Report - hgslave.xyz/e/b3uukua6qyiv

Report Overview

Visited public
2025-06-25 20:09:48
Tags
Submit Tags
URL
hgslave.xyz/e/b3uukua6qyiv
Finishing URL
hgslave.xyz/e/b3uukua6qyiv
IP / ASN
172.67.136.103
#13335 CLOUDFLARENET
Title
DKD-006-SEXTB NET-07302021

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.googletagmanager.com	75	2011-11-11	2012-10-04	2025-06-25	864 B	800 kB	142.250.74.136
akumachi.com	unknown	2024-04-23	2024-12-12	2025-06-22	875 B	44 kB	104.21.80.1
hgslave.xyz	unknown	2025-06-24	2025-06-25	2025-06-25	6.5 kB	1.3 MB	172.67.136.103
r63hfpdmodtc.kitchenplusgoods.shop	unknown	2025-06-06	2025-06-25	2025-06-25	2.0 kB	1.5 MB	188.114.96.1

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (19)

	URL	From	Size	First Seen	Last Seen
	hgslave.xyz/e/b3uukua6qyiv	Eval	8.2 kB	2025-06-25	2025-06-25
Pretty URL hgslave.xyz/e/b3uukua6qyiv IP 172.67.136.103 ASN #13335 CLOUDFLARENET Introduced by eval Embedded in HTML false Observations First Seen2025-06-25 20:09 Last Seen2025-06-25 20:09 Times Seen1 Hash a50f0389bcda0d3213a6ae7938c8af06 76c5e04a993256c97a3efa47e94bafcaed6c3382 ee3b9c9ec21e6f09117bcf6c21b62a8631973f9df3888231987199a7efe4018c Loading...

	hgslave.xyz/assets/jquery/adult0.js?type=adult&v=1.1	ScriptElement	3.0 kB	2025-06-25	2025-06-25
Pretty URL hgslave.xyz/assets/jquery/adult0.js?type=adult&v=1.1 IP 172.67.136.103 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-06-25 20:09 Last Seen2025-06-25 20:09 Times Seen1 Hash b4e3f3abd5195366290fa802d7b6c476 934058be0cdc972a23981d276f781d239f0d0034 03ca9bc9eedbf5d6013568acbbbd74d6a7342d466a27e1fff02e2976590473ef Loading...

	hgslave.xyz/e/b3uukua6qyiv	ScriptElement	153 B	2023-05-25	2025-07-15
Pretty URL hgslave.xyz/e/b3uukua6qyiv IP 172.67.136.103 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-25 01:59 Last Seen2025-07-15 20:53 Times Seen310 Hash b26d6f86c4345f37c33c9b3b6dc9338b b92b66a7dadcc3acefe2c4cbd34f36c525ef4a24 5b3474edb6863ae89e1cfe842fb92e8ffdb6d4084a837040d36d497c4a864216 Loading...

	hgslave.xyz/e/b3uukua6qyiv	ScriptElement	153 B	2025-05-19	2025-07-15
Pretty URL hgslave.xyz/e/b3uukua6qyiv IP 172.67.136.103 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-05-19 10:11 Last Seen2025-07-15 20:53 Times Seen75 Hash cb3a2f747e90c553769c2155d20f3ebf d10496bb17cb31e6c493f1429655fd723dfa3cfb 79ac617398535f8ab3b7a4ec458a94ef2156acd847ff57111afef826d82d3742 Loading...

	hgslave.xyz/player/jw8/jwplayer.js?v=7	ScriptElement	148 kB	2025-04-01	2025-07-15
Pretty URL hgslave.xyz/player/jw8/jwplayer.js?v=7 IP 172.67.136.103 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-01 21:32 Last Seen2025-07-15 20:53 Times Seen140 Hash 581ff912c413cd78a30f5c212f42271a 79af689432d0f20cd1d951eb9436711da07decd4 c708d26c24b48c3343e8cc7879d07e8ca6f23d1cc1e5df165a9f8e24a7c5830e Loading...

	www.googletagmanager.com/gtag/js?id=G-E2BG6CPV2J	ScriptElement	399 kB	2025-06-25	2025-06-25
Pretty URL www.googletagmanager.com/gtag/js?id=G-E2BG6CPV2J IP 142.250.74.136 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-06-25 20:09 Last Seen2025-06-25 20:09 Times Seen1 Hash 3ddbc2df4e49f2866d39c5fca5cc460f da01d3124a24fc3de1d113dc16dd146c8cf5b011 8a655a1140e7d71230f1b92c47c2ddd2c81ee8bd3efe9032ef4fb3e99daaff0e Loading...

	hgslave.xyz/player/jw8/provider.hlsjs.js?v=42	ScriptElement	462 kB	2025-04-01	2025-07-15
Pretty URL hgslave.xyz/player/jw8/provider.hlsjs.js?v=42 IP 172.67.136.103 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-01 21:32 Last Seen2025-07-15 20:53 Times Seen140 Hash b88ce761b9ebc2a7859a2e03b33ce1ed 70d94f3c48460af13fc14eea9e5969f8f28d1a3a 0b009d01bf513b1059d8ee15e1a8b57faeb5f8066c0f47d2cf8e1dd2454e5b28 Loading...

	hgslave.xyz/js/localstorage-slim.js	ScriptElement	2.1 kB	2023-03-07	2025-07-17
Pretty URL hgslave.xyz/js/localstorage-slim.js IP 172.67.136.103 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:52 Last Seen2025-07-17 07:31 Times Seen699 Hash ba6facacb00551830393d637195804cf 77d2d2802ee44767b33a2d679945cc3efa3619cc 41bb37c8133d8e5c128820cfbe03bcbf63ce256bcbd60a1a76143472d8668e38 Loading...

	hgslave.xyz/e/b3uukua6qyiv	ScriptElement	506 B	2025-06-22	2025-07-15
Pretty URL hgslave.xyz/e/b3uukua6qyiv IP 172.67.136.103 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-06-22 04:35 Last Seen2025-07-15 20:53 Times Seen48 Hash 17b8318ac8c4c66d7d9e8a82d605b771 da94fcdae646dd50749accd7c1a5cbd0abf52540 6abe6165dbe7eeca7d2519aedef11469c5233908fa665041ed5e0d4f531d57c5 Loading...

	hgslave.xyz/e/b3uukua6qyiv	ScriptElement	830 B	2025-06-25	2025-06-25
Pretty URL hgslave.xyz/e/b3uukua6qyiv IP 172.67.136.103 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-06-25 20:09 Last Seen2025-06-25 20:09 Times Seen1 Hash 58604a6b36aafb264480a1437d5df5a7 7f44e371e6b982247e9b50dd0457008eab1d8b72 94b8311112d1c60887af5f2623d85ff82171e8132c058211d625a6ea1b4746cc Loading...

	hgslave.xyz/e/b3uukua6qyiv	ScriptElement	60 B	2023-03-07	2025-07-15
Pretty URL hgslave.xyz/e/b3uukua6qyiv IP 172.67.136.103 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:03 Last Seen2025-07-15 20:53 Times Seen530 Hash 76cc6a7775b7b653ba5a7d7f9cea4eb4 6484c7b286038e9a60c38f4adc61e6ba30062c91 a00f1ced7d3bab63e82c08fdb0b05b0e9659805756c15b085c2b9804671302c9 Loading...

	hgslave.xyz/player/jw8/jwplayer.core.controls.js?v=42	ScriptElement	331 kB	2024-12-01	2025-07-16
Pretty URL hgslave.xyz/player/jw8/jwplayer.core.controls.js?v=42 IP 172.67.136.103 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-12-01 14:07 Last Seen2025-07-16 10:23 Times Seen184 Hash bc91b5efc8f4bb2482c2d7d5d8d9b691 5db922c4c6caf3a7d22f57a21670281d5c31994b f061c139ad68d7ed1360ab6a2c8842466d2913582468c48eb2d1ee2a651fb495 Loading...

	hgslave.xyz/js/jquery.min.js	ScriptElement	90 kB	2023-03-07	2025-07-19
Pretty URL hgslave.xyz/js/jquery.min.js IP 172.67.136.103 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-07-19 05:40 Times Seen247773 Hash 8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e Loading...

	hgslave.xyz/e/b3uukua6qyiv	ScriptElement	7.6 kB	2025-06-25	2025-06-25
Pretty URL hgslave.xyz/e/b3uukua6qyiv IP 172.67.136.103 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-06-25 20:09 Last Seen2025-06-25 20:09 Times Seen1 Hash 868471c69485f9b7ac48215426fc5f2a de410fbf2b8004c7cf7629f46cbb4dbba9a839ec 88416b4dbbbcb419abc5c576daca75f78845ace30c2422d0fcff38b0ef245c2b Loading...

	www.googletagmanager.com/gtag/js?id=G-2TL7NH453R	ScriptElement	399 kB	2025-06-25	2025-06-25
Pretty URL www.googletagmanager.com/gtag/js?id=G-2TL7NH453R IP 142.250.74.136 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-06-25 20:09 Last Seen2025-06-25 20:09 Times Seen1 Hash 8ce0953e2a230603a7cabb1abfe99c3e 31ac46bb2b6651ce67f1d991186f98b20be11eee c9853609389355f27674c58f54332b96ccd6aa3d2cb0b5539d3194d0d722d025 Loading...

	hgslave.xyz/js/jquery.cookie.js	ScriptElement	4.3 kB	2023-03-07	2025-07-19
Pretty URL hgslave.xyz/js/jquery.cookie.js IP 172.67.136.103 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-07-19 04:14 Times Seen1933 Hash ae0c2c5d8f01f7d35bb698bb618a62f7 63556a22ddea1c5f23a5cf7d0b6d35c7aab54e20 75aef2e95ea7f3a70999396fba0c2ab866f4ff06313cf1b07780d800a5fc1ebc Loading...

	hgslave.xyz/e/b3uukua6qyiv	ScriptElement	1.5 kB	2024-12-13	2025-07-15
Pretty URL hgslave.xyz/e/b3uukua6qyiv IP 172.67.136.103 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-12-13 22:04 Last Seen2025-07-15 20:53 Times Seen136 Hash a6051ba30f29c3e96123c936393d2a64 72e84d5c9a5c00bf06bd3a13f993bc0042c4e588 901053724f7acbf7f9625f53d18089a232a763737f396bd1403805f59156f401 Loading...

	hgslave.xyz/player/jw8/vast.js?v=32	ScriptElement	112 kB	2025-04-01	2025-07-15
Pretty URL hgslave.xyz/player/jw8/vast.js?v=32 IP 172.67.136.103 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-01 21:32 Last Seen2025-07-15 20:53 Times Seen133 Hash 1b3eb53abc624a51f5e226d08758ddf3 6cca061ec7c41313ec2027eaaca76fa9dfad750b 73788e3233d5113578082f78869724925d3e4dd2c9d02fdc0bf84d6aed3a768e Loading...

	hgslave.xyz/js/xupload.js	ScriptElement	11 kB	2024-10-19	2025-07-15
Pretty URL hgslave.xyz/js/xupload.js IP 172.67.136.103 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-10-19 23:08 Last Seen2025-07-15 20:53 Times Seen154 Hash 7ef44e11ddf37c97750431e5284e4d77 59ed0438edbda256e8258ce41729e89e7a9f0b66 9be83627d9e3f905d1bf43b83445f1874a98ba283e79a944acff7db7c47b2cf6 Loading...

HTTP Transactions (22)

	URL	IP	Response	Size
	GET akumachi.com/b3uukua6qyiv0000.jpg	104.21.80.1	404 Not Found	0 B
URL GET akumachi.com/b3uukua6qyiv0000.jpg IP 104.21.80.1:443 ASN #13335 CLOUDFLARENET Requested by https://hgslave.xyz/e/b3uukua6qyiv Certificate IssuerGoogle Trust Services Subjectakumachi.com FingerprintCA:48:AD:0A:D2:21:D9:74:D9:40:73:04:C3:C3:7E:10:10:6C:0E:D9 ValidityThu, 05 Jun 2025 17:53:14 GMT - Wed, 03 Sep 2025 18:51:48 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /b3uukua6qyiv0000.jpg HTTP/1.1 Host: akumachi.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://hgslave.xyz/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 404 Not Found date: Wed, 25 Jun 2025 20:09:26 GMT content-type: text/html; charset=utf-8 nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NMPbhtM6JaPnTpDd5SypPQR3TLCXjrIBwgo5riCpuKkGUjg3HSOWt210ahxdvUEBJ2RhNagNMFnvsy4G8OW56z%2B8XbnQwN1yS5VNAzWLRvrhvJXyooMjtJrFAQXhtgY%3D"}],"group":"cf-nel","max_age":604800} cache-control: max-age=14400 cf-cache-status: MISS content-encoding: br cf-ray: 95571a459bc00afe-OSL server: cloudflare vary: Accept-Encoding alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=QUIC&rtt=6295&min_rtt=2889&rtt_var=5341&sent=35&recv=38&lost=0&retrans=0&sent_bytes=4953&recv_bytes=2740&delivery_rate=579655&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=15483&unsent_bytes=0&cid=d4953fb20f30929f&ts=1137&inflight_dur=30&x=44"

	GET hgslave.xyz/js/jquery.min.js	172.67.136.103	200 OK	90 kB
URL GET hgslave.xyz/js/jquery.min.js IP 172.67.136.103:443 ASN #13335 CLOUDFLARENET Requested by https://hgslave.xyz/e/b3uukua6qyiv Certificate IssuerGoogle Trust Services Subjecthgslave.xyz FingerprintA4:E5:93:8A:B7:00:C5:C5:6E:12:49:31:E7:59:FA:30:03:A3:0A:76 ValidityTue, 24 Jun 2025 07:48:37 GMT - Mon, 22 Sep 2025 08:45:12 GMT File type JavaScript source, ASCII text, with very long lines (65447) Size 90 kB (89501 bytes) Hash 8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e HTTP Headers `GET /js/jquery.min.js HTTP/1.1 Host: hgslave.xyz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://hgslave.xyz/e/b3uukua6qyiv Cookie: lang=1 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Wed, 25 Jun 2025 20:09:25 GMT content-type: application/javascript; charset=utf-8 cf-ray: 95571a3dce6f569f-OSL last-modified: Wed, 03 Mar 2021 00:27:00 GMT etag: W/"603ed7d4-15d9d" expires: Tue, 01 Jul 2025 10:48:02 GMT cache-control: max-age=604800 x-content-type-options: nosniff, nosniff x-xss-protection: 1; mode=block content-encoding: gzip age: 120082 cf-cache-status: HIT vary: accept-encoding report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=61Zg6ldVj66hakB6sE9ratr2QHEWDSVXElTQ8mHrjBlP9R5MhPXzAtRS2RhuHdoEutkJIrxlTcjHbY0yRe6b%2Bg0cW4onkPE0lM6ilI19i2On59Etp%2F9mxBecMp1Jvg%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=TCP&rtt=2603&min_rtt=420&rtt_var=3995&sent=22&recv=26&lost=0&retrans=0&sent_bytes=10957&recv_bytes=1847&delivery_rate=9850340&cwnd=257&unsent_bytes=0&cid=52e0a2ada5ba0810&ts=1146&x=0" X-Firefox-Spdy: h2

	GET hgslave.xyz/js/localstorage-slim.js	172.67.136.103	200 OK	2.1 kB
URL GET hgslave.xyz/js/localstorage-slim.js IP 172.67.136.103:443 ASN #13335 CLOUDFLARENET Requested by https://hgslave.xyz/e/b3uukua6qyiv Certificate IssuerGoogle Trust Services Subjecthgslave.xyz FingerprintA4:E5:93:8A:B7:00:C5:C5:6E:12:49:31:E7:59:FA:30:03:A3:0A:76 ValidityTue, 24 Jun 2025 07:48:37 GMT - Mon, 22 Sep 2025 08:45:12 GMT File type JavaScript source, ASCII text, with very long lines (2063) Size 2.1 kB (2064 bytes) Hash ba6facacb00551830393d637195804cf 77d2d2802ee44767b33a2d679945cc3efa3619cc 41bb37c8133d8e5c128820cfbe03bcbf63ce256bcbd60a1a76143472d8668e38 HTTP Headers `GET /js/localstorage-slim.js HTTP/1.1 Host: hgslave.xyz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://hgslave.xyz/e/b3uukua6qyiv Cookie: lang=1 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Wed, 25 Jun 2025 20:09:25 GMT content-type: application/javascript; charset=utf-8 cf-ray: 95571a3dde87569f-OSL last-modified: Tue, 16 Nov 2021 13:32:00 GMT etag: W/"6193b2d0-810" expires: Tue, 01 Jul 2025 10:48:02 GMT cache-control: max-age=604800 x-content-type-options: nosniff, nosniff x-xss-protection: 1; mode=block content-encoding: gzip age: 120082 cf-cache-status: HIT vary: accept-encoding report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dBl3Mtk%2F0VU4qD16wEdZ3oiKQHXqXqDbNjnnkQpJikv9sju02GIK6wzKh8bgmkK%2B8nwFsuoUaA8Bce4ABmD%2Bxwle1txz4o35eIRYZGxVWGVPlNF9T7KtU%2B6BBT5omA%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=TCP&rtt=688&min_rtt=394&rtt_var=38&sent=86&recv=59&lost=0&retrans=0&sent_bytes=88042&recv_bytes=1847&delivery_rate=36619599&cwnd=257&unsent_bytes=0&cid=52e0a2ada5ba0810&ts=1152&x=0" X-Firefox-Spdy: h2

	GET hgslave.xyz/assets/jquery/adult0.js?type=adult&v=1.1	172.67.136.103	200 OK	3.0 kB
URL GET hgslave.xyz/assets/jquery/adult0.js?type=adult&v=1.1 IP 172.67.136.103:443 ASN #13335 CLOUDFLARENET Requested by https://hgslave.xyz/e/b3uukua6qyiv Certificate IssuerGoogle Trust Services Subjecthgslave.xyz FingerprintA4:E5:93:8A:B7:00:C5:C5:6E:12:49:31:E7:59:FA:30:03:A3:0A:76 ValidityTue, 24 Jun 2025 07:48:37 GMT - Mon, 22 Sep 2025 08:45:12 GMT File type JavaScript source, ASCII text Size 3.0 kB (3014 bytes) Hash b4e3f3abd5195366290fa802d7b6c476 934058be0cdc972a23981d276f781d239f0d0034 03ca9bc9eedbf5d6013568acbbbd74d6a7342d466a27e1fff02e2976590473ef HTTP Headers `GET /assets/jquery/adult0.js?type=adult&v=1.1 HTTP/1.1 Host: hgslave.xyz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://hgslave.xyz/e/b3uukua6qyiv Cookie: lang=1 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Wed, 25 Jun 2025 20:09:25 GMT content-type: text/javascript; charset=UTF-8 content-encoding: br expires: Tue, 24 Jun 2025 20:09:25 GMT x-frame-options: DENY x-content-type-options: nosniff, nosniff x-xss-protection: 1; mode=block cache-control: max-age=14400 cf-cache-status: MISS report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7coEymHsWx74djso7%2BtD0fmb6V3T9ECWuA8XRQAn29W3Ro6%2BP6uJ3YDQ5qvDtvfZygsWsi2omQqff%2FxQt6vVuSWBIcwYGg53c9D0G28MxTo8EtlT3%2FElI08dsJCyWA%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 95571a3dde8a569f-OSL alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=TCP&rtt=1241&min_rtt=394&rtt_var=1380&sent=112&recv=82&lost=0&retrans=1&sent_bytes=116946&recv_bytes=1847&delivery_rate=748707&cwnd=257&unsent_bytes=0&cid=52e0a2ada5ba0810&ts=1292&x=0" X-Firefox-Spdy: h2

	GET hgslave.xyz/player/jw8/jwplayer.core.controls.js?v=42	172.67.136.103	200 OK	331 kB
URL GET hgslave.xyz/player/jw8/jwplayer.core.controls.js?v=42 IP 172.67.136.103:443 ASN #13335 CLOUDFLARENET Requested by https://hgslave.xyz/e/b3uukua6qyiv Certificate IssuerGoogle Trust Services Subjecthgslave.xyz FingerprintA4:E5:93:8A:B7:00:C5:C5:6E:12:49:31:E7:59:FA:30:03:A3:0A:76 ValidityTue, 24 Jun 2025 07:48:37 GMT - Mon, 22 Sep 2025 08:45:12 GMT File type JavaScript source, ASCII text, with very long lines (65143) Size 331 kB (331116 bytes) Hash bc91b5efc8f4bb2482c2d7d5d8d9b691 5db922c4c6caf3a7d22f57a21670281d5c31994b f061c139ad68d7ed1360ab6a2c8842466d2913582468c48eb2d1ee2a651fb495 HTTP Headers `GET /player/jw8/jwplayer.core.controls.js?v=42 HTTP/1.1 Host: hgslave.xyz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://hgslave.xyz/e/b3uukua6qyiv Cookie: lang=1 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Wed, 25 Jun 2025 20:09:25 GMT content-type: application/javascript; charset=utf-8 nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=oP9urbG8G5C7Hv1ixIfOaLszpJB4%2B4U2PBFiELwvHN4IVn9RF3OiPwOgpajKc18w6BLvL5%2Fx6hPDwT31kOqk2uGmrxQmOTYmCuHvDU26dnVuRTB%2BJzinsOvig2FmNw%3D%3D"}],"group":"cf-nel","max_age":604800} last-modified: Thu, 24 Oct 2024 08:24:46 GMT etag: W/"50d6c-62534bc2f2f80" x-content-type-options: nosniff, nosniff x-xss-protection: 1; mode=block age: 3176 cache-control: max-age=14400 cf-cache-status: HIT content-encoding: br cf-ray: 95571a406e4e0b41-OSL server: cloudflare vary: Accept-Encoding alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=QUIC&rtt=1654&min_rtt=0&rtt_var=1754&sent=206&recv=279&lost=0&retrans=0&sent_bytes=21844&recv_bytes=15730&delivery_rate=1302662&ss_exit_cwnd=14904&ss_exit_reason=2&cwnd=12000&unsent_bytes=0&cid=435b487c76ca9bfd&ts=644&inflight_dur=39&x=44"

	GET hgslave.xyz/dl?op=get_slides&length=6935&url=https://akumachi.com/b3uukua6qyiv0000.jpg	172.67.136.103	200 OK	9.4 kB
URL GET hgslave.xyz/dl?op=get_slides&length=6935&url=https://akumachi.com/b3uukua6qyiv0000.jpg IP 172.67.136.103:443 ASN #13335 CLOUDFLARENET Requested by https://hgslave.xyz/e/b3uukua6qyiv Certificate IssuerGoogle Trust Services Subjecthgslave.xyz FingerprintA4:E5:93:8A:B7:00:C5:C5:6E:12:49:31:E7:59:FA:30:03:A3:0A:76 ValidityTue, 24 Jun 2025 07:48:37 GMT - Mon, 22 Sep 2025 08:45:12 GMT File type WebVTT subtitles, ASCII text Size 9.4 kB (9428 bytes) Hash 5479fe514a782735369a7f3d67c63480 98aaa1d254866466c887c0bc5756089841e0eedf 2ce11b8df643cce51e756291b57f650f64379a110522d632487c9f048fe9cc21 HTTP Headers `GET /dl?op=get_slides&length=6935&url=https://akumachi.com/b3uukua6qyiv0000.jpg HTTP/1.1 Host: hgslave.xyz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://hgslave.xyz/e/b3uukua6qyiv Cookie: lang=1 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Wed, 25 Jun 2025 20:09:26 GMT content-type: text/vtt nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1Oic5iiS9uzHX1IiBTQNXmL8p2JXD%2FBBQzBEx%2FSoSwEuwek6dTdAOhs1vVV9wOPXUCfj4BPDqVK1FDSp33v7b5boAwxuEwo%2F4UHpiGsXxqt3egRZDciqtJ71EkB%2FyQ%3D%3D"}],"group":"cf-nel","max_age":604800} x-content-type-options: nosniff, nosniff x-xss-protection: 1; mode=block cf-cache-status: DYNAMIC cf-ray: 95571a429e5e0b41-OSL server: cloudflare vary: Accept-Encoding alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=QUIC&rtt=831&min_rtt=0&rtt_var=329&sent=450&recv=353&lost=0&retrans=0&sent_bytes=298958&recv_bytes=20090&delivery_rate=14282863&ss_exit_cwnd=14904&ss_exit_reason=2&cwnd=18242&unsent_bytes=0&cid=435b487c76ca9bfd&ts=1148&inflight_dur=86&x=44"

	GET r63hfpdmodtc.kitchenplusgoods.shop/k80yo9sdul3c/hls3/01/00106/b3uukua6qyiv_o/seg-2-v1-a1.jpg	188.114.96.1	200 OK	620 kB
URL GET r63hfpdmodtc.kitchenplusgoods.shop/k80yo9sdul3c/hls3/01/00106/b3uukua6qyiv_o/seg-2-v1-a1.jpg IP 188.114.96.1:443 ASN #13335 CLOUDFLARENET Requested by https://hgslave.xyz/e/b3uukua6qyiv Certificate IssuerGoogle Trust Services Subjectkitchenplusgoods.shop Fingerprint8F:59:90:A9:45:BA:61:19:A7:AB:A3:F9:7D:5F:56:41:24:44:BD:2C ValidityFri, 06 Jun 2025 15:27:34 GMT - Thu, 04 Sep 2025 16:26:18 GMT File type MPEG transport stream data Size 620 kB (620024 bytes) Hash 75e779ccfee7f918fa38593de1b87610 b89df1c61c05bcda8d17ba0e6151b141af9130fa 95373d5f1e6953d9b74c658c81b5ff0dac8833513d705a57a6f3d031d7d52360 HTTP Headers `GET /k80yo9sdul3c/hls3/01/00106/b3uukua6qyiv_o/seg-2-v1-a1.jpg HTTP/1.1 Host: r63hfpdmodtc.kitchenplusgoods.shop User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://hgslave.xyz DNT: 1 Connection: keep-alive Referer: https://hgslave.xyz/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Wed, 25 Jun 2025 20:09:27 GMT content-type: video/MP2T content-length: 620024 server: cloudflare last-modified: Tue, 22 Sep 2020 00:00:00 GMT expires: Fri, 25 Jul 2025 20:09:27 GMT cache-control: max-age=2592000 etag: "5f693e80-975f8" access-control-allow-origin: https://hgslave.xyz accept-ranges: bytes cf-cache-status: MISS priority: u=3,i=?0 vary: accept-encoding report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=hhmBFmxnGtPi0ljD7xkm4CH9eRfsALSg%2BPYfZ84xugFKtMVeYPmbLxXr9XnqVepNj8rNc%2BE%2FLr7pjQ6DX6CXlYA50A2tHpy7mUXOcHAjMMd5buS%2BuW9ljkobEGS4N5t4"}]} nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} cf-ray: 95571a4bacb756b4-OSL alt-svc: h3=":443"; ma=86400 server-timing: cfExtPri

	GET r63hfpdmodtc.kitchenplusgoods.shop/k80yo9sdul3c/hls3/01/00106/b3uukua6qyiv_o/seg-1-v1-a1.jpg	188.114.96.1	200 OK	834 kB
URL GET r63hfpdmodtc.kitchenplusgoods.shop/k80yo9sdul3c/hls3/01/00106/b3uukua6qyiv_o/seg-1-v1-a1.jpg IP 188.114.96.1:443 ASN #13335 CLOUDFLARENET Requested by https://hgslave.xyz/e/b3uukua6qyiv Certificate IssuerGoogle Trust Services Subjectkitchenplusgoods.shop Fingerprint8F:59:90:A9:45:BA:61:19:A7:AB:A3:F9:7D:5F:56:41:24:44:BD:2C ValidityFri, 06 Jun 2025 15:27:34 GMT - Thu, 04 Sep 2025 16:26:18 GMT File type MPEG transport stream data Size 834 kB (833592 bytes) Hash 5727ded09546cf06f8348c9a7c8b885e 83d2eef0015ee84d80575570330056ba5e43b382 3a2db64f60f543e8412048b9f0d6caad475e5e40fb41d8ce0e64a039fd7bde3a HTTP Headers `GET /k80yo9sdul3c/hls3/01/00106/b3uukua6qyiv_o/seg-1-v1-a1.jpg HTTP/1.1 Host: r63hfpdmodtc.kitchenplusgoods.shop User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://hgslave.xyz DNT: 1 Connection: keep-alive Referer: https://hgslave.xyz/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Wed, 25 Jun 2025 20:09:27 GMT content-type: video/MP2T content-length: 833592 server: cloudflare last-modified: Tue, 22 Sep 2020 00:00:00 GMT expires: Fri, 25 Jul 2025 20:09:27 GMT cache-control: max-age=2592000 etag: "5f693e80-cb838" access-control-allow-origin: https://hgslave.xyz accept-ranges: bytes cf-cache-status: MISS priority: u=3,i=?0 vary: accept-encoding report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Cj%2BJvf0J2MFwSz4DFNGzofv%2FWtS9FJIFKM2RL4XsgFOWxlezaWIQndqML%2FwuZODzX22E2bfEhWZic8CdXrKVN%2Fg5eOv2uq8RW2DOY3IyhdLcMIQ5oLLpaliPOeGqS6ii"}]} nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} cf-ray: 95571a478eb856b4-OSL alt-svc: h3=":443"; ma=86400 server-timing: cfExtPri

	GET hgslave.xyz/css/main.css	172.67.136.103	200 OK	49 kB
URL GET hgslave.xyz/css/main.css IP 172.67.136.103:443 ASN #13335 CLOUDFLARENET Requested by https://hgslave.xyz/e/b3uukua6qyiv Certificate IssuerGoogle Trust Services Subjecthgslave.xyz FingerprintA4:E5:93:8A:B7:00:C5:C5:6E:12:49:31:E7:59:FA:30:03:A3:0A:76 ValidityTue, 24 Jun 2025 07:48:37 GMT - Mon, 22 Sep 2025 08:45:12 GMT File type assembler source, Unicode text, UTF-8 text Size 49 kB (49435 bytes) Hash 51d559d2f974e61e564a5f8120a23a9a 9eab84e6bf40cfca88aac7f6d849df54f27ac12d a01ef8569a9021b0315bf38d5d518a928d98efce576f56ac012c30f2b63e1cb6 HTTP Headers `GET /css/main.css HTTP/1.1 Host: hgslave.xyz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://hgslave.xyz/e/b3uukua6qyiv Cookie: lang=1 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Wed, 25 Jun 2025 20:09:25 GMT content-type: text/css cf-ray: 95571a3dce66569f-OSL last-modified: Sat, 12 Nov 2022 15:05:00 GMT etag: W/"636fb61c-c11b" expires: Tue, 01 Jul 2025 10:48:02 GMT cache-control: max-age=604800 x-content-type-options: nosniff, nosniff x-xss-protection: 1; mode=block content-encoding: gzip age: 120082 cf-cache-status: HIT vary: accept-encoding report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nps4x75Kssff0x2qF76oymLO5cw5nyaVmG9IGR4ocxjsTnohFwFzva50hzSWZiQyWFCMneNfvcgdJAhPl87nA3c60G6F7jlBenziLXR9h4fSiWluHctoKtkCnBzmgg%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=TCP&rtt=1185&min_rtt=420&rtt_var=1145&sent=50&recv=35&lost=0&retrans=0&sent_bytes=45079&recv_bytes=1847&delivery_rate=36619599&cwnd=257&unsent_bytes=0&cid=52e0a2ada5ba0810&ts=1147&x=0" X-Firefox-Spdy: h2

	GET hgslave.xyz/player/jw8/jwplayer.js?v=7	172.67.136.103	200 OK	148 kB
URL GET hgslave.xyz/player/jw8/jwplayer.js?v=7 IP 172.67.136.103:443 ASN #13335 CLOUDFLARENET Requested by https://hgslave.xyz/e/b3uukua6qyiv Certificate IssuerGoogle Trust Services Subjecthgslave.xyz FingerprintA4:E5:93:8A:B7:00:C5:C5:6E:12:49:31:E7:59:FA:30:03:A3:0A:76 ValidityTue, 24 Jun 2025 07:48:37 GMT - Mon, 22 Sep 2025 08:45:12 GMT File type JavaScript source, Unicode text, UTF-8 text, with very long lines (65503) Size 148 kB (148052 bytes) Hash 581ff912c413cd78a30f5c212f42271a 79af689432d0f20cd1d951eb9436711da07decd4 c708d26c24b48c3343e8cc7879d07e8ca6f23d1cc1e5df165a9f8e24a7c5830e HTTP Headers `GET /player/jw8/jwplayer.js?v=7 HTTP/1.1 Host: hgslave.xyz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://hgslave.xyz/e/b3uukua6qyiv Cookie: lang=1 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Wed, 25 Jun 2025 20:09:25 GMT content-type: application/javascript; charset=utf-8 content-encoding: br last-modified: Fri, 28 Mar 2025 05:48:51 GMT etag: W/"24254-631609ffc56c0" x-content-type-options: nosniff, nosniff x-xss-protection: 1; mode=block age: 3176 cache-control: max-age=14400 cf-cache-status: HIT report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7vdDKnX%2Bcj9ZUrgeVi9Kxo5aqsU9BgyHPpJwIBwcq2AamIe%2BNGd6Q8I0ftgASdOUkJ0IJi4todUjzmErFfQ%2Fin%2Fpg3B9ZBjM61IJTjZDyepOZsokcG%2B1hgjgQZC1QA%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 95571a3dde81569f-OSL alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=TCP&rtt=1093&min_rtt=394&rtt_var=1043&sent=59&recv=36&lost=0&retrans=0&sent_bytes=56807&recv_bytes=1847&delivery_rate=36619599&cwnd=257&unsent_bytes=0&cid=52e0a2ada5ba0810&ts=1147&x=0" X-Firefox-Spdy: h2

	GET hgslave.xyz/player/jw8/provider.hlsjs.js?v=42	172.67.136.103	200 OK	462 kB
URL GET hgslave.xyz/player/jw8/provider.hlsjs.js?v=42 IP 172.67.136.103:443 ASN #13335 CLOUDFLARENET Requested by https://hgslave.xyz/e/b3uukua6qyiv Certificate IssuerGoogle Trust Services Subjecthgslave.xyz FingerprintA4:E5:93:8A:B7:00:C5:C5:6E:12:49:31:E7:59:FA:30:03:A3:0A:76 ValidityTue, 24 Jun 2025 07:48:37 GMT - Mon, 22 Sep 2025 08:45:12 GMT File type JavaScript source, ASCII text, with very long lines (65501) Size 462 kB (461504 bytes) Hash b88ce761b9ebc2a7859a2e03b33ce1ed 70d94f3c48460af13fc14eea9e5969f8f28d1a3a 0b009d01bf513b1059d8ee15e1a8b57faeb5f8066c0f47d2cf8e1dd2454e5b28 HTTP Headers `GET /player/jw8/provider.hlsjs.js?v=42 HTTP/1.1 Host: hgslave.xyz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://hgslave.xyz/e/b3uukua6qyiv Cookie: lang=1 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Wed, 25 Jun 2025 20:09:25 GMT content-type: application/javascript; charset=utf-8 nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3iYRGZYjNQWpW2dhU95dwo81WkQpnLAjT1FJ07vVDeHrXW1Z5X5OTWi5ED%2FwLNPAjsnqbT51OM%2Fsrs96VHiukEteEADc9ZxmA43g8bvO2aosYgZuXvoMMf%2BHOK5k6w%3D%3D"}],"group":"cf-nel","max_age":604800} last-modified: Fri, 28 Mar 2025 05:48:27 GMT etag: W/"70ac0-631609e8e20c0" x-content-type-options: nosniff, nosniff x-xss-protection: 1; mode=block age: 3176 cache-control: max-age=14400 cf-cache-status: HIT content-encoding: br cf-ray: 95571a406e4f0b41-OSL server: cloudflare vary: Accept-Encoding alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=QUIC&rtt=1654&min_rtt=0&rtt_var=1754&sent=204&recv=279&lost=0&retrans=0&sent_bytes=19444&recv_bytes=15730&delivery_rate=1302662&ss_exit_cwnd=14904&ss_exit_reason=2&cwnd=12000&unsent_bytes=0&cid=435b487c76ca9bfd&ts=643&inflight_dur=39&x=44"

	GET r63hfpdmodtc.kitchenplusgoods.shop/k80yo9sdul3c/hls3/01/00106/b3uukua6qyiv_o/index-v1-a1.txt	188.114.96.1	200 OK	53 kB
URL GET r63hfpdmodtc.kitchenplusgoods.shop/k80yo9sdul3c/hls3/01/00106/b3uukua6qyiv_o/index-v1-a1.txt IP 188.114.96.1:443 ASN #13335 CLOUDFLARENET Requested by https://hgslave.xyz/e/b3uukua6qyiv Certificate IssuerGoogle Trust Services Subjectkitchenplusgoods.shop Fingerprint8F:59:90:A9:45:BA:61:19:A7:AB:A3:F9:7D:5F:56:41:24:44:BD:2C ValidityFri, 06 Jun 2025 15:27:34 GMT - Thu, 04 Sep 2025 16:26:18 GMT File type M3U playlist, ASCII text Size 53 kB (53381 bytes) Hash 413520d69f059de4355bd2ce5c3db5cb ef5cdf7f2d585d77ff8114f0a7819d4b59a410da 507d608950831774864318de37a4bba8a5ae54fa069ec8c8f5d290630cb66bcf HTTP Headers `GET /k80yo9sdul3c/hls3/01/00106/b3uukua6qyiv_o/index-v1-a1.txt HTTP/1.1 Host: r63hfpdmodtc.kitchenplusgoods.shop User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://hgslave.xyz DNT: 1 Connection: keep-alive Referer: https://hgslave.xyz/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Wed, 25 Jun 2025 20:09:26 GMT content-type: application/vnd.apple.mpegurl server: cloudflare nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} expires: Fri, 25 Jul 2025 20:09:26 GMT cache-control: max-age=2592000 etag: "5f693e80-1144b" access-control-allow-origin: https://hgslave.xyz cf-cache-status: MISS vary: accept-encoding report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=UPbc4fwfwGjfLbzCBJY9SHf07z0T51jzzOmOYLA13wWT7pJZx0%2FqFgAruxR%2Bk4%2BhSqiwXNYENaI0JcYoFqVg6hnr9Wb2hIbNKZX0vVjsXVoHWTTD7mQGCvW3SHGydMVu"}]} cf-ray: 95571a45bccc0b45-OSL alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	GET hgslave.xyz/HG1/images/favicon/apple-touch-icon.png	172.67.136.103	200 OK	9.8 kB
URL GET hgslave.xyz/HG1/images/favicon/apple-touch-icon.png IP 172.67.136.103:443 ASN #13335 CLOUDFLARENET Requested by https://hgslave.xyz/e/b3uukua6qyiv Certificate IssuerGoogle Trust Services Subjecthgslave.xyz FingerprintA4:E5:93:8A:B7:00:C5:C5:6E:12:49:31:E7:59:FA:30:03:A3:0A:76 ValidityTue, 24 Jun 2025 07:48:37 GMT - Mon, 22 Sep 2025 08:45:12 GMT File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced Size 9.8 kB (9815 bytes) Hash 950b17d062f74da3c49c37fbd688632c ea686526b341286d29e09c666c1dc486175ae83f 313f2825cc6b323933ef7de5252330a1db660c54e0c97756deefc9e5b83bd268 HTTP Headers `GET /HG1/images/favicon/apple-touch-icon.png HTTP/1.1 Host: hgslave.xyz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://hgslave.xyz/e/b3uukua6qyiv Cookie: lang=1 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Wed, 25 Jun 2025 20:09:26 GMT content-type: image/png content-length: 9815 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CTqeN3q%2FitbzSHSEYP3WpTv%2F2GQdl8%2BPzeyacUMLRKxb7A8c%2FYmPt1DMrl9I8xOAmeLV0rR0MR97W8t3DDEF%2Br8oj3G5zp5bnDovyoKhtoNPphRn768aPV0ujSQDJA%3D%3D"}],"group":"cf-nel","max_age":604800} last-modified: Sat, 03 Jun 2023 09:33:43 GMT etag: "2657-5fd365d911798" accept-ranges: bytes x-content-type-options: nosniff, nosniff x-xss-protection: 1; mode=block cache-control: max-age=14400 cf-cache-status: MISS cf-ray: 95571a40ee500b41-OSL server: cloudflare vary: Accept-Encoding nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=QUIC&rtt=766&min_rtt=0&rtt_var=369&sent=437&recv=350&lost=0&retrans=0&sent_bytes=286720&recv_bytes=19694&delivery_rate=14282863&ss_exit_cwnd=14904&ss_exit_reason=2&cwnd=18242&unsent_bytes=0&cid=435b487c76ca9bfd&ts=865&inflight_dur=81&x=44"

	GET r63hfpdmodtc.kitchenplusgoods.shop/k80yo9sdul3c/hls3/01/00106/b3uukua6qyiv_o/master.txt	188.114.96.1	200 OK	250 B
URL GET r63hfpdmodtc.kitchenplusgoods.shop/k80yo9sdul3c/hls3/01/00106/b3uukua6qyiv_o/master.txt IP 188.114.96.1:443 ASN #13335 CLOUDFLARENET Requested by https://hgslave.xyz/e/b3uukua6qyiv Certificate IssuerGoogle Trust Services Subjectkitchenplusgoods.shop Fingerprint8F:59:90:A9:45:BA:61:19:A7:AB:A3:F9:7D:5F:56:41:24:44:BD:2C ValidityFri, 06 Jun 2025 15:27:34 GMT - Thu, 04 Sep 2025 16:26:18 GMT File type M3U playlist, ASCII text Size 250 B (250 bytes) Hash 1b816bbd3ef5e1deec31475157c27b74 c5f20c9742145e26fb263242f1ef08b94704f32d ada1004d4471caac10bc448ae36786e93e9f45719da68d7bff748267e6b3b2ba HTTP Headers `GET /k80yo9sdul3c/hls3/01/00106/b3uukua6qyiv_o/master.txt HTTP/1.1 Host: r63hfpdmodtc.kitchenplusgoods.shop User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://hgslave.xyz DNT: 1 Connection: keep-alive Referer: https://hgslave.xyz/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Wed, 25 Jun 2025 20:09:26 GMT content-type: application/vnd.apple.mpegurl server: cloudflare nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} expires: Fri, 25 Jul 2025 20:09:26 GMT cache-control: max-age=2592000 etag: "5f693e80-fc" access-control-allow-origin: https://hgslave.xyz cf-cache-status: MISS vary: accept-encoding report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=SmAGFEjDSwFN6ytMmtnY42ltqHxpthyKy4P85wcCftaAdeVTGiFX3wS006WcTTEP9jHGzQfuMUkFMP8B02uoCFhZ1t7ij5EBsGQk6BTHlIac5dJ1xK%2Fi3RL1PfrtP6Pe"}]} cf-ray: 95571a43ca2d0b45-OSL alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	GET hgslave.xyz/js/xupload.js	172.67.136.103	200 OK	11 kB
URL GET hgslave.xyz/js/xupload.js IP 172.67.136.103:443 ASN #13335 CLOUDFLARENET Requested by https://hgslave.xyz/e/b3uukua6qyiv Certificate IssuerGoogle Trust Services Subjecthgslave.xyz FingerprintA4:E5:93:8A:B7:00:C5:C5:6E:12:49:31:E7:59:FA:30:03:A3:0A:76 ValidityTue, 24 Jun 2025 07:48:37 GMT - Mon, 22 Sep 2025 08:45:12 GMT File type JavaScript source, ASCII text Size 11 kB (10740 bytes) Hash 7ef44e11ddf37c97750431e5284e4d77 59ed0438edbda256e8258ce41729e89e7a9f0b66 9be83627d9e3f905d1bf43b83445f1874a98ba283e79a944acff7db7c47b2cf6 HTTP Headers `GET /js/xupload.js HTTP/1.1 Host: hgslave.xyz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://hgslave.xyz/e/b3uukua6qyiv Cookie: lang=1 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Wed, 25 Jun 2025 20:09:25 GMT content-type: application/javascript; charset=utf-8 cf-ray: 95571a3dce78569f-OSL last-modified: Fri, 18 Oct 2024 06:42:06 GMT etag: W/"6712033e-29f4" expires: Tue, 01 Jul 2025 10:48:02 GMT cache-control: max-age=604800 x-content-type-options: nosniff, nosniff x-xss-protection: 1; mode=block content-encoding: gzip age: 120082 cf-cache-status: HIT vary: accept-encoding report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vjFH6mcEkIIgapz8CI8BYrhAQnAx5x1%2BcZwyTTdUU1mXyqDOB%2Bh%2FBWeoRHveLAquryBOCqyThCdsrtRpsUZ7Mos2ny0qsLcHmO5W2iUgfTjm5fN1AvRfzC8pTJQwww%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=TCP&rtt=1010&min_rtt=394&rtt_var=741&sent=61&recv=38&lost=0&retrans=0&sent_bytes=57339&recv_bytes=1847&delivery_rate=36619599&cwnd=257&unsent_bytes=0&cid=52e0a2ada5ba0810&ts=1148&x=0" X-Firefox-Spdy: h2

	GET www.googletagmanager.com/gtag/js?id=G-E2BG6CPV2J	142.250.74.136	200 OK	399 kB
URL GET www.googletagmanager.com/gtag/js?id=G-E2BG6CPV2J IP 142.250.74.136:443 ASN #15169 GOOGLE Requested by https://hgslave.xyz/e/b3uukua6qyiv Certificate IssuerGoogle Trust Services Subject.google-analytics.com Fingerprint79:AA:03:D4:F6:6B:0F:61:E5:C5:AB:19:F4:A5:5D:DC:97:80:AF:DA ValidityMon, 02 Jun 2025 08:35:30 GMT - Mon, 25 Aug 2025 08:35:29 GMT File type JavaScript source, ASCII text, with very long lines (6004) Size 399 kB (398942 bytes) Hash 3ddbc2df4e49f2866d39c5fca5cc460f da01d3124a24fc3de1d113dc16dd146c8cf5b011 8a655a1140e7d71230f1b92c47c2ddd2c81ee8bd3efe9032ef4fb3e99daaff0e HTTP Headers `GET /gtag/js?id=G-E2BG6CPV2J HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://hgslave.xyz/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Wed, 25 Jun 2025 20:09:25 GMT expires: Wed, 25 Jun 2025 20:09:25 GMT cache-control: private, max-age=900 strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1077:0 cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1077:0 report-to: {"group":"ascgcycc:1077:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1077:0"}],} server: Google Tag Manager content-length: 132672 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	GET hgslave.xyz/HG1/images/favicon/favicon-16x16.png	172.67.136.103	200 OK	754 B
URL GET hgslave.xyz/HG1/images/favicon/favicon-16x16.png IP 172.67.136.103:443 ASN #13335 CLOUDFLARENET Requested by https://hgslave.xyz/e/b3uukua6qyiv Certificate IssuerGoogle Trust Services Subjecthgslave.xyz FingerprintA4:E5:93:8A:B7:00:C5:C5:6E:12:49:31:E7:59:FA:30:03:A3:0A:76 ValidityTue, 24 Jun 2025 07:48:37 GMT - Mon, 22 Sep 2025 08:45:12 GMT File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced Size 754 B (754 bytes) Hash 2ff91b20509cbd2b4ced325dcfd595b5 db95dedde3c37aaf673a3951a6e657dccc579cb9 bdcf4520fe74cdf5fe6c48c0438c342a2944cd8f0a0dbc7fb185469f94cd9b8e HTTP Headers `GET /HG1/images/favicon/favicon-16x16.png HTTP/1.1 Host: hgslave.xyz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://hgslave.xyz/e/b3uukua6qyiv Cookie: lang=1 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Wed, 25 Jun 2025 20:09:26 GMT content-type: image/png content-length: 754 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zZeNT985ptiBsITR9g%2BnwY4qsS5MnzjlOT5TqPi2xw8LaWk4LqHd6FJ%2Fk7wGqkloECpXHXLP4fNU0E1QBerQm0rlccmIKIFEwcd9%2FMAQK1h%2B4RU2%2F2hiGmos7tl6dA%3D%3D"}],"group":"cf-nel","max_age":604800} last-modified: Sat, 03 Jun 2023 09:33:43 GMT etag: "2f2-5fd365d929280" accept-ranges: bytes x-content-type-options: nosniff, nosniff x-xss-protection: 1; mode=block cache-control: max-age=14400 cf-cache-status: MISS cf-ray: 95571a40ee510b41-OSL server: cloudflare vary: Accept-Encoding nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=QUIC&rtt=785&min_rtt=0&rtt_var=314&sent=447&recv=351&lost=0&retrans=0&sent_bytes=297466&recv_bytes=19739&delivery_rate=14282863&ss_exit_cwnd=14904&ss_exit_reason=2&cwnd=18242&unsent_bytes=0&cid=435b487c76ca9bfd&ts=874&inflight_dur=84&x=44"

	GET hgslave.xyz/js/jquery.cookie.js	172.67.136.103	200 OK	4.3 kB
URL GET hgslave.xyz/js/jquery.cookie.js IP 172.67.136.103:443 ASN #13335 CLOUDFLARENET Requested by https://hgslave.xyz/e/b3uukua6qyiv Certificate IssuerGoogle Trust Services Subjecthgslave.xyz FingerprintA4:E5:93:8A:B7:00:C5:C5:6E:12:49:31:E7:59:FA:30:03:A3:0A:76 ValidityTue, 24 Jun 2025 07:48:37 GMT - Mon, 22 Sep 2025 08:45:12 GMT File type ASCII text Size 4.3 kB (4331 bytes) Hash ae0c2c5d8f01f7d35bb698bb618a62f7 63556a22ddea1c5f23a5cf7d0b6d35c7aab54e20 75aef2e95ea7f3a70999396fba0c2ab866f4ff06313cf1b07780d800a5fc1ebc HTTP Headers `GET /js/jquery.cookie.js HTTP/1.1 Host: hgslave.xyz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://hgslave.xyz/e/b3uukua6qyiv Cookie: lang=1 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Wed, 25 Jun 2025 20:09:25 GMT content-type: application/javascript; charset=utf-8 cf-ray: 95571a3dce79569f-OSL last-modified: Tue, 31 May 2011 13:53:00 GMT etag: W/"4de4f2bc-10eb" expires: Tue, 01 Jul 2025 10:48:02 GMT cache-control: max-age=604800 x-content-type-options: nosniff, nosniff x-xss-protection: 1; mode=block content-encoding: gzip age: 120082 cf-cache-status: HIT vary: accept-encoding report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rY3%2B%2BHKI%2FnU8TGNV1VppJW%2BnhfbY66cXdmpaPnidsZOqRdsUEdsw1ZAVAMMc8Kr%2BIsJ27l8bWtpOJqcmNFLNBi9LudIMf5hQHeGr1f21YO7JpgepLXbGdqF1Qu4F%2Fg%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=TCP&rtt=1234&min_rtt=420&rtt_var=1396&sent=46&recv=34&lost=0&retrans=0&sent_bytes=43027&recv_bytes=1847&delivery_rate=17551515&cwnd=257&unsent_bytes=0&cid=52e0a2ada5ba0810&ts=1146&x=0" X-Firefox-Spdy: h2

	GET www.googletagmanager.com/gtag/js?id=G-2TL7NH453R	142.250.74.136	200 OK	399 kB
URL GET www.googletagmanager.com/gtag/js?id=G-2TL7NH453R IP 142.250.74.136:443 ASN #15169 GOOGLE Requested by https://hgslave.xyz/e/b3uukua6qyiv Certificate IssuerGoogle Trust Services Subject.google-analytics.com Fingerprint79:AA:03:D4:F6:6B:0F:61:E5:C5:AB:19:F4:A5:5D:DC:97:80:AF:DA ValidityMon, 02 Jun 2025 08:35:30 GMT - Mon, 25 Aug 2025 08:35:29 GMT File type JavaScript source, ASCII text, with very long lines (6004) Size 399 kB (399215 bytes) Hash 8ce0953e2a230603a7cabb1abfe99c3e 31ac46bb2b6651ce67f1d991186f98b20be11eee c9853609389355f27674c58f54332b96ccd6aa3d2cb0b5539d3194d0d722d025 HTTP Headers `GET /gtag/js?id=G-2TL7NH453R HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://hgslave.xyz/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Wed, 25 Jun 2025 20:09:25 GMT expires: Wed, 25 Jun 2025 20:09:25 GMT cache-control: private, max-age=900 strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1077:0 cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1077:0 report-to: {"group":"ascgcycc:1077:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1077:0"}],} server: Google Tag Manager content-length: 132758 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	GET hgslave.xyz/e/b3uukua6qyiv	172.67.136.103	200 OK	14 kB
URL User Request GET hgslave.xyz/e/b3uukua6qyiv IP 172.67.136.103:443 ASN #13335 CLOUDFLARENET Certificate IssuerGoogle Trust Services Subjecthgslave.xyz FingerprintA4:E5:93:8A:B7:00:C5:C5:6E:12:49:31:E7:59:FA:30:03:A3:0A:76 ValidityTue, 24 Jun 2025 07:48:37 GMT - Mon, 22 Sep 2025 08:45:12 GMT File type HTML document, ASCII text, with very long lines (7668) Size 14 kB (13949 bytes) Hash 000c49a13ef8f73c8409a7c776700c2a 16e16b2e6474b78e04dae78738c0cbec193742fe 768807d55a29e5024afab970d9b8e565dd87d7a5df226b82283f525430b66641 HTTP Headers `GET /e/b3uukua6qyiv HTTP/1.1 Host: hgslave.xyz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Wed, 25 Jun 2025 20:09:25 GMT content-type: text/html; charset=UTF-8 content-encoding: br expires: Tue, 24 Jun 2025 20:09:25 GMT set-cookie: lang=1; domain=.hgslave.xyz; path=/; HttpOnly x-content-type-options: nosniff, nosniff x-xss-protection: 1; mode=block cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0kRxxxgQQBE0jGEZNetn86Zq6wn76YYJHJho9YlW%2BdbHRIjlVy%2B1MY0aD8hyNOtLZ4%2FOlQT8as2ehwdIg2MxL8vcSuG%2FdAaVY5TgjLtdaW6qWjahexEK5FEC1ekozw%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 95571a36db20569f-OSL alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=TCP&rtt=6289&min_rtt=424&rtt_var=11726&sent=7&recv=11&lost=0&retrans=0&sent_bytes=3196&recv_bytes=1134&delivery_rate=7515570&cwnd=254&unsent_bytes=0&cid=52e0a2ada5ba0810&ts=906&x=0" X-Firefox-Spdy: h2

	GET akumachi.com/b3uukua6qyiv_xt.jpg	104.21.80.1	200 OK	42 kB
URL GET akumachi.com/b3uukua6qyiv_xt.jpg IP 104.21.80.1:443 ASN #13335 CLOUDFLARENET Requested by https://hgslave.xyz/e/b3uukua6qyiv Certificate IssuerGoogle Trust Services Subjectakumachi.com FingerprintCA:48:AD:0A:D2:21:D9:74:D9:40:73:04:C3:C3:7E:10:10:6C:0E:D9 ValidityThu, 05 Jun 2025 17:53:14 GMT - Wed, 03 Sep 2025 18:51:48 GMT File type JPEG image data, JFIF standard 1.01, aspect ratio, density 0x0, segment length 16, baseline, precision 8, 875x493, components 3 Size 42 kB (42223 bytes) Hash ec93d453a3882f64516179cce5c6d7b6 1f0d6844e0ed0dc1c9907771595a98461a175296 c2b95760ec5e5d1ef69dbd85ca0dea26ca84f836dd8ce2ef8f80efd02aaa2ede HTTP Headers `GET /b3uukua6qyiv_xt.jpg HTTP/1.1 Host: akumachi.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://hgslave.xyz/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Wed, 25 Jun 2025 20:09:25 GMT content-type: image/jpeg content-length: 42223 server: cloudflare nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} last-modified: Sat, 11 May 2024 06:12:56 GMT etag: "663f0c68-a4ef" expires: Wed, 02 Jul 2025 20:09:25 GMT cache-control: max-age=604800 x-content-type-options: nosniff accept-ranges: bytes cf-cache-status: MISS vary: accept-encoding report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Q9tjM3BRtXarKXAgX6rgDTxNrodcAooL9KvFHTXYAh7Qh%2FdpH5a%2FRgnRA%2BN8YzDajgA5lCryVMQNJgqbNMms3hvrFl5lTc8ODXM%3D"}]} cf-ray: 95571a3e3b96b529-OSL alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	GET hgslave.xyz/player/jw8/vast.js?v=32	172.67.136.103	200 OK	112 kB
URL GET hgslave.xyz/player/jw8/vast.js?v=32 IP 172.67.136.103:443 ASN #13335 CLOUDFLARENET Requested by https://hgslave.xyz/e/b3uukua6qyiv Certificate IssuerGoogle Trust Services Subjecthgslave.xyz FingerprintA4:E5:93:8A:B7:00:C5:C5:6E:12:49:31:E7:59:FA:30:03:A3:0A:76 ValidityTue, 24 Jun 2025 07:48:37 GMT - Mon, 22 Sep 2025 08:45:12 GMT File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 112 kB (112211 bytes) Hash 1b3eb53abc624a51f5e226d08758ddf3 6cca061ec7c41313ec2027eaaca76fa9dfad750b 73788e3233d5113578082f78869724925d3e4dd2c9d02fdc0bf84d6aed3a768e HTTP Headers `GET /player/jw8/vast.js?v=32 HTTP/1.1 Host: hgslave.xyz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://hgslave.xyz/e/b3uukua6qyiv Cookie: lang=1 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Wed, 25 Jun 2025 20:09:25 GMT content-type: application/javascript; charset=utf-8 nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Vewl94yknKngYiKRciPQpF1rmtgCggRrIl7%2F7vUdoAiitmZregvQohASOwBe4j7UXbrMOeJLuB4ie%2F%2FhANcfzphlUtRhF4RCIm25KkWJIJu3PfNdQa8jxdKx%2F7nkVA%3D%3D"}],"group":"cf-nel","max_age":604800} last-modified: Tue, 10 Dec 2024 07:24:43 GMT etag: W/"1b653-628e55ff864c0" x-content-type-options: nosniff, nosniff x-xss-protection: 1; mode=block age: 3176 cache-control: max-age=14400 cf-cache-status: HIT content-encoding: br cf-ray: 95571a404e4c0b41-OSL server: cloudflare vary: Accept-Encoding alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=QUIC&rtt=2160&min_rtt=518&rtt_var=1557&sent=199&recv=277&lost=0&retrans=0&sent_bytes=13897&recv_bytes=15642&delivery_rate=558124&ss_exit_cwnd=14904&ss_exit_reason=2&cwnd=12000&unsent_bytes=0&cid=435b487c76ca9bfd&ts=636&inflight_dur=36&x=44"

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (19)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML