f
58fe0a893de8f9c315cfba77f17df840667aa099a9273edfb0ed823a007f9e26

HTTP Headers

GET /img/beijing.jpg HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 301 Moved Permanently
Date: Sun, 25 Sep 2022 19:13:54 GMT
Server: Apache
Location: https://www.zybrew.beer/index.php/Portal/Index/error_html
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:54 GMT
Content-Length: 265
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

region1.google-analytics.com/g/collect?v=2&tid=G-21V6DWWTHR&gtm=2oe9l0&_p=1208081586&cid=253186198.1664133232&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664133232&sct=1&seg=0&dl=https%3A%2F%2Fwww.zybrew.beer%2F&dt=Yucheng%20Zeyu%20Machinery%20Co.%2C%20Ltd.&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1

216.239.34.36

204 No Content

0 B

URL HTTP/2
region1.google-analytics.com/g/collect?v=2&tid=G-21V6DWWTHR&gtm=2oe9l0&_p=1208081586&cid=253186198.1664133232&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664133232&sct=1&seg=0&dl=https%3A%2F%2Fwww.zybrew.beer%2F&dt=Yucheng%20Zeyu%20Machinery%20Co.%2C%20Ltd.&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP
216.239.34.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-21V6DWWTHR&gtm=2oe9l0&_p=1208081586&cid=253186198.1664133232&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664133232&sct=1&seg=0&dl=https%3A%2F%2Fwww.zybrew.beer%2F&dt=Yucheng%20Zeyu%20Machinery%20Co.%2C%20Ltd.&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.zybrew.beer
Connection: keep-alive
Referer: https://www.zybrew.beer/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://www.zybrew.beer
date: Sun, 25 Sep 2022 19:13:54 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.zybrew.beer/index.php?g=Demo&m=Index&a=views&zxurl=https://www.zybrew.beer/&title=OTHER

169.61.14.33

200 OK

0 B

URL HTTP/1.1
www.zybrew.beer/index.php?g=Demo&m=Index&a=views&zxurl=https://www.zybrew.beer/&title=OTHER
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /index.php?g=Demo&m=Index&a=views&zxurl=https://www.zybrew.beer/&title=OTHER HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.zybrew.beer/
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232; webchat=1664133232876
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:54 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=6f12a617ee5f3f6d7558baddabdf7849; expires=Mon, 26-Sep-2022 05:13:54 GMT; Max-Age=36000; path=/
90CfBI_cf7141056e00f081cc9bbcbab10c305c=1664133234; path=/
Vary: User-Agent
Content-Length: 0
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

www.zybrew.beer/img/hebei.jpg

169.61.14.33

301 Moved Permanently

265 B

URL HTTP/1.1
www.zybrew.beer/img/hebei.jpg
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
265 B (265 bytes)
Hash
afa4e3b9f4383750f97a4f848c99db53
b0aac11c7ec7fb4cb150f6a44d86c402b2e01a7f
58fe0a893de8f9c315cfba77f17df840667aa099a9273edfb0ed823a007f9e26

HTTP Headers

GET /img/hebei.jpg HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 301 Moved Permanently
Date: Sun, 25 Sep 2022 19:13:54 GMT
Server: Apache
Location: https://www.zybrew.beer/index.php/Portal/Index/error_html
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:54 GMT
Content-Length: 265
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

www.zybrew.beer/img/sousuo.jpg

169.61.14.33

301 Moved Permanently

265 B

URL HTTP/1.1
www.zybrew.beer/img/sousuo.jpg
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
265 B (265 bytes)
Hash
afa4e3b9f4383750f97a4f848c99db53
b0aac11c7ec7fb4cb150f6a44d86c402b2e01a7f
58fe0a893de8f9c315cfba77f17df840667aa099a9273edfb0ed823a007f9e26

HTTP Headers

GET /img/sousuo.jpg HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 301 Moved Permanently
Date: Sun, 25 Sep 2022 19:13:54 GMT
Server: Apache
Location: https://www.zybrew.beer/index.php/Portal/Index/error_html
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:54 GMT
Content-Length: 265
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

www.zybrew.beer/img/daohang.png

169.61.14.33

301 Moved Permanently

265 B

URL HTTP/1.1
www.zybrew.beer/img/daohang.png
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
265 B (265 bytes)
Hash
afa4e3b9f4383750f97a4f848c99db53
b0aac11c7ec7fb4cb150f6a44d86c402b2e01a7f
58fe0a893de8f9c315cfba77f17df840667aa099a9273edfb0ed823a007f9e26

HTTP Headers

GET /img/daohang.png HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 301 Moved Permanently
Date: Sun, 25 Sep 2022 19:13:54 GMT
Server: Apache
Location: https://www.zybrew.beer/index.php/Portal/Index/error_html
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:54 GMT
Content-Length: 265
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

www.zybrew.beer/img/baikuai.jpg

169.61.14.33

301 Moved Permanently

265 B

URL HTTP/1.1
www.zybrew.beer/img/baikuai.jpg
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
265 B (265 bytes)
Hash
afa4e3b9f4383750f97a4f848c99db53
b0aac11c7ec7fb4cb150f6a44d86c402b2e01a7f
58fe0a893de8f9c315cfba77f17df840667aa099a9273edfb0ed823a007f9e26

HTTP Headers

GET /img/baikuai.jpg HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 301 Moved Permanently
Date: Sun, 25 Sep 2022 19:13:54 GMT
Server: Apache
Location: https://www.zybrew.beer/index.php/Portal/Index/error_html
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:54 GMT
Content-Length: 265
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

www.zybrew.beer/img/banxpy1.png

169.61.14.33

301 Moved Permanently

265 B

URL HTTP/1.1
www.zybrew.beer/img/banxpy1.png
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
265 B (265 bytes)
Hash
afa4e3b9f4383750f97a4f848c99db53
b0aac11c7ec7fb4cb150f6a44d86c402b2e01a7f
58fe0a893de8f9c315cfba77f17df840667aa099a9273edfb0ed823a007f9e26

HTTP Headers

GET /img/banxpy1.png HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 301 Moved Permanently
Date: Sun, 25 Sep 2022 19:13:54 GMT
Server: Apache
Location: https://www.zybrew.beer/index.php/Portal/Index/error_html
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:54 GMT
Content-Length: 265
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

www.zybrew.beer/img/banxpy2.png

169.61.14.33

301 Moved Permanently

265 B

URL HTTP/1.1
www.zybrew.beer/img/banxpy2.png
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
265 B (265 bytes)
Hash
afa4e3b9f4383750f97a4f848c99db53
b0aac11c7ec7fb4cb150f6a44d86c402b2e01a7f
58fe0a893de8f9c315cfba77f17df840667aa099a9273edfb0ed823a007f9e26

HTTP Headers

GET /img/banxpy2.png HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 301 Moved Permanently
Date: Sun, 25 Sep 2022 19:13:54 GMT
Server: Apache
Location: https://www.zybrew.beer/index.php/Portal/Index/error_html
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:54 GMT
Content-Length: 265
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

www.zybrew.beer/index.php/Portal/Index/error_html

169.61.14.33

200 OK

5.1 kB

URL HTTP/1.1
www.zybrew.beer/index.php/Portal/Index/error_html
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (736), with CRLF, LF line terminators
Size
5.1 kB (5051 bytes)
Hash
9d50f6b316ab9436eda90669e68c3513
013b1b2cb76c060b47e028b9d2175c32a876551f
c3e08deec2da7914b4a357966b15240c2b7b03deadeeb4d2609c4ddb8d45e8de

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /index.php/Portal/Index/error_html HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.zybrew.beer/
Connection: keep-alive
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232; webchat=1664133232876
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:54 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Pragma: no-cache
Cache-control: private
X-Powered-By: Reanod
Set-Cookie: PHPSESSID=399f59c6ca7f22b2de762944267106b2; expires=Mon, 26-Sep-2022 05:13:54 GMT; Max-Age=36000; path=/
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 5051
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/html; charset=utf-8

www.zybrew.beer/data/upload/20220601/6296d31cb48401920_632.webp

169.61.14.33

200 OK

247 kB

URL HTTP/1.1
www.zybrew.beer/data/upload/20220601/6296d31cb48401920_632.webp
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 1920x631, components 3\012- data
Size
247 kB (246636 bytes)
Hash
bf731bfc2eaa25662f989bd9216e91c9
f01ce62251d232136cfd35e45b175e0b7a04f7bd
10951069c04df40f170903668b0405b7e71bf725171e9e8ca6ebc3769ecba17b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /data/upload/20220601/6296d31cb48401920_632.webp HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:54 GMT
Server: Apache
Last-Modified: Wed, 01 Jun 2022 02:50:01 GMT
Accept-Ranges: bytes
Cache-Control: max-age=864000
Expires: Wed, 05 Oct 2022 19:13:54 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/webp

www.zybrew.beer/img/banxpy3.png

169.61.14.33

301 Moved Permanently

265 B

URL HTTP/1.1
www.zybrew.beer/img/banxpy3.png
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
265 B (265 bytes)
Hash
afa4e3b9f4383750f97a4f848c99db53
b0aac11c7ec7fb4cb150f6a44d86c402b2e01a7f
58fe0a893de8f9c315cfba77f17df840667aa099a9273edfb0ed823a007f9e26

HTTP Headers

GET /img/banxpy3.png HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 301 Moved Permanently
Date: Sun, 25 Sep 2022 19:13:54 GMT
Server: Apache
Location: https://www.zybrew.beer/index.php/Portal/Index/error_html
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:54 GMT
Content-Length: 265
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

www.zybrew.beer/img/m1biao.png

169.61.14.33

301 Moved Permanently

265 B

URL HTTP/1.1
www.zybrew.beer/img/m1biao.png
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
265 B (265 bytes)
Hash
afa4e3b9f4383750f97a4f848c99db53
b0aac11c7ec7fb4cb150f6a44d86c402b2e01a7f
58fe0a893de8f9c315cfba77f17df840667aa099a9273edfb0ed823a007f9e26

HTTP Headers

GET /img/m1biao.png HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 301 Moved Permanently
Date: Sun, 25 Sep 2022 19:13:54 GMT
Server: Apache
Location: https://www.zybrew.beer/index.php/Portal/Index/error_html
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:54 GMT
Content-Length: 265
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

www.zybrew.beer/themes/simplebootx/style/img/m3biao.png

169.61.14.33

200 OK

1.1 kB

URL HTTP/1.1
www.zybrew.beer/themes/simplebootx/style/img/m3biao.png
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
PNG image data, 1000 x 2, 8-bit/color RGBA, non-interlaced\012- data
Size
1.1 kB (1064 bytes)
Hash
71c54a267c693957760999ecb1c8b70b
0a6eb62d227f2039f4fa7f14e3de5deca4ba6cb0
2ebaef88348f3dbe87e6e7ead8824988901bdf564a102c561a1e2fbdc1f79697

HTTP Headers

GET /themes/simplebootx/style/img/m3biao.png HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/themes/simplebootx/style/css/index.css
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:54 GMT
Server: Apache
Last-Modified: Thu, 26 Oct 2017 09:17:42 GMT
Accept-Ranges: bytes
Content-Length: 1064
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:54 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png

www.zybrew.beer/data/upload/20220601/6296d33e476021920_632.webp

169.61.14.33

200 OK

234 kB

URL HTTP/1.1
www.zybrew.beer/data/upload/20220601/6296d33e476021920_632.webp
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 1920x631, components 3\012- data
Size
234 kB (233492 bytes)
Hash
d5f00d1d578e338b4d3bfc38626b6525
9b5227a820a3ed6cec3ade96d067396c45eacdf2
a279a796c199dbd2f59d66d2fd81b99bc8c58207e9665058b370c667ebc036a4

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /data/upload/20220601/6296d33e476021920_632.webp HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:54 GMT
Server: Apache
Last-Modified: Wed, 01 Jun 2022 02:50:04 GMT
Accept-Ranges: bytes
Cache-Control: max-age=864000
Expires: Wed, 05 Oct 2022 19:13:54 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/webp

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
bbfa5df91b3a1dcae5df8fccfc77c0af
ac4bdd39b33a270ed8fe0ba7860326db8de0bb90
57d0888b86a4c23c47c7b326dc5f14ee6e8f6b6e17af6d15c94f9406b22d97fe

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "57D0888B86A4C23C47C7B326DC5F14EE6E8F6B6E17AF6D15C94F9406B22D97FE"
Last-Modified: Sat, 24 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2818
Expires: Sun, 25 Sep 2022 20:00:53 GMT
Date: Sun, 25 Sep 2022 19:13:55 GMT
Connection: keep-alive

www.zybrew.beer/index.php/Portal/Index/error_html

169.61.14.33

200 OK

5.1 kB

URL HTTP/1.1
www.zybrew.beer/index.php/Portal/Index/error_html
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (736), with CRLF, LF line terminators
Size
5.1 kB (5051 bytes)
Hash
9d50f6b316ab9436eda90669e68c3513
013b1b2cb76c060b47e028b9d2175c32a876551f
c3e08deec2da7914b4a357966b15240c2b7b03deadeeb4d2609c4ddb8d45e8de

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /index.php/Portal/Index/error_html HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.zybrew.beer/
Connection: keep-alive
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232; webchat=1664133232876
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:54 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Pragma: no-cache
Cache-control: private
X-Powered-By: Reanod
Set-Cookie: PHPSESSID=716c583bcdbe62e5106707f89978f6c7; expires=Mon, 26-Sep-2022 05:13:54 GMT; Max-Age=36000; path=/
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 5051
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/html; charset=utf-8

www.zybrew.beer/fonts/OSWALDBOLD.woff

169.61.14.33

301 Moved Permanently

265 B

URL HTTP/1.1
www.zybrew.beer/fonts/OSWALDBOLD.woff
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
265 B (265 bytes)
Hash
afa4e3b9f4383750f97a4f848c99db53
b0aac11c7ec7fb4cb150f6a44d86c402b2e01a7f
58fe0a893de8f9c315cfba77f17df840667aa099a9273edfb0ed823a007f9e26

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /fonts/OSWALDBOLD.woff HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.zybrew.beer/
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232; webchat=1664133232876; PHPSESSID=399f59c6ca7f22b2de762944267106b2; 90CfBI_cf7141056e00f081cc9bbcbab10c305c=1664133234
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 301 Moved Permanently
Date: Sun, 25 Sep 2022 19:13:55 GMT
Server: Apache
Location: https://www.zybrew.beer/index.php/Portal/Index/error_html
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:55 GMT
Content-Length: 265
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

www.zybrew.beer/themes/simplebootx/style/img/m3rili.jpg

169.61.14.33

200 OK

1.4 kB

URL HTTP/1.1
www.zybrew.beer/themes/simplebootx/style/img/m3rili.jpg
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 14x14, components 3\012- data
Size
1.4 kB (1377 bytes)
Hash
36ac1b77cd81ebf2d8de958cb3e720dc
56706205977c7860c6d5af8444743ab86f8e7e14
e3e6c90a6262aa784ca1e08df667cae86a5ebb8103e489985b9fdb3cfc5c4bb2

HTTP Headers

GET /themes/simplebootx/style/img/m3rili.jpg HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/themes/simplebootx/style/css/index.css
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:55 GMT
Server: Apache
Last-Modified: Thu, 26 Oct 2017 09:08:32 GMT
Accept-Ranges: bytes
Content-Length: 1377
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:55 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg

www.zybrew.beer/themes/simplebootx/style/img/m4biao.png

169.61.14.33

200 OK

1.1 kB

URL HTTP/1.1
www.zybrew.beer/themes/simplebootx/style/img/m4biao.png
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
PNG image data, 998 x 2, 8-bit/color RGBA, non-interlaced\012- data
Size
1.1 kB (1064 bytes)
Hash
c4f988575b25af68e0e4c7fe45c51c8b
f66f5bae5c4862c459d98b9e9cd140d527fea06c
5e4704a93b7b9168c3f4de659380cc4097bc865c41b22031e0e514c2171da798

HTTP Headers

GET /themes/simplebootx/style/img/m4biao.png HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/themes/simplebootx/style/css/index.css
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:55 GMT
Server: Apache
Last-Modified: Thu, 26 Oct 2017 09:55:28 GMT
Accept-Ranges: bytes
Content-Length: 1064
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:55 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png

www.zybrew.beer/themes/simplebootx/style/img/m4left.png

169.61.14.33

200 OK

1.3 kB

URL HTTP/1.1
www.zybrew.beer/themes/simplebootx/style/img/m4left.png
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
PNG image data, 27 x 51, 8-bit/color RGBA, non-interlaced\012- data
Size
1.3 kB (1285 bytes)
Hash
21a3754f7d1f726a8cd9d5d5b7f97984
c225b72f4389b788dccded08601c270bbf9be560
9d78ba222b1d3ee22bb35caf8b95ab66068ac56f58c9e4942575bbfbfa2a65b4

HTTP Headers

GET /themes/simplebootx/style/img/m4left.png HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/themes/simplebootx/style/css/index.css
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:55 GMT
Server: Apache
Last-Modified: Thu, 26 Oct 2017 10:00:36 GMT
Accept-Ranges: bytes
Content-Length: 1285
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:55 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png

chat.chukouplus.com/static/js/init_kefu.js?time=0.22385464176029313

152.32.188.233

200 OK

1.6 kB

URL HTTP/1.1
chat.chukouplus.com/static/js/init_kefu.js?time=0.22385464176029313
IP
152.32.188.233:0
ASN
#135377 UCLOUD INFORMATION TECHNOLOGY HK LIMITED

File type
Unicode text, UTF-8 text, with very long lines (657)
Size
1.6 kB (1640 bytes)
Hash
669d08e5adc21bbe684dfa6baf2ce9a1
e7ee2a9d6b6cfd2d4ff5a0ffe80d4b4723a561de
d10f9112d8df0b60f882c9d6ac3f9689fe18a5e01c362ce1167ff315375d8dc7

HTTP Headers

GET /static/js/init_kefu.js?time=0.22385464176029313 HTTP/1.1
Host: chat.chukouplus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:16:22 GMT
Server: Apache
Last-Modified: Wed, 22 Sep 2021 01:51:28 GMT
ETag: "16ba-5cc8bc0a9a100-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:16:22 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1640
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/x-javascript

www.zybrew.beer/fonts/iconfont.ttf?t=1561020571500

169.61.14.33

301 Moved Permanently

265 B

URL HTTP/1.1
www.zybrew.beer/fonts/iconfont.ttf?t=1561020571500
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
265 B (265 bytes)
Hash
afa4e3b9f4383750f97a4f848c99db53
b0aac11c7ec7fb4cb150f6a44d86c402b2e01a7f
58fe0a893de8f9c315cfba77f17df840667aa099a9273edfb0ed823a007f9e26

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /fonts/iconfont.ttf?t=1561020571500 HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232; webchat=1664133232876; PHPSESSID=716c583bcdbe62e5106707f89978f6c7; 90CfBI_cf7141056e00f081cc9bbcbab10c305c=1664133234
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 301 Moved Permanently
Date: Sun, 25 Sep 2022 19:13:55 GMT
Server: Apache
Location: https://www.zybrew.beer/index.php/Portal/Index/error_html
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:55 GMT
Content-Length: 265
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

www.zybrew.beer/themes/simplebootx/style/img/m4right.png

169.61.14.33

200 OK

1.5 kB

URL HTTP/1.1
www.zybrew.beer/themes/simplebootx/style/img/m4right.png
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
PNG image data, 27 x 51, 8-bit/color RGBA, non-interlaced\012- data
Size
1.5 kB (1469 bytes)
Hash
d9ae52f29f058f3ae7c40dfe565aeeab
827317e2cd69fda4885fddc96a530d8478b312ae
222cef86153d63a0aa8b0ef4e98a95d8c0f795dfbf576bc4b01981151809b676

HTTP Headers

GET /themes/simplebootx/style/img/m4right.png HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/themes/simplebootx/style/css/index.css
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:55 GMT
Server: Apache
Last-Modified: Thu, 26 Oct 2017 10:00:36 GMT
Accept-Ranges: bytes
Content-Length: 1469
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:55 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png

www.zybrew.beer/img/huangkuai.jpg

169.61.14.33

301 Moved Permanently

265 B

URL HTTP/1.1
www.zybrew.beer/img/huangkuai.jpg
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
265 B (265 bytes)
Hash
afa4e3b9f4383750f97a4f848c99db53
b0aac11c7ec7fb4cb150f6a44d86c402b2e01a7f
58fe0a893de8f9c315cfba77f17df840667aa099a9273edfb0ed823a007f9e26

HTTP Headers

GET /img/huangkuai.jpg HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232; webchat=1664133232876
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 301 Moved Permanently
Date: Sun, 25 Sep 2022 19:13:55 GMT
Server: Apache
Location: https://www.zybrew.beer/index.php/Portal/Index/error_html
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:55 GMT
Content-Length: 265
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

www.zybrew.beer/themes/simplebootx/style/img/beijing.jpg

169.61.14.33

200 OK

23 kB

URL HTTP/1.1
www.zybrew.beer/themes/simplebootx/style/img/beijing.jpg
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x261, components 3\012- data
Size
23 kB (22974 bytes)
Hash
3668745e02954ef7b728da36f90ac33f
750087a64e60eb39cd922b427439962bb046a6c2
21ff4f23fe897fdd6bf6795b95c925e2a4e359f0352652f38d26f2447c2f0677

HTTP Headers

GET /themes/simplebootx/style/img/beijing.jpg HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/themes/simplebootx/style/css/index.css
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232; webchat=1664133232876
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:55 GMT
Server: Apache
Last-Modified: Fri, 16 Mar 2018 14:44:48 GMT
Accept-Ranges: bytes
Content-Length: 22974
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:55 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg

www.zybrew.beer/themes/simplebootx/style/img/m2bei.jpg

169.61.14.33

200 OK

167 kB

URL HTTP/1.1
www.zybrew.beer/themes/simplebootx/style/img/m2bei.jpg
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1156, components 3\012- data
Size
167 kB (167359 bytes)
Hash
649b74232769523579591226c30438e5
43bd3828ed0675c7e8b59d8939a5779adb62e2b5
c62b104c4cdaedf471929b7afddc6fcb1910c160951ce9931c2b12aaf514ed38

HTTP Headers

GET /themes/simplebootx/style/img/m2bei.jpg HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/themes/simplebootx/style/css/index.css
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:54 GMT
Server: Apache
Last-Modified: Thu, 26 Oct 2017 07:54:44 GMT
Accept-Ranges: bytes
Content-Length: 167359
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:54 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg

www.zybrew.beer/themes/simplebootx/style/img/sousuo.png

169.61.14.33

200 OK

16 kB

URL HTTP/1.1
www.zybrew.beer/themes/simplebootx/style/img/sousuo.png
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
PNG image data, 32 x 20, 8-bit/color RGBA, non-interlaced\012- data
Size
16 kB (15479 bytes)
Hash
e584ee3d215356f3541c7d52aa59bab8
c3d98fa45a6729f009d3da2faf1446165602bd4f
8179cd7bacb0dcbb92cea5a7cc368f2f91e26d1c03802af1c0e7ffc8e01f25e0

HTTP Headers

GET /themes/simplebootx/style/img/sousuo.png HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/themes/simplebootx/style/css/index.css
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232; webchat=1664133232876
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:55 GMT
Server: Apache
Last-Modified: Mon, 13 Jun 2022 01:46:51 GMT
Accept-Ranges: bytes
Content-Length: 15479
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:55 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/png

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4716
Expires: Sun, 25 Sep 2022 20:32:31 GMT
Date: Sun, 25 Sep 2022 19:13:55 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4716
Expires: Sun, 25 Sep 2022 20:32:31 GMT
Date: Sun, 25 Sep 2022 19:13:55 GMT
Connection: keep-alive

chat.chukouplus.com/static/chat/images/kefu-logo.png

152.32.188.233

200 OK

1.3 kB

URL HTTP/1.1
chat.chukouplus.com/static/chat/images/kefu-logo.png
IP
152.32.188.233:0
ASN
#135377 UCLOUD INFORMATION TECHNOLOGY HK LIMITED

File type
PNG image data, 22 x 22, 8-bit/color RGBA, non-interlaced\012- data
Size
1.3 kB (1282 bytes)
Hash
ec600381757c756f783714b24936b3bc
dc1e4b4b5eafc293fd18e545b82634fc548631b6
94867c08872addd26b91a147a22d9a2c2715e9a2946c203da2be89308f523a97

HTTP Headers

GET /static/chat/images/kefu-logo.png HTTP/1.1
Host: chat.chukouplus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:16:22 GMT
Server: Apache
Last-Modified: Tue, 10 Mar 2020 14:51:36 GMT
ETag: "502-5a08141addf34"
Accept-Ranges: bytes
Content-Length: 1282
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:16:22 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1730b63d-9494-4330-acb8-7cb387a0cf08.jpeg

34.120.237.76

200 OK

5.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1730b63d-9494-4330-acb8-7cb387a0cf08.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.3 kB (5305 bytes)
Hash
9773faaac4deac40b96cd0802e974f36
db601663fa6ee5564eddaf8d3d84c7b04bf3871c
40e7a573f510ff29db04b3fbfacde2ad6ecd67b4c0be30034e057654c86408a4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1730b63d-9494-4330-acb8-7cb387a0cf08.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5305
x-amzn-requestid: df7ba218-d20c-4389-8895-affd870ad15f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y5JqKGtHoAMFcJw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632d230d-1854a5420f7091316aa4f211;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 03:07:57 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: v37Rjs_OtmFd6UKau0Flv_J6GAWTe0UdA8hXaDmmn6SmLXQbEHeBVQ==
via: 1.1 44cd593d82a2d200a94217033c614c6a.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 03:45:44 GMT
age: 55691
etag: "db601663fa6ee5564eddaf8d3d84c7b04bf3871c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10032 bytes)
Hash
aa150280eb113504d61a25935c0f0127
ed04f74fbb4c77b21e2babc51a82857f5e23d169
07df17fffb391aa82efb09e30d97e88fa4dbe6df00e37bb90304f69179f4848e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10032
x-amzn-requestid: 521c4012-9834-4100-a7ed-30093502f1a9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sPBHGYoAMFh-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e272c-77b03c321240d76a572d603a;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:37:48 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 5CzA52-o7GYViSJ4lna7ptv9dycJCUL-NLWOk-iCW-ZxDU_FQH_OoQ==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 21:51:18 GMT
age: 76957
etag: "ed04f74fbb4c77b21e2babc51a82857f5e23d169"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c48523c-250d-4030-8145-14c8967dc600.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.9 kB (8914 bytes)
Hash
dfdacc8edea3c24dad020d7e9c11b3f4
2b6e37596e88b62f288dc8e8c937fd904fae28d5
338a44f3bcc01bdd197f037dd8f8bf58a18dea00127465488efe76fb72a6fdff

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c48523c-250d-4030-8145-14c8967dc600.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8914
x-amzn-requestid: 8cfdc32e-f04a-4fd6-a1f1-632934a682fd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y-_EUHqJoAMF7MQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632f7881-14a6d8ef126409964607e0aa;Sampled=0
x-amzn-remapped-date: Sat, 24 Sep 2022 21:37:05 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: kdF6En2vbJhRH1bkYMOuNm5XOIsT1qs3FE281N1SKn1FbyW-oNZsEw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 21:37:06 GMT
etag: "2b6e37596e88b62f288dc8e8c937fd904fae28d5"
content-type: image/jpeg
age: 77809
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F254286e1-1c63-4609-9dfb-0eb4b9096238.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.2 kB (6199 bytes)
Hash
714af732a9aa1db2b13ffb62810fd532
358e74de395352a9529ff1c17856daf8900888c5
1d2035cfcd283560ebe8494f9438e52f8d96cd092dd41cb0eb899a3f905c1e05

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F254286e1-1c63-4609-9dfb-0eb4b9096238.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6199
x-amzn-requestid: d26f22d9-4e9b-4764-8c96-2e1c7ce36340
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y--OKHowoAMFbQA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632f7727-7adb7c4925e6e50e13889544;Sampled=0
x-amzn-remapped-date: Sat, 24 Sep 2022 21:31:19 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: LryqVGSkKbiNOwcqXMULY9FXbOuZBBenjgGPDME3NZLZOdp5divXmw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 22:02:29 GMT
age: 76286
etag: "358e74de395352a9529ff1c17856daf8900888c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F76fa20bb-9883-4867-b55e-fc56c8f8fc57.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.4 kB (6386 bytes)
Hash
d8d9af95acfc8b9b431eb1e020157f6d
f6f926be6e265a597aaede424f05fcd7c76fcc20
0b61d6cb0e0908cb8d303b9e951e2854166bd232e0291b5d698a6b757c064e88

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F76fa20bb-9883-4867-b55e-fc56c8f8fc57.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6386
x-amzn-requestid: 4380489e-d0ba-4f67-ac4f-67619ba34422
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7shGHryIAMF6zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e27a0-005f9c783c7722f16c178026;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:39:44 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lCfwNi2Pbwpsz2IwI01QXXAnXhT-sChpLHQ0Jn02J6wEJlKsodsuOA==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 21:48:35 GMT
age: 77120
etag: "f6f926be6e265a597aaede424f05fcd7c76fcc20"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 3-257, spot sensor temperature 0.000000, unit celsius, color scheme 0, show scale bar, calibration: offset 0.000000, slope 241253891388563521536.000000\012- data
Size
13 kB (12826 bytes)
Hash
b3a72e81317074689a71dac7059e4b6a
b6d56333d7f1ea7ddc8838d84de498ff913c5464
e665a8821b5e7b2e78787647a08d629bf70cbf4cbfee2057c8601cf0565154a1

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12826
x-amzn-requestid: f075cf62-acfc-4bc1-be14-7c3dafb7aaed
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YfVRNFP-oAMFgrA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322cf3a-184b678042d64ac9266b1128;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 07:07:38 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: rN_8rm10Pxb0AUKW6ECfNulcYxBaS7FgGD15gT14dX-FlsGJfqahxA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 21:37:19 GMT
age: 77796
etag: "b6d56333d7f1ea7ddc8838d84de498ff913c5464"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.zybrew.beer/themes/simplebootx/style/img/hebei.jpg

169.61.14.33

200 OK

21 kB

URL HTTP/1.1
www.zybrew.beer/themes/simplebootx/style/img/hebei.jpg
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x98, components 3\012- data
Size
21 kB (21195 bytes)
Hash
c5d28288dcdfb906a2cb11d5ec9b8c47
cb9de517d641aaee6c619d6780234c2c5a5b6dca
863d20632b9aa77a7634c9c408385f649390c160692885440a93d79adda83205

HTTP Headers

GET /themes/simplebootx/style/img/hebei.jpg HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/themes/simplebootx/style/css/index.css
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232; webchat=1664133232876
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:55 GMT
Server: Apache
Last-Modified: Fri, 16 Mar 2018 14:44:48 GMT
Accept-Ranges: bytes
Content-Length: 21195
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:55 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/jpeg

chat.chukouplus.com/static/chat/css/init_kefu.css

152.32.188.233

200 OK

1.7 kB

URL HTTP/1.1
chat.chukouplus.com/static/chat/css/init_kefu.css
IP
152.32.188.233:0
ASN
#135377 UCLOUD INFORMATION TECHNOLOGY HK LIMITED

File type
Unicode text, UTF-8 text, with very long lines (314)
Size
1.7 kB (1722 bytes)
Hash
56b7ef0fc62b22fe42a09be4c823df3a
cd5eb65491220863d0860d7fce0ceedc30b24c62
a88baf5b2d4e8f06c65b02aa9354f7acf78ea1dc3a61b4d500e1b1c34aa7e72d

HTTP Headers

GET /static/chat/css/init_kefu.css HTTP/1.1
Host: chat.chukouplus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:16:22 GMT
Server: Apache
Last-Modified: Wed, 24 Nov 2021 02:19:46 GMT
ETag: "20fe-5d17f7de2e5b8-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:16:22 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1722
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

www.zybrew.beer/themes/simplebootx/style/img/m4bei.jpg

169.61.14.33

200 OK

410 kB

URL HTTP/1.1
www.zybrew.beer/themes/simplebootx/style/img/m4bei.jpg
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1200, components 3\012- data
Size
410 kB (409719 bytes)
Hash
f5a1de37481fc2ccd07048edeeda060f
ece26970b06c010b2eb7894c04c9de0f3840c621
553f3127ddb27e5476c33b4d7791d3682e4120a4fd96b40a95d24b2cca76dfdb

HTTP Headers

GET /themes/simplebootx/style/img/m4bei.jpg HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/themes/simplebootx/style/css/index.css
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:55 GMT
Server: Apache
Last-Modified: Thu, 26 Oct 2017 09:53:16 GMT
Accept-Ranges: bytes
Content-Length: 409719
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:55 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg

www.zybrew.beer/themes/simplebootx/style/img/banxpy2.png

169.61.14.33

200 OK

1.9 kB

URL HTTP/1.1
www.zybrew.beer/themes/simplebootx/style/img/banxpy2.png
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
PNG image data, 56 x 44, 8-bit/color RGBA, non-interlaced\012- data
Size
1.9 kB (1948 bytes)
Hash
dbc573a4d5d56383a5edde78cd32431b
d0751953e0e3f196282899dc5d7bf0790bcd7ab3
ee5fa3c2153089d1c6396bab6517162cfe4957eff1e3d4aadb3f5bb2e3629da8

HTTP Headers

GET /themes/simplebootx/style/img/banxpy2.png HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/themes/simplebootx/style/css/index.css
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232; webchat=1664133232876
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:55 GMT
Server: Apache
Last-Modified: Mon, 07 Jan 2019 18:11:36 GMT
Accept-Ranges: bytes
Content-Length: 1948
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:55 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png

www.zybrew.beer/themes/simplebootx/style/img/baikuai.jpg

169.61.14.33

200 OK

1.2 kB

URL HTTP/1.1
www.zybrew.beer/themes/simplebootx/style/img/baikuai.jpg
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 16x16, components 3\012- data
Size
1.2 kB (1248 bytes)
Hash
e9b53dcf0972cf22c955762b55af229a
a1eeb87200631304afa610545015145e9561fdcf
c13d789f99ce8fa64bb8eb9a2f4c4a103c6488c8e7ba6a556fd3478572d904a0

HTTP Headers

GET /themes/simplebootx/style/img/baikuai.jpg HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/themes/simplebootx/style/css/index.css
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232; webchat=1664133232876
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:55 GMT
Server: Apache
Last-Modified: Thu, 26 Oct 2017 04:23:22 GMT
Accept-Ranges: bytes
Content-Length: 1248
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:55 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/jpeg

www.zybrew.beer/themes/simplebootx/style/img/huangkuai.jpg

169.61.14.33

200 OK

7.4 kB

URL HTTP/1.1
www.zybrew.beer/themes/simplebootx/style/img/huangkuai.jpg
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC (Windows), datetime=2022:06:11 13:52:07], progressive, precision 8, 16x16, components 3\012- data
Size
7.4 kB (7425 bytes)
Hash
77284146977a8e6e7bff8b97ccb5fdbc
5a45d2b991fbb6307b2628db160158f9cb36bf35
70ce120d182f49eedcc9642039e8dba65c05a6e4b404640fc70a7436183892d9

HTTP Headers

GET /themes/simplebootx/style/img/huangkuai.jpg HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/themes/simplebootx/style/css/index.css
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232; webchat=1664133232876
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:55 GMT
Server: Apache
Last-Modified: Sat, 11 Jun 2022 05:52:59 GMT
Accept-Ranges: bytes
Content-Length: 7425
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:55 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg

www.zybrew.beer/themes/simplebootx/style/img/m1biao.png

169.61.14.33

200 OK

1.1 kB

URL HTTP/1.1
www.zybrew.beer/themes/simplebootx/style/img/m1biao.png
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
PNG image data, 1000 x 2, 8-bit/color RGBA, non-interlaced\012- data
Size
1.1 kB (1065 bytes)
Hash
7f56e9103b28bb8f94a415dc0180b15b
cb3dc036d6092fe4bff52db760d83554d1560b19
5916416e9e1bad54a0db01954c973823a270e73b0fa81c29d0f451f011edb23d

HTTP Headers

GET /themes/simplebootx/style/img/m1biao.png HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/themes/simplebootx/style/css/index.css
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232; webchat=1664133232876
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:55 GMT
Server: Apache
Last-Modified: Thu, 26 Oct 2017 05:26:34 GMT
Accept-Ranges: bytes
Content-Length: 1065
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:55 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png

www.zybrew.beer/index.php/Portal/Index/error_html

169.61.14.33

200 OK

5.1 kB

URL HTTP/1.1
www.zybrew.beer/index.php/Portal/Index/error_html
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (736), with CRLF, LF line terminators
Size
5.1 kB (5059 bytes)
Hash
1df6487f0cb5719aa862a2109e8e2280
f7c8940e36d4b158f309ac4f4077a809ea95d61a
3500e60888ca7d5f05d16bfb81bd63270e96b537c936c99e94da58734a8013f0

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /index.php/Portal/Index/error_html HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.zybrew.beer/
Connection: keep-alive
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232; webchat=1664133232876
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:55 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Pragma: no-cache
Cache-control: private
X-Powered-By: Reanod
Set-Cookie: PHPSESSID=feab128f0a1c609b8c66f812c1f687e1; expires=Mon, 26-Sep-2022 05:13:55 GMT; Max-Age=36000; path=/
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 5059
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: text/html; charset=utf-8

www.zybrew.beer/home_img/open.png

169.61.14.33

301 Moved Permanently

265 B

URL HTTP/1.1
www.zybrew.beer/home_img/open.png
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
265 B (265 bytes)
Hash
afa4e3b9f4383750f97a4f848c99db53
b0aac11c7ec7fb4cb150f6a44d86c402b2e01a7f
58fe0a893de8f9c315cfba77f17df840667aa099a9273edfb0ed823a007f9e26

HTTP Headers

GET /home_img/open.png HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232; webchat=1664133232876; PHPSESSID=716c583bcdbe62e5106707f89978f6c7; 90CfBI_cf7141056e00f081cc9bbcbab10c305c=1664133234
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 301 Moved Permanently
Date: Sun, 25 Sep 2022 19:13:55 GMT
Server: Apache
Location: https://www.zybrew.beer/index.php/Portal/Index/error_html
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:55 GMT
Content-Length: 265
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

chat.chukouplus.com/chat/home/index?cookie_id=1664133232876&site_host=https://www.zybrew.beer/

152.32.188.233

200 OK

1.8 kB

URL HTTP/1.1
chat.chukouplus.com/chat/home/index?cookie_id=1664133232876&site_host=https://www.zybrew.beer/
IP
152.32.188.233:0
ASN
#135377 UCLOUD INFORMATION TECHNOLOGY HK LIMITED

File type
HTML document text\012- HTML document, Unicode text, UTF-8 text
Size
1.8 kB (1826 bytes)
Hash
dabe31ee37484c0a5080841f9d956cdc
784c1b706224f6a2772164b4c51646bc6740cd63
a7d47c31c5e6ede75abe20c47de5f6ddff59a9edda7af0868d9b3617defd54cd

HTTP Headers

GET /chat/home/index?cookie_id=1664133232876&site_host=https://www.zybrew.beer/ HTTP/1.1
Host: chat.chukouplus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:16:23 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=amjvleb9m5cvch3mbn7nmh5hdi; path=/; HttpOnly
webchat=1664133232876; path=/
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1826
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=utf-8

chat.chukouplus.com/static/chat/home_img/open.png

152.32.188.233

200 OK

1.2 kB

URL HTTP/1.1
chat.chukouplus.com/static/chat/home_img/open.png
IP
152.32.188.233:0
ASN
#135377 UCLOUD INFORMATION TECHNOLOGY HK LIMITED

File type
PNG image data, 20 x 12, 8-bit/color RGBA, non-interlaced\012- data
Size
1.2 kB (1181 bytes)
Hash
a476591e1d1d53e0052b2dab7cfbfb65
b6c60739c9c11503e3302e293642952b63320e96
8c33489e2027c0ab1df09a24c169bd552b79eff54c1ae0fc4cb58fde650ac654

HTTP Headers

GET /static/chat/home_img/open.png HTTP/1.1
Host: chat.chukouplus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chat.chukouplus.com/static/chat/css/init_kefu.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:16:23 GMT
Server: Apache
Last-Modified: Tue, 10 Mar 2020 14:51:36 GMT
ETag: "49d-5a08141ad6a03"
Accept-Ranges: bytes
Content-Length: 1181
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:16:23 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png

chat.chukouplus.com/static/chat/home_img/kefu-logo2.png

152.32.188.233

200 OK

2.0 kB

URL HTTP/1.1
chat.chukouplus.com/static/chat/home_img/kefu-logo2.png
IP
152.32.188.233:0
ASN
#135377 UCLOUD INFORMATION TECHNOLOGY HK LIMITED

File type
PNG image data, 54 x 54, 8-bit/color RGBA, non-interlaced\012- data
Size
2.0 kB (2006 bytes)
Hash
4b5b80201e82dc4b75e31a3e747930ee
09174e378c48f73b87ccf0866061d8b969869554
7b35be2f3aba1450f101bb4389707ffe277963b60342a863bec598b80bbfaf86

HTTP Headers

GET /static/chat/home_img/kefu-logo2.png HTTP/1.1
Host: chat.chukouplus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chat.chukouplus.com/static/chat/css/init_kefu.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:16:23 GMT
Server: Apache
Last-Modified: Tue, 10 Mar 2020 14:51:36 GMT
ETag: "7d6-5a08141ad6a03"
Accept-Ranges: bytes
Content-Length: 2006
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:16:23 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png

www.zybrew.beer/themes/simplebootx/style/img/banxpy1.png

169.61.14.33

200 OK

1.7 kB

URL HTTP/1.1
www.zybrew.beer/themes/simplebootx/style/img/banxpy1.png
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
PNG image data, 43 x 49, 8-bit/color RGBA, non-interlaced\012- data
Size
1.7 kB (1664 bytes)
Hash
5f06b85c755af8531c32cbadbcc43b13
05c3299c242df8dad128fe14aa2b52a891085491
7b3f6fc9922697a0d571df14ec9bf7e622123cae35788b04da269cd9483b7334

HTTP Headers

GET /themes/simplebootx/style/img/banxpy1.png HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/themes/simplebootx/style/css/index.css
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232; webchat=1664133232876
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:55 GMT
Server: Apache
Last-Modified: Mon, 07 Jan 2019 18:11:38 GMT
Accept-Ranges: bytes
Content-Length: 1664
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:55 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/png

www.zybrew.beer/themes/simplebootx/style/img/banxpy3.png

169.61.14.33

200 OK

2.3 kB

URL HTTP/1.1
www.zybrew.beer/themes/simplebootx/style/img/banxpy3.png
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
PNG image data, 56 x 56, 8-bit/color RGBA, non-interlaced\012- data
Size
2.3 kB (2306 bytes)
Hash
4fb4d6564342ddf4bc7895e7bcd511be
fa5890584e974504a0291175b1656c82ec542572
b779874048679ceae497d794ed7e933fe894d00a09004b091d37a51fc82e796d

HTTP Headers

GET /themes/simplebootx/style/img/banxpy3.png HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/themes/simplebootx/style/css/index.css
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232; webchat=1664133232876
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:55 GMT
Server: Apache
Last-Modified: Mon, 07 Jan 2019 18:11:40 GMT
Accept-Ranges: bytes
Content-Length: 2306
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:55 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png

www.zybrew.beer/home_img/kefu-logo2.png

169.61.14.33

301 Moved Permanently

265 B

URL HTTP/1.1
www.zybrew.beer/home_img/kefu-logo2.png
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
265 B (265 bytes)
Hash
afa4e3b9f4383750f97a4f848c99db53
b0aac11c7ec7fb4cb150f6a44d86c402b2e01a7f
58fe0a893de8f9c315cfba77f17df840667aa099a9273edfb0ed823a007f9e26

HTTP Headers

GET /home_img/kefu-logo2.png HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232; webchat=1664133232876; PHPSESSID=716c583bcdbe62e5106707f89978f6c7; 90CfBI_cf7141056e00f081cc9bbcbab10c305c=1664133234
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 301 Moved Permanently
Date: Sun, 25 Sep 2022 19:13:55 GMT
Server: Apache
Location: https://www.zybrew.beer/index.php/Portal/Index/error_html
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:55 GMT
Content-Length: 265
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

www.zybrew.beer/themes/simplebootx/style/img/daohang.png

169.61.14.33

200 OK

15 kB

URL HTTP/1.1
www.zybrew.beer/themes/simplebootx/style/img/daohang.png
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
PNG image data, 103 x 7, 8-bit/color RGBA, non-interlaced\012- data
Size
15 kB (14631 bytes)
Hash
48eac6428eb083d067bda4629fc94e5c
7d143c66a7b7a6fb734a49cb57096e591b30da29
a498d4fd3beb6f2f59075628b38d9b93c2ec357e6e927482720fbfc4d2798a17

HTTP Headers

GET /themes/simplebootx/style/img/daohang.png HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/themes/simplebootx/style/css/index.css
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232; webchat=1664133232876
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:55 GMT
Server: Apache
Last-Modified: Mon, 13 Jun 2022 01:49:48 GMT
Accept-Ranges: bytes
Content-Length: 14631
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:55 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png

www.zybrew.beer/themes/simplebootx/picbanners/huanying295_22.webp

169.61.14.33

200 OK

3.1 kB

URL HTTP/1.1
www.zybrew.beer/themes/simplebootx/picbanners/huanying295_22.webp
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 295x22, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
3.1 kB (3097 bytes)
Hash
4160febdf9fd10d9300cbdbc1281ad97
ba03c1ca858a1de4b7a38db67fe5d630d06e925e
4c273a9bb4361ad094cb8e2ea6e3eb58ceb9ce23d64b462df2dd0a61362bb104

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /themes/simplebootx/picbanners/huanying295_22.webp HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:55 GMT
Server: Apache
Last-Modified: Sun, 25 Sep 2022 19:13:55 GMT
Accept-Ranges: bytes
Cache-Control: max-age=864000
Expires: Wed, 05 Oct 2022 19:13:55 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3097
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/webp

www.zybrew.beer/index.php/Portal/Index/error_html

169.61.14.33

200 OK

5.1 kB

URL HTTP/1.1
www.zybrew.beer/index.php/Portal/Index/error_html
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (736), with CRLF, LF line terminators
Size
5.1 kB (5059 bytes)
Hash
1df6487f0cb5719aa862a2109e8e2280
f7c8940e36d4b158f309ac4f4077a809ea95d61a
3500e60888ca7d5f05d16bfb81bd63270e96b537c936c99e94da58734a8013f0

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /index.php/Portal/Index/error_html HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.zybrew.beer/
Connection: keep-alive
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232; webchat=1664133232876; PHPSESSID=6f12a617ee5f3f6d7558baddabdf7849; 90CfBI_cf7141056e00f081cc9bbcbab10c305c=1664133234
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:55 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Pragma: no-cache
Cache-control: private
X-Powered-By: Reanod
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 5059
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: text/html; charset=utf-8

www.zybrew.beer/themes/simplebootx/style/img/lang1.png

169.61.14.33

200 OK

1.5 kB

URL HTTP/1.1
www.zybrew.beer/themes/simplebootx/style/img/lang1.png
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
PNG image data, 26 x 17, 8-bit/color RGBA, non-interlaced\012- data
Size
1.5 kB (1502 bytes)
Hash
236bc860596f72e6c5a4180fb89c1019
0116fbbceac04b48bb2f01730394f18ef51de23d
d2431cb3098d93e1846ec8b3ebfe878f85b8ac4ba73dfe1c7cb94d7e22d37dac

HTTP Headers

GET /themes/simplebootx/style/img/lang1.png HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:55 GMT
Server: Apache
Last-Modified: Sat, 11 Jun 2022 06:34:38 GMT
Accept-Ranges: bytes
Content-Length: 1502
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:55 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: image/png

www.zybrew.beer/themes/simplebootx/style/img/facebook.jpg

169.61.14.33

200 OK

497 B

URL HTTP/1.1
www.zybrew.beer/themes/simplebootx/style/img/facebook.jpg
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
PNG image data, 26 x 26, 8-bit/color RGBA, non-interlaced\012- data
Size
497 B (497 bytes)
Hash
ddf0b1813c9ac50c7bf3418c67056035
c1d42d9f84b3124ead7ba78243b8f127d701fa35
1cce960ce73d70ef9019700c6ab8013ea679a58aed2b3bafc65e09380017ec5c

HTTP Headers

GET /themes/simplebootx/style/img/facebook.jpg HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:55 GMT
Server: Apache
Last-Modified: Mon, 13 Jun 2022 01:38:32 GMT
Accept-Ranges: bytes
Content-Length: 497
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:55 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/jpeg

chat.chukouplus.com/static/chat/css/webuploader.css

152.32.188.233

200 OK

286 B

URL HTTP/1.1
chat.chukouplus.com/static/chat/css/webuploader.css
IP
152.32.188.233:0
ASN
#135377 UCLOUD INFORMATION TECHNOLOGY HK LIMITED

File type
ASCII text
Size
286 B (286 bytes)
Hash
b42b0bde314a8c6aa8b67ed05f31ebae
a43f342fa6454f9edf25d7e2548233089d2cd89c
fc0bf929a80556907e89b5d0b5eb2922864f5d40c3abd58dbbe87682ef945870

HTTP Headers

GET /static/chat/css/webuploader.css HTTP/1.1
Host: chat.chukouplus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chat.chukouplus.com/chat/home/index?cookie_id=1664133232876&site_host=https://www.zybrew.beer/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:16:23 GMT
Server: Apache
Last-Modified: Tue, 10 Mar 2020 14:51:36 GMT
ETag: "1f8-5a08141a966a5-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:16:23 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 286
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css

chat.chukouplus.com/static/chat/js/index.js

152.32.188.233

200 OK

351 B

URL HTTP/1.1
chat.chukouplus.com/static/chat/js/index.js
IP
152.32.188.233:0
ASN
#135377 UCLOUD INFORMATION TECHNOLOGY HK LIMITED

File type
Unicode text, UTF-8 text
Size
351 B (351 bytes)
Hash
10360f9bf9a42956d19346a16b3c4edf
b4ee0c47d7bea0d88c06da99b749d238aadd9d9a
e88f5af5d233bdd94cf69a5286f2280eaee5333b1488eab88a6eecf516bc1b6f

HTTP Headers

GET /static/chat/js/index.js HTTP/1.1
Host: chat.chukouplus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chat.chukouplus.com/chat/home/index?cookie_id=1664133232876&site_host=https://www.zybrew.beer/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:16:23 GMT
Server: Apache
Last-Modified: Tue, 10 Mar 2020 14:51:36 GMT
ETag: "2da-5a08141ae296c-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:16:23 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 351
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/x-javascript

www.zybrew.beer/data/watermark/20220815/62f9e833a3607.jpg

169.61.14.33

200 OK

24 kB

URL HTTP/1.1
www.zybrew.beer/data/watermark/20220815/62f9e833a3607.jpg
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 150x150, segment length 16, baseline, precision 8, 464x464, components 3\012- data
Size
24 kB (23671 bytes)
Hash
5c37c7095b5d57be33c3fc38f2691424
8244a82437c2ebdfe3a9e1b0aecffe23969cb78a
b768f9cab99d459aced26ec9a5b4f915e3fa0f9cad47f364fa825a0b6385838d

HTTP Headers

GET /data/watermark/20220815/62f9e833a3607.jpg HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:56 GMT
Server: Apache
Last-Modified: Mon, 15 Aug 2022 06:31:15 GMT
Accept-Ranges: bytes
Content-Length: 23671
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:56 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/jpeg

www.zybrew.beer/data/watermark/20220812/62f619da354fb.jpg

169.61.14.33

200 OK

26 kB

URL HTTP/1.1
www.zybrew.beer/data/watermark/20220812/62f619da354fb.jpg
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 794x794, components 3\012- data
Size
26 kB (26279 bytes)
Hash
60e20e454fafb7c7bdef8af16f22f495
8dd95f548cadfea440cddea1f9ad0326101a923b
e86cfd024ebba14c12eeed6e4512b59758a1c60982b77605df374717eb87d6a2

HTTP Headers

GET /data/watermark/20220812/62f619da354fb.jpg HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:56 GMT
Server: Apache
Last-Modified: Fri, 12 Aug 2022 09:14:02 GMT
Accept-Ranges: bytes
Content-Length: 26279
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:56 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: image/jpeg

www.zybrew.beer/data/upload/20220601/6297093c268ea1920_632.webp

169.61.14.33

200 OK

155 kB

URL HTTP/1.1
www.zybrew.beer/data/upload/20220601/6297093c268ea1920_632.webp
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 1920x631, components 3\012- data
Size
155 kB (154809 bytes)
Hash
86913d9e8b931efaa7dbf9d63dd03deb
b2f8f2dc663bdeb968c344f78310be288cf78f5a
f9a5f3272416ac56a73d528a9691651511944ee32cd4f29b8837d82568fa591a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /data/upload/20220601/6297093c268ea1920_632.webp HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:55 GMT
Server: Apache
Last-Modified: Wed, 01 Jun 2022 06:38:03 GMT
Accept-Ranges: bytes
Cache-Control: max-age=864000
Expires: Wed, 05 Oct 2022 19:13:55 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/webp

www.zybrew.beer/data/upload/20220601/6296d3ba6ee491920_632.webp

169.61.14.33

200 OK

128 kB

URL HTTP/1.1
www.zybrew.beer/data/upload/20220601/6296d3ba6ee491920_632.webp
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 1920x631, components 3\012- data
Size
128 kB (127920 bytes)
Hash
b820689310c49c1796eba3bb775ac206
2243a8266427fe20766d69793f92005e654b00a0
275b69ca758d40a68119eca60d173a73c7304573dff2d755cb491dba2ce3c12f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /data/upload/20220601/6296d3ba6ee491920_632.webp HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:55 GMT
Server: Apache
Last-Modified: Wed, 01 Jun 2022 02:50:07 GMT
Accept-Ranges: bytes
Cache-Control: max-age=864000
Expires: Wed, 05 Oct 2022 19:13:55 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/webp

chat.chukouplus.com/static/chat/css/kefu_chat.css

152.32.188.233

200 OK

1.9 kB

URL HTTP/1.1
chat.chukouplus.com/static/chat/css/kefu_chat.css
IP
152.32.188.233:0
ASN
#135377 UCLOUD INFORMATION TECHNOLOGY HK LIMITED

File type
assembler source, Unicode text, UTF-8 text, with very long lines (310)
Size
1.9 kB (1854 bytes)
Hash
3782476ffeb3f08d25f7d71931e88b0d
40b51e40566cd6b3a8cad14bec40c5245f4bc870
02e0218859592c33138d5986f2a2ed461ac82fc8ab8c724f5da42de84915a83c

HTTP Headers

GET /static/chat/css/kefu_chat.css HTTP/1.1
Host: chat.chukouplus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chat.chukouplus.com/chat/home/index?cookie_id=1664133232876&site_host=https://www.zybrew.beer/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:16:23 GMT
Server: Apache
Last-Modified: Wed, 24 Nov 2021 02:19:46 GMT
ETag: "2220-5d17f7de2e5b8-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:16:23 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1854
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css

chat.chukouplus.com/static/js/placeholder.js

152.32.188.233

200 OK

303 B

URL HTTP/1.1
chat.chukouplus.com/static/js/placeholder.js
IP
152.32.188.233:0
ASN
#135377 UCLOUD INFORMATION TECHNOLOGY HK LIMITED

File type
Unicode text, UTF-8 text
Size
303 B (303 bytes)
Hash
ca19e543e894c30ea1e0cca728987d05
e42b3169136264f4d0b064d2ee5acc2cc0703118
54e2e486aa9c46dfc4b1b55b8c200dde439fcfc71d1b6ce1a14dc1e7a4c3b79e

HTTP Headers

GET /static/js/placeholder.js HTTP/1.1
Host: chat.chukouplus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chat.chukouplus.com/chat/home/index?cookie_id=1664133232876&site_host=https://www.zybrew.beer/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:16:23 GMT
Server: Apache
Last-Modified: Tue, 10 Mar 2020 14:51:36 GMT
ETag: "29c-5a08141b02928-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:16:23 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 303
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/x-javascript

chat.chukouplus.com/static/chat/js/jquery-1.11.3.min.js

152.32.188.233

200 OK

33 kB

URL HTTP/1.1
chat.chukouplus.com/static/chat/js/jquery-1.11.3.min.js
IP
152.32.188.233:0
ASN
#135377 UCLOUD INFORMATION TECHNOLOGY HK LIMITED

File type
ASCII text, with very long lines (32038)
Size
33 kB (33365 bytes)
Hash
85b49e521a6325d88abdec3bafd5f538
46c7f91cd8e3f62789adbfaf252689c7b6bb9861
92f987eb1d219a220ddc05f18d05e33b43244b8ef4b39eb7244a317743e2c3c7

HTTP Headers

GET /static/chat/js/jquery-1.11.3.min.js HTTP/1.1
Host: chat.chukouplus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chat.chukouplus.com/chat/home/index?cookie_id=1664133232876&site_host=https://www.zybrew.beer/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:16:23 GMT
Server: Apache
Last-Modified: Tue, 10 Mar 2020 14:51:36 GMT
ETag: "17798-5a08141ae2d54-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:16:23 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 33365
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/x-javascript

www.zybrew.beer/data/watermark/20220812/62f6073a370f3.jpg

169.61.14.33

200 OK

14 kB

URL HTTP/1.1
www.zybrew.beer/data/watermark/20220812/62f6073a370f3.jpg
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5], baseline, precision 8, 244x288, components 3\012- data
Size
14 kB (13562 bytes)
Hash
1760488caba8f7abd5c3ad5065a60aaf
9498f609e0e9740716544c47538ecc6a5da6c0b5
8b32f49980afdb65744f132bb8d7cbdcacffb844d18e2e8f51310d3668eb2d26

HTTP Headers

GET /data/watermark/20220812/62f6073a370f3.jpg HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:56 GMT
Server: Apache
Last-Modified: Fri, 12 Aug 2022 07:54:34 GMT
Accept-Ranges: bytes
Content-Length: 13562
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:56 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: image/jpeg

www.zybrew.beer/data/watermark/20220811/62f4d063dcaa7.png

169.61.14.33

200 OK

60 kB

URL HTTP/1.1
www.zybrew.beer/data/watermark/20220811/62f4d063dcaa7.png
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
PNG image data, 350 x 350, 8-bit/color RGB, non-interlaced\012- data
Size
60 kB (60271 bytes)
Hash
08d1b49d89535769f8109d72b34aca00
6a1e6e04711576316d48bfdd58df2d47dabf9937
9d7c62ec648e9dd859375923a3f130906209d1657f75a19decdd01ac3a220715

HTTP Headers

GET /data/watermark/20220811/62f4d063dcaa7.png HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:56 GMT
Server: Apache
Last-Modified: Thu, 11 Aug 2022 09:48:20 GMT
Accept-Ranges: bytes
Content-Length: 60271
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:56 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png

www.zybrew.beer/data/watermark/20220811/62f4c031d226d.png

169.61.14.33

200 OK

48 kB

URL HTTP/1.1
www.zybrew.beer/data/watermark/20220811/62f4c031d226d.png
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
PNG image data, 411 x 411, 8-bit/color RGB, non-interlaced\012- data
Size
48 kB (48068 bytes)
Hash
f8ef3be3f450676abb0806a4ff24ba94
af63fb411a609e497cb3ec960743ead63c1f5c79
90f053d767d60b972bf2cede28df266394d143ecaf6128763532066617d478b8

HTTP Headers

GET /data/watermark/20220811/62f4c031d226d.png HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:56 GMT
Server: Apache
Last-Modified: Thu, 11 Aug 2022 08:39:13 GMT
Accept-Ranges: bytes
Content-Length: 48068
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:56 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/png

www.zybrew.beer/index.php/Portal/Index/error_html

169.61.14.33

200 OK

5.1 kB

URL HTTP/1.1
www.zybrew.beer/index.php/Portal/Index/error_html
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (736), with CRLF, LF line terminators
Size
5.1 kB (5059 bytes)
Hash
1df6487f0cb5719aa862a2109e8e2280
f7c8940e36d4b158f309ac4f4077a809ea95d61a
3500e60888ca7d5f05d16bfb81bd63270e96b537c936c99e94da58734a8013f0

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /index.php/Portal/Index/error_html HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.zybrew.beer/
Connection: keep-alive
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232; webchat=1664133232876; PHPSESSID=6f12a617ee5f3f6d7558baddabdf7849; 90CfBI_cf7141056e00f081cc9bbcbab10c305c=1664133234
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:56 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Pragma: no-cache
Cache-control: private
X-Powered-By: Reanod
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 5059
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: text/html; charset=utf-8

www.zybrew.beer/data/watermark/20220812/62f60cab4b1f5.jpg

169.61.14.33

200 OK

40 kB

URL HTTP/1.1
www.zybrew.beer/data/watermark/20220812/62f60cab4b1f5.jpg
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=12, height=3456, manufacturer=realme, model=realme GT Neo2, xresolution=180, yresolution=188, resolutionunit=2, software=www.meitu.com, datetime=2022:06:21 11:25:27, GPS-Data, width=4608], baseline, precision 8, 385x256, components 3\012- data
Size
40 kB (40481 bytes)
Hash
a5292652e394e705cec2f05eb8c4e73b
74a08e0f2c9ae1433aefa8451808d074f8fab97d
804413e779b3ddf0ed5d6891922ee19a5bdbd38cc53275d3a100b116857101cb

HTTP Headers

GET /data/watermark/20220812/62f60cab4b1f5.jpg HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:56 GMT
Server: Apache
Last-Modified: Fri, 12 Aug 2022 08:17:47 GMT
Accept-Ranges: bytes
Content-Length: 40481
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:56 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: image/jpeg

www.zybrew.beer/data/watermark/20220919/632834a053142.jpg

169.61.14.33

200 OK

38 kB

URL HTTP/1.1
www.zybrew.beer/data/watermark/20220919/632834a053142.jpg
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5 Windows, datetime=2022:09:19 17:21:28], progressive, precision 8, 366x257, components 3\012- data
Size
38 kB (37934 bytes)
Hash
b6052e9b16410aa088fd2ba3dd7a753a
7642f85319075c55b152547352343a7991128158
ac95ed8a156aef6e8a52b7171219bac59e46378fa6ecbecfab2c18e18c870f71

HTTP Headers

GET /data/watermark/20220919/632834a053142.jpg HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:56 GMT
Server: Apache
Last-Modified: Mon, 19 Sep 2022 09:21:36 GMT
Accept-Ranges: bytes
Content-Length: 37934
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:56 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/jpeg

www.zybrew.beer/uploadfile/2019/0201/20190201032003676.jpg

169.61.14.33

200 OK

8.5 kB

URL HTTP/1.1
www.zybrew.beer/uploadfile/2019/0201/20190201032003676.jpg
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=3, software=Adobe Photoshop CS6 (Windows), datetime=2019-02-01T15:17:25+08:00], progressive, precision 8, 387x311, components 3\012- data
Size
8.5 kB (8549 bytes)
Hash
6f158e8be15f00e134392a55c22f053e
481898a2f779f0c01bcd0c0371ed41de9ae30fab
57dfdc82517de4fa60292e902898c7e9e28351ece6d82f8e696071a7e9987c43

HTTP Headers

GET /uploadfile/2019/0201/20190201032003676.jpg HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:56 GMT
Server: Apache
Last-Modified: Fri, 01 Feb 2019 21:20:04 GMT
Accept-Ranges: bytes
Content-Length: 8549
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:56 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/jpeg

www.zybrew.beer/data/watermark/20220913/6320252bbce43.jpg

169.61.14.33

200 OK

62 kB

URL HTTP/1.1
www.zybrew.beer/data/watermark/20220913/6320252bbce43.jpg
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5 Windows, datetime=2022:09:13 14:37:22], baseline, precision 8, 366x257, components 3\012- data
Size
62 kB (62314 bytes)
Hash
2d8a32adbe59086afe693abcc010e028
3be38df036bdeae4f1c88acf3ea91ebe2b4925b6
5e683230603f9f83f053962e2f5954eedf8db1470b8742341a310ba1bda08bd8

HTTP Headers

GET /data/watermark/20220913/6320252bbce43.jpg HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:56 GMT
Server: Apache
Last-Modified: Tue, 13 Sep 2022 06:37:31 GMT
Accept-Ranges: bytes
Content-Length: 62314
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:56 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: image/jpeg

www.zybrew.beer/data/watermark/20220913/63201f488e013.jpg

169.61.14.33

200 OK

53 kB

URL HTTP/1.1
www.zybrew.beer/data/watermark/20220913/63201f488e013.jpg
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5 Windows, datetime=2022:09:13 14:12:13], baseline, precision 8, 366x257, components 3\012- data
Size
53 kB (52684 bytes)
Hash
8d94377c4693ad84a2dc984ecf603ce4
88776e107c79f647dccc1191a293bda83e7f7d8a
98a4780ac5aa33e54f3cdd4b44886c4aa807b005922a1aa3a2c07646a1956321

HTTP Headers

GET /data/watermark/20220913/63201f488e013.jpg HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:56 GMT
Server: Apache
Last-Modified: Tue, 13 Sep 2022 06:12:24 GMT
Accept-Ranges: bytes
Content-Length: 52684
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:56 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/jpeg

www.zybrew.beer/themes/simplebootx/picbanners/m4lianjie.png

169.61.14.33

200 OK

2.8 kB

URL HTTP/1.1
www.zybrew.beer/themes/simplebootx/picbanners/m4lianjie.png
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
PNG image data, 46 x 46, 8-bit/color RGBA, non-interlaced\012- data
Size
2.8 kB (2844 bytes)
Hash
73563e29a9f1b8cb521350a85f5b0b12
3d6fbb8899a6b4522475fb5599f43d54d693a734
9365ac3b469d958a42df9cc7eba1be15ef0fceab14dfa044b39d785128062c28

HTTP Headers

GET /themes/simplebootx/picbanners/m4lianjie.png HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:56 GMT
Server: Apache
Last-Modified: Thu, 26 Oct 2017 10:01:22 GMT
Accept-Ranges: bytes
Content-Length: 2844
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:56 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: image/png

chat.chukouplus.com/static/chat/js/upload.js

152.32.188.233

200 OK

1.0 kB

URL HTTP/1.1
chat.chukouplus.com/static/chat/js/upload.js
IP
152.32.188.233:0
ASN
#135377 UCLOUD INFORMATION TECHNOLOGY HK LIMITED

File type
Unicode text, UTF-8 text
Size
1.0 kB (1037 bytes)
Hash
4171e5ce2c25174c9c4a2564e86cbd9f
2eec1c482cb280f27b16158c5289b121a1be4dfb
2b57d5f264d2d1e504c0d7340e33f0b564f20b6aad7dc1aa0f5bfaa1ca497d78

HTTP Headers

GET /static/chat/js/upload.js HTTP/1.1
Host: chat.chukouplus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chat.chukouplus.com/chat/home/index?cookie_id=1664133232876&site_host=https://www.zybrew.beer/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:16:23 GMT
Server: Apache
Last-Modified: Tue, 10 Mar 2020 14:51:36 GMT
ETag: "ae8-5a08141afb00f-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:16:23 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1037
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/x-javascript

chat.chukouplus.com/static/chat/js/upload2.js

152.32.188.233

200 OK

1.1 kB

URL HTTP/1.1
chat.chukouplus.com/static/chat/js/upload2.js
IP
152.32.188.233:0
ASN
#135377 UCLOUD INFORMATION TECHNOLOGY HK LIMITED

File type
Unicode text, UTF-8 text
Size
1.1 kB (1099 bytes)
Hash
8d0727747fb388677279c197d394d358
5301a93cdf0f604c64eedae22ab6e05730d718f7
f9788b2a67d675e7817d4cf4b3afeb487dd9191ac37c3e23cb62e7a0e71ea8f6

HTTP Headers

GET /static/chat/js/upload2.js HTTP/1.1
Host: chat.chukouplus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chat.chukouplus.com/chat/home/index?cookie_id=1664133232876&site_host=https://www.zybrew.beer/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:16:23 GMT
Server: Apache
Last-Modified: Tue, 10 Mar 2020 14:51:36 GMT
ETag: "b53-5a08141afb00f-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:16:23 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1099
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/x-javascript

chat.chukouplus.com/static/js/layer/layer.js

152.32.188.233

200 OK

7.4 kB

URL HTTP/1.1
chat.chukouplus.com/static/js/layer/layer.js
IP
152.32.188.233:0
ASN
#135377 UCLOUD INFORMATION TECHNOLOGY HK LIMITED

File type
Unicode text, UTF-8 text, with very long lines (21555)
Size
7.4 kB (7436 bytes)
Hash
e03cf79d7196625837f1c73b3c877f8b
cc92ae2822882715a37f319f7ae3ae5f9cf96ad7
0471426f9261e3faf8f629a2618ea7ecb94ae78e89b51b34693dcbcf19ca5828

HTTP Headers

GET /static/js/layer/layer.js HTTP/1.1
Host: chat.chukouplus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chat.chukouplus.com/chat/home/index?cookie_id=1664133232876&site_host=https://www.zybrew.beer/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:16:23 GMT
Server: Apache
Last-Modified: Tue, 10 Mar 2020 14:51:36 GMT
ETag: "5487-5a08141b01d70-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:16:23 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 7436
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/x-javascript

chat.chukouplus.com/static/chat/js/kefu_chat.js

152.32.188.233

200 OK

2.8 kB

URL HTTP/1.1
chat.chukouplus.com/static/chat/js/kefu_chat.js
IP
152.32.188.233:0
ASN
#135377 UCLOUD INFORMATION TECHNOLOGY HK LIMITED

File type
Unicode text, UTF-8 text
Size
2.8 kB (2810 bytes)
Hash
b337ba5ff9cce7eb548e94e071dadb00
6a5b98c77f3d79ccb3956a38f6cda8087cd8783c
21e232a595ec96d58ed2edc08eedc409529f09a64eb8ba96b7055acc5de3bf01

HTTP Headers

GET /static/chat/js/kefu_chat.js HTTP/1.1
Host: chat.chukouplus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chat.chukouplus.com/chat/home/index?cookie_id=1664133232876&site_host=https://www.zybrew.beer/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:16:23 GMT
Server: Apache
Last-Modified: Thu, 28 Oct 2021 01:46:12 GMT
ETag: "2edb-5cf5fe01e38a8-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:16:23 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2810
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/x-javascript

www.zybrew.beer/uploadfile/2017/1115/20171115115559276.jpg

169.61.14.33

200 OK

20 kB

URL HTTP/1.1
www.zybrew.beer/uploadfile/2017/1115/20171115115559276.jpg
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 387x311, components 3\012- data
Size
20 kB (20446 bytes)
Hash
37f043093279bbf298961183d1955c1d
d049099fd215dcdc512dedd34bd705b8813f52cb
0d605414e13f7df4b0f905bc56e2fa5871e1be3f693d0030a08e60c485bdd4de

HTTP Headers

GET /uploadfile/2017/1115/20171115115559276.jpg HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:56 GMT
Server: Apache
Last-Modified: Thu, 16 Nov 2017 21:55:58 GMT
Accept-Ranges: bytes
Content-Length: 20446
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:56 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: image/jpeg

www.zybrew.beer/uploadfile/2017/1115/20171115115407248.jpg

169.61.14.33

200 OK

8.6 kB

URL HTTP/1.1
www.zybrew.beer/uploadfile/2017/1115/20171115115407248.jpg
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 387x311, components 3\012- data
Size
8.6 kB (8628 bytes)
Hash
40334405c2fe422604f1747bb6e6eb7f
46c8937e0e659725262be3a67c7ad0099beb7f8b
e16c7dbcde40a031b8e7e02244891bfd79486a22a1ce777c4a145b07c381c73e

HTTP Headers

GET /uploadfile/2017/1115/20171115115407248.jpg HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:56 GMT
Server: Apache
Last-Modified: Thu, 16 Nov 2017 21:54:06 GMT
Accept-Ranges: bytes
Content-Length: 8628
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:56 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/jpeg

www.zybrew.beer/themes/simplebootx/style/img/reanod.jpg

169.61.14.33

200 OK

2.3 kB

URL HTTP/1.1
www.zybrew.beer/themes/simplebootx/style/img/reanod.jpg
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
PNG image data, 88 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size
2.3 kB (2279 bytes)
Hash
8fb252fe6ef829b94d2be8fb98acf022
84278d210e81897ac993a4ed5825d08c164b2308
70c4140909d04fff88c1b9ffecb33a945de8dc09857870e670e90185508a45a9

HTTP Headers

GET /themes/simplebootx/style/img/reanod.jpg HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:56 GMT
Server: Apache
Last-Modified: Mon, 13 Jun 2022 02:33:03 GMT
Accept-Ranges: bytes
Content-Length: 2279
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:56 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: image/jpeg

www.zybrew.beer/themes/simplebootx/style/img/facebook.png

169.61.14.33

200 OK

821 B

URL HTTP/1.1
www.zybrew.beer/themes/simplebootx/style/img/facebook.png
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
PNG image data, 37 x 37, 8-bit/color RGBA, non-interlaced\012- data
Size
821 B (821 bytes)
Hash
75769c16e1cdc3fdeda6fca4a9761d46
865d893ca77a08f0b6db91bd3ec300127bc5abce
965ad7226f34123e414fc620ea20b7b1507f108fc976da2b2c8a5f141dd2dc9c

HTTP Headers

GET /themes/simplebootx/style/img/facebook.png HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/themes/simplebootx/style/css/index.css
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:56 GMT
Server: Apache
Last-Modified: Mon, 13 Jun 2022 02:24:16 GMT
Accept-Ranges: bytes
Content-Length: 821
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:56 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: image/png

www.zybrew.beer/img/xiala.png

169.61.14.33

301 Moved Permanently

265 B

URL HTTP/1.1
www.zybrew.beer/img/xiala.png
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
265 B (265 bytes)
Hash
afa4e3b9f4383750f97a4f848c99db53
b0aac11c7ec7fb4cb150f6a44d86c402b2e01a7f
58fe0a893de8f9c315cfba77f17df840667aa099a9273edfb0ed823a007f9e26

HTTP Headers

GET /img/xiala.png HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 301 Moved Permanently
Date: Sun, 25 Sep 2022 19:13:56 GMT
Server: Apache
Location: https://www.zybrew.beer/index.php/Portal/Index/error_html
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:56 GMT
Content-Length: 265
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

www.zybrew.beer/index.php/Portal/Index/error_html

169.61.14.33

200 OK

5.1 kB

URL HTTP/1.1
www.zybrew.beer/index.php/Portal/Index/error_html
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (736), with CRLF, LF line terminators
Size
5.1 kB (5059 bytes)
Hash
1df6487f0cb5719aa862a2109e8e2280
f7c8940e36d4b158f309ac4f4077a809ea95d61a
3500e60888ca7d5f05d16bfb81bd63270e96b537c936c99e94da58734a8013f0

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /index.php/Portal/Index/error_html HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.zybrew.beer/
Connection: keep-alive
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232; webchat=1664133232876; PHPSESSID=6f12a617ee5f3f6d7558baddabdf7849; 90CfBI_cf7141056e00f081cc9bbcbab10c305c=1664133234
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:56 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Pragma: no-cache
Cache-control: private
X-Powered-By: Reanod
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 5059
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: text/html; charset=utf-8

chat.chukouplus.com/static/chat/images/file-img.png

152.32.188.233

200 OK

1.3 kB

URL HTTP/1.1
chat.chukouplus.com/static/chat/images/file-img.png
IP
152.32.188.233:0
ASN
#135377 UCLOUD INFORMATION TECHNOLOGY HK LIMITED

File type
PNG image data, 18 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size
1.3 kB (1270 bytes)
Hash
65bde484c8d376a676f1c917b535cb7a
a9a31ad7fa720973904be9e53f912a0d5db6c75e
c5bae24c7b0f0a80f1be61e1b161ede356465f2d5d7b57388d56f395386cc5e7

HTTP Headers

GET /static/chat/images/file-img.png HTTP/1.1
Host: chat.chukouplus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chat.chukouplus.com/static/chat/css/kefu_chat.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:16:23 GMT
Server: Apache
Last-Modified: Tue, 10 Mar 2020 14:51:36 GMT
ETag: "4f6-5a08141add37c"
Accept-Ranges: bytes
Content-Length: 1270
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:16:23 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png

chat.chukouplus.com/static/chat/images/fine-file.png

152.32.188.233

200 OK

1.6 kB

URL HTTP/1.1
chat.chukouplus.com/static/chat/images/fine-file.png
IP
152.32.188.233:0
ASN
#135377 UCLOUD INFORMATION TECHNOLOGY HK LIMITED

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size
1.6 kB (1614 bytes)
Hash
f33ccadacc993a242fdae24ac49c637f
c668dd1601ea980ba16c4373af08cfeafee817a7
c52881410d6cb66d73cd4d607dc9375ae6b2ac93a6e6321c3b442cdd10402e77

HTTP Headers

GET /static/chat/images/fine-file.png HTTP/1.1
Host: chat.chukouplus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chat.chukouplus.com/static/chat/css/kefu_chat.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:16:23 GMT
Server: Apache
Last-Modified: Tue, 10 Mar 2020 14:51:36 GMT
ETag: "64e-5a08141add37c"
Accept-Ranges: bytes
Content-Length: 1614
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:16:23 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png

chat.chukouplus.com/static/chat/images/commit.png

152.32.188.233

200 OK

1.5 kB

URL HTTP/1.1
chat.chukouplus.com/static/chat/images/commit.png
IP
152.32.188.233:0
ASN
#135377 UCLOUD INFORMATION TECHNOLOGY HK LIMITED

File type
PNG image data, 24 x 23, 8-bit/color RGBA, non-interlaced\012- data
Size
1.5 kB (1524 bytes)
Hash
48ef5c8b9973e67677c0fa23df62c960
98cc48b31d4e4aa92dc750468fd7fa9a8f260d6c
316278c9984a3c773da73cd7245a37cf296ccbf4f10f341b98ee948cce593140

HTTP Headers

GET /static/chat/images/commit.png HTTP/1.1
Host: chat.chukouplus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chat.chukouplus.com/static/chat/css/kefu_chat.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:16:23 GMT
Server: Apache
Last-Modified: Tue, 10 Mar 2020 14:51:36 GMT
ETag: "5f4-5a08141adc7c4"
Accept-Ranges: bytes
Content-Length: 1524
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:16:23 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png

chat.chukouplus.com/static/chat/js/jqurey-form.js

152.32.188.233

200 OK

12 kB

URL HTTP/1.1
chat.chukouplus.com/static/chat/js/jqurey-form.js
IP
152.32.188.233:0
ASN
#135377 UCLOUD INFORMATION TECHNOLOGY HK LIMITED

File type
ASCII text
Size
12 kB (12424 bytes)
Hash
b1992c931184f4dced4193ee28dbe420
ee77ecd15dbfbc0b8d0f4d332e4ab851d9c12ef4
a7c9c7c8f6944a0d64837d57d37dd1c5517d05746ac8800d4f2387ecc6a62310

HTTP Headers

GET /static/chat/js/jqurey-form.js HTTP/1.1
Host: chat.chukouplus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chat.chukouplus.com/chat/home/index?cookie_id=1664133232876&site_host=https://www.zybrew.beer/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:16:23 GMT
Server: Apache
Last-Modified: Tue, 10 Mar 2020 14:51:36 GMT
ETag: "bcc3-5a08141ae40dd-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:16:23 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 12424
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/x-javascript

www.zybrew.beer/themes/simplebootx/style/img/twitter.png

169.61.14.33

200 OK

1.0 kB

URL HTTP/1.1
www.zybrew.beer/themes/simplebootx/style/img/twitter.png
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
PNG image data, 37 x 37, 8-bit/color RGBA, non-interlaced\012- data
Size
1.0 kB (1038 bytes)
Hash
0b3ddd3b384a2a99b87d4c70a85e3df4
50a4e6d0c3af2c27b73bf85c28ac361070d16b4b
711bf189fd1497e672edb7b50bda815800a2bf777b2bcbf5aa5b071d70cde4e2

HTTP Headers

GET /themes/simplebootx/style/img/twitter.png HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/themes/simplebootx/style/css/index.css
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:56 GMT
Server: Apache
Last-Modified: Mon, 13 Jun 2022 02:24:17 GMT
Accept-Ranges: bytes
Content-Length: 1038
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:56 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: image/png

chat.chukouplus.com/static/chat/js/webuploader.js

152.32.188.233

200 OK

28 kB

URL HTTP/1.1
chat.chukouplus.com/static/chat/js/webuploader.js
IP
152.32.188.233:0
ASN
#135377 UCLOUD INFORMATION TECHNOLOGY HK LIMITED

File type
Unicode text, UTF-8 text, with very long lines (65524), with no line terminators
Size
28 kB (28116 bytes)
Hash
d1642a454043a92c49dd3bbd3364bb21
b90dc795b2b84453c48ee60a1f7d3e4d7c750f1f
7f03f82566b6a5b6b9eb6c0d018e110bd83b8c3c3b51e96ccc9b716477a2c09d

HTTP Headers

GET /static/chat/js/webuploader.js HTTP/1.1
Host: chat.chukouplus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chat.chukouplus.com/chat/home/index?cookie_id=1664133232876&site_host=https://www.zybrew.beer/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:16:23 GMT
Server: Apache
Last-Modified: Fri, 06 May 2022 01:52:47 GMT
ETag: "18284-5de4e1d866a88-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:16:23 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 28116
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/x-javascript

www.zybrew.beer/img/pinterestpy.png

169.61.14.33

200 OK

1.3 kB

URL HTTP/1.1
www.zybrew.beer/img/pinterestpy.png
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
PNG image data, 37 x 37, 8-bit/color RGBA, non-interlaced\012- data
Size
1.3 kB (1305 bytes)
Hash
d4e7ee5dce33440d48ec530d0fe942a4
8827083edeec4a859ab89ba5478a18dad37c3f7e
0aa86d197354e62bb721f8a424dd2577a3b365001558cac51300edb390c1a9d5

HTTP Headers

GET /img/pinterestpy.png HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:56 GMT
Server: Apache
Last-Modified: Mon, 13 Jun 2022 02:17:15 GMT
Accept-Ranges: bytes
Content-Length: 1305
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:56 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/png

www.zybrew.beer/themes/simplebootx/style/img/linkedin.png

169.61.14.33

200 OK

927 B

URL HTTP/1.1
www.zybrew.beer/themes/simplebootx/style/img/linkedin.png
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
PNG image data, 37 x 37, 8-bit/color RGBA, non-interlaced\012- data
Size
927 B (927 bytes)
Hash
c1f8019158ab3b37ff19e694e5d3e21d
c40c65168c18956cb69ba3a6bf488238cc186fe1
cbb97d6a8b1b84af14f56a6efd50e07b31f1570ae11197f8298557aa283c80e2

HTTP Headers

GET /themes/simplebootx/style/img/linkedin.png HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/themes/simplebootx/style/css/index.css
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:56 GMT
Server: Apache
Last-Modified: Mon, 13 Jun 2022 02:24:17 GMT
Accept-Ranges: bytes
Content-Length: 927
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:56 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=84
Connection: Keep-Alive
Content-Type: image/png

www.zybrew.beer/themes/simplebootx/style/img/xiala.png

169.61.14.33

200 OK

143 B

URL HTTP/1.1
www.zybrew.beer/themes/simplebootx/style/img/xiala.png
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
PNG image data, 13 x 9, 8-bit/color RGBA, non-interlaced\012- data
Size
143 B (143 bytes)
Hash
77f4e09e66f92849cba2187d535dc9f9
ea3885dbc19eb62d47d7135546f49c21755deacc
135d296029ccf3d7ddab533ce90d7510e9b09f9a29fc9e0c3d4e7caa4da149e5

HTTP Headers

GET /themes/simplebootx/style/img/xiala.png HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/themes/simplebootx/style/css/index.css
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232; webchat=1664133232876
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:56 GMT
Server: Apache
Last-Modified: Fri, 16 Mar 2018 14:44:48 GMT
Accept-Ranges: bytes
Content-Length: 143
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:56 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: image/png

www.zybrew.beer/index.php?g=api&m=checkcode&a=index&length=4&font_size=22&width=161&height=50&use_noise=0&use_curve=0&id=13

169.61.14.33

200 OK

674 B

URL HTTP/1.1
www.zybrew.beer/index.php?g=api&m=checkcode&a=index&length=4&font_size=22&width=161&height=50&use_noise=0&use_curve=0&id=13
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
PNG image data, 161 x 50, 4-bit colormap, non-interlaced\012- data
Size
674 B (674 bytes)
Hash
59bc9d5489cee470d613592d332f1c5f
c08c35a1dc74ac26066b34c5fc9e387ceb80c97d
6be06b89a2d482bba00745533469a15209bbdf8a0722591d0c4f0ddf7dc59ead

HTTP Headers

GET /index.php?g=api&m=checkcode&a=index&length=4&font_size=22&width=161&height=50&use_noise=0&use_curve=0&id=13 HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:56 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: PHPSESSID=db94b1e5beb8847cfe1d9e828282217f; expires=Mon, 26-Sep-2022 05:13:56 GMT; Max-Age=36000; path=/
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 674
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: image/png

www.zybrew.beer/index.php/Portal/Index/error_html

169.61.14.33

200 OK

5.1 kB

URL HTTP/1.1
www.zybrew.beer/index.php/Portal/Index/error_html
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (736), with CRLF, LF line terminators
Size
5.1 kB (5059 bytes)
Hash
1df6487f0cb5719aa862a2109e8e2280
f7c8940e36d4b158f309ac4f4077a809ea95d61a
3500e60888ca7d5f05d16bfb81bd63270e96b537c936c99e94da58734a8013f0

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /index.php/Portal/Index/error_html HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.zybrew.beer/
Connection: keep-alive
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232; webchat=1664133232876; PHPSESSID=6f12a617ee5f3f6d7558baddabdf7849; 90CfBI_cf7141056e00f081cc9bbcbab10c305c=1664133234
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:56 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Pragma: no-cache
Cache-control: private
X-Powered-By: Reanod
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 5059
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: text/html; charset=utf-8

chat.chukouplus.com/static/js/layer/skin/default/layer.css?v=3.0.3303

152.32.188.233

200 OK

2.9 kB

URL HTTP/1.1
chat.chukouplus.com/static/js/layer/skin/default/layer.css?v=3.0.3303
IP
152.32.188.233:0
ASN
#135377 UCLOUD INFORMATION TECHNOLOGY HK LIMITED

File type
ASCII text, with very long lines (14499), with no line terminators
Size
2.9 kB (2885 bytes)
Hash
480d21f3344b0b77695c74fecba9bf5f
04d0533367c93e17624300b07f3e96499fe74e61
02af06c466dfa31fe73e372b05cd00096ec6948eaa1b088ce085c86affc977bc

HTTP Headers

GET /static/js/layer/skin/default/layer.css?v=3.0.3303 HTTP/1.1
Host: chat.chukouplus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chat.chukouplus.com/chat/home/index?cookie_id=1664133232876&site_host=https://www.zybrew.beer/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:16:24 GMT
Server: Apache
Last-Modified: Tue, 10 Mar 2020 14:51:36 GMT
ETag: "38a3-5a08141b02158-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:16:24 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2885
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css

www.zybrew.beer/index.php/Portal/Index/error_html

169.61.14.33

200 OK

5.1 kB

URL HTTP/1.1
www.zybrew.beer/index.php/Portal/Index/error_html
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (736), with CRLF, LF line terminators
Size
5.1 kB (5059 bytes)
Hash
1df6487f0cb5719aa862a2109e8e2280
f7c8940e36d4b158f309ac4f4077a809ea95d61a
3500e60888ca7d5f05d16bfb81bd63270e96b537c936c99e94da58734a8013f0

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /index.php/Portal/Index/error_html HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.zybrew.beer/
Connection: keep-alive
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232; webchat=1664133232876; PHPSESSID=6f12a617ee5f3f6d7558baddabdf7849; 90CfBI_cf7141056e00f081cc9bbcbab10c305c=1664133234
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:56 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Pragma: no-cache
Cache-control: private
X-Powered-By: Reanod
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 5059
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: text/html; charset=utf-8

www.zybrew.beer/index.php/Portal/Index/error_html

169.61.14.33

200 OK

5.1 kB

URL HTTP/1.1
www.zybrew.beer/index.php/Portal/Index/error_html
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (736), with CRLF, LF line terminators
Size
5.1 kB (5059 bytes)
Hash
1df6487f0cb5719aa862a2109e8e2280
f7c8940e36d4b158f309ac4f4077a809ea95d61a
3500e60888ca7d5f05d16bfb81bd63270e96b537c936c99e94da58734a8013f0

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /index.php/Portal/Index/error_html HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.zybrew.beer/
Connection: keep-alive
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232; webchat=1664133232876; PHPSESSID=6f12a617ee5f3f6d7558baddabdf7849; 90CfBI_cf7141056e00f081cc9bbcbab10c305c=1664133234
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:56 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Pragma: no-cache
Cache-control: private
X-Powered-By: Reanod
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 5059
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: text/html; charset=utf-8

www.zybrew.beer/index.php/Portal/Index/error_html

169.61.14.33

200 OK

5.1 kB

URL HTTP/1.1
www.zybrew.beer/index.php/Portal/Index/error_html
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (736), with CRLF, LF line terminators
Size
5.1 kB (5059 bytes)
Hash
1df6487f0cb5719aa862a2109e8e2280
f7c8940e36d4b158f309ac4f4077a809ea95d61a
3500e60888ca7d5f05d16bfb81bd63270e96b537c936c99e94da58734a8013f0

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /index.php/Portal/Index/error_html HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.zybrew.beer/
Connection: keep-alive
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232; webchat=1664133232876; PHPSESSID=399f59c6ca7f22b2de762944267106b2; 90CfBI_cf7141056e00f081cc9bbcbab10c305c=1664133234
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:57 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Pragma: no-cache
Cache-control: private
X-Powered-By: Reanod
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 5059
Keep-Alive: timeout=5, max=84
Connection: Keep-Alive
Content-Type: text/html; charset=utf-8

www.zybrew.beer/index.php/Portal/Index/error_html

169.61.14.33

200 OK

5.1 kB

URL HTTP/1.1
www.zybrew.beer/index.php/Portal/Index/error_html
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (736), with CRLF, LF line terminators
Size
5.1 kB (5059 bytes)
Hash
1df6487f0cb5719aa862a2109e8e2280
f7c8940e36d4b158f309ac4f4077a809ea95d61a
3500e60888ca7d5f05d16bfb81bd63270e96b537c936c99e94da58734a8013f0

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /index.php/Portal/Index/error_html HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.zybrew.beer/
Connection: keep-alive
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232; webchat=1664133232876; PHPSESSID=399f59c6ca7f22b2de762944267106b2; 90CfBI_cf7141056e00f081cc9bbcbab10c305c=1664133234
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:57 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Pragma: no-cache
Cache-control: private
X-Powered-By: Reanod
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 5059
Keep-Alive: timeout=5, max=83
Connection: Keep-Alive
Content-Type: text/html; charset=utf-8

www.zybrew.beer/index.php/Portal/Index/error_html

169.61.14.33

200 OK

5.1 kB

URL HTTP/1.1
www.zybrew.beer/index.php/Portal/Index/error_html
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (736), with CRLF, LF line terminators
Size
5.1 kB (5051 bytes)
Hash
9d50f6b316ab9436eda90669e68c3513
013b1b2cb76c060b47e028b9d2175c32a876551f
c3e08deec2da7914b4a357966b15240c2b7b03deadeeb4d2609c4ddb8d45e8de

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /index.php/Portal/Index/error_html HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.zybrew.beer/
Connection: keep-alive
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232; webchat=1664133232876; PHPSESSID=716c583bcdbe62e5106707f89978f6c7; 90CfBI_cf7141056e00f081cc9bbcbab10c305c=1664133234
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:57 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Pragma: no-cache
Cache-control: private
X-Powered-By: Reanod
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 5051
Keep-Alive: timeout=5, max=82
Connection: Keep-Alive
Content-Type: text/html; charset=utf-8

www.zybrew.beer/index.php/Portal/Index/error_html

169.61.14.33

200 OK

5.1 kB

URL HTTP/1.1
www.zybrew.beer/index.php/Portal/Index/error_html
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (736), with CRLF, LF line terminators
Size
5.1 kB (5051 bytes)
Hash
9d50f6b316ab9436eda90669e68c3513
013b1b2cb76c060b47e028b9d2175c32a876551f
c3e08deec2da7914b4a357966b15240c2b7b03deadeeb4d2609c4ddb8d45e8de

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /index.php/Portal/Index/error_html HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.zybrew.beer/
Connection: keep-alive
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232; webchat=1664133232876; PHPSESSID=716c583bcdbe62e5106707f89978f6c7; 90CfBI_cf7141056e00f081cc9bbcbab10c305c=1664133234
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:57 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Pragma: no-cache
Cache-control: private
X-Powered-By: Reanod
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 5051
Keep-Alive: timeout=5, max=81
Connection: Keep-Alive
Content-Type: text/html; charset=utf-8

www.zybrew.beer/themes/simplebootx/style/fonts/iconfont.woff?t=1561020571500

169.61.14.33

200 OK

6.8 kB

URL HTTP/1.1
www.zybrew.beer/themes/simplebootx/style/fonts/iconfont.woff?t=1561020571500
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
Web Open Font Format, TrueType, length 6836, version 1.0\012- data
Size
6.8 kB (6836 bytes)
Hash
ecfb2378d1f42ec9b62ae25c8431a769
00cc8ac3f863dc06d4cc98481d5ee66b41799ef1
bc2c6ae1164d36694879298a396fb46eedb97804c63d9aeef9bdb94e18be7077

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /themes/simplebootx/style/fonts/iconfont.woff?t=1561020571500 HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.zybrew.beer/themes/simplebootx/style/css/index.css
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232; webchat=1664133232876; PHPSESSID=db94b1e5beb8847cfe1d9e828282217f; 90CfBI_cf7141056e00f081cc9bbcbab10c305c=1664133234
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:57 GMT
Server: Apache
Last-Modified: Fri, 21 Jun 2019 10:49:50 GMT
Accept-Ranges: bytes
Content-Length: 6836
Cache-Control: max-age=864000
Expires: Wed, 05 Oct 2022 19:13:57 GMT
Vary: Accept-Encoding,User-Agent
Keep-Alive: timeout=5, max=83
Connection: Keep-Alive
Content-Type: font/woff

www.zybrew.beer/fonts/OSWALDBOLD.ttf

169.61.14.33

301 Moved Permanently

265 B

URL HTTP/1.1
www.zybrew.beer/fonts/OSWALDBOLD.ttf
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
265 B (265 bytes)
Hash
afa4e3b9f4383750f97a4f848c99db53
b0aac11c7ec7fb4cb150f6a44d86c402b2e01a7f
58fe0a893de8f9c315cfba77f17df840667aa099a9273edfb0ed823a007f9e26

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /fonts/OSWALDBOLD.ttf HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232; webchat=1664133232876; PHPSESSID=db94b1e5beb8847cfe1d9e828282217f; 90CfBI_cf7141056e00f081cc9bbcbab10c305c=1664133234
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 301 Moved Permanently
Date: Sun, 25 Sep 2022 19:13:57 GMT
Server: Apache
Location: https://www.zybrew.beer/index.php/Portal/Index/error_html
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:57 GMT
Content-Length: 265
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

www.zybrew.beer/index.php/Portal/Index/error_html

169.61.14.33

200 OK

5.1 kB

URL HTTP/1.1
www.zybrew.beer/index.php/Portal/Index/error_html
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (736), with CRLF, LF line terminators
Size
5.1 kB (5059 bytes)
Hash
1df6487f0cb5719aa862a2109e8e2280
f7c8940e36d4b158f309ac4f4077a809ea95d61a
3500e60888ca7d5f05d16bfb81bd63270e96b537c936c99e94da58734a8013f0

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /index.php/Portal/Index/error_html HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.zybrew.beer/
Connection: keep-alive
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232; webchat=1664133232876; PHPSESSID=716c583bcdbe62e5106707f89978f6c7; 90CfBI_cf7141056e00f081cc9bbcbab10c305c=1664133234
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:57 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Pragma: no-cache
Cache-control: private
X-Powered-By: Reanod
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 5059
Keep-Alive: timeout=5, max=80
Connection: Keep-Alive
Content-Type: text/html; charset=utf-8

www.zybrew.beer/index.php/Portal/Index/error_html

169.61.14.33

200 OK

5.1 kB

URL HTTP/1.1
www.zybrew.beer/index.php/Portal/Index/error_html
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (736), with CRLF, LF line terminators
Size
5.1 kB (5059 bytes)
Hash
1df6487f0cb5719aa862a2109e8e2280
f7c8940e36d4b158f309ac4f4077a809ea95d61a
3500e60888ca7d5f05d16bfb81bd63270e96b537c936c99e94da58734a8013f0

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /index.php/Portal/Index/error_html HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.zybrew.beer/
Connection: keep-alive
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232; webchat=1664133232876; PHPSESSID=feab128f0a1c609b8c66f812c1f687e1; 90CfBI_cf7141056e00f081cc9bbcbab10c305c=1664133234
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:58 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Pragma: no-cache
Cache-control: private
X-Powered-By: Reanod
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 5059
Keep-Alive: timeout=5, max=79
Connection: Keep-Alive
Content-Type: text/html; charset=utf-8

www.zybrew.beer/index.php/Portal/Index/error_html

169.61.14.33

200 OK

5.1 kB

URL HTTP/1.1
www.zybrew.beer/index.php/Portal/Index/error_html
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (736), with CRLF, LF line terminators
Size
5.1 kB (5059 bytes)
Hash
1df6487f0cb5719aa862a2109e8e2280
f7c8940e36d4b158f309ac4f4077a809ea95d61a
3500e60888ca7d5f05d16bfb81bd63270e96b537c936c99e94da58734a8013f0

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /index.php/Portal/Index/error_html HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.zybrew.beer/
Connection: keep-alive
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232; webchat=1664133232876; PHPSESSID=feab128f0a1c609b8c66f812c1f687e1; 90CfBI_cf7141056e00f081cc9bbcbab10c305c=1664133234
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:58 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Pragma: no-cache
Cache-control: private
X-Powered-By: Reanod
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 5059
Keep-Alive: timeout=5, max=78
Connection: Keep-Alive
Content-Type: text/html; charset=utf-8

www.zybrew.beer/index.php/Portal/Index/error_html

169.61.14.33

200 OK

5.1 kB

URL HTTP/1.1
www.zybrew.beer/index.php/Portal/Index/error_html
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (736), with CRLF, LF line terminators
Size
5.1 kB (5059 bytes)
Hash
1df6487f0cb5719aa862a2109e8e2280
f7c8940e36d4b158f309ac4f4077a809ea95d61a
3500e60888ca7d5f05d16bfb81bd63270e96b537c936c99e94da58734a8013f0

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /index.php/Portal/Index/error_html HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.zybrew.beer/
Connection: keep-alive
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232; webchat=1664133232876; PHPSESSID=feab128f0a1c609b8c66f812c1f687e1; 90CfBI_cf7141056e00f081cc9bbcbab10c305c=1664133234
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:58 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Pragma: no-cache
Cache-control: private
X-Powered-By: Reanod
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 5059
Keep-Alive: timeout=5, max=82
Connection: Keep-Alive
Content-Type: text/html; charset=utf-8

www.google-analytics.com/analytics.js

142.250.74.174

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (19826 bytes)
Hash
cae538dcce82598fbe43c0bf443e62dd
cc68ac6be9c5e0087a0000e5735b83270ace30f5
954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 19826
date: Sun, 25 Sep 2022 18:41:09 GMT
expires: Sun, 25 Sep 2022 20:41:09 GMT
cache-control: public, max-age=7200
age: 1969
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.zybrew.beer/index.php/Portal/Index/error_html

169.61.14.33

200 OK

5.1 kB

URL HTTP/1.1
www.zybrew.beer/index.php/Portal/Index/error_html
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (736), with CRLF, LF line terminators
Size
5.1 kB (5051 bytes)
Hash
9d50f6b316ab9436eda90669e68c3513
013b1b2cb76c060b47e028b9d2175c32a876551f
c3e08deec2da7914b4a357966b15240c2b7b03deadeeb4d2609c4ddb8d45e8de

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /index.php/Portal/Index/error_html HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.zybrew.beer/
Connection: keep-alive
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232; webchat=1664133232876; PHPSESSID=db94b1e5beb8847cfe1d9e828282217f; 90CfBI_cf7141056e00f081cc9bbcbab10c305c=1664133234
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:58 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Pragma: no-cache
Cache-control: private
X-Powered-By: Reanod
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 5051
Keep-Alive: timeout=5, max=77
Connection: Keep-Alive
Content-Type: text/html; charset=utf-8

www.google-analytics.com/j/collect?v=1&_v=j97&a=1208081586&t=pageview&_s=1&dl=https%3A%2F%2Fwww.zybrew.beer%2F&ul=en-us&de=UTF-8&dt=Yucheng%20Zeyu%20Machinery%20Co.%2C%20Ltd.&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YADAAUABAAAAAC~&jid=2028307244&gjid=1194313872&cid=253186198.1664133232&tid=UA-78057516-1&_gid=180127426.1664133237&_r=1&gtm=2ou9l0&z=2381431

142.250.74.174

200 OK

2 B

URL HTTP/2
www.google-analytics.com/j/collect?v=1&_v=j97&a=1208081586&t=pageview&_s=1&dl=https%3A%2F%2Fwww.zybrew.beer%2F&ul=en-us&de=UTF-8&dt=Yucheng%20Zeyu%20Machinery%20Co.%2C%20Ltd.&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YADAAUABAAAAAC~&jid=2028307244&gjid=1194313872&cid=253186198.1664133232&tid=UA-78057516-1&_gid=180127426.1664133237&_r=1&gtm=2ou9l0&z=2381431
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
cc7a1e792bca8ccb1946b7a07f6dbc03
11a2757082428311f587b7664fa9840376137f80
de3246094525b21a870fc7d2a67490d0132535c6fa5993755c549f1a9d1bd8af

HTTP Headers

POST /j/collect?v=1&_v=j97&a=1208081586&t=pageview&_s=1&dl=https%3A%2F%2Fwww.zybrew.beer%2F&ul=en-us&de=UTF-8&dt=Yucheng%20Zeyu%20Machinery%20Co.%2C%20Ltd.&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YADAAUABAAAAAC~&jid=2028307244&gjid=1194313872&cid=253186198.1664133232&tid=UA-78057516-1&_gid=180127426.1664133237&_r=1&gtm=2ou9l0&z=2381431 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.zybrew.beer
Connection: keep-alive
Referer: https://www.zybrew.beer/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: https://www.zybrew.beer
date: Sun, 25 Sep 2022 19:13:58 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.zybrew.beer/themes/simplebootx/style/favicon.ico

169.61.14.33

301 Moved Permanently

265 B

URL HTTP/1.1
www.zybrew.beer/themes/simplebootx/style/favicon.ico
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
265 B (265 bytes)
Hash
afa4e3b9f4383750f97a4f848c99db53
b0aac11c7ec7fb4cb150f6a44d86c402b2e01a7f
58fe0a893de8f9c315cfba77f17df840667aa099a9273edfb0ed823a007f9e26

HTTP Headers

GET /themes/simplebootx/style/favicon.ico HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.1.253186198.1664133232; webchat=1664133232876; PHPSESSID=db94b1e5beb8847cfe1d9e828282217f; 90CfBI_cf7141056e00f081cc9bbcbab10c305c=1664133234
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 301 Moved Permanently
Date: Sun, 25 Sep 2022 19:13:58 GMT
Server: Apache
Location: https://www.zybrew.beer/index.php/Portal/Index/error_html
Cache-Control: max-age=604800
Expires: Sun, 02 Oct 2022 19:13:58 GMT
Content-Length: 265
Keep-Alive: timeout=5, max=81
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

www.zybrew.beer/themes/simplebootx/style/fonts/OSWALDBOLD.woff2

169.61.14.33

200 OK

23 kB

URL HTTP/1.1
www.zybrew.beer/themes/simplebootx/style/fonts/OSWALDBOLD.woff2
IP
169.61.14.33:0
ASN
#36351 SOFTLAYER

File type
Web Open Font Format (Version 2), TrueType, length 23164, version 1.0\012- data
Size
23 kB (23164 bytes)
Hash
e0981813030f41369c5a6f73ac4f06ff
38719856d87026f44001d162319479e313a7a43f
873133a85c93958560e8f113cbb74f87f0ed5b9ee0868de46042bd3d02a4fe98

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /themes/simplebootx/style/fonts/OSWALDBOLD.woff2 HTTP/1.1
Host: www.zybrew.beer
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.zybrew.beer/themes/simplebootx/style/css/index.css
Cookie: _ga_21V6DWWTHR=GS1.1.1664133232.1.0.1664133232.0.0.0; _ga=GA1.2.253186198.1664133232; webchat=1664133232876; PHPSESSID=db94b1e5beb8847cfe1d9e828282217f; 90CfBI_cf7141056e00f081cc9bbcbab10c305c=1664133234; _gid=GA1.2.180127426.1664133237; _gat_gtag_UA_78057516_1=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 19:13:58 GMT
Server: Apache
Last-Modified: Thu, 26 Oct 2017 10:47:00 GMT
Accept-Ranges: bytes
Content-Length: 23164
Cache-Control: max-age=864000
Expires: Wed, 05 Oct 2022 19:13:58 GMT
Vary: Accept-Encoding,User-Agent
Keep-Alive: timeout=5, max=76
Connection: Keep-Alive
Content-Type: font/woff2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
cd8e3570655a88b47a20fb93af0fc0c5
6ebbd655af47cbe0788f5ea6a7d9cd457bda2f33
12bc57afd44ddf43fc3802ecc23e743660b146acff0958093fcea30e96b02f6b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 19:13:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-78057516-1&cid=253186198.1664133232&jid=2028307244&gjid=1194313872&_gid=180127426.1664133237&_u=YADAAUAAAAAAAC~&z=685373710

64.233.162.154

200 OK

4 B

URL HTTP/2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-78057516-1&cid=253186198.1664133232&jid=2028307244&gjid=1194313872&_gid=180127426.1664133237&_u=YADAAUAAAAAAAC~&z=685373710
IP
64.233.162.154:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
4 B (4 bytes)
Hash
48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a

HTTP Headers

POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-78057516-1&cid=253186198.1664133232&jid=2028307244&gjid=1194313872&_gid=180127426.1664133237&_u=YADAAUAAAAAAAC~&z=685373710 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.zybrew.beer
Connection: keep-alive
Referer: https://www.zybrew.beer/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: https://www.zybrew.beer
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sun, 25 Sep 2022 19:13:58 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
cd8e3570655a88b47a20fb93af0fc0c5
6ebbd655af47cbe0788f5ea6a7d9cd457bda2f33
12bc57afd44ddf43fc3802ecc23e743660b146acff0958093fcea30e96b02f6b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 19:13:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
23ba09c14e337ac70d877d2ed33dc795
175d5155889b45711d0a9050116591ad25e74891
cb117ac56fe205bfca3b512ed3d8ddb46a7115446d099739cc4d111c853696ae

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 19:13:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
ea6011094da3116e1bb049caa0e491e1
5809e1f5b0beee0282601045c0a152853c977565
25bd8112864ac34144820c6aecf49dec7ff9cfb863d864ca0ebbf55dee213414

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 19:13:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-78057516-1&cid=253186198.1664133232&jid=2028307244&_u=YADAAUAAAAAAAC~&z=702832523

142.250.74.164

200 OK

42 B

URL HTTP/2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-78057516-1&cid=253186198.1664133232&jid=2028307244&_u=YADAAUAAAAAAAC~&z=702832523
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-78057516-1&cid=253186198.1664133232&jid=2028307244&_u=YADAAUAAAAAAAC~&z=702832523 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 25 Sep 2022 19:13:58 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-78057516-1&cid=253186198.1664133232&jid=2028307244&_u=YADAAUAAAAAAAC~&z=702832523

142.250.74.3

200 OK

42 B

URL HTTP/2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-78057516-1&cid=253186198.1664133232&jid=2028307244&_u=YADAAUAAAAAAAC~&z=702832523
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-78057516-1&cid=253186198.1664133232&jid=2028307244&_u=YADAAUAAAAAAAC~&z=702832523 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zybrew.beer/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 25 Sep 2022 19:13:58 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
267300d587831dda7559c30c40cc614e
d7ff0b9754e61f5d4178eddb5e63c3390ab559c8
ec7aad1a3116ce8ef5258b49de87cf3456c8c4890206fa5d46c8e510ded80ac0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 19:13:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
9f61c5ada09e4fa747144a96e95a943f
e7f3119b4d75a72dd0409673b9789ac1f3233d23
95afa75f054462b0db7b7b59ebadecc07ce8e4eac12b07e76645848983c52bcf

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 19:13:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

34.120.237.76

200 OK

7.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16a0ebb5-2746-43ce-9354-d29ae28778f1.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.7 kB (7690 bytes)
Hash
75eb09cb0472d311d2deaf4475a2fb29
9e7b0fd5b7c45213e1808361867a254c8e313a30
c18626d0131533976be196823911d5146042e6bd8028389cb4f17a64ee0ec1e4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16a0ebb5-2746-43ce-9354-d29ae28778f1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 7690
x-amzn-requestid: e50abd36-e3d6-4177-ad5a-57ef7f743e1b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yv2HqHJqIAMFe9w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63296a30-7de1ba3633620fed1eb26a04;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 07:22:24 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: N1964asC-XTl9uXwzmgOj5dqDU1mJPKyDl-ZTqhg6wFcDcZFG5ncNQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 18:07:29 GMT
age: 3993
etag: "9e7b0fd5b7c45213e1808361867a254c8e313a30"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (36)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations