Report - shuaihu99.com/fv5967

Report Overview

Submitted URL
shuaihu99.com/fv5967_c8zw70.html
IP
188.114.97.1
ASN
#13335 CLOUDFLARENET
Submitted
2023-03-23 17:55:26
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
56

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-29T05:09:03Z	782 B	2.4 kB	35.241.9.150
www.shuaihu99.com	unknown	2017-05-23T16:59:24Z	2023-03-29T13:02:54Z	16 kB	334 kB	188.114.97.1
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-29T10:13:53Z	1.6 kB	3.5 kB	142.250.74.74
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-29T05:09:12Z	3.2 kB	60 kB	34.120.237.76
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-29T11:19:48Z	1.5 kB	68 kB	142.250.74.163
connect.facebook.net	139	2012-05-22T04:51:28Z	2023-03-29T05:12:24Z	1.1 kB	91 kB	157.240.200.14
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-29T11:45:01Z	682 B	91 kB	192.229.221.95
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-29T05:09:11Z	2.4 kB	6.2 kB	23.36.76.226
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-29T05:09:31Z	413 B	5.9 kB	34.160.144.191
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-29T05:09:31Z	333 B	391 B	34.117.237.239
shuaihu99.com	unknown	2017-05-23T16:59:13Z	2023-03-25T18:45:56Z	363 B	921 B	188.114.97.1
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-29T05:09:32Z	606 B	127 B	35.80.203.55
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-29T05:09:04Z	2.7 kB	5.6 kB	142.250.74.163

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-03-23	medium	shuaihu99.com/fv5967_c8zw70.html	Phishing
2023-03-23	medium	www.shuaihu99.com/fv5967_c8zw70.html	Phishing
2023-03-23	medium	www.shuaihu99.com/wp-content/themes/newsphere/assets/sidr/css/jquery.sidr.dark.css?ver=5.7.8	Phishing
2023-03-23	medium	www.shuaihu99.com/wp-includes/css/dist/block-library/style.min.css?ver=5.7.8	Phishing
2023-03-23	medium	www.shuaihu99.com/wp-content/themes/sportion/style.css?ver=1.0.0	Phishing
2023-03-23	medium	www.shuaihu99.com/wp-content/themes/newsphere/assets/bootstrap/css/bootstrap.min.css?ver=5.7.8	Phishing
2023-03-23	medium	www.shuaihu99.com/wp-content/themes/newsphere/style.css?ver=5.7.8	Phishing
2023-03-23	medium	www.shuaihu99.com/wp-content/themes/newsphere/assets/swiper/css/swiper.min.css?ver=5.7.8	Phishing
2023-03-23	medium	www.shuaihu99.com/wp-includes/js/jquery/ui/core.min.js?ver=1.12.1	Phishing
2023-03-23	medium	www.shuaihu99.com/wp-content/plugins/ultimate-social-media-icons/js/shuffle/modernizr.custom.min.js?ver=5.7.8	Phishing
2023-03-23	medium	www.shuaihu99.com/wp-content/plugins/ultimate-social-media-icons/js/shuffle/jquery.shuffle.min.js?ver=5.7.8	Phishing
2023-03-23	medium	www.shuaihu99.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.5.2	Phishing
2023-03-23	medium	www.shuaihu99.com/wp-content/uploads/2022/07/%E0%B8%A3%E0%B8%A7%E0%B8%A2%E0%B8%AA%E0%B8%A1%E0%B8%B1%E0%B8%84%E0%B8%A3%E0%B8%9F%E0%B8%A3%E0%B8%B5%E0%B8%8A%E0%B8%B8%E0%B8%94%E0%B9%80%E0%B8%AB%E0%B8%A5%E0%B8%B7%E0%B8%AD%E0%B8%87-720x380.jpeg	Phishing
2023-03-23	medium	www.shuaihu99.com/wp-content/plugins/ultimate-social-media-icons/js/shuffle/random-shuffle-min.js?ver=5.7.8	Phishing
2023-03-23	medium	www.shuaihu99.com/wp-content/themes/newsphere/assets/swiper/js/swiper.min.js?ver=5.7.8	Phishing
2023-03-23	medium	www.shuaihu99.com/wp-content/themes/newsphere/assets/bootstrap/js/bootstrap.min.js?ver=5.7.8	Phishing
2023-03-23	medium	www.shuaihu99.com/wp-content/themes/newsphere/assets/sidr/js/jquery.sidr.min.js?ver=5.7.8	Phishing
2023-03-23	medium	www.shuaihu99.com/wp-content/themes/newsphere/assets/magnific-popup/jquery.magnific-popup.min.js?ver=5.7.8	Phishing
2023-03-23	medium	www.shuaihu99.com/wp-content/themes/newsphere/assets/theiaStickySidebar/theia-sticky-sidebar.min.js?ver=5.7.8	Phishing
2023-03-23	medium	www.shuaihu99.com/wp-content/themes/newsphere/assets/marquee/jquery.marquee.js?ver=5.7.8	Phishing
2023-03-23	medium	www.shuaihu99.com/wp-content/themes/newsphere/assets/pagination-script.js?ver=5.7.8	Phishing
2023-03-23	medium	www.shuaihu99.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.5.2	Phishing
2023-03-23	medium	www.shuaihu99.com/wp-includes/js/wp-embed.min.js?ver=5.7.8	Phishing
2023-03-23	medium	www.shuaihu99.com/wp-content/uploads/elementor/css/post-807.css?ver=1668509312	Phishing
2023-03-23	medium	www.shuaihu99.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2	Phishing
2023-03-23	medium	www.shuaihu99.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.5.2	Phishing
2023-03-23	medium	www.shuaihu99.com/wp-content/uploads/elementor/css/post-780.css?ver=1640347536	Phishing
2023-03-23	medium	www.shuaihu99.com/wp-content/uploads/elementor/css/global.css?ver=1640347827	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (32)

	URL	Size	First Seen	Last Seen
	unknown	0 B	2023-03-07	2024-04-25
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-25 08:56:22 Times Seen37058911 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.shuaihu99.com/fv5967_c8zw70.html	328 B	2023-03-07	2024-03-21
Pretty URL www.shuaihu99.com/fv5967_c8zw70.html IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:32 Last Seen2024-03-21 11:17:25 Times Seen776 Hash f0d5f710f1fe18a4dcd0201705f89cbd ec7b99089b565160d4fc319e5ddbd7ec81ca28b9 f5274b9a7a920605816df1ae91f95a8e8f29df7f73a76310d402c8f5693ae720 Loading...

	www.shuaihu99.com/wp-content/themes/newsphere/js/navigation.js?ver=20151215	3.0 kB	2023-03-07	2024-04-24
Pretty URL www.shuaihu99.com/wp-content/themes/newsphere/js/navigation.js?ver=20151215 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:06 Last Seen2024-04-24 08:02:20 Times Seen2003 Hash 49493316c090bb3d7cca5bc09031037c b77b6525d82691c3d4ca05948e846500ea0cb1d3 fbc199bf7f97061c41664b040e84616a0cb54441a2efc5801d5d401d3a049f3c Loading...

	www.shuaihu99.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2	12 kB	2023-03-07	2024-04-25
Pretty URL www.shuaihu99.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-25 08:06:29 Times Seen52728 Hash 3819c3569da71daec283a75483735f7e ecd40a5cc6f0b76200c454ca880210dc301cfab8 214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0 Loading...

	www.shuaihu99.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	11 kB	2023-03-07	2024-04-25
Pretty URL www.shuaihu99.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-25 06:13:12 Times Seen68612 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	www.shuaihu99.com/wp-content/plugins/ultimate-social-media-icons/js/custom.js?ver=5.7.8	29 kB	2023-03-14	2023-07-31
Pretty URL www.shuaihu99.com/wp-content/plugins/ultimate-social-media-icons/js/custom.js?ver=5.7.8 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 07:48:21 Last Seen2023-07-31 06:55:14 Times Seen37 Hash 578280f7259548b0505763a28025b649 1a3609a55c8e0eed42ae242fe4871c9c4918532c e5f28301923bde20028afaad074042fbf0f9b754b3627b00744f2ff62f4664c5 Loading...

	www.shuaihu99.com/wp-content/themes/newsphere/assets/pagination-script.js?ver=5.7.8	5.6 kB	2023-03-14	2023-06-14
Pretty URL www.shuaihu99.com/wp-content/themes/newsphere/assets/pagination-script.js?ver=5.7.8 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 07:48:21 Last Seen2023-06-14 13:32:04 Times Seen33 Hash 2dc96fc4622d46e26f54eeddb95c2446 310088a9ed55609b2ce202a97cbcef445cb4d7a5 4cc3eceefa9a6b2e7ecf937e0dfd8ad3acff3dfd2ae41989f0e078452379b61e Loading...

	www.shuaihu99.com/wp-content/themes/newsphere/assets/magnific-popup/jquery.magnific-popup.min.js?ver=5.7.8	20 kB	2023-03-07	2024-03-03
Pretty URL www.shuaihu99.com/wp-content/themes/newsphere/assets/magnific-popup/jquery.magnific-popup.min.js?ver=5.7.8 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:20:53 Last Seen2024-03-03 23:53:26 Times Seen359 Hash 351dd32e5a1ab0145e943424e9f626af efd4a128abe72995f0683659b5d31a1b8452620f 76fa60ed57bfa134bdc5ebf61c8fc8f34c478abf3ddb5523fe14fed62e2ff8b9 Loading...

	www.shuaihu99.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.5.2	37 kB	2023-03-07	2024-02-07
Pretty URL www.shuaihu99.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.5.2 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:39:50 Last Seen2024-02-07 14:33:07 Times Seen96 Hash 31f42580e38898d9591f29a905461232 5e829f472cb07b59669014b63b03aaaf83056df9 7e53d6bb1d640561e7a15b9890c11a74b6b0f7d34c3dbfa9f387a41596cf5058 Loading...

	www.shuaihu99.com/fv5967_c8zw70.html	2.1 kB	2023-03-14	2023-04-17
Pretty URL www.shuaihu99.com/fv5967_c8zw70.html IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 07:48:20 Last Seen2023-04-17 22:57:07 Times Seen12 Hash dfb464c47cfa0a3fb825d515107cf8e3 a51ec71b24c7f6872d9b4ec76e24339394bde1b7 09dab99a0c9a1993bdc10aaa5a22d73a6358be546e3c0f679f032c206f53efb5 Loading...

	www.shuaihu99.com/fv5967_c8zw70.html	213 B	2023-03-07	2024-04-21
Pretty URL www.shuaihu99.com/fv5967_c8zw70.html IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:32 Last Seen2024-04-21 23:19:21 Times Seen851 Hash 91db495e87060fd19c7508c529725a41 bd81a81ca0327c586cfec175bb386dbd5b3a0f85 ff8bed9ae16005815dbaf8cdfb29263be1b1b59fbf91758a10d3514eb70ae0a7 Loading...

	www.shuaihu99.com/wp-includes/js/jquery/ui/core.min.js?ver=1.12.1	21 kB	2023-03-07	2024-04-25
Pretty URL www.shuaihu99.com/wp-includes/js/jquery/ui/core.min.js?ver=1.12.1 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:18 Last Seen2024-04-25 06:13:11 Times Seen5710 Hash 49fa677b9cd7ddf221dc06537b35e10f 7485f3f99c3c1a57197f2b099f3f8d68b8609d06 0cd851e5b33af0fbb354df65506da39807b998e07723f3d08aba5179fa2ed97e Loading...

	www.shuaihu99.com/wp-content/plugins/ultimate-social-media-icons/js/shuffle/jquery.shuffle.min.js?ver=5.7.8	12 kB	2023-03-07	2024-04-21
Pretty URL www.shuaihu99.com/wp-content/plugins/ultimate-social-media-icons/js/shuffle/jquery.shuffle.min.js?ver=5.7.8 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:06:17 Last Seen2024-04-21 23:19:22 Times Seen1610 Hash 2b01351f36285d266938cfb15ae487a4 643579a331557dedc16ed0bceb1c7780368b9a52 4c5e10b3496ff844faf3e2d032e243d4a366a5cbc95ad7bef5dd924322e31b3a Loading...

	www.shuaihu99.com/wp-content/plugins/ultimate-social-media-icons/js/shuffle/random-shuffle-min.js?ver=5.7.8	1.5 kB	2023-03-07	2024-04-21
Pretty URL www.shuaihu99.com/wp-content/plugins/ultimate-social-media-icons/js/shuffle/random-shuffle-min.js?ver=5.7.8 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:06:17 Last Seen2024-04-21 23:19:22 Times Seen1735 Hash 9205d1691f1303227809875d3a6ee811 71094c5c5a6f50bc3d94cf9f99f768708a437e6d 8577be08e13d868781746fd18e27a2d95ee4658c33221ec7659ece82d4d31463 Loading...

	connect.facebook.net/en_US/sdk.js?hash=1ab26a2aae806e3b0b4183cbea443b2f	308 kB	2023-03-29	2023-03-29
Pretty URL connect.facebook.net/en_US/sdk.js?hash=1ab26a2aae806e3b0b4183cbea443b2f IP 157.240.200.14 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 21:04:27 Last Seen2023-03-29 21:04:27 Times Seen1 Hash 5146bb37d3a2511cdc6461d839dd6b4c cd41eaefacf371df0c566d3f996daf40ba2ba045 e68c0d9e451081d194d16892114e0aaf10f34280de0d73dbf7f0f86e32b11a2e Loading...

	www.shuaihu99.com/fv5967_c8zw70.html	55 B	2023-03-08	2024-04-04
Pretty URL www.shuaihu99.com/fv5967_c8zw70.html IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:47:52 Last Seen2024-04-04 00:52:53 Times Seen74 Hash d0e8280bd67c2470d18bf2b08499f81a 48ab463e37c946f03fd4d80a11cff13aa9af2c53 28f15e7b666eccb10a595f1df66c53e890f85f91fbc242135893233e72a255a0 Loading...

	connect.facebook.net/en_US/sdk.js#xfbml=1&version=v2.5	3.1 kB	2023-03-29	2023-03-29
Pretty URL connect.facebook.net/en_US/sdk.js#xfbml=1&version=v2.5 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 21:04:27 Last Seen2023-03-29 21:04:27 Times Seen1 Hash c89d7924583e1bd4efd22c4f5ee81cbc d7aaf4c3113d9c283c0f56a291f27ed61e46178d d609db21be6c64d4e4368f7b2365211577fd7969e17bf1242b1ac2506e833f65 Loading...

	www.shuaihu99.com/wp-content/themes/newsphere/assets/marquee/jquery.marquee.js?ver=5.7.8	23 kB	2023-03-07	2024-03-17
Pretty URL www.shuaihu99.com/wp-content/themes/newsphere/assets/marquee/jquery.marquee.js?ver=5.7.8 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:58:51 Last Seen2024-03-17 03:36:43 Times Seen391 Hash 448808b2b4e030e2f0055dac62ea7407 5b5e4e39e805049f6f047f9c2ec85f441723ef34 1cdc5272f4719ff59e37324c8c4811884538a31ffe610b7983b94fc376e8a73f Loading...

	www.shuaihu99.com/wp-content/themes/newsphere/assets/theiaStickySidebar/theia-sticky-sidebar.min.js?ver=5.7.8	5.4 kB	2023-03-07	2024-04-24
Pretty URL www.shuaihu99.com/wp-content/themes/newsphere/assets/theiaStickySidebar/theia-sticky-sidebar.min.js?ver=5.7.8 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:52 Last Seen2024-04-24 09:18:35 Times Seen803 Hash 69a423fcaf8f22778a2e059b2c554a17 18f416a138fc5bcf4786585cb55a8d46af9976a6 d88b2f05bcd6de59fcdc958ab1c6f63d0225f275d24ce003381c09deb3a4bf1e Loading...

	www.shuaihu99.com/wp-includes/js/wp-emoji-release.min.js?ver=5.7.8	14 kB	2023-03-07	2024-04-24
Pretty URL www.shuaihu99.com/wp-includes/js/wp-emoji-release.min.js?ver=5.7.8 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:17 Last Seen2024-04-24 18:48:51 Times Seen7900 Hash eaa8641bcda2371f4024a71fbb67de3b 0e46c39d3821683c856605a82254115f9a6a7792 0c5f584d1ea2c3313dc8c55824c2a572d3cf2eae87c5ca62a58e598aec9ddb5c Loading...

	www.shuaihu99.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.5.2	4.9 kB	2023-03-07	2024-02-07
Pretty URL www.shuaihu99.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.5.2 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:39:50 Last Seen2024-02-07 14:33:07 Times Seen75 Hash 91e50b02c314bd6ad0d26276967d3e09 fbff34fa46899286d56c9fc092005ea276d22a3a f22b3dd13e81113afb3a94bc053b7f41363692316d7d61515b8a8055aba28a7c Loading...

	www.shuaihu99.com/wp-content/themes/newsphere/assets/sidr/js/jquery.sidr.min.js?ver=5.7.8	7.0 kB	2023-03-07	2024-04-22
Pretty URL www.shuaihu99.com/wp-content/themes/newsphere/assets/sidr/js/jquery.sidr.min.js?ver=5.7.8 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:05 Last Seen2024-04-22 15:06:55 Times Seen778 Hash 37ac88aac020d48f424ec4c64119f107 57c359f422507358cd667f4119bd54086a1e842d fd57ae7228574a83527cb8917ec5a0ff944aa787934ee5b85a7976f259b7ae31 Loading...

	www.shuaihu99.com/wp-content/themes/newsphere/assets/script.js?ver=5.7.8	19 kB	2023-03-14	2023-05-25
Pretty URL www.shuaihu99.com/wp-content/themes/newsphere/assets/script.js?ver=5.7.8 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 07:48:21 Last Seen2023-05-25 20:50:50 Times Seen47 Hash f97e4ce3185d63773cae12403db4cb91 a3ace45e263a3902f8095d0441805d7d577ad8a4 ac1ad8ef2fbbc336b9a0fea40d5d9ada586eccb839fad2e4afae1c4f27e8d346 Loading...

	www.shuaihu99.com/wp-content/themes/newsphere/js/skip-link-focus-fix.js?ver=20151215	685 B	2023-03-07	2024-04-24
Pretty URL www.shuaihu99.com/wp-content/themes/newsphere/js/skip-link-focus-fix.js?ver=20151215 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:06 Last Seen2024-04-24 18:45:24 Times Seen3286 Hash 93d421fd7576b0ca9c359ffe2fa16113 eacce35258f14fcd79bea2bc23f4140d25874322 14af47320898bd93f367026f7833c9956f14e24856976e4f9e10be31155cdcf2 Loading...

	www.shuaihu99.com/fv5967_c8zw70.html	1.3 kB	2023-03-14	2023-05-25
Pretty URL www.shuaihu99.com/fv5967_c8zw70.html IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 07:48:20 Last Seen2023-05-25 20:50:50 Times Seen27 Hash 3021c912915a7713302ee97e0bfd8dbc 62e44fbf25a3998f89be1550ece8282add8b85e2 7103488f1f2e0c20ebcd7958f58d121f0e2b375f3f39aa5af007b3d64a446679 Loading...

	www.shuaihu99.com/wp-content/plugins/ultimate-social-media-icons/js/shuffle/modernizr.custom.min.js?ver=5.7.8	3.1 kB	2023-03-07	2024-04-21
Pretty URL www.shuaihu99.com/wp-content/plugins/ultimate-social-media-icons/js/shuffle/modernizr.custom.min.js?ver=5.7.8 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:06:17 Last Seen2024-04-21 23:19:22 Times Seen1525 Hash 0bd6cb4fbf6f16f1fc46934cd8515f3c 37360c9391c47e9d7b0460bf1fdfc8c380404c4f 29c7ceffe2b367039ee6eb32a7334e2a9131654cdbdaf57a5431d909f69d1cab Loading...

	www.shuaihu99.com/fv5967_c8zw70.html	317 B	2023-03-14	2023-04-17
Pretty URL www.shuaihu99.com/fv5967_c8zw70.html IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 07:48:21 Last Seen2023-04-17 22:57:07 Times Seen12 Hash e73f8635ae335d9b2e8ae124d36b3f5e 1565983b8b774f1e171796fc6ecefa210df8538a 59f02f1b553bbf560ba9a786221c02b5c910ce3787069089e4aaf351feb79019 Loading...

	www.shuaihu99.com/wp-includes/js/wp-embed.min.js?ver=5.7.8	1.4 kB	2023-03-07	2024-04-25
Pretty URL www.shuaihu99.com/wp-includes/js/wp-embed.min.js?ver=5.7.8 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:18 Last Seen2024-04-25 08:07:38 Times Seen6876 Hash 905225d5711b559d3092387d5ffbedbd 6f6c39075263bafb9e8c10f1b34a1a0f7ee03c9d 5be614bce53f767993a5f5f14a6badd6aae6bf3af7cbdbf4d31520de49e27991 Loading...

	www.shuaihu99.com/fv5967_c8zw70.html	2.0 kB	2023-03-14	2023-04-17
Pretty URL www.shuaihu99.com/fv5967_c8zw70.html IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 07:48:20 Last Seen2023-04-17 22:57:07 Times Seen11 Hash eefe7b47b44af964e8c9af9f39914122 0aace0669fe552e104184c68aa449722941b3707 83f73ddd7014df9d39d25e4243b1a18e6feb0290e0c8ea57e69d18620b08a2e2 Loading...

	www.shuaihu99.com/wp-content/themes/newsphere/assets/bootstrap/js/bootstrap.min.js?ver=5.7.8	37 kB	2023-03-07	2024-04-25
Pretty URL www.shuaihu99.com/wp-content/themes/newsphere/assets/bootstrap/js/bootstrap.min.js?ver=5.7.8 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:25 Last Seen2024-04-25 01:18:56 Times Seen34442 Hash c5b5b2fa19bd66ff23211d9f844e0131 791aa054a026bddc0de92bad6cf7a1c6e73713d5 2979f9a6e32fc42c3e7406339ee9fe76b31d1b52059776a02b4a7fa6a4fd280a Loading...

	www.shuaihu99.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.5.2	14 kB	2023-03-07	2024-02-07
Pretty URL www.shuaihu99.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.5.2 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:39:50 Last Seen2024-02-07 14:33:07 Times Seen97 Hash f9b765c90b87dcd6c1826872d7dc6826 6294758978e22db40dbf0e86e33c710d004c8ae1 d38e62f3e50f31b512f58dcd817cc1f1bac4b95e09f734bc1d79fd1861831694 Loading...

	www.shuaihu99.com/wp-content/themes/newsphere/assets/jquery-match-height/jquery.matchHeight.min.js?ver=5.7.8	3.4 kB	2023-03-07	2024-04-24
Pretty URL www.shuaihu99.com/wp-content/themes/newsphere/assets/jquery-match-height/jquery.matchHeight.min.js?ver=5.7.8 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:05 Last Seen2024-04-24 20:46:45 Times Seen2759 Hash 3182b2beddb1f798f66d27425b9f99d9 ebfe39b9b22623bf3b289d7d8548f04215b7a820 fa87904726726364ad19a7c4b2f2b20ee10637325601b5aa88ed8bfdcb7117a7 Loading...

HTTP Transactions (81)

URL IP Response Size

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
bea3185dd820a31c1981317f37c3456d
1a548a5d27270fc11df9011837a7149571cedd78
469b97bf9f57401b3c9571039483589f2815f4794212b75c7c85cfefe0ae71e9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "469B97BF9F57401B3C9571039483589F2815F4794212B75C7C85CFEFE0AE71E9"
Last-Modified: Wed, 22 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11373
Expires: Thu, 23 Mar 2023 21:04:47 GMT
Date: Thu, 23 Mar 2023 17:55:14 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
65fc860bc043f3fb83bdc3debdcd322d
418010755deae099ef1284e402813c5837a10f42
d93d50c523c7f735987aba09db628259441eb75efe713a2df3c214e1fb8b5171

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D93D50C523C7F735987ABA09DB628259441EB75EFE713A2DF3C214E1FB8B5171"
Last-Modified: Wed, 22 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10682
Expires: Thu, 23 Mar 2023 20:53:16 GMT
Date: Thu, 23 Mar 2023 17:55:14 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
bc86ef2a0cee04915bc360f5821adc8f
3658f9028cce204d38f7f48fcfaa2a8e4f54383a
aeecd718d03811322457de4f20828bdba86b277e7e0e328cae9c0a8075638454

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Backoff, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 23 Mar 2023 17:27:34 GMT
content-type: application/json
age: 1660
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
51a5d4696a6090c295850554508b51ce
c44e143c2223546e64b19f543b8101aaf3b11e97
8794223d5e8d4d276c35e2fdcc24bf99694240634dd749cd9b5bf874dec055cf

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8794223D5E8D4D276C35E2FDCC24BF99694240634DD749CD9B5BF874DEC055CF"
Last-Modified: Wed, 22 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11880
Expires: Thu, 23 Mar 2023 21:13:14 GMT
Date: Thu, 23 Mar 2023 17:55:14 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: Lu6ZVEj9nlRR2IZfJ5N2jFCm4cII6j5j0WFGPvMA3mu0yy0a4pc/dJ5cyrf7Ui3ympFv9T6CkTW2JcAHMkkq6w==
x-amz-request-id: RZT4KNT4AY4VCP8C
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 23 Mar 2023 17:54:08 GMT
age: 67
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 17:55:15 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Last-Modified, Content-Length, Pragma, Expires, ETag, Backoff, Alert, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 23 Mar 2023 17:14:33 GMT
age: 2442
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

shuaihu99.com/fv5967_c8zw70.html

188.114.97.1

301 Moved Permanently

0 B

URL HTTP/1.1
shuaihu99.com/fv5967_c8zw70.html
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /fv5967_c8zw70.html HTTP/1.1
Host: shuaihu99.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Thu, 23 Mar 2023 17:55:15 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.4.33
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Location: http://www.shuaihu99.com/fv5967_c8zw70.html
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qgmmXhsli%2FOt7XlxOlYO%2FKOge%2FSi%2F6cP1l%2Bx8U5Hx%2BlzKVItEnAKFQL4rbC%2FOD1V7VmNuEGNm%2FI8QoSNzfJJs21pLqfkD1XiRpsSc7fpMz2VxdU73I0M8KXJjezVMuy%2F"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7ac88b508962b529-OSL
alt-svc: h2=":443"; ma=60

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
18b877ebbad1529e4bd91e12220d91c4
a3d64fb3d9cc1fe3a29b261c4ec9acfe134dfedc
7001d3ef847c7002ac15155f0dfcc0a369f19860e85c8e90530f1e7b2dd88f09

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7001D3EF847C7002AC15155F0DFCC0A369F19860E85C8E90530F1E7B2DD88F09"
Last-Modified: Wed, 22 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4013
Expires: Thu, 23 Mar 2023 19:02:08 GMT
Date: Thu, 23 Mar 2023 17:55:15 GMT
Connection: keep-alive

push.services.mozilla.com/

35.80.203.55

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.80.203.55:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: A1KfWh4VhEA7WdjQTNpzhQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: F0bkyx0zbAUvZ1j0RYkgL93XnuY=

www.shuaihu99.com/fv5967_c8zw70.html

188.114.97.1

404 Not Found

9.8 kB

URL HTTP/1.1
www.shuaihu99.com/fv5967_c8zw70.html
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1991), with CRLF, LF line terminators
Size
9.8 kB (9762 bytes)
Hash
affbaa09d1936ddeb7ff5f33d4d13464
921ac31e481b9d904731793844ee9052c814bf5e
e08071bb68db1753ab61fe286b1b6cd5b1086158e7f0462c72be1e28be30ac5c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /fv5967_c8zw70.html HTTP/1.1
Host: www.shuaihu99.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 404 Not Found
Date: Thu, 23 Mar 2023 17:55:16 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.4.33
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://www.shuaihu99.com/wp-json/>; rel="https://api.w.org/"
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EcVnU%2B0ctB%2F%2BQEVdnayhMiDRrJpS%2B3HYk%2BumvqiwX2alGT9VKS6wDSOb%2FSYRwZtHQL0eYEP1k0LBxb1Mmpr5Aaow9JpPG3mv%2BWSFUNGpNH0mnNx1JzZBgQcRS5UaIDwMuU77HA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7ac88b55be0cb51d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

ocsp.pki.goog/gts1c3

142.250.74.163

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
342da587101df62e3e8f03dc4a87f93d
897c40f31b24adf281b804bbca7f0ffba5b86816
f6b8dde2c506c3ec03517324e93c04058e44e345dae5a52e5f49c97d77455aec

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 17:55:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.shuaihu99.com/wp-content/themes/newsphere/assets/sidr/css/jquery.sidr.dark.css?ver=5.7.8

188.114.97.1

200 OK

424 B

URL HTTP/1.1
www.shuaihu99.com/wp-content/themes/newsphere/assets/sidr/css/jquery.sidr.dark.css?ver=5.7.8
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
424 B (424 bytes)
Hash
10924f2b0bf5b8e0c071c494d36ebfc8
0f0adab81786f0510f62a7dc915d33dae4b8a833
404f0644cef7b7c4d0a1e09c69dc2f7c691a405c06d16ccf500a37f5d05ec9f6

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/newsphere/assets/sidr/css/jquery.sidr.dark.css?ver=5.7.8 HTTP/1.1
Host: www.shuaihu99.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shuaihu99.com/fv5967_c8zw70.html

HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 17:55:16 GMT
Content-Type: text/css
Content-Length: 424
Connection: keep-alive
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Fri, 31 Jan 2020 14:49:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=604800
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tqKFiF599EFzTgCI7q2gggfUX0i0bD%2BL1AGX4pOtUAzjwXhaz9rmjOlJErw9c%2BdajTee%2F9OAHeOVkuLjN0PZo9SeN9yF0xknm%2BEyjwFamoDc58v90Xyfj6HNYJHzu0UwDcJWMQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7ac88b5b181b0b55-OSL
alt-svc: h2=":443"; ma=60

www.shuaihu99.com/wp-includes/css/dist/block-library/style.min.css?ver=5.7.8

188.114.97.1

200 OK

8.7 kB

URL HTTP/1.1
www.shuaihu99.com/wp-includes/css/dist/block-library/style.min.css?ver=5.7.8
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type
Unicode text, UTF-8 text, with very long lines (29677)
Size
8.7 kB (8685 bytes)
Hash
be8b35eb8a4bf220eca3c4be7dfdc460
3081a2b524e864441d2cf934bf7edce3bab7c0ab
b47be6ca0301fb6c67d9012115d8db41694b4f18d4974a4f2063a9a508c516df

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=5.7.8 HTTP/1.1
Host: www.shuaihu99.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shuaihu99.com/fv5967_c8zw70.html

HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 17:55:16 GMT
Content-Type: text/css
Content-Length: 8685
Connection: keep-alive
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 07 Apr 2021 11:20:28 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=604800
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aqpVzELnolnb6E32Ov2SvJVFTJ8hnZ6dpgebP%2F652k2SXgaoM1O9%2BvT%2FLnEtjJHf8IDZMQvXFLyv6D6JVtvr5DHKp9gSE2S4WjPxoYjsONboUO5LQ0F6g1FQyabMyNXIajquGA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7ac88b5b0e7cb51d-OSL
alt-svc: h2=":443"; ma=60

ocsp.pki.goog/gts1c3

142.250.74.163

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
342da587101df62e3e8f03dc4a87f93d
897c40f31b24adf281b804bbca7f0ffba5b86816
f6b8dde2c506c3ec03517324e93c04058e44e345dae5a52e5f49c97d77455aec

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 17:55:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.shuaihu99.com/wp-content/plugins/ultimate-social-media-icons/css/sfsi-style.css?ver=5.7.8

188.114.97.1

200 OK

11 kB

URL HTTP/1.1
www.shuaihu99.com/wp-content/plugins/ultimate-social-media-icons/css/sfsi-style.css?ver=5.7.8
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with CRLF line terminators
Size
11 kB (11258 bytes)
Hash
f3a87505794a03e969886127ae3fadae
737af142f34a47f810bff0bd77735de348a73d04
0dca613e92da4b6e4f2ae18ee6d734d9fbb547867b8429dded3a7a6e6259a1b3

HTTP Headers

GET /wp-content/plugins/ultimate-social-media-icons/css/sfsi-style.css?ver=5.7.8 HTTP/1.1
Host: www.shuaihu99.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shuaihu99.com/fv5967_c8zw70.html

HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 17:55:16 GMT
Content-Type: text/css
Content-Length: 11258
Connection: keep-alive
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 03 Feb 2021 15:35:12 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=604800
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6cZ8USDMLtS2WNW410MXHzrCwi2dFpmjheodc0%2F3lJO07I0VfrIymB0vYPkNifEET2MD1h4Yf32KWP2jLio1pSIl30MeAN5ShOc1niXoz%2BRK2%2FRhzx2ZX9%2Fvv%2BcXVs3PCqW%2BkQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7ac88b5b1a36fac0-OSL
alt-svc: h2=":443"; ma=60

www.shuaihu99.com/wp-content/themes/sportion/style.css?ver=1.0.0

188.114.97.1

200 OK

1.8 kB

URL HTTP/1.1
www.shuaihu99.com/wp-content/themes/sportion/style.css?ver=1.0.0
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (1050)
Size
1.8 kB (1793 bytes)
Hash
38fb0b15687c223e421b27d6a3b085f9
c3a98987671d72e4e52fd14e56c9d7ad887e921e
21f0b45554e35e6ff57e873bfb6166f1b8d343e24fce458134f6c4bfa346e6e0

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/sportion/style.css?ver=1.0.0 HTTP/1.1
Host: www.shuaihu99.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shuaihu99.com/fv5967_c8zw70.html

HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 17:55:16 GMT
Content-Type: text/css
Content-Length: 1793
Connection: keep-alive
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Fri, 31 Jan 2020 14:49:03 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=604800
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dzfr0PobsTn35CQqNWTACRPg%2Bb9zMWwVZo0keh5cLRc7FzoVuTdhmCACeuOuFH1T9NfQ3%2FyQ98nIfWtqcSjQV0mWFJ7p0Uk6qzHw4bc0IfWsICrAxez3ONWchNfRU619aYkDxw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7ac88b5b1f37b4f4-OSL
alt-svc: h2=":443"; ma=60

www.shuaihu99.com/wp-includes/js/jquery/jquery.min.js?ver=3.5.1

188.114.97.1

200 OK

31 kB

URL HTTP/1.1
www.shuaihu99.com/wp-includes/js/jquery/jquery.min.js?ver=3.5.1
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (65451)
Size
31 kB (30916 bytes)
Hash
b50f63138863c21ee4dd2fd747d0eaee
24e2e53e39b5980f3021ad881f477387610fbfb6
a3810469de465100b039f38a6e39a83c11a1de3b4259b3028b2b85338770100c

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.5.1 HTTP/1.1
Host: www.shuaihu99.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shuaihu99.com/fv5967_c8zw70.html

HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 17:55:16 GMT
Content-Type: application/javascript
Content-Length: 30916
Connection: keep-alive
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Thu, 08 Oct 2020 03:03:26 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=604800
CF-Cache-Status: HIT
Age: 43382
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KksaxPEMOCCzP63lfs6x0XC0sQw63Wxxk440TtDqyNM%2BTtzgw6gHbRYTqyy7%2FAOudMDwcPU6DJPYkV%2Fa4rob%2F%2BcWXG1lUGPIiL0bw5jN5xY7rOy%2Fok5SbLNOwXT3Bx0mO%2B462A%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7ac88b5dab52b4f4-OSL
alt-svc: h2=":443"; ma=60

ocsp.pki.goog/gts1c3

142.250.74.163

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
1d54d3c84e73cd1f00a835aa7616c399
e869898915967fb645a7ae3bd711a831329cc792
9cca1d2ea17f54a8688823e6fb8cbb7247c0a808808b382ffdda35b2770a26f8

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 17:55:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.163

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
342da587101df62e3e8f03dc4a87f93d
897c40f31b24adf281b804bbca7f0ffba5b86816
f6b8dde2c506c3ec03517324e93c04058e44e345dae5a52e5f49c97d77455aec

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 17:55:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.shuaihu99.com/wp-content/themes/newsphere/assets/bootstrap/css/bootstrap.min.css?ver=5.7.8

188.114.97.1

200 OK

20 kB

URL HTTP/1.1
www.shuaihu99.com/wp-content/themes/newsphere/assets/bootstrap/css/bootstrap.min.css?ver=5.7.8
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (65371)
Size
20 kB (19755 bytes)
Hash
ab03308d48a9b74b01f52192318e471d
08fce1c90fb47e1423fd34a506bf55b114c61bc3
bd50cfe99982c3457b7b3c34ec1c66267773478da94900de85f16e9e7fa008e7

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/newsphere/assets/bootstrap/css/bootstrap.min.css?ver=5.7.8 HTTP/1.1
Host: www.shuaihu99.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shuaihu99.com/fv5967_c8zw70.html

HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 17:55:16 GMT
Content-Type: text/css
Content-Length: 19755
Connection: keep-alive
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Fri, 31 Jan 2020 14:49:11 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=604800
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=a1WLIGvcrMY8b2b6uAeKwjvaRr8HNpxgso4v6XVSuvmmnyIeoA0I340UggQgIaD8l%2FLBTWZAeTzwZIS7ZohAmYWa83vfdwCPzzMn63R6A94praWas6mleGEXKIeUfTVp6wfe6Q%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7ac88b5b18cb1bfe-OSL
alt-svc: h2=":443"; ma=60

www.shuaihu99.com/wp-content/themes/newsphere/style.css?ver=5.7.8

188.114.97.1

200 OK

20 kB

URL HTTP/1.1
www.shuaihu99.com/wp-content/themes/newsphere/style.css?ver=5.7.8
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (1092)
Size
20 kB (20108 bytes)
Hash
7647c960700b2a9d28043caead6ec0a2
650b3bf9c7cd63c21bcc65a668c3a9aee082f445
6f215f0c54292fd907552c4e40ffd685a7d1efe44845daf2a889075745b4b389

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/newsphere/style.css?ver=5.7.8 HTTP/1.1
Host: www.shuaihu99.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shuaihu99.com/fv5967_c8zw70.html

HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 17:55:16 GMT
Content-Type: text/css
Content-Length: 20108
Connection: keep-alive
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Fri, 31 Jan 2020 14:49:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=604800
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HJh4eXIss2Vdt0IdJD5e1HQWmhSdNoMwS3S2yAtnkxgmh3O05fdleFtuamraK8mJ0soxZtFa%2FYRnE9kP1%2BB2IJ40XssGa4KLyQZ2HZcdlOQ562VJybUddk%2Fst2u5W8kqVmfTdQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7ac88b5b1c50b505-OSL
alt-svc: h2=":443"; ma=60

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a0d3d7099bbc5fed74a6e78e1a3096bf
96afaf8b3ac053577c56aca5f4a20d8655ecb771
c8ff32c6809a506d4c656d3200dbfc6682c156c3de0647d13ab8f07a6f9a38ba

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C8FF32C6809A506D4C656D3200DBFC6682C156C3DE0647D13AB8F07A6F9A38BA"
Last-Modified: Tue, 21 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4854
Expires: Thu, 23 Mar 2023 19:16:11 GMT
Date: Thu, 23 Mar 2023 17:55:17 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a0d3d7099bbc5fed74a6e78e1a3096bf
96afaf8b3ac053577c56aca5f4a20d8655ecb771
c8ff32c6809a506d4c656d3200dbfc6682c156c3de0647d13ab8f07a6f9a38ba

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C8FF32C6809A506D4C656D3200DBFC6682C156C3DE0647D13AB8F07A6F9A38BA"
Last-Modified: Tue, 21 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4854
Expires: Thu, 23 Mar 2023 19:16:11 GMT
Date: Thu, 23 Mar 2023 17:55:17 GMT
Connection: keep-alive

fonts.googleapis.com/css?family=Roboto:100,300,400,500,700|Rubik:300,300i,400,400i,500,500i,700,700i,900,900i&subset=latin,latin-ext

142.250.74.74

200 OK

1.6 kB

URL HTTP/2
fonts.googleapis.com/css?family=Roboto:100,300,400,500,700|Rubik:300,300i,400,400i,500,500i,700,700i,900,900i&subset=latin,latin-ext
IP
142.250.74.74:0
ASN
#15169 GOOGLE

File type
data
Size
1.6 kB (1648 bytes)
Hash
310d5f4e2aef154621700439a77d8ec4
887dd8f401ccacf86e9084e58bf45765ee23c81e
a7d64a236f012eb27dc56dd041173872cc886b7d7c42d52d00050435a64c505b

HTTP Headers

GET /css?family=Roboto:100,300,400,500,700|Rubik:300,300i,400,400i,500,500i,700,700i,900,900i&subset=latin,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.shuaihu99.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 23 Mar 2023 17:55:16 GMT
date: Thu, 23 Mar 2023 17:55:16 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a0d3d7099bbc5fed74a6e78e1a3096bf
96afaf8b3ac053577c56aca5f4a20d8655ecb771
c8ff32c6809a506d4c656d3200dbfc6682c156c3de0647d13ab8f07a6f9a38ba

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C8FF32C6809A506D4C656D3200DBFC6682C156C3DE0647D13AB8F07A6F9A38BA"
Last-Modified: Tue, 21 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4854
Expires: Thu, 23 Mar 2023 19:16:11 GMT
Date: Thu, 23 Mar 2023 17:55:17 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5be1b286-007a-44a5-a6fd-872190ecfa0b.jpeg

34.120.237.76

200 OK

6.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5be1b286-007a-44a5-a6fd-872190ecfa0b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.7 kB (6692 bytes)
Hash
c05bfdf1411a931d8ea9adc64b07bc74
156ef59e53564a4f2b27002b2695fafecd578d82
15d17c0df2d2b0625ecf5f576a7ff630ae8b923b28be354ad23aec6a284a801a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5be1b286-007a-44a5-a6fd-872190ecfa0b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6692
x-amzn-requestid: 3a0f6a8d-89b1-43f4-8a15-8749bdbc047b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CM9d9FcOoAMFaFQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641b75f2-3540256d6be3d4f85bba65ea;Sampled=0
x-amzn-remapped-date: Wed, 22 Mar 2023 21:41:06 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: Jj5lAwItWYm45j5kLqQnd3fhsiGsiuSiSVtrBUOolyHvPAmCc0S71A==
via: 1.1 e92cc925fc8895560cd0628c67f58828.cloudfront.net (CloudFront), 1.1 b23fb37cd7fff033ab21e3284f558a28.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Mar 2023 07:54:24 GMT
age: 36053
etag: "156ef59e53564a4f2b27002b2695fafecd578d82"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F261caab9-983c-4eb1-9fca-fd73dc738e9e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10284 bytes)
Hash
4e89d0b1281259e7399294fb5fa19d2b
5035ed41f497c97faefae9cdaf42dc07ab468557
f404d286deab5b4759be6e554e6488faab3b4f7988a86eb57520dac4e0d6a192

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F261caab9-983c-4eb1-9fca-fd73dc738e9e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10284
x-amzn-requestid: e4d2c324-d0b0-436d-9739-29269e62aed0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CM6hjEqtIAMFvXA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641b713c-5a5bd6b60c1f52ab580f1757;Sampled=0
x-amzn-remapped-date: Wed, 22 Mar 2023 21:21:00 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: Pv-MA9gQ4PmXuY3EWSC77_g2fn_C9-bYUQ4azcrxLNvtwY6CZZg1nA==
via: 1.1 ffc1e24c06bfbb135c0a4d240b382048.cloudfront.net (CloudFront), 1.1 174acb08636ac7d9e9a778bbf1bcbc52.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Mar 2023 07:55:01 GMT
age: 36016
etag: "5035ed41f497c97faefae9cdaf42dc07ab468557"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F93c300c4-e707-428c-9ae5-d4699c20a7ef.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.0 kB (5950 bytes)
Hash
800c2662fd6ab8829a02b7d63084c38d
0917d2c376f8d2af2a436a33ce2bfe1cbdb8b239
76545e9f75dc558fdb7b54550934c7775318fb4150a9309f60e65d982d2e576e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F93c300c4-e707-428c-9ae5-d4699c20a7ef.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5950
x-amzn-requestid: ce85112e-428d-4ca1-9dac-1d6c8c6dc74a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CKyF9EI3oAMFtyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641a96f2-05c5948d6f74948b1c67d68c;Sampled=0
x-amzn-remapped-date: Wed, 22 Mar 2023 05:49:38 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: tu0ENc_6tfykYc23nLfwYEMsi5HIfaDWF6dvzVTfX5rfjr3JrmMrCA==
via: 1.1 59456abf79b201034ab5c9cfef7355e2.cloudfront.net (CloudFront), 1.1 aabd01c4a20dae837d162bd972422efc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 22 Mar 2023 22:02:44 GMT
age: 71553
etag: "0917d2c376f8d2af2a436a33ce2bfe1cbdb8b239"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F08561a1f-1d19-45db-be98-107d6b1ed25d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10480 bytes)
Hash
6f0b9e85381489dcf646c251722b21d4
5f7ea91288a2170bcabdca6be296718c4191eacd
911f803271ad9053ebac3787bdde9b75ec604acc6aa28692cc8e4c5c4fb61483

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F08561a1f-1d19-45db-be98-107d6b1ed25d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10480
x-amzn-requestid: 58aa8272-4b4e-4a2f-9d6e-d47f70891c49
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CJptHG7JoAMFSwA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641a2320-2fd6502b1271d5c13b4ebbe9;Sampled=0
x-amzn-remapped-date: Tue, 21 Mar 2023 21:35:28 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: pFCYGtd2b7lK7OBFHjCsgqqLfhtMAQDB0vyYFyf1sv-3CkSHbEh3mA==
via: 1.1 2241406ac19fffc8f35d6ddef8e22f56.cloudfront.net (CloudFront), 1.1 4c48e9fb20d53d40e9fe273dbdae1098.cloudfront.net (CloudFront), 1.1 google
date: Wed, 22 Mar 2023 21:59:52 GMT
age: 71725
etag: "5f7ea91288a2170bcabdca6be296718c4191eacd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22c3f36a-d800-4eab-8a32-e2b5ef86e386.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.5 kB (9459 bytes)
Hash
412bd6aea60211324e649d7d920601d2
a813976bda850a584b5ab94d9a70bfe0da69aca0
d36ef17fc6ab3cd4e5e43836f7df2c6fdf1781f1bac73e42c9a09e8594f797f9

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22c3f36a-d800-4eab-8a32-e2b5ef86e386.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9459
x-amzn-requestid: 1b374321-f2df-404f-ab91-4e73d830fac9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CJqmAEhHoAMFgRQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641a248c-217d81154ecfe0c44ca70432;Sampled=0
x-amzn-remapped-date: Tue, 21 Mar 2023 21:41:32 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: pvFey5NWlIqIXlHLMYSUiylATCU1ZxodOb6imsPCxrJDRscwky8dVQ==
via: 1.1 8ae6af4d17aae7471e5fe2792eb6abcc.cloudfront.net (CloudFront), 1.1 6ca7826fb0f4c565b1af9c7737725c48.cloudfront.net (CloudFront), 1.1 google
date: Wed, 22 Mar 2023 21:48:27 GMT
age: 72410
etag: "a813976bda850a584b5ab94d9a70bfe0da69aca0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2f57fa6-bac5-42a3-be66-ebcc96d82ea2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10407 bytes)
Hash
2062cf7a271d4ac7a04c0a746d443e07
3343851f2128c5f1fe4302c2aa53e8ce1fb661ac
e479263c1742d2597cf8948ef059b0bc97dbb97f47bb5cafee3d4af12069d2ce

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2f57fa6-bac5-42a3-be66-ebcc96d82ea2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10407
x-amzn-requestid: 87aba2e6-d7e8-4456-a12f-e05ac556b839
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CJqJhGnXIAMF1yA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641a23d6-2b6c3d62366f47f506ce8415;Sampled=0
x-amzn-remapped-date: Tue, 21 Mar 2023 21:38:30 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: lKww3e9Hvk0r0LPn7u6pu6Fx9V8RThNVxQEdyWVFAQdOun-53X-tLw==
via: 1.1 b3cdce1c2fc39b89f45c98c417351f26.cloudfront.net (CloudFront), 1.1 aa623e134417515bd2496cb01d5e5626.cloudfront.net (CloudFront), 1.1 google
date: Wed, 22 Mar 2023 21:49:35 GMT
age: 72342
etag: "3343851f2128c5f1fe4302c2aa53e8ce1fb661ac"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.shuaihu99.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0

188.114.97.1

200 OK

7.1 kB

URL HTTP/1.1
www.shuaihu99.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (30837)
Size
7.1 kB (7052 bytes)
Hash
2a2c987c48fb65bb0e78fa2a37120537
ede7a4d5da37f053251e8b8a33be2a23a660473f
3d3136cdfced0eee9b7766b7a17a591f6fb3ba480e71b8930acbea4db4ab71d1

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1
Host: www.shuaihu99.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shuaihu99.com/fv5967_c8zw70.html

HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 17:55:17 GMT
Content-Type: text/css
Content-Length: 7052
Connection: keep-alive
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Fri, 24 Dec 2021 12:04:28 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=604800
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5qolANbfWY3aOm9jP3urdJqWVvETJINoigGZFJwXg4Q5%2ByiNKhQQHp7mS14q3E3%2BzoSBonbSn8NMRhyMyE5vipeluiMBGjPBOyYbYtbfg0tQYR%2BbQylK9Fp65feCCGgvUPXe4A%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7ac88b5d9b040b55-OSL
alt-svc: h2=":443"; ma=60

www.shuaihu99.com/wp-content/themes/newsphere/assets/magnific-popup/magnific-popup.css?ver=5.7.8

188.114.97.1

200 OK

1.8 kB

URL HTTP/1.1
www.shuaihu99.com/wp-content/themes/newsphere/assets/magnific-popup/magnific-popup.css?ver=5.7.8
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
1.8 kB (1816 bytes)
Hash
24d43b806e85342a40e2da6970fdfaa0
b365e6daf45244233ffac6681aa3dad08a26f2c5
dcf879e6dd283fcbef1dc4a0392fbd2ec5ea512b31a97f64ea3076fc392d784e

HTTP Headers

GET /wp-content/themes/newsphere/assets/magnific-popup/magnific-popup.css?ver=5.7.8 HTTP/1.1
Host: www.shuaihu99.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shuaihu99.com/fv5967_c8zw70.html

HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 17:55:17 GMT
Content-Type: text/css
Content-Length: 1816
Connection: keep-alive
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Fri, 31 Jan 2020 14:49:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=604800
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rd5iRgEWcf8NQAprNO366aJeRoEbjOmv2WR5NOXmkqhOanmcU%2Bhipnfz99X%2FtoNUvb7ClRBPa%2FJ1%2Bsd3Rxoor6mO4g6gzMIaFg8o1zMoTyUP%2B0OU9XqMuM5gfW5AopfusQ24gw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7ac88b5dac18fac0-OSL
alt-svc: h2=":443"; ma=60

www.shuaihu99.com/wp-content/themes/newsphere/assets/swiper/css/swiper.min.css?ver=5.7.8

188.114.97.1

200 OK

3.1 kB

URL HTTP/1.1
www.shuaihu99.com/wp-content/themes/newsphere/assets/swiper/css/swiper.min.css?ver=5.7.8
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (19512)
Size
3.1 kB (3059 bytes)
Hash
13e39936352c3379c771d16e9288f86d
d183eb111d265abaec9864f57849e8bca639d5d0
a865ba7ef959b7cde981c9651f1529110cb5c10cb30f44522e1dd5cc3ea7226f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/newsphere/assets/swiper/css/swiper.min.css?ver=5.7.8 HTTP/1.1
Host: www.shuaihu99.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shuaihu99.com/fv5967_c8zw70.html

HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 17:55:17 GMT
Content-Type: text/css
Content-Length: 3059
Connection: keep-alive
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Fri, 31 Jan 2020 14:49:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=604800
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hg3fYfg3TekcViGtOPyEG%2BlSuBtxWPaVlAcFtPrnMHBBThtSWWLb3YPxxHcpt%2FyPiLABLWijA01o0XDaJJh6FKuS0VGFNMFig2Q3USTBU05FwW3w0M8Jux7hX%2B0JUU2uKcKQog%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7ac88b5daabdb51d-OSL
alt-svc: h2=":443"; ma=60

www.shuaihu99.com/wp-includes/js/jquery/ui/core.min.js?ver=1.12.1

188.114.97.1

200 OK

6.9 kB

URL HTTP/1.1
www.shuaihu99.com/wp-includes/js/jquery/ui/core.min.js?ver=1.12.1
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (7973)
Size
6.9 kB (6865 bytes)
Hash
bf046c412ea0ddd6f255411f942f0397
5dca594e157deca4e9dc8f8654a898e00eec11f6
d1480dd16f60e007a3b43512042b80feeb92eee79dc2e955d296e9e9aec4b849

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/ui/core.min.js?ver=1.12.1 HTTP/1.1
Host: www.shuaihu99.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shuaihu99.com/fv5967_c8zw70.html

HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 17:55:17 GMT
Content-Type: application/javascript
Content-Length: 6865
Connection: keep-alive
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Fri, 26 Mar 2021 06:32:20 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=604800
CF-Cache-Status: HIT
Age: 43383
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EIC8Yw%2F0i0EBHerHDWU2zMXa4mWPbEFbLPgzKZqQuBVcIypa5PBbgam5nfiSndVR8LqbAmoF%2FHHYmZwHiFerc2eYhAV83tatQ0Hj2M0Grah1ZFdWlsaye16EFpor%2FXPUjWuSZg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7ac88b604ea6b51d-OSL
alt-svc: h2=":443"; ma=60

www.shuaihu99.com/wp-content/plugins/ultimate-social-media-icons/js/shuffle/modernizr.custom.min.js?ver=5.7.8

188.114.97.1

200 OK

1.5 kB

URL HTTP/1.1
www.shuaihu99.com/wp-content/plugins/ultimate-social-media-icons/js/shuffle/modernizr.custom.min.js?ver=5.7.8
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type
HTML document, ASCII text, with very long lines (2861), with CRLF, CR line terminators
Size
1.5 kB (1495 bytes)
Hash
edf96e5937a2b3489a3ed85a749496fe
84a97d9063c8ed070ed33818f4dabca758c84041
3a8528fe60cec3dbfa0f5e2a7683b2f3ca44fd532359e29a37d93fdc475732c0

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/ultimate-social-media-icons/js/shuffle/modernizr.custom.min.js?ver=5.7.8 HTTP/1.1
Host: www.shuaihu99.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shuaihu99.com/fv5967_c8zw70.html

HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 17:55:17 GMT
Content-Type: application/javascript
Content-Length: 1495
Connection: keep-alive
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 03 Feb 2021 15:35:15 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=604800
CF-Cache-Status: HIT
Age: 43383
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1d2MoU3epmF0Y0WxM%2Bnp%2BVIlYflVxykc29mPYQz%2B0KP5s0%2FJZbJ2ZdwEB809wm3qDAXx3dRsAKut0Bot9NS8M5b3pCAY4dNtKRPUemZ1cSxLpidXu0gYOe4B2W4WvIK5RambQg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7ac88b605ec2b51d-OSL
alt-svc: h2=":443"; ma=60

www.shuaihu99.com/wp-content/plugins/ultimate-social-media-icons/js/shuffle/jquery.shuffle.min.js?ver=5.7.8

188.114.97.1

200 OK

4.1 kB

URL HTTP/1.1
www.shuaihu99.com/wp-content/plugins/ultimate-social-media-icons/js/shuffle/jquery.shuffle.min.js?ver=5.7.8
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (11484), with no line terminators
Size
4.1 kB (4127 bytes)
Hash
4837bf53b7c7ab3fd703017a2f3b717f
26d9cc71e7fdc17e4a3527d543b167fe64f3d1f4
f9b01103ba55946e9fd40c03e26d2ecca66e4a57191d284a533d4f27de0515b5

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/ultimate-social-media-icons/js/shuffle/jquery.shuffle.min.js?ver=5.7.8 HTTP/1.1
Host: www.shuaihu99.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shuaihu99.com/fv5967_c8zw70.html

HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 17:55:17 GMT
Content-Type: application/javascript
Content-Length: 4127
Connection: keep-alive
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 03 Feb 2021 15:35:15 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=604800
CF-Cache-Status: HIT
Age: 43383
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ebSMRnDXCIggEMagqaCnoGa1PnyB7m%2FjLxIIuG53IPUHITKGD6cMHcc%2B73rwew70vdjfhd01uc1e4xJ7q8t2pArCLjniZhbYajVZmCbzC8AgPgpaSnJ154mGQf3F3Al0MdadKA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7ac88b606edcb51d-OSL
alt-svc: h2=":443"; ma=60

www.shuaihu99.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.5.2

188.114.97.1

200 OK

12 kB

URL HTTP/1.1
www.shuaihu99.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.5.2
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (65497)
Size
12 kB (12540 bytes)
Hash
af686fc00ab30afe9bd2a95f66212dfc
8f3664099e8736f4cc16eef7c7ac73660d864216
6e1648424cdd5d4643d41b4c4f3562ff22fdf1b9d9f1c862cb33e0358b98947c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.5.2 HTTP/1.1
Host: www.shuaihu99.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shuaihu99.com/fv5967_c8zw70.html

HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 17:55:17 GMT
Content-Type: text/css
Content-Length: 12540
Connection: keep-alive
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Fri, 24 Dec 2021 12:04:18 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=604800
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SbS2%2B1OEI3bb1O1DwPq%2FpZ5f6hmx3AjpPom%2Fv7jsWouSkmwoZOhg%2BWN7VgrJUFAhXVcNdhvdX7rqhIz6%2Ft3jaudoEgwbvVSJXNeF29uhW%2FBExNacQeBNXxxAt2F8KC5swJdJ1g%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7ac88b5debb4b4f4-OSL
alt-svc: h2=":443"; ma=60

www.shuaihu99.com/wp-content/uploads/2022/07/%E0%B8%A3%E0%B8%A7%E0%B8%A2%E0%B8%AA%E0%B8%A1%E0%B8%B1%E0%B8%84%E0%B8%A3%E0%B8%9F%E0%B8%A3%E0%B8%B5%E0%B8%8A%E0%B8%B8%E0%B8%94%E0%B9%80%E0%B8%AB%E0%B8%A5%E0%B8%B7%E0%B8%AD%E0%B8%87-720x380.jpeg

188.114.97.1

200 OK

53 kB

URL HTTP/2
www.shuaihu99.com/wp-content/uploads/2022/07/%E0%B8%A3%E0%B8%A7%E0%B8%A2%E0%B8%AA%E0%B8%A1%E0%B8%B1%E0%B8%84%E0%B8%A3%E0%B8%9F%E0%B8%A3%E0%B8%B5%E0%B8%8A%E0%B8%B8%E0%B8%94%E0%B9%80%E0%B8%AB%E0%B8%A5%E0%B8%B7%E0%B8%AD%E0%B8%87-720x380.jpeg
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 720x380, components 3\012- data
Size
53 kB (53259 bytes)
Hash
36527ef9909ebddc0a88af7d7cf51633
2702f91d5980bfc9658dd9d88fde5af4e417df06
52787e590c9c1adbaf3bf2f7585c6cf763a8525f0502e4fc628e7a77f1594318

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2022/07/%E0%B8%A3%E0%B8%A7%E0%B8%A2%E0%B8%AA%E0%B8%A1%E0%B8%B1%E0%B8%84%E0%B8%A3%E0%B8%9F%E0%B8%A3%E0%B8%B5%E0%B8%8A%E0%B8%B8%E0%B8%94%E0%B9%80%E0%B8%AB%E0%B8%A5%E0%B8%B7%E0%B8%AD%E0%B8%87-720x380.jpeg HTTP/1.1
Host: www.shuaihu99.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.shuaihu99.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 23 Mar 2023 17:55:17 GMT
content-type: image/jpeg
content-length: 53259
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Fri, 22 Jul 2022 12:14:41 GMT
cache-control: public, max-age=604800
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vlhjREUeB66cwXylMO7nM1iEqTERA60wwo74HSW7db6Kxd6trhhm3AYgkcKvClg8%2FdG5hR9AvG%2B3d0jRhFK98S1nWM1YJSTERfd9e2moWRGi2J6ZQMBKizGZWaz5GdGksaMwJg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac88b5b8cc20b61-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.shuaihu99.com/wp-content/plugins/ultimate-social-media-icons/js/shuffle/random-shuffle-min.js?ver=5.7.8

188.114.97.1

200 OK

697 B

URL HTTP/1.1
www.shuaihu99.com/wp-content/plugins/ultimate-social-media-icons/js/shuffle/random-shuffle-min.js?ver=5.7.8
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (1472), with no line terminators
Size
697 B (697 bytes)
Hash
c70c4639aa4137958f14f0e737fca12a
5cd2f746a4d799e5748e1fff720706bd9e092689
5474c08cf4933aa755055e15e16fbc675adf04975b9265b5f8bf878ca9bcc4b8

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/ultimate-social-media-icons/js/shuffle/random-shuffle-min.js?ver=5.7.8 HTTP/1.1
Host: www.shuaihu99.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shuaihu99.com/fv5967_c8zw70.html

HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 17:55:17 GMT
Content-Type: application/javascript
Content-Length: 697
Connection: keep-alive
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 03 Feb 2021 15:35:15 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=604800
CF-Cache-Status: HIT
Age: 43383
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=32yhIYVQVmO1ve9TbpcyNoPIzHxBsyNNY%2BKl1O3Gyg8LZSTQQCkT7YFOD6RzV2NB7I4zObHZJp4eYy03iYCQvLwnYFHtqF0Aqxe2VggqmNuV%2BOK4FMgox3MdFF7CBcGuatMZNg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7ac88b606eecb51d-OSL
alt-svc: h2=":443"; ma=60

www.shuaihu99.com/wp-content/plugins/ultimate-social-media-icons/js/custom.js?ver=5.7.8

188.114.97.1

200 OK

5.8 kB

URL HTTP/1.1
www.shuaihu99.com/wp-content/plugins/ultimate-social-media-icons/js/custom.js?ver=5.7.8
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type
Unicode text, UTF-8 text, with very long lines (827), with CRLF line terminators
Size
5.8 kB (5835 bytes)
Hash
37a8f0bba58a02e424272110f2b7f1eb
f0f15a98a2be181216518a9c313515ffa92f1375
865805629fe008f512da9edc8e169b9f250324595cd6e2caad838173d922e00f

HTTP Headers

GET /wp-content/plugins/ultimate-social-media-icons/js/custom.js?ver=5.7.8 HTTP/1.1
Host: www.shuaihu99.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shuaihu99.com/fv5967_c8zw70.html

HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 17:55:17 GMT
Content-Type: application/javascript
Content-Length: 5835
Connection: keep-alive
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 03 Feb 2021 15:35:15 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=604800
CF-Cache-Status: HIT
Age: 43383
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ohDnyoYenRS1OnnQQ0UYmI0z6dUlzpHGpLgSwZjcssMdZgAdt754vEROythqE9GKjtAoG4Hii7Pkfzg%2BM5EMw6JTn91K9HQSrTtL6RdmIHZOX8%2BLpOINJQXJ%2F%2BrWIfjKs3aKQQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7ac88b607fdab4f4-OSL
alt-svc: h2=":443"; ma=60

www.shuaihu99.com/wp-content/themes/newsphere/js/navigation.js?ver=20151215

188.114.97.1

200 OK

1.1 kB

URL HTTP/1.1
www.shuaihu99.com/wp-content/themes/newsphere/js/navigation.js?ver=20151215
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
1.1 kB (1094 bytes)
Hash
7eec6995203e3994a2714c41a388df66
99c08555971c9962b5ade2806e05ed29d0f00258
040c47ba29f4c8eefa8d359cd715eadc0888aa080ce6187a23b8eb8852bc54b9

HTTP Headers

GET /wp-content/themes/newsphere/js/navigation.js?ver=20151215 HTTP/1.1
Host: www.shuaihu99.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shuaihu99.com/fv5967_c8zw70.html

HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 17:55:17 GMT
Content-Type: application/javascript
Content-Length: 1094
Connection: keep-alive
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Fri, 31 Jan 2020 14:49:11 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=604800
CF-Cache-Status: HIT
Age: 43383
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rWBmebes8jv0b4mYZ4GDV63X3K10BkNBu7dt2ot5kQQrtmb%2BfeUya9RvLKY1WICEqjpR%2FZWEKOdEfWM8xUcuOSshiIa5bQOyDNbI5CaOdHPkGqn8aiZH16CmortW9athPiqVOg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7ac88b609f26b51d-OSL
alt-svc: h2=":443"; ma=60

www.shuaihu99.com/wp-content/themes/newsphere/js/skip-link-focus-fix.js?ver=20151215

188.114.97.1

200 OK

417 B

URL HTTP/1.1
www.shuaihu99.com/wp-content/themes/newsphere/js/skip-link-focus-fix.js?ver=20151215
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
417 B (417 bytes)
Hash
73f7704398d8f6be9748d30791950984
3231f3786c364c7665cd7123d8fae0f42bbfd836
c1d9b23aff05fb52e5d6e68aff86d808097185c6dbaac6c3fc3ec6e5bea31ef4

HTTP Headers

GET /wp-content/themes/newsphere/js/skip-link-focus-fix.js?ver=20151215 HTTP/1.1
Host: www.shuaihu99.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shuaihu99.com/fv5967_c8zw70.html

HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 17:55:17 GMT
Content-Type: application/javascript
Content-Length: 417
Connection: keep-alive
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Fri, 31 Jan 2020 14:49:11 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=604800
CF-Cache-Status: HIT
Age: 43383
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LgBGbw%2BfvIVmUpf288tgWYKZ1qUYMy1HqnGF7%2B18A7Po5Cqny7FhVZGtywJAISkTACWgjOOvFrCnOh0U0MLPCGTK9UtoVbJ5gHUZbgx14CdCg6Qt2SiKNHYlGD8bUPqqh9%2FhRQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7ac88b60981ab4f4-OSL
alt-svc: h2=":443"; ma=60

www.shuaihu99.com/wp-content/themes/newsphere/assets/swiper/js/swiper.min.js?ver=5.7.8

188.114.97.1

200 OK

33 kB

URL HTTP/1.1
www.shuaihu99.com/wp-content/themes/newsphere/assets/swiper/js/swiper.min.js?ver=5.7.8
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (65270)
Size
33 kB (33284 bytes)
Hash
241124af67f8656bc9fcef8f664aa30b
53fe794dce467d865e63c78f0a5f374db8caa5a4
dd19c0e47ed39fc8d6d88421a0eb30a9e224705224f4068a185820aab66e836a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/newsphere/assets/swiper/js/swiper.min.js?ver=5.7.8 HTTP/1.1
Host: www.shuaihu99.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shuaihu99.com/fv5967_c8zw70.html

HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 17:55:17 GMT
Content-Type: application/javascript
Content-Length: 33284
Connection: keep-alive
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Fri, 31 Jan 2020 14:49:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=604800
CF-Cache-Status: HIT
Age: 43383
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=m0rfH6xSoxnJJQvxYYTpz8c85DlMzWtY87qiWnbZnYlmDxrN%2FqxfmlDEbFrtnu8H8L1NPtW%2F7IGc41mDRhf0pygj%2F3mQNeWSPN%2Bgd7Ray4ae9s%2B5hXJuoQUB3Gh7jtUh17lXXA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7ac88b609f4db51d-OSL
alt-svc: h2=":443"; ma=60

www.shuaihu99.com/wp-content/themes/newsphere/assets/bootstrap/js/bootstrap.min.js?ver=5.7.8

188.114.97.1

200 OK

9.8 kB

URL HTTP/1.1
www.shuaihu99.com/wp-content/themes/newsphere/assets/bootstrap/js/bootstrap.min.js?ver=5.7.8
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (32003)
Size
9.8 kB (9765 bytes)
Hash
da6fb4b64d1f22f682dcaa0433b4dec7
56493cb828703ebeb1e9fbefc163793613b65e7f
7d59f0296a0b229f7d0ffc0b4f02930d6a7b56070167c7429004d6b1649c9d64

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/newsphere/assets/bootstrap/js/bootstrap.min.js?ver=5.7.8 HTTP/1.1
Host: www.shuaihu99.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shuaihu99.com/fv5967_c8zw70.html

HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 17:55:17 GMT
Content-Type: application/javascript
Content-Length: 9765
Connection: keep-alive
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Fri, 31 Jan 2020 14:49:11 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=604800
CF-Cache-Status: HIT
Age: 43383
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mjA8PCzNKBItzEFlsCJ5wS%2FVmFBZ2aDhTXtYwiD4bZRkjLMsLTM%2BOIwSDBlh17MQx8rrMnfkezBd0k779TyVzl4DfktNs0sNhl99HffDf1R88wlDg0vx6fhbjZmXcZEBagM4lA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7ac88b60a83fb4f4-OSL
alt-svc: h2=":443"; ma=60

www.shuaihu99.com/wp-content/themes/newsphere/assets/sidr/js/jquery.sidr.min.js?ver=5.7.8

188.114.97.1

200 OK

2.6 kB

URL HTTP/1.1
www.shuaihu99.com/wp-content/themes/newsphere/assets/sidr/js/jquery.sidr.min.js?ver=5.7.8
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (6911)
Size
2.6 kB (2624 bytes)
Hash
607e2ec47e0820ea409fb9bcd26412f0
cce67536de15e4e1659749c9f8614e4308254d9d
319c3d7255565c5846e8bad209d3662be6051750029b7f9f1ce566ea92fdcf30

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/newsphere/assets/sidr/js/jquery.sidr.min.js?ver=5.7.8 HTTP/1.1
Host: www.shuaihu99.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shuaihu99.com/fv5967_c8zw70.html

HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 17:55:17 GMT
Content-Type: application/javascript
Content-Length: 2624
Connection: keep-alive
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Fri, 31 Jan 2020 14:49:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=604800
CF-Cache-Status: HIT
Age: 43383
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VuRLOKTtkGc%2BjpO3ew%2FkNHA5u%2BjwmGx62b%2FlhDpT%2BKZZjFUQRg8EnAXmFIvACE4KYRAcVJifMKw6Vba0AwO8t4Mph5V5439ahzny9me96D0ajRB341lh4IH%2F1Qmp%2FZVBu3c%2BvA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7ac88b60af5bb51d-OSL
alt-svc: h2=":443"; ma=60

www.shuaihu99.com/wp-content/themes/newsphere/assets/magnific-popup/jquery.magnific-popup.min.js?ver=5.7.8

188.114.97.1

200 OK

7.3 kB

URL HTTP/1.1
www.shuaihu99.com/wp-content/themes/newsphere/assets/magnific-popup/jquery.magnific-popup.min.js?ver=5.7.8
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (20089)
Size
7.3 kB (7349 bytes)
Hash
ca3216a12e89a478953f9c77b4fc4d0e
4bf4f7f3be4d5d58c40749c05f72ba1e58e470f6
62dde86e38e270dbb8a28e6b60a45fa72ca90b7e5f8a6ff7e9c3b1bb75369cd2

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/newsphere/assets/magnific-popup/jquery.magnific-popup.min.js?ver=5.7.8 HTTP/1.1
Host: www.shuaihu99.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shuaihu99.com/fv5967_c8zw70.html

HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 17:55:17 GMT
Content-Type: application/javascript
Content-Length: 7349
Connection: keep-alive
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Fri, 31 Jan 2020 14:49:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=604800
CF-Cache-Status: HIT
Age: 43383
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Lh6wGLc7LUzrGdVbE%2BpOj92p%2FDAV%2F8nDK1v1VyZ1qy61xeW5uGtrRRUoP3iYM3cRmKa2TJ9hMLpD5gaexKy7M0F8kjP6uI30Xw9i9G2twQiacalgzYQD0d%2FBJrdncvpINn3dEA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7ac88b60b85fb4f4-OSL
alt-svc: h2=":443"; ma=60

www.shuaihu99.com/wp-content/themes/newsphere/assets/jquery-match-height/jquery.matchHeight.min.js?ver=5.7.8

188.114.97.1

200 OK

1.4 kB

URL HTTP/1.1
www.shuaihu99.com/wp-content/themes/newsphere/assets/jquery-match-height/jquery.matchHeight.min.js?ver=5.7.8
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (521)
Size
1.4 kB (1383 bytes)
Hash
6854ce63cc086200aa71576b39853b9e
730966815d508402656927acbe9cec04ade5653d
aa723b8c98664c269cce42764cb97dc72e0c76b21565532a68767f6f11c4c5ce

HTTP Headers

GET /wp-content/themes/newsphere/assets/jquery-match-height/jquery.matchHeight.min.js?ver=5.7.8 HTTP/1.1
Host: www.shuaihu99.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shuaihu99.com/fv5967_c8zw70.html

HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 17:55:17 GMT
Content-Type: application/javascript
Content-Length: 1383
Connection: keep-alive
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Fri, 31 Jan 2020 14:49:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=604800
CF-Cache-Status: HIT
Age: 43383
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=owFnOBeyUlTyjOo9ea9JbyE00UVP%2BuE9caHXWxDqe3ptX1wM27voWmvparWVcNK%2BqWgta61ewyMGLGUFt%2BmAqr6BIZWE54IS6V2HySE0ds7m8hO%2BBk3xjwzMkbH63H7cAAsKiQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7ac88b60bf65b51d-OSL
alt-svc: h2=":443"; ma=60

www.shuaihu99.com/wp-content/themes/newsphere/assets/theiaStickySidebar/theia-sticky-sidebar.min.js?ver=5.7.8

188.114.97.1

200 OK

1.8 kB

URL HTTP/1.1
www.shuaihu99.com/wp-content/themes/newsphere/assets/theiaStickySidebar/theia-sticky-sidebar.min.js?ver=5.7.8
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type
HTML document, ASCII text, with very long lines (5370)
Size
1.8 kB (1775 bytes)
Hash
340fe8be3ec1f43243d5da03dc69ef0a
2680901983de31b095859fd9e73a41433f4dcd36
82cb8f353c7fc589f7d4784969c2d93c318288c6c20281738388d3682686990f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/newsphere/assets/theiaStickySidebar/theia-sticky-sidebar.min.js?ver=5.7.8 HTTP/1.1
Host: www.shuaihu99.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shuaihu99.com/fv5967_c8zw70.html

HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 17:55:17 GMT
Content-Type: application/javascript
Content-Length: 1775
Connection: keep-alive
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Fri, 31 Jan 2020 14:49:11 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=604800
CF-Cache-Status: HIT
Age: 43383
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MDkx6UWH00tXsn%2Bx6TbZw1qUCAV7ulXQuPG9gsCi30wLXA4JYGaH%2Fz1N7Vs24dOCZyecs9IEA3v0QesoKV8upXhdJFqAHldKC3lV0L%2FfSYKqqSr%2B9pWgQuj1Dy2M%2B0SV469s0w%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7ac88b60cf6fb51d-OSL
alt-svc: h2=":443"; ma=60

www.shuaihu99.com/wp-content/themes/newsphere/assets/marquee/jquery.marquee.js?ver=5.7.8

188.114.97.1

200 OK

4.6 kB

URL HTTP/1.1
www.shuaihu99.com/wp-content/themes/newsphere/assets/marquee/jquery.marquee.js?ver=5.7.8
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
4.6 kB (4569 bytes)
Hash
07af940acc15897ad24dc2b2fe736284
950539f6bd9b156749ff8a974afa4d9f22177c65
4c5ffc82b8b920fe2081d670da1b3296d7eba9f8baa2644f63c308d0966eedb2

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/newsphere/assets/marquee/jquery.marquee.js?ver=5.7.8 HTTP/1.1
Host: www.shuaihu99.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shuaihu99.com/fv5967_c8zw70.html

HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 17:55:17 GMT
Content-Type: application/javascript
Content-Length: 4569
Connection: keep-alive
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Fri, 31 Jan 2020 14:49:11 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=604800
CF-Cache-Status: HIT
Age: 43383
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SVqVdDOzoBELzqW5qB%2Fp1wqlekMsivgJUgGNsa6Q0nhG%2FPw1mnoI59ttxDaWn5Hxv72Y3MiI366Fj4jO%2FuUmcZ4E2y4dpktEhmxm4pJzaauD9nXKhiJLD5XNN4BniUgjhXH45Q%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7ac88b60c87bb4f4-OSL
alt-svc: h2=":443"; ma=60

www.shuaihu99.com/wp-content/themes/newsphere/assets/pagination-script.js?ver=5.7.8

188.114.97.1

200 OK

1.3 kB

URL HTTP/1.1
www.shuaihu99.com/wp-content/themes/newsphere/assets/pagination-script.js?ver=5.7.8
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
1.3 kB (1328 bytes)
Hash
8db0487427ef2d135eafe89718970b7d
56d17106390c693cced5c46d986e975060f58923
0ccd575536659ab9e6bc16c24296b98880a2435ee7c6bf59d5bb3951151071f7

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/newsphere/assets/pagination-script.js?ver=5.7.8 HTTP/1.1
Host: www.shuaihu99.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shuaihu99.com/fv5967_c8zw70.html

HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 17:55:17 GMT
Content-Type: application/javascript
Content-Length: 1328
Connection: keep-alive
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Fri, 31 Jan 2020 14:49:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=604800
CF-Cache-Status: HIT
Age: 43383
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cw46OgthkLt3eIAea6jcFyuCeN93RTtjMEV1HSjuuYHmvYbkCA0B12o7h%2F%2Fz1eJWGf51sboG03tkaDNNsAARNmloZ945CicfNVacqkShMH4PsP40aKQmJoOvhrnkmCihFnfSoA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7ac88b60d8b9b4f4-OSL
alt-svc: h2=":443"; ma=60

www.shuaihu99.com/wp-content/themes/newsphere/assets/script.js?ver=5.7.8

188.114.97.1

200 OK

3.0 kB

URL HTTP/1.1
www.shuaihu99.com/wp-content/themes/newsphere/assets/script.js?ver=5.7.8
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
3.0 kB (2997 bytes)
Hash
32c5181b4f71e7818ffa0303d5b73a4b
1851d67267aac4e507d88ea8868ae6eb5bd4b63e
bd8a6e3baca12467617c7fee828d3bad7fa70d38d5a4130b6cfe42e9a174672a

HTTP Headers

GET /wp-content/themes/newsphere/assets/script.js?ver=5.7.8 HTTP/1.1
Host: www.shuaihu99.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shuaihu99.com/fv5967_c8zw70.html

HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 17:55:17 GMT
Content-Type: application/javascript
Content-Length: 2997
Connection: keep-alive
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Fri, 31 Jan 2020 14:49:11 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=604800
CF-Cache-Status: HIT
Age: 43383
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JLO3QKzSLAFJQPDP2K0l2uoh1NADeMgYYz4CiXDHlItCC3AVqveZgI3vIGjXAfqtKVX952xmyNLeoafpeq%2FtQwYpvtGm0ZsWOwl6ZT10u19zAfnN6CHWgmEHDgBWOrNrNU0hUg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7ac88b60dfd3b51d-OSL
alt-svc: h2=":443"; ma=60

www.shuaihu99.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.5.2

188.114.97.1

200 OK

2.2 kB

URL HTTP/1.1
www.shuaihu99.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.5.2
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (4866)
Size
2.2 kB (2166 bytes)
Hash
12c93e493a7c226853e73415d21e1bcd
500d4b2f711a70055887fba063d5b9cc570d2a6d
e65e0177e402b20a5d29a3ca67032056ad602a0da39b475d3346c50b22b30546

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.5.2 HTTP/1.1
Host: www.shuaihu99.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shuaihu99.com/fv5967_c8zw70.html

HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 17:55:17 GMT
Content-Type: application/javascript
Content-Length: 2166
Connection: keep-alive
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Fri, 24 Dec 2021 12:04:22 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=604800
CF-Cache-Status: HIT
Age: 43383
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jXReEj0KNThddTxzbeucNSJxEj0RngIEOkdBUNzm%2FIrGWuWBSlaje9DSqUVOi%2By9Cw2LDeaOfHb1trvXY5rVGVk8LsX9jB6TP0sH4152%2FFx0K8nnYHCDPN1kCi6eNLOZa%2BBOtg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7ac88b60e828b51d-OSL
alt-svc: h2=":443"; ma=60

www.shuaihu99.com/wp-includes/js/wp-embed.min.js?ver=5.7.8

188.114.97.1

200 OK

765 B

URL HTTP/1.1
www.shuaihu99.com/wp-includes/js/wp-embed.min.js?ver=5.7.8
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (1391)
Size
765 B (765 bytes)
Hash
fe875afb236ee8f0d50040fe58d848d4
e6b1b67093b429c95d5b9db07a7eba39e02cf0e5
328a6a072b91134f2802ae25e070f38ff156ceee2c6ec6a6253ae4b27af73b49

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/wp-embed.min.js?ver=5.7.8 HTTP/1.1
Host: www.shuaihu99.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shuaihu99.com/fv5967_c8zw70.html

HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 17:55:17 GMT
Content-Type: application/javascript
Content-Length: 765
Connection: keep-alive
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Thu, 07 Jan 2021 01:59:24 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=604800
CF-Cache-Status: HIT
Age: 43383
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hWDlujABKM88CHR2CNHYqc16a7DNqOl6mwYzwjKwO803PELk%2BR4io0k8k5Qe4E8h99OhgRcqETF75oCKnEC6KHPAUyGt%2BbQWthFx%2FjjQ0MZ67bAyHpZuMhx0TyJyidCcozrJTQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7ac88b60e8cfb4f4-OSL
alt-svc: h2=":443"; ma=60

www.shuaihu99.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.5.2

188.114.97.1

200 OK

4.6 kB

URL HTTP/1.1
www.shuaihu99.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.5.2
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (14196)
Size
4.6 kB (4610 bytes)
Hash
ef5cfa89c9a7e186e99f99173396c8ee
51294273170ad8d099b7a4c1494cf9e19802fe40
d44c7ecd43f7f70652139e3692e2481d02bd38e597bf7c49aee530874a4e8fef

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.5.2 HTTP/1.1
Host: www.shuaihu99.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shuaihu99.com/fv5967_c8zw70.html

HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 17:55:17 GMT
Content-Type: application/javascript
Content-Length: 4610
Connection: keep-alive
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Fri, 24 Dec 2021 12:04:22 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=604800
CF-Cache-Status: HIT
Age: 43383
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MAq8Wwd4%2FhSLbDF3%2FBKEauwDjSyTgNoVHKuQkTjoZ3utZO58UwiH15a%2BugAtnoUBHlQ6ttCrhiKds8fJO7RK2d2%2Bj8jkPkwjxqqHRvAUISf1lEun6zlapp%2FdPGxUWvsZysfWyA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7ac88b612921b51d-OSL
alt-svc: h2=":443"; ma=60

www.shuaihu99.com/wp-content/uploads/elementor/css/post-807.css?ver=1668509312

188.114.97.1

200 OK

109 B

URL HTTP/1.1
www.shuaihu99.com/wp-content/uploads/elementor/css/post-807.css?ver=1668509312
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with no line terminators
Size
109 B (109 bytes)
Hash
774d0437ce79c0fc25f938aef79f4a9f
58a7f5c06bc281031f83ccd475ec548112e03508
c7dd9736b4656ea26280a436518faa359f83f6035818fbabf11c8f8bf0fdc284

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/elementor/css/post-807.css?ver=1668509312 HTTP/1.1
Host: www.shuaihu99.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shuaihu99.com/fv5967_c8zw70.html

HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 17:55:17 GMT
Content-Type: text/css
Content-Length: 109
Connection: keep-alive
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Tue, 15 Nov 2022 10:48:32 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=604800
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=v9dOf3d0Nutk02EZeaib89cXTu1qqDkmAfBqsVJUeUer5yeBP%2BMimafobhjDxqOkO0C0wv6w0xrTUwrDvOqndtCMHd%2FZElB%2F5NwEwWq7gVbM0fik2wkOIvvjg%2FH09HpWLxLYYA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7ac88b5ecd421bfe-OSL
alt-svc: h2=":443"; ma=60

www.shuaihu99.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2

188.114.97.1

200 OK

3.0 kB

URL HTTP/1.1
www.shuaihu99.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (12198), with no line terminators
Size
3.0 kB (2993 bytes)
Hash
cfea3c51880820f2962a7773fbc864f9
45aa7ddc9b0c4201097d0df36791ab346470b734
12296ac9ef200103f8eea198a2bcd92692119dacece39538499758a0349035fb

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: www.shuaihu99.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shuaihu99.com/fv5967_c8zw70.html

HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 17:55:17 GMT
Content-Type: application/javascript
Content-Length: 2993
Connection: keep-alive
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Fri, 24 Dec 2021 12:04:28 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=604800
CF-Cache-Status: HIT
Age: 43383
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yfUafQNGaq0vYrdMrmOWdT8N9B92R7jT92w2MsnZri6MOaQVSV%2FrWOLUubVKM9WnNfJWWasDr3gQtZK753iRHOPuBuNDrVppzKGlP03n%2BvWU4618G3XlNR3qgdPqqruhXX0pLQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7ac88b612969b4f4-OSL
alt-svc: h2=":443"; ma=60

ocsp.pki.goog/gts1c3

142.250.74.163

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
dd5380daefecc523858637dcbdda1cf3
0ec5910f57d8ab84179a5d0687e6b16d2cacfb1a
e58977b0dceb06edf2a7c752aa433c71b3bca571e814a7a83bbddc75d4428c0f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 17:55:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.shuaihu99.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.13.0

188.114.97.1

200 OK

3.9 kB

URL HTTP/1.1
www.shuaihu99.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.13.0
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (18854)
Size
3.9 kB (3885 bytes)
Hash
87b05e4c6f1b3e82beec350639ee58f0
b72e683520b407aaff3291a741f67348abd47c7b
d0bb4649b96c3e132965c425329fe8310eaca2f2b7db9c52f82043ca87ce8628

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.13.0 HTTP/1.1
Host: www.shuaihu99.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shuaihu99.com/fv5967_c8zw70.html

HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 17:55:17 GMT
Content-Type: text/css
Content-Length: 3885
Connection: keep-alive
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Fri, 24 Dec 2021 12:04:25 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=604800
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tCEqU1QAJd5khO0Vh3cCu%2Bsv4DYcq6a0wFszadkNpOL6NJ%2BB0wLxvJnL0c%2FPQ6Jy%2BhbjBrAyTCj4QcvEgzayRBujJcrepwJrzGsrc%2FTR1fZGGQkYIrHdSPS%2B%2BgJxzomb3kx2ZA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7ac88b5eeaf2b505-OSL
alt-svc: h2=":443"; ma=60

www.shuaihu99.com/wp-includes/js/wp-emoji-release.min.js?ver=5.7.8

188.114.97.1

200 OK

4.7 kB

URL HTTP/1.1
www.shuaihu99.com/wp-includes/js/wp-emoji-release.min.js?ver=5.7.8
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (11272)
Size
4.7 kB (4662 bytes)
Hash
9c26256ee738b510ab56c09607a7286f
197327c8d1cd72ce8d335fc0b8b007ddca60191d
cfe161d7b5764e21a1e8ea764f4a0c0da41f1aba16bb8329bd11acbc7a156e4b

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=5.7.8 HTTP/1.1
Host: www.shuaihu99.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shuaihu99.com/fv5967_c8zw70.html

HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 17:55:17 GMT
Content-Type: application/javascript
Content-Length: 4662
Connection: keep-alive
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Thu, 07 Jan 2021 01:59:24 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=604800
CF-Cache-Status: HIT
Age: 43383
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yldqsfJgnwLgk4VFjaR82W%2F6VE11CuQYAz5O3sjUs24porvB15MquvZeJJPnMNA1jyNp5t6ikDJQ%2Bp4CsrJeTddmV51GpFq%2BJsRYPDoGd8oX84TU4peJOUM8bWY%2BoTj9SkfktQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7ac88b615fd91bfe-OSL
alt-svc: h2=":443"; ma=60

www.shuaihu99.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.5.2

188.114.97.1

200 OK

11 kB

URL HTTP/1.1
www.shuaihu99.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.5.2
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (36842)
Size
11 kB (10773 bytes)
Hash
694586a44241fe432e74282652fc68cb
c514c9ff00b4de968b1d2d856beba19694a73863
f53036741b71e45e61cf6293315535cac127fa01cf9d1c501a5f39c0742258fc

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.5.2 HTTP/1.1
Host: www.shuaihu99.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shuaihu99.com/fv5967_c8zw70.html

HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 17:55:17 GMT
Content-Type: application/javascript
Content-Length: 10773
Connection: keep-alive
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Fri, 24 Dec 2021 12:04:25 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=604800
CF-Cache-Status: HIT
Age: 43383
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RCDjcyEQjy8aJsfPVWgsuNJh3HIFfwN%2B65%2BvMrDcYWLWqrCWM4YVVL4k8eaR%2BJrfRkNcQpN03u1%2FenGv5DEsgnHt9Mu0SLU8FY5gmXAaXt7XS7oTV7RITof%2BGp6AJ9LDjswcfA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7ac88b61596bb51d-OSL
alt-svc: h2=":443"; ma=60

ocsp.pki.goog/gts1c3

142.250.74.163

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
097d447e049e3b41f92a4695b1b0c3c7
f39c9ef8d22bee41d940bf719c75b2cfae9291d5
459e0e586fca9a4720e4e25fa59978368c9d373ee86575a7b40d0ef4262043ed

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 17:55:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.163

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
097d447e049e3b41f92a4695b1b0c3c7
f39c9ef8d22bee41d940bf719c75b2cfae9291d5
459e0e586fca9a4720e4e25fa59978368c9d373ee86575a7b40d0ef4262043ed

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 17:55:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

142.250.74.163

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.shuaihu99.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 22 Mar 2023 18:05:11 GMT
expires: Thu, 21 Mar 2024 18:05:11 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 85806
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

142.250.74.163

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.shuaihu99.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 22 Mar 2023 18:05:11 GMT
expires: Thu, 21 Mar 2024 18:05:11 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 85806
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/rubik/v26/iJWKBXyIfDnIV7nBrXw.woff2

142.250.74.163

200 OK

34 kB

URL HTTP/2
fonts.gstatic.com/s/rubik/v26/iJWKBXyIfDnIV7nBrXw.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 33868, version 1.0\012- data
Size
34 kB (33868 bytes)
Hash
a55fefd02b25a2cb141efe2d17776d60
ba132269410be55bbd81032011d5904ceb33bc64
e5b4655e2fac9e5887dfc63e54a5ea312f8779ad2a4316765a690c5177ef1acc

HTTP Headers

GET /s/rubik/v26/iJWKBXyIfDnIV7nBrXw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.shuaihu99.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33868
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 19 Mar 2023 17:43:12 GMT
expires: Mon, 18 Mar 2024 17:43:12 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 08 Mar 2023 21:37:56 GMT
content-type: font/woff2
age: 346325
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.163

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
097d447e049e3b41f92a4695b1b0c3c7
f39c9ef8d22bee41d940bf719c75b2cfae9291d5
459e0e586fca9a4720e4e25fa59978368c9d373ee86575a7b40d0ef4262043ed

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 17:55:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.shuaihu99.com/wp-content/uploads/elementor/css/post-780.css?ver=1640347536

188.114.97.1

200 OK

329 B

URL HTTP/1.1
www.shuaihu99.com/wp-content/uploads/elementor/css/post-780.css?ver=1640347536
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (948), with no line terminators
Size
329 B (329 bytes)
Hash
57c5b2164cbb2926bbad0e837698be9a
d5a116a8b79d7b3b78c72248b251bb7153192113
1135c312e66c76ede81a706211643e7b9c054ccaf9fb7a8d93ebf568feef9a66

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/elementor/css/post-780.css?ver=1640347536 HTTP/1.1
Host: www.shuaihu99.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shuaihu99.com/fv5967_c8zw70.html

HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 17:55:17 GMT
Content-Type: text/css
Content-Length: 329
Connection: keep-alive
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Fri, 24 Dec 2021 12:05:36 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=604800
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HUZdMCrQmGatfTS3k4yTS80skSJ%2ByNiC1hUSvPMPbwgyEGCTWJZN%2FslZYz15Z24R9DB3A1IOOJRg3bpsDEEgIVnQiJaHrs0V3nvz7OUz%2B9Q0VwRSAm7fIBXvv5tQFoDBLGfeyw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7ac88b600d570b55-OSL
alt-svc: h2=":443"; ma=60

www.shuaihu99.com/wp-content/uploads/elementor/css/global.css?ver=1640347827

188.114.97.1

200 OK

834 B

URL HTTP/1.1
www.shuaihu99.com/wp-content/uploads/elementor/css/global.css?ver=1640347827
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (6697)
Size
834 B (834 bytes)
Hash
2293ed79272563f3da94cb6591e19a1f
e5168d2f62c954f85611089ea8e6be9241c37cd9
977634309dfe776c26f96766e342a63b53b66d187191b80131237362879fae05

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/elementor/css/global.css?ver=1640347827 HTTP/1.1
Host: www.shuaihu99.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shuaihu99.com/fv5967_c8zw70.html

HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 17:55:17 GMT
Content-Type: text/css
Content-Length: 834
Connection: keep-alive
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Fri, 24 Dec 2021 12:10:27 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=604800
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0JcUz%2FhA5b9y%2B%2F69ex7aK1UZsTgES05xkueca0DkalODShSivyH0hFLvax4g%2Fb3Ft%2B2UMIkm%2B1tFxKlQQdsUtD0HRrn3TQoWpCVM%2Ft1KasxIhhJ8WRAiADu820M8YwlkBc5acQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7ac88b602dabfac0-OSL
alt-svc: h2=":443"; ma=60

connect.facebook.net/en_US/sdk.js

157.240.200.14

301 Moved Permanently

0 B

URL HTTP/1.1
connect.facebook.net/en_US/sdk.js
IP
157.240.200.14:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /en_US/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shuaihu99.com/

HTTP/1.1 301 Moved Permanently
Location: https://connect.facebook.net/en_US/sdk.js
Content-Type: text/plain
Server: proxygen-bolt
Date: Thu, 23 Mar 2023 17:55:17 GMT
Connection: keep-alive
Content-Length: 0

ocsp.digicert.com/

192.229.221.95

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
192.229.221.95:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
4f854cb1688bc0266ffd286eb6e81089
24b179739eea5eeb80d089087b992057c1de7a4e
31d0c650d82485852f52d0db111ac6c63776c34a4b0a1409eab760ecde0b0705

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6422
Cache-Control: max-age=95313
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 17:55:18 GMT
Etag: "641b4ac1-1d7"
Expires: Fri, 24 Mar 2023 20:23:51 GMT
Last-Modified: Wed, 22 Mar 2023 18:36:49 GMT
Server: ECAcc (ska/F756)
X-Cache: HIT
Content-Length: 471

connect.facebook.net/en_US/sdk.js

157.240.200.14

200 OK

1.7 kB

URL HTTP/2
connect.facebook.net/en_US/sdk.js
IP
157.240.200.14:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (1957)
Size
1.7 kB (1685 bytes)
Hash
a8ee5f56a2090c78e273a3750aeb6b4b
3caa31256fbe7b0cd85937f5696c87150387352e
b621335977ff77f3b4e86126c19c98769a4aabdc062cca7c41139c6cb0193cfa

HTTP Headers

GET /en_US/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.shuaihu99.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: c89d7924583e1bd4efd22c4f5ee81cbc
etag: "6c62b66cfa9dc4bd9a31cca660f53b2a"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Thu, 23 Mar 2023 18:00:29 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: qO5fVqIJDHjic6N1CutrSw==
x-fb-debug: b64aOQfRSmxA+Y7++YV1f/wYB4e+jj9cQkp29eB/atf/LA/6PmavOWYpGOPiiksPiq4z0fGfdteZpW8o+69qAA==
content-length: 1685
x-fb-trip-id: 1679558926
date: Thu, 23 Mar 2023 17:55:18 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.digicert.com/

192.229.221.95

200 OK

90 kB

URL HTTP/1.1
ocsp.digicert.com/
IP
192.229.221.95:0
ASN
#15133 EDGECAST

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 1900x600, components 3\012- data
Size
90 kB (90098 bytes)
Hash
0db8d541a641c0a9f72e41fa0b682c2d
9eda8a95abed1e204b5918195cd426eb6657daee
5f1f0fe3cb58e58aed4635137f07e6e89660585997342841929c40475493594d

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6447
Cache-Control: max-age=95338
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 17:55:18 GMT
Etag: "641b4ac1-1d7"
Expires: Fri, 24 Mar 2023 20:24:16 GMT
Last-Modified: Wed, 22 Mar 2023 18:36:49 GMT
Server: ECAcc (ska/F6AF)
X-Cache: HIT
Content-Length: 471

connect.facebook.net/en_US/sdk.js?hash=1ab26a2aae806e3b0b4183cbea443b2f

157.240.200.14

200 OK

87 kB

URL HTTP/2
connect.facebook.net/en_US/sdk.js?hash=1ab26a2aae806e3b0b4183cbea443b2f
IP
157.240.200.14:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (13192)
Size
87 kB (87126 bytes)
Hash
4dd07a72e1f95ccab7c6f601d9834998
8013993bdc3e3a1ccf91f0a6b0e0f39ea5ef1cd1
f4a9b3b8804bbc3a6e2c4d86b6c8b8b5ca90499f9f0bb3aef7e72b86b3831b55

HTTP Headers

GET /en_US/sdk.js?hash=1ab26a2aae806e3b0b4183cbea443b2f HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.shuaihu99.com
Connection: keep-alive
Referer: http://www.shuaihu99.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 5146bb37d3a2511cdc6461d839dd6b4c
etag: "860116adf673d71d1e28a8a985904511"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Fri, 22 Mar 2024 17:20:39 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
x-frame-options: DENY
origin-agent-cluster: ?0
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: TdB6cuH5XMq3xvYB2YNJmA==
x-fb-debug: Ea7e5HbnIV/0g5z/9AcfwjF8sJ7q9mxEgvmduumQ+OXWIZGVSooJLO6vW0B/IihA5GNr/pf7c/+X814J6tjZvg==
content-length: 87126
x-fb-trip-id: 1679558926
date: Thu, 23 Mar 2023 17:55:18 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto:100,300,400,500,700

142.250.74.74

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Roboto:100,300,400,500,700
IP
142.250.74.74:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Roboto:100,300,400,500,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.shuaihu99.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 23 Mar 2023 17:55:16 GMT
date: Thu, 23 Mar 2023 17:55:16 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.shuaihu99.com/wp-content/uploads/2020/01/cropped-333333333333-2.png

188.114.97.1

200 OK

0 B

URL HTTP/2
www.shuaihu99.com/wp-content/uploads/2020/01/cropped-333333333333-2.png
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2020/01/cropped-333333333333-2.png HTTP/1.1
Host: www.shuaihu99.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.shuaihu99.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 23 Mar 2023 17:55:17 GMT
content-type: image/png
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Fri, 31 Jan 2020 18:11:49 GMT
vary: Accept-Encoding
cache-control: public, max-age=604800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JaBWz2YoA5cPiHcMKBY3rR8BWfHnqRgUUSoBNd2Qgd%2FWTnu%2B5w3U7WlmV2NYP438%2FjWrOBFOO0zVpCYa2GJeOSBSYc4qz86gAnDKLfsW87JFVZy2CGQEfR6S8aT2xUry0Mlsuw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ac88b5b8cb90b61-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=5.7.8

142.250.74.74

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=5.7.8
IP
142.250.74.74:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=5.7.8 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.shuaihu99.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 23 Mar 2023 17:55:16 GMT
date: Thu, 23 Mar 2023 17:55:16 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.shuaihu99.com/wp-content/uploads/2022/08/hqdefault-2.jpg

188.114.97.1

200 OK

0 B

URL HTTP/2
www.shuaihu99.com/wp-content/uploads/2022/08/hqdefault-2.jpg
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2022/08/hqdefault-2.jpg HTTP/1.1
Host: www.shuaihu99.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.shuaihu99.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 23 Mar 2023 17:55:16 GMT
content-type: image/jpeg
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Wed, 17 Aug 2022 03:55:19 GMT
vary: Accept-Encoding
cache-control: public, max-age=604800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5VRaiB76hPQ8BsJt2GUOij2M1YFDqDqOTDMF2VUOPUeloz4%2B9dPeHfUxSFcpvu5hcNDpKJDReKqg2qQjo2Zs95NGINyYT4DmgVy2tfUwKTu1CBTPlvFmYpCwewXi%2FJr5r7AHPg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ac88b5b8cc40b61-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.shuaihu99.com/wp-content/uploads/2022/11/cm-720x380.jpg

188.114.97.1

200 OK

0 B

URL HTTP/2
www.shuaihu99.com/wp-content/uploads/2022/11/cm-720x380.jpg
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2022/11/cm-720x380.jpg HTTP/1.1
Host: www.shuaihu99.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.shuaihu99.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 23 Mar 2023 17:55:17 GMT
content-type: image/jpeg
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Tue, 15 Nov 2022 10:36:40 GMT
vary: Accept-Encoding
cache-control: public, max-age=604800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kQujYIJDIG81Mirl5H8Ffpmi%2Bi%2FKTEByrBgO7kuczCXuemapr6VTsX%2BSeQLVodnuQW%2F1hQdtL%2FBYKcvxVPedyt3or%2Bycjf7ghZeOmi82yXY1kuM4s9BYZLC9I1vFfa3H6lwAYQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ac88b5b8cba0b61-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.shuaihu99.com/wp-content/uploads/2022/08/%E0%B8%95%E0%B8%B0%E0%B8%81%E0%B8%A3%E0%B8%B8%E0%B8%94%E0%B9%80%E0%B8%84%E0%B8%A5%E0%B8%B4%E0%B9%89%E0%B8%A1-640x380.jpg

188.114.97.1

200 OK

0 B

URL HTTP/2
www.shuaihu99.com/wp-content/uploads/2022/08/%E0%B8%95%E0%B8%B0%E0%B8%81%E0%B8%A3%E0%B8%B8%E0%B8%94%E0%B9%80%E0%B8%84%E0%B8%A5%E0%B8%B4%E0%B9%89%E0%B8%A1-640x380.jpg
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2022/08/%E0%B8%95%E0%B8%B0%E0%B8%81%E0%B8%A3%E0%B8%B8%E0%B8%94%E0%B9%80%E0%B8%84%E0%B8%A5%E0%B8%B4%E0%B9%89%E0%B8%A1-640x380.jpg HTTP/1.1
Host: www.shuaihu99.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.shuaihu99.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 23 Mar 2023 17:55:17 GMT
content-type: image/jpeg
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Wed, 10 Aug 2022 10:41:58 GMT
vary: Accept-Encoding
cache-control: public, max-age=604800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lR3RJqVUzJG3tw9aCxhVYRkM15US0drMyDMC6sb1S2Uho80qVkRkp%2B0MOSbf%2FacEEihlFQd7UO%2FYX5Flc34NpL4SrNMKppdB1nIImJlGunkKBJSGXznZMBvyC%2BX14f47SAy8wA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ac88b5b7cb80b61-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (32)

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL