| cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.2/css/all.min.css | 104.17.24.14 | 200 OK | 19 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.2/css/all.min.css IP104.17.24.14:443
CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (52276) Hash5222e06b77a1692fa2520a219840e6be 8b4236206a8b86af3761a244277663046d7ff7ee 0934b1fc0d3a766d41d3adf5e7a115875e66e98ebba408d965a41cf3d2cb4ab5
GET /ajax/libs/font-awesome/6.4.2/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 18:13:51 GMT
content-type: text/css; charset=utf-8
content-length: 18778
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "64cac444-495a"
last-modified: Wed, 02 Aug 2023 21:01:56 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 56526
expires: Wed, 16 Apr 2025 18:13:51 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ECke7cGoliZp3tsk4lDQz37usZOD6Xt98xwERpIlogd8Jj5IRFI3PCJ9NbvdmrOry%2Bibqe9%2B6TkoaSMLijGy4uvKFXND%2FlChhShyTbOnOqwwdRN3cB3TJFI%2FjntWaa4pfatnL%2F%2BM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87a88c936e86b50b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css | 104.17.24.14 | 200 OK | 5.8 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css IP104.17.24.14:443
CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hashe9365fe85b7e4db79a87015e52c3db6c 2e2b5eb6e08f0f3d11fe0ada97c962a23ba6a0d9 dec3e9f0190a504ed0c8f4a5e957c107206ba106cac4a1bbb6cbac6369a16d56
GET /ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 18:13:51 GMT
content-type: text/css; charset=utf-8
content-length: 5845
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ed9-1149f"
last-modified: Mon, 04 May 2020 16:12:09 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1336384
expires: Wed, 16 Apr 2025 18:13:51 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=t65pXmKtGnLFJxYVXZPfiVfhbbtm1VQXbJkT1etYHVd1BkuhO72q%2FI6wbJ%2B6PNsIaqnX4TgdkcHMNsJias49vqj7bS1h4BRQaAC6a5hWouLM0Lq2IjH65yF442Be8S26lB1%2FzrMJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87a88c936e80b50b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| gnkuth.aqpj.xyz/img/style-img/logo.png | 104.21.44.6 | 200 OK | 8.3 kB |
URL GET HTTP/3gnkuth.aqpj.xyz/img/style-img/logo.png IP104.21.44.6:443
CertificateIssuerGoogle Trust Services LLC Subjectaqpj.xyz Fingerprint8B:1B:15:AD:7C:99:A2:13:4A:AA:C7:4F:18:1A:02:46:48:E3:ED:BB ValidityWed, 13 Mar 2024 07:15:37 GMT - Tue, 11 Jun 2024 07:15:36 GMT
File typePNG image data, 616 x 90, 8-bit/color RGBA, non-interlaced Hashc632e6bfd0076695e56477bdb3f7232c 5b4212f029814b5dfda946ac5e5a6ba97857feb9 86ccbc1dbeb58af3e6bce5ee52f86a47399da998ad34a0fd2ce9b0b539d92f6c
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/style-img/logo.png HTTP/1.1
Host: gnkuth.aqpj.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 18:13:51 GMT
content-type: image/png
content-length: 8314
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 18:13:51 GMT
last-modified: Fri, 19 Apr 2024 12:13:42 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wITbDcKMeqUZlZx2unKlMpCLfg646Xawow%2BvqyzvSSueHf4SH4XuC47gNoqjfb3qnaWVghjQQyiD%2B1Y90634CfrM1n29mo5GIfhXAbXt5vyjq%2FJlFLjDfiRRa7SoT%2FXhsqg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a88c931b2e568b-OSL
alt-svc: h3=":443"; ma=86400
|
|
| gnkuth.aqpj.xyz/img/logo.png | 104.21.44.6 | 200 OK | 11 kB |
URL GET HTTP/3gnkuth.aqpj.xyz/img/logo.png IP104.21.44.6:443
CertificateIssuerGoogle Trust Services LLC Subjectaqpj.xyz Fingerprint8B:1B:15:AD:7C:99:A2:13:4A:AA:C7:4F:18:1A:02:46:48:E3:ED:BB ValidityWed, 13 Mar 2024 07:15:37 GMT - Tue, 11 Jun 2024 07:15:36 GMT
File typePNG image data, 459 x 138, 8-bit/color RGBA, non-interlaced Hashf77fe97fc8f4d06fd93eaf7552c4a3e9 c73f03f3e5a9f460eb83e10ae7312738a36ce720 b695d33c5ece1af9739e89855c4cc718fd6e9550528009ee5ff644cac193cb41
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/logo.png HTTP/1.1
Host: gnkuth.aqpj.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 18:13:51 GMT
content-type: image/png
content-length: 11185
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 18:13:51 GMT
last-modified: Fri, 19 Apr 2024 12:51:18 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=myFnfJ%2Fvo4DjgDJ8wrmc0g2zyhL12fCAluVuP1jG4HRKZuccgVStnqymHoUedIfrJYIxjOCXo2AeoVJsxF5EZJzDReevcxgqMRpc1W3UjRY6lTmmmilTbncjwDA4fVyXZO4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a88c933b76568b-OSL
alt-svc: h3=":443"; ma=86400
|
|
| gnkuth.aqpj.xyz/img/style-img/facebook-text.png | 104.21.44.6 | 200 OK | 12 kB |
URL GET HTTP/3gnkuth.aqpj.xyz/img/style-img/facebook-text.png IP104.21.44.6:443
CertificateIssuerGoogle Trust Services LLC Subjectaqpj.xyz Fingerprint8B:1B:15:AD:7C:99:A2:13:4A:AA:C7:4F:18:1A:02:46:48:E3:ED:BB ValidityWed, 13 Mar 2024 07:15:37 GMT - Tue, 11 Jun 2024 07:15:36 GMT
File typePNG image data, 604 x 158, 8-bit colormap, non-interlaced Hashc8469979cfb24192fc638efb7784a921 ff2f9c8fdb233dc3bfabd2ecaf11cbb70791dfa3 0cb512d932e3ad625dfb6c1ae0d47e1dfafecdf31c9c7fd9c9677c95bf31efb5
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/style-img/facebook-text.png HTTP/1.1
Host: gnkuth.aqpj.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 18:13:51 GMT
content-type: image/png
content-length: 12239
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 18:13:51 GMT
last-modified: Fri, 19 Apr 2024 12:13:36 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7kU%2Fp4piL07%2B%2B0c4%2Ba6e2D1DCOz9J0PNE%2BFwtTrK%2F0ESVvW3%2FuUaYNZQdAB64szaG4m%2BoGW4xBhjcJYMRbmmzhj93VASrNB52OrFKoKeE3UPI0HhbGXxb50hbMtaXOodhVk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a88c934b80568b-OSL
alt-svc: h3=":443"; ma=86400
|
|
| gnkuth.aqpj.xyz/img/tokens.png | 104.21.44.6 | 200 OK | 5.5 kB |
URL GET HTTP/3gnkuth.aqpj.xyz/img/tokens.png IP104.21.44.6:443
CertificateIssuerGoogle Trust Services LLC Subjectaqpj.xyz Fingerprint8B:1B:15:AD:7C:99:A2:13:4A:AA:C7:4F:18:1A:02:46:48:E3:ED:BB ValidityWed, 13 Mar 2024 07:15:37 GMT - Tue, 11 Jun 2024 07:15:36 GMT
File typePNG image data, 135 x 130, 8-bit colormap, non-interlaced Hashc17d58c98659f3829c4a29a44b737861 53fd8ba7e57e6dcfcbc40b469320b21bf777cbea a20b9d4d4ba5d014e36e326e4f04f5a4a8c1d37803858ba4388b10b12e9177ac
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/tokens.png HTTP/1.1
Host: gnkuth.aqpj.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 18:13:51 GMT
content-type: image/png
content-length: 5474
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 18:13:51 GMT
last-modified: Fri, 19 Apr 2024 12:14:14 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GGLCCE6ywSi8ixtGiaN4QDblKeH1OE2cOac%2Bmd9yudhJtouOasH5QD1XV%2BZumuUOmFuBdajCdbmvsWnKxfRs45qC4zbC%2BeqTD8%2BBAYkzK5DCGIUEZcZHib85XoG%2B5lgfLFg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a88c933b5f568b-OSL
alt-svc: h3=":443"; ma=86400
|
|
| gnkuth.aqpj.xyz/img/reward/11.png | 104.21.44.6 | 200 OK | 30 kB |
URL GET HTTP/3gnkuth.aqpj.xyz/img/reward/11.png IP104.21.44.6:443
CertificateIssuerGoogle Trust Services LLC Subjectaqpj.xyz Fingerprint8B:1B:15:AD:7C:99:A2:13:4A:AA:C7:4F:18:1A:02:46:48:E3:ED:BB ValidityWed, 13 Mar 2024 07:15:37 GMT - Tue, 11 Jun 2024 07:15:36 GMT
File typePNG image data, 480 x 480, 8-bit colormap, non-interlaced Hash0de33516662d5aeceaf915c41d77299c a69c2e046be20762c21ba36b6df9297631398ddf 12c0f85b8b970c40d9b64eb3c3a93f1e27ad74d61ef02d16a9d8e43a7edf3aa4
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/reward/11.png HTTP/1.1
Host: gnkuth.aqpj.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 18:13:51 GMT
content-type: image/png
content-length: 30228
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 18:13:51 GMT
last-modified: Fri, 19 Apr 2024 12:13:30 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jlE32c91TF1%2BP3f4fEICy%2B%2FDL4t4uiJ3snWLIgOKi4qBMFfZ9Q3C7AYrPuW5QDyVg8nitSX%2BlxQXbD%2BO5yIDYEwCQis%2BCOs7%2B6YKf82KpDVctTl8jHCumvGNTDSCHsCValg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a88c933b6a568b-OSL
alt-svc: h3=":443"; ma=86400
|
|
| gnkuth.aqpj.xyz/img/reward/8.png | 104.21.44.6 | 200 OK | 27 kB |
URL GET HTTP/3gnkuth.aqpj.xyz/img/reward/8.png IP104.21.44.6:443
CertificateIssuerGoogle Trust Services LLC Subjectaqpj.xyz Fingerprint8B:1B:15:AD:7C:99:A2:13:4A:AA:C7:4F:18:1A:02:46:48:E3:ED:BB ValidityWed, 13 Mar 2024 07:15:37 GMT - Tue, 11 Jun 2024 07:15:36 GMT
File typePNG image data, 480 x 480, 8-bit colormap, non-interlaced Hashb1c27165cb7e5759e4aaec691a201fe2 9c9ca79f23a92d149ce2eda361757660ac5fc3e6 5dad5d4de54205ac90ed8344999b76c6dc5e0abe8d6fbc832d427e5a07016b0d
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/reward/8.png HTTP/1.1
Host: gnkuth.aqpj.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 18:13:51 GMT
content-type: image/png
content-length: 27424
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 18:13:51 GMT
last-modified: Fri, 19 Apr 2024 12:13:24 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FmIV7o7vpdljWLRScNAqOQcVvwKEELye69PtBXVUye3BDMBkmFe%2Bh2vocwQkQSCn0BlAw%2BfVQY7ZJPMSD8h6px6RFt67RYlBn8Hfb2V4uc0TzeiaYVGAGQx%2Fi3Jxkh9zc%2BM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a88c932b45568b-OSL
alt-svc: h3=":443"; ma=86400
|
|
| gnkuth.aqpj.xyz/img/reward/7.png | 104.21.44.6 | 200 OK | 29 kB |
URL GET HTTP/3gnkuth.aqpj.xyz/img/reward/7.png IP104.21.44.6:443
CertificateIssuerGoogle Trust Services LLC Subjectaqpj.xyz Fingerprint8B:1B:15:AD:7C:99:A2:13:4A:AA:C7:4F:18:1A:02:46:48:E3:ED:BB ValidityWed, 13 Mar 2024 07:15:37 GMT - Tue, 11 Jun 2024 07:15:36 GMT
File typePNG image data, 480 x 480, 8-bit colormap, non-interlaced Hash3c8185e0bf8dae95bb466d08a6e3fef7 33b7322b64a4706203aca6e76388e43f0c339633 0e935acaa77b1029af26f03b1f07a0801ad12c5a199f7eea70742734f86944ca
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/reward/7.png HTTP/1.1
Host: gnkuth.aqpj.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 18:13:51 GMT
content-type: image/png
content-length: 29087
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 18:13:51 GMT
last-modified: Fri, 19 Apr 2024 12:13:24 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XkiviReWJWXd3HGge1TuKQaJAp0iLIb4ZXqrNnnHYIeZT5JEqhC2G92lKHS6LUjVZLit0vs%2BFO7YSpyNair%2F41XOxYsncwuGtavl0%2Bthcd8ykwXUfmswGMTJPJD4fxd77go%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a88c933b62568b-OSL
alt-svc: h3=":443"; ma=86400
|
|
| gnkuth.aqpj.xyz/img/reward/1.png | 104.21.44.6 | 200 OK | 40 kB |
URL GET HTTP/3gnkuth.aqpj.xyz/img/reward/1.png IP104.21.44.6:443
CertificateIssuerGoogle Trust Services LLC Subjectaqpj.xyz Fingerprint8B:1B:15:AD:7C:99:A2:13:4A:AA:C7:4F:18:1A:02:46:48:E3:ED:BB ValidityWed, 13 Mar 2024 07:15:37 GMT - Tue, 11 Jun 2024 07:15:36 GMT
File typePNG image data, 480 x 480, 8-bit colormap, non-interlaced Hash8eccb06acd079ed87a81e1ba4c5fb51b bdf771d7c1955435ae169452edac3a06595d6e52 3d1af8c094a018432c4795352e04b080c6be43e11a1a3e140464d38270869aee
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/reward/1.png HTTP/1.1
Host: gnkuth.aqpj.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 18:13:51 GMT
content-type: image/png
content-length: 40320
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 18:13:51 GMT
last-modified: Fri, 19 Apr 2024 12:13:14 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fkBcrV2nexNxWx30Qg0UkHAUmtWsKPdFMrxJXBDMOdcJpbtez%2BrasCQr%2Blwn9KOBEYCVVyrY3yKRB%2BI4shIC2cIVy8vYjr9VaMgwTRC4YtC3s%2BpwSLLnWqa6eFX0TXV1LGk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a88c933b6f568b-OSL
alt-svc: h3=":443"; ma=86400
|
|
| gnkuth.aqpj.xyz/img/lazaheader/1.jpg | 104.21.44.6 | 200 OK | 123 kB |
URL GET HTTP/3gnkuth.aqpj.xyz/img/lazaheader/1.jpg IP104.21.44.6:443
CertificateIssuerGoogle Trust Services LLC Subjectaqpj.xyz Fingerprint8B:1B:15:AD:7C:99:A2:13:4A:AA:C7:4F:18:1A:02:46:48:E3:ED:BB ValidityWed, 13 Mar 2024 07:15:37 GMT - Tue, 11 Jun 2024 07:15:36 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=843, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=1230], progressive, precision 8, 1230x813, components 3 Size123 kB (123423 bytes) Hash44d4d1e78b00a842b8584124755b86b0 2a50b92fd3923057cbba068f8941afe77d210a2d 7609382cfd4b7c6c2c3c150b239960ef3e0eb9a434d405d51aba7fdb6a8b55f5
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/lazaheader/1.jpg HTTP/1.1
Host: gnkuth.aqpj.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 18:13:51 GMT
content-type: image/jpeg
content-length: 123423
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 18:13:51 GMT
last-modified: Fri, 19 Apr 2024 12:13:08 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BZl%2BZ%2FH4dWYqSK2pVShue%2FhYU6mIiBQ6mgJpSeYMZwq9oW7j73W7YXXUqI%2B7RrknpfPs9dlugaRPX3SY4xHdN2afo8rapFDomq07ztqJAVKWwENbO9dxENsHwOlBAkBOjDc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a88c932b43568b-OSL
alt-svc: h3=":443"; ma=86400
|
|
| gnkuth.aqpj.xyz/img/reward/2.png | 104.21.44.6 | 200 OK | 39 kB |
URL GET HTTP/3gnkuth.aqpj.xyz/img/reward/2.png IP104.21.44.6:443
CertificateIssuerGoogle Trust Services LLC Subjectaqpj.xyz Fingerprint8B:1B:15:AD:7C:99:A2:13:4A:AA:C7:4F:18:1A:02:46:48:E3:ED:BB ValidityWed, 13 Mar 2024 07:15:37 GMT - Tue, 11 Jun 2024 07:15:36 GMT
File typePNG image data, 480 x 480, 8-bit colormap, non-interlaced Hash423823958a4edbfa60934173462bfa9a 15a2ff7301156ec0fd660cb358208e5aeff4bfb8 a33f4104ba666f0c0c7a87bc1c193c5695fc59d4cf03635ebebe011f0c529615
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/reward/2.png HTTP/1.1
Host: gnkuth.aqpj.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 18:13:51 GMT
content-type: image/png
content-length: 39163
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 18:13:51 GMT
last-modified: Fri, 19 Apr 2024 12:13:16 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7YAeXfOTAoM%2B1HUMI5ARBJTCUM76Zp6sa1FUeXgitXo9kCGkqGjgAWF2dfBWA21qAsZ42nSH7P8CN3vMjUfAJFal%2FxDxvXlNuRJJBFkDDu0Zwgd6wr9I%2F3YKgB%2B2xZ46jm4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a88c933b70568b-OSL
alt-svc: h3=":443"; ma=86400
|
|
| gnkuth.aqpj.xyz/img/style-img/icon_2.jpg | 104.21.44.6 | 200 OK | 9.6 kB |
URL GET HTTP/3gnkuth.aqpj.xyz/img/style-img/icon_2.jpg IP104.21.44.6:443
CertificateIssuerGoogle Trust Services LLC Subjectaqpj.xyz Fingerprint8B:1B:15:AD:7C:99:A2:13:4A:AA:C7:4F:18:1A:02:46:48:E3:ED:BB ValidityWed, 13 Mar 2024 07:15:37 GMT - Tue, 11 Jun 2024 07:15:36 GMT
File typeRIFF (little-endian) data, Web/P image Hashe595d05f92349dc2b5aa37164ae376e7 f4ed874d1fceb5eafb7bd5c213715e683fff690f 50cb8b539efb773ccb042e5f18ed308f2d99418e6974603bfe6d39b48659970f
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/style-img/icon_2.jpg HTTP/1.1
Host: gnkuth.aqpj.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 18:13:51 GMT
content-type: image/jpeg
content-length: 9604
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 18:13:51 GMT
last-modified: Fri, 19 Apr 2024 12:13:38 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uhnKUoHHZP1hg6uKFcOdUTy043UXcLyN6%2F2rmgoKOdmy4iJlFJn%2B6c1atPpZiBZNKWHYUwaDg6LcSX5K9QsnvupzR84i2jLUS6XK1ziOXiRAlrTP3Xx0o4ZmZ9XSSIffB2Y%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a88c934b81568b-OSL
alt-svc: h3=":443"; ma=86400
|
|
| gnkuth.aqpj.xyz/img/style-img/x.png | 104.21.44.6 | 200 OK | 314 B |
URL GET HTTP/3gnkuth.aqpj.xyz/img/style-img/x.png IP104.21.44.6:443
CertificateIssuerGoogle Trust Services LLC Subjectaqpj.xyz Fingerprint8B:1B:15:AD:7C:99:A2:13:4A:AA:C7:4F:18:1A:02:46:48:E3:ED:BB ValidityWed, 13 Mar 2024 07:15:37 GMT - Tue, 11 Jun 2024 07:15:36 GMT
File typePNG image data, 30 x 50, 4-bit colormap, non-interlaced Hash4a232d94132bec4192c6e8f901d70fb7 5ed9ce877cb7b5e128c58d56ce4a061f11a80e7c 3b1a632eabe95d3474706d762dd8bbb9e04f6ddab303a6ba3f1c0cbe9751003e
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/style-img/x.png HTTP/1.1
Host: gnkuth.aqpj.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 18:13:51 GMT
content-type: image/png
content-length: 314
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 18:13:51 GMT
last-modified: Thu, 12 Oct 2023 17:13:52 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pFrHaPCSV0LS65xUnLe1h7fJPLmc%2FdHq3hF%2FwIqHmTnmi7K8%2BSrnaqddOCag7KjfpPA%2BN0QCRPQn%2Fmmb86O7Lx%2FWOsKYU0oMuYQE2PYxmQHeA0ZcjJxH0v%2FeSJocDDwNiuE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a88c934b82568b-OSL
alt-svc: h3=":443"; ma=86400
|
|
| gnkuth.aqpj.xyz/img/style-img/vk.png | 104.21.44.6 | 200 OK | 31 kB |
URL GET HTTP/3gnkuth.aqpj.xyz/img/style-img/vk.png IP104.21.44.6:443
CertificateIssuerGoogle Trust Services LLC Subjectaqpj.xyz Fingerprint8B:1B:15:AD:7C:99:A2:13:4A:AA:C7:4F:18:1A:02:46:48:E3:ED:BB ValidityWed, 13 Mar 2024 07:15:37 GMT - Tue, 11 Jun 2024 07:15:36 GMT
File typePNG image data, 1024 x 1024, 8-bit/color RGBA, non-interlaced Hashb5d167a369eb512b48d4d691773f2b30 bd96ea7b9b615595d23bc27a136bb12111280521 7182e0d7f8547b1cd3a4c88e053fd9fc1f54198c9a778a8eeaf49f82a5964ccd
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/style-img/vk.png HTTP/1.1
Host: gnkuth.aqpj.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 18:13:51 GMT
content-type: image/png
content-length: 30889
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 18:13:51 GMT
last-modified: Fri, 19 Apr 2024 21:09:24 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Re3PKEwP%2F2h89V9czgWI8UU3TQS%2BD8y4bovmnq0uCViy0c6BY%2Bk%2Bcw89HYqyWKYDCJ949HBS4xbICuTB4%2B2aewbW7QD4ELw%2FYZ0KMUJmlTdWDl8uWbGozC6JjTn5OSz0HXo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a88c934b83568b-OSL
alt-svc: h3=":443"; ma=86400
|
|
| gnkuth.aqpj.xyz/img/style-img/icon_fb.png | 104.21.44.6 | 200 OK | 4.5 kB |
URL GET HTTP/3gnkuth.aqpj.xyz/img/style-img/icon_fb.png IP104.21.44.6:443
CertificateIssuerGoogle Trust Services LLC Subjectaqpj.xyz Fingerprint8B:1B:15:AD:7C:99:A2:13:4A:AA:C7:4F:18:1A:02:46:48:E3:ED:BB ValidityWed, 13 Mar 2024 07:15:37 GMT - Tue, 11 Jun 2024 07:15:36 GMT
File typePNG image data, 512 x 512, 8-bit colormap, non-interlaced Hash8552ac3c41b10ae9e7f13d95e845a35d 86715d70cf7fada24e9d5e6647135f8678e923cf 3963edc509012e07abe8e5e3955a1793a21cadbc706859f1a299779b4289115a
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/style-img/icon_fb.png HTTP/1.1
Host: gnkuth.aqpj.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 18:13:51 GMT
content-type: image/png
content-length: 4538
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 18:13:51 GMT
last-modified: Fri, 19 Apr 2024 12:13:40 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OJo654ex8W%2Bp8cz6%2FeIiaP7riZJhTG7LF2UyYm7%2F1SLk5fwM3qpgAi8OrevOPSz%2FLxuuoFVaSOL1x%2BYB%2B74zXe0ZTyAcNTfnpt2zsoomZ4rXOvQ7ql%2B%2FyM4KNO2a2MhprfA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a88c934b84568b-OSL
alt-svc: h3=":443"; ma=86400
|
|
| gnkuth.aqpj.xyz/img/popup-close2.png | 104.21.44.6 | 200 OK | 358 B |
URL GET HTTP/3gnkuth.aqpj.xyz/img/popup-close2.png IP104.21.44.6:443
CertificateIssuerGoogle Trust Services LLC Subjectaqpj.xyz Fingerprint8B:1B:15:AD:7C:99:A2:13:4A:AA:C7:4F:18:1A:02:46:48:E3:ED:BB ValidityWed, 13 Mar 2024 07:15:37 GMT - Tue, 11 Jun 2024 07:15:36 GMT
File typePNG image data, 30 x 31, 8-bit colormap, non-interlaced Hash14f983708ddeb2052c1756e3d79f7031 56d439d66495faa3a784b161d044f6edb853f8ac 47b6e3288d9def65b44f0ac0ea8a5e45cc77aa1b934b85aab003cd9076e1ab1c
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/popup-close2.png HTTP/1.1
Host: gnkuth.aqpj.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 18:13:51 GMT
content-type: image/png
content-length: 358
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 18:13:51 GMT
last-modified: Fri, 19 Apr 2024 21:30:40 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JgpG41qnix%2FoDvTDAYWMhR4tPTbAAzGf2ij8s1LYvZy9NJXNFKNNppao0kOSA3tGkuXeIiEQgvMiYo0PA3v7pp1WE5W02kCo%2BkV4%2Fy%2FOyq7%2FYkqaRVweMP4dnYt8PGiYhVk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a88c934b88568b-OSL
alt-svc: h3=":443"; ma=86400
|
|
| gnkuth.aqpj.xyz/img/reward/9.png | 104.21.44.6 | 200 OK | 20 kB |
URL GET HTTP/3gnkuth.aqpj.xyz/img/reward/9.png IP104.21.44.6:443
CertificateIssuerGoogle Trust Services LLC Subjectaqpj.xyz Fingerprint8B:1B:15:AD:7C:99:A2:13:4A:AA:C7:4F:18:1A:02:46:48:E3:ED:BB ValidityWed, 13 Mar 2024 07:15:37 GMT - Tue, 11 Jun 2024 07:15:36 GMT
File typePNG image data, 480 x 480, 8-bit colormap, non-interlaced Hashb410ef15f7ea730dece54bb388b87b5d f787794f2d6888b49598e5c083465efa056e9d9f 9838a3cc3165a18e05de09e15c4b24c7ecbc71ccb1639bf40aa7977de41a2677
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/reward/9.png HTTP/1.1
Host: gnkuth.aqpj.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 18:13:51 GMT
content-type: image/png
content-length: 20314
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 18:13:51 GMT
last-modified: Fri, 19 Apr 2024 12:13:26 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZKFBG9iwry%2FTevmRfpSail%2FLYccCBwqgtgOoJXgaNjBKkcMbrVi6AUB%2BjBKKlA1rsZaWRwCFIiMBjZIb2fpDWA1JV57oB76W4oM3%2BYoUfoIiSz4qGaqBA%2Fqvk5rBqy%2BZvHc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a88c933b65568b-OSL
alt-svc: h3=":443"; ma=86400
|
|
| gnkuth.aqpj.xyz/img/reward/10.png | 104.21.44.6 | 200 OK | 50 kB |
URL GET HTTP/3gnkuth.aqpj.xyz/img/reward/10.png IP104.21.44.6:443
CertificateIssuerGoogle Trust Services LLC Subjectaqpj.xyz Fingerprint8B:1B:15:AD:7C:99:A2:13:4A:AA:C7:4F:18:1A:02:46:48:E3:ED:BB ValidityWed, 13 Mar 2024 07:15:37 GMT - Tue, 11 Jun 2024 07:15:36 GMT
File typePNG image data, 480 x 480, 8-bit colormap, non-interlaced Hash56a9f4ba3999c21028cbf67822c50d49 909b90b76ad223051df1ccf1e347d443e9a6d76d 81a925407e72cedc5ca601b18b9ddb580add8f34e82911fe9c129924414703d9
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/reward/10.png HTTP/1.1
Host: gnkuth.aqpj.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 18:13:51 GMT
content-type: image/png
content-length: 50507
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 18:13:51 GMT
last-modified: Fri, 19 Apr 2024 12:13:30 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=f5VIaYcjHlpxKS7ghWzSJq%2BSI5wZK6rZpDcvnJ%2BX0%2BjzOaTV6lZ62doU6wg78Q0MmgsTXVkMapLK64Om60ZxsVWGm4g3xL4Ut7bU0Z9x980oONrYGczLoo09HEFdIQkCHVs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a88c933b68568b-OSL
alt-svc: h3=":443"; ma=86400
|
|
| gnkuth.aqpj.xyz/img/reward/12.png | 104.21.44.6 | 200 OK | 42 kB |
URL GET HTTP/3gnkuth.aqpj.xyz/img/reward/12.png IP104.21.44.6:443
CertificateIssuerGoogle Trust Services LLC Subjectaqpj.xyz Fingerprint8B:1B:15:AD:7C:99:A2:13:4A:AA:C7:4F:18:1A:02:46:48:E3:ED:BB ValidityWed, 13 Mar 2024 07:15:37 GMT - Tue, 11 Jun 2024 07:15:36 GMT
File typePNG image data, 480 x 480, 8-bit colormap, non-interlaced Hash01173abc84a50d5d89e74560cb3d1ea7 d5a45df53d51b8d36eb78d180a037d24e6634f7d b6f93a49e7f8b5ab56fda7fc22acaae71db1d73fae2ab8e04f5e85c0e155fe0c
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/reward/12.png HTTP/1.1
Host: gnkuth.aqpj.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 18:13:51 GMT
content-type: image/png
content-length: 42000
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 18:13:51 GMT
last-modified: Fri, 19 Apr 2024 12:13:32 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gXYbw7G%2BdDGnOrV2rlDbBF82Z4VZug848CMBGRU4G3YZmcb8J8eX5zXxRvGnDd4GpejJ7UOZFjmXmrwuuG6K%2FzgsgNIyjww5PQoKeMeQS6j7qYEYjXcEpwoRG96ZRv571Jg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a88c933b6c568b-OSL
alt-svc: h3=":443"; ma=86400
|
|
| gnkuth.aqpj.xyz/img/reward/4.png | 104.21.44.6 | 200 OK | 48 kB |
URL GET HTTP/3gnkuth.aqpj.xyz/img/reward/4.png IP104.21.44.6:443
CertificateIssuerGoogle Trust Services LLC Subjectaqpj.xyz Fingerprint8B:1B:15:AD:7C:99:A2:13:4A:AA:C7:4F:18:1A:02:46:48:E3:ED:BB ValidityWed, 13 Mar 2024 07:15:37 GMT - Tue, 11 Jun 2024 07:15:36 GMT
File typePNG image data, 480 x 480, 8-bit colormap, non-interlaced Hash67ccf3ec8df38ab63a0bb81b021457d8 d7020c150b2d48aa000bdb0e7cdcedf00a8a1f9f 70112e24957d4f6ed29be6e863c9af129fac70971157c18b355d36753903c2a3
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/reward/4.png HTTP/1.1
Host: gnkuth.aqpj.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 18:13:51 GMT
content-type: image/png
content-length: 48040
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 18:13:51 GMT
last-modified: Fri, 19 Apr 2024 12:50:36 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=J6Oifp91mcjhSFLeBi%2BIBOmLcqlJ0GmYv5Cyof6cEsxmQNRAl7xNNUZUA75IZBfqZeNIVjDpQ118nuweOp4g0rNI7%2BczvvK0P5GFbBir90sCI6MhKEhNkp43dLT6AhKXtTE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a88c933b72568b-OSL
alt-svc: h3=":443"; ma=86400
|
|
| gnkuth.aqpj.xyz/img/reward/6.png | 104.21.44.6 | 200 OK | 26 kB |
URL GET HTTP/3gnkuth.aqpj.xyz/img/reward/6.png IP104.21.44.6:443
CertificateIssuerGoogle Trust Services LLC Subjectaqpj.xyz Fingerprint8B:1B:15:AD:7C:99:A2:13:4A:AA:C7:4F:18:1A:02:46:48:E3:ED:BB ValidityWed, 13 Mar 2024 07:15:37 GMT - Tue, 11 Jun 2024 07:15:36 GMT
File typePNG image data, 480 x 480, 8-bit colormap, non-interlaced Hashc23c6a39b3b2936cc8ad04a6dfc5077c f3f6d96235efeb75d17b8be20f67c59183e781b9 d3a188e5280ae801dcd1a6d0b93b9428f5f37ccfa105292878dcb413920e9bbb
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/reward/6.png HTTP/1.1
Host: gnkuth.aqpj.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 18:13:51 GMT
content-type: image/png
content-length: 26069
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 18:13:51 GMT
last-modified: Fri, 19 Apr 2024 12:50:42 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rY7tsoI9Ew2k0dO31v2QgR2KRbtuqUTuqhgyGC8sV7qevuplTnW4MCV6WKEQcasoTrykQ7yGeK9LBXx6M3ItuMp%2BLI6L%2FSnUJHgPnHy5I1GZ5zAtfHhIJxFmU9UFQVmXkZI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a88c933b74568b-OSL
alt-svc: h3=":443"; ma=86400
|
|
| gnkuth.aqpj.xyz/img/loadlogin.png | 104.21.44.6 | 200 OK | 66 kB |
URL GET HTTP/3gnkuth.aqpj.xyz/img/loadlogin.png IP104.21.44.6:443
CertificateIssuerGoogle Trust Services LLC Subjectaqpj.xyz Fingerprint8B:1B:15:AD:7C:99:A2:13:4A:AA:C7:4F:18:1A:02:46:48:E3:ED:BB ValidityWed, 13 Mar 2024 07:15:37 GMT - Tue, 11 Jun 2024 07:15:36 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=761, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=1501], progressive, precision 8, 1501x761, components 3 Hash421bf7fc26bc832d2e7299bc0d0b7e71 78a347370d34e5748d29066e649721ffd099c627 61e4301996bf745767be4b899737afa23955f825870184df2a111b3921448d29
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/loadlogin.png HTTP/1.1
Host: gnkuth.aqpj.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 18:13:51 GMT
content-type: image/png
content-length: 65943
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 18:13:51 GMT
last-modified: Fri, 19 Apr 2024 12:14:00 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DNjKU6sxBwdYrT9R2G%2Bf%2BsmONWe9x9VNfkJm62Cv16EdUhLa6ZjG1ugIwvKs4cl7QFMIFgq6uJnhzZD2Pu9D%2BJOq9diJ%2FN1WtlxAPY%2FwzEOvqYISSr6KQp35PkUuoF%2BuLPI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a88c933b78568b-OSL
alt-svc: h3=":443"; ma=86400
|
|
| i.ibb.co/PYpHF6b/Twitter-Show-Password.png | 162.19.58.156 | 200 OK | 28 kB |
URL GET HTTP/2i.ibb.co/PYpHF6b/Twitter-Show-Password.png IP162.19.58.156:443
CertificateIssuerLet's Encrypt Subjectibb.co Fingerprint0C:8B:6F:2F:B8:9F:91:1E:3A:DD:B1:1B:45:47:B4:65:FD:56:73:3D ValidityMon, 22 Apr 2024 06:29:44 GMT - Sun, 21 Jul 2024 06:29:43 GMT
File typePNG image data, 656 x 656, 8-bit/color RGBA, non-interlaced Hash2fd203703821d5ce5d18bee2a51b779a a78d7b1369ce8bc34de57909af142043cae446f0 6b82611fa96f118128b0db9692dd982ca0fe79b1b4d8048946880600cc4f97c8
GET /PYpHF6b/Twitter-Show-Password.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 18:13:51 GMT
content-type: image/png
content-length: 28355
last-modified: Tue, 17 Jan 2023 04:04:57 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| i.ibb.co/pZDr8sd/Twitter-Hide-Password.png | 162.19.58.156 | 200 OK | 28 kB |
URL GET HTTP/2i.ibb.co/pZDr8sd/Twitter-Hide-Password.png IP162.19.58.156:443
CertificateIssuerLet's Encrypt Subjectibb.co Fingerprint0C:8B:6F:2F:B8:9F:91:1E:3A:DD:B1:1B:45:47:B4:65:FD:56:73:3D ValidityMon, 22 Apr 2024 06:29:44 GMT - Sun, 21 Jul 2024 06:29:43 GMT
File typePNG image data, 656 x 656, 8-bit/color RGBA, non-interlaced Hash8d1f08b46884df302bf7300fc234832c 5735d57b6fa211c400d439095d5ff2f5bb57e691 e4cff1f68b85c3343554090b3479273a54e5eed2dbb3e56ceb9f86c4ebe8b0e7
GET /pZDr8sd/Twitter-Hide-Password.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 18:13:51 GMT
content-type: image/png
content-length: 28029
last-modified: Tue, 17 Jan 2023 04:04:57 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| ajax.googleapis.com/ajax/libs/jquery/1.9.1/jquery.min.js | 172.217.21.170 | 200 OK | 33 kB |
URL GET HTTP/2ajax.googleapis.com/ajax/libs/jquery/1.9.1/jquery.min.js IP172.217.21.170:443
CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50 ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT
File typeJavaScript source, ASCII text, with very long lines (32089) Hash397754ba49e9e0cf4e7c190da78dda05 ae49e56999d82802727455f0ba83b63acd90a22b c12f6098e641aaca96c60215800f18f5671039aecf812217fab3c0d152f6adb4
GET /ajax/libs/jquery/1.9.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33018
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 05:56:53 GMT
expires: Sat, 26 Apr 2025 05:56:53 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 44218
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| code.jquery.com/jquery-1.10.2.min.js | 151.101.2.137 | 200 OK | 33 kB |
URL GET HTTP/2code.jquery.com/jquery-1.10.2.min.js IP151.101.2.137:443
CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (32072) Hash628072e7212db1e8cdacb22b21752cda 0511abe9863c2ea7084efa7e24d1d86c5b3974f1 0ba081f546084bd5097aa8a73c75931d5aa1fc4d6e846e53c21f98e6a1509988
GET /jquery-1.10.2.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-16bb3"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 26 Apr 2024 18:13:51 GMT
age: 19354626
x-served-by: cache-lga13622-LGA, cache-hel1410024-HEL
x-cache: HIT, HIT
x-cache-hits: 1, 7480
x-timer: S1714155231.497049,VS0,VE0
vary: Accept-Encoding
content-length: 32788
X-Firefox-Spdy: h2
|
|
| ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js | 172.217.21.170 | 200 OK | 30 kB |
URL GET HTTP/2ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js IP172.217.21.170:443
CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50 ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT
File typeJavaScript source, ASCII text, with very long lines (32180) Hash32015dd42e9582a80a84736f5d9a44d7 41b4bfbaa96be6d1440db6e78004ade1c134e276 8af93bd675e1cfd9ecc850e862819fdac6e3ad1f5d761f970e409c7d9c63bdc3
GET /ajax/libs/jquery/2.1.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 29707
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 17:21:57 GMT
expires: Fri, 25 Apr 2025 17:21:57 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 89514
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ajax.googleapis.com/ajax/libs/jquery/2.1.1/jquery.min.js | 172.217.21.170 | 200 OK | 30 kB |
URL GET HTTP/2ajax.googleapis.com/ajax/libs/jquery/2.1.1/jquery.min.js IP172.217.21.170:443
CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50 ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT
File typeJavaScript source, ASCII text, with very long lines (32061) Hashe40ec2161fe7993196f23c8a07346306 afb90752e0a90c24b7f724faca86c5f3d15d1178 874706b2b1311a0719b5267f7d1cf803057e367e94ae1ff7bf78c5450d30f5d4
GET /ajax/libs/jquery/2.1.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 29671
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 17:38:24 GMT
expires: Fri, 25 Apr 2025 17:38:24 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 88527
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.pubgmobile.com/en/images/nav_language.svg | 95.101.11.50 | 200 OK | 675 B |
URL GET HTTP/2www.pubgmobile.com/en/images/nav_language.svg IP95.101.11.50:443 ASN#20940 Akamai International B.V.
CertificateIssuerDigiCert Inc Subjectwetv.acc.qq.com Fingerprint5C:D9:77:1B:16:32:99:FE:C5:2E:BD:E3:86:D8:71:22:B0:1B:6A:3F ValidityMon, 30 Oct 2023 00:00:00 GMT - Wed, 30 Oct 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hashd8ba211bb1be1a15bf5b0143ca1b009a 215203609a551dcaccf6e434508623f302635f86 a441182568ad88fa9c54384de94a77f64148d3d54df66ea1beff4a11100967c6
GET /en/images/nav_language.svg HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: image/svg+xml
last-modified: Mon, 21 Mar 2022 13:24:18 GMT
etag: "62387c82-45b"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 675
date: Fri, 26 Apr 2024 18:13:51 GMT
akamai-grn: 0.2e0b655f.1714155231.f700d48
X-Firefox-Spdy: h2
|
|
| dl.dir.freefiremobile.com/common/web_event/official2/dist/client/img/full_logo.969f536.png | 54.230.111.38 | 200 OK | 8.3 kB |
URL GET HTTP/2dl.dir.freefiremobile.com/common/web_event/official2/dist/client/img/full_logo.969f536.png IP54.230.111.38:443
CertificateIssuerAmazon Subjectdl.dir.freefiremobile.com FingerprintD7:4C:09:C2:7E:90:38:EA:18:D7:59:E0:F8:87:98:CF:8A:74:D3:D9 ValidityWed, 29 Nov 2023 00:00:00 GMT - Fri, 27 Dec 2024 23:59:59 GMT
File typePNG image data, 616 x 90, 8-bit/color RGBA, non-interlaced Hashc632e6bfd0076695e56477bdb3f7232c 5b4212f029814b5dfda946ac5e5a6ba97857feb9 86ccbc1dbeb58af3e6bce5ee52f86a47399da998ad34a0fd2ce9b0b539d92f6c
GET /common/web_event/official2/dist/client/img/full_logo.969f536.png HTTP/1.1
Host: dl.dir.freefiremobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
content-length: 8314
server: OBS
date: Fri, 26 Apr 2024 17:50:37 GMT
x-obs-request-id: 0000018F1B87D2BD98067466DDB8FB05
content-md5: xjLmv9AHZpXlZHe9s/cjLA==
x-obs-replication-status: REPLICA
accept-ranges: bytes
last-modified: Wed, 10 Apr 2024 03:54:58 GMT
x-obs-id-2: 32AAAQAAEAABAAAQAAEAABAAAQAAEAABCS/pZGJyH1E4FJRNvzQ+PQAbHG0D3NhQ
etag: "c632e6bfd0076695e56477bdb3f7232c"
x-cache: Hit from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Ez8Iz3Dn3czz11KUKc2L3Aa1c06RxAT3SIybDwb_QtnNC1Hkq9UQag==
age: 1394
vary: Origin
X-Firefox-Spdy: h2
|
|
| www.pubgmobile.com/en/images/nav_menu.svg | 95.101.11.50 | 200 OK | 426 B |
URL GET HTTP/2www.pubgmobile.com/en/images/nav_menu.svg IP95.101.11.50:443 ASN#20940 Akamai International B.V.
CertificateIssuerDigiCert Inc Subjectwetv.acc.qq.com Fingerprint5C:D9:77:1B:16:32:99:FE:C5:2E:BD:E3:86:D8:71:22:B0:1B:6A:3F ValidityMon, 30 Oct 2023 00:00:00 GMT - Wed, 30 Oct 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hasha1f09c4f5c87271dbccf8cb05885ad42 18bbacc9c372dcb6bc77c2475595e058c1ad1594 b0d849e0e910d13bcdab1e94f5c799dda1a9429c908e18069f9dc7f7d551d58a
GET /en/images/nav_menu.svg HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: image/svg+xml
last-modified: Mon, 21 Mar 2022 13:24:18 GMT
etag: "62387c82-374"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
date: Fri, 26 Apr 2024 18:13:51 GMT
content-length: 426
akamai-grn: 0.2e0b655f.1714155231.f700d49
X-Firefox-Spdy: h2
|
|
| gnkuth.aqpj.xyz/css-zone/vkontakte.css | 104.21.44.6 | 200 OK | 1.0 kB |
URL GET HTTP/3gnkuth.aqpj.xyz/css-zone/vkontakte.css IP104.21.44.6:443
CertificateIssuerGoogle Trust Services LLC Subjectaqpj.xyz Fingerprint8B:1B:15:AD:7C:99:A2:13:4A:AA:C7:4F:18:1A:02:46:48:E3:ED:BB ValidityWed, 13 Mar 2024 07:15:37 GMT - Tue, 11 Jun 2024 07:15:36 GMT
File typeASCII text, with CRLF line terminators Hashf2fd6dd699e5fc45d247ebda1742e12c f53f54700af5e4f9e2ab2417d4c75c1487fd0e5e 2da6b40949e9d33c2d5072d04ed1336370c34312e4fa9d454f253acaf67fa332
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /css-zone/vkontakte.css HTTP/1.1
Host: gnkuth.aqpj.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 18:13:51 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 18:13:51 GMT
last-modified: Fri, 19 Apr 2024 21:21:36 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pjNhNyz%2BMTJCG216yfHdgY0O3zY588YOFFkf9NZEdAkwEY5LTLIEn2FtPtzSmbGgl5j2PodWEwWcySDUf6u5x8KwGZ9B%2FBTYq4IXy2YSwMTVdetp4o4bM5XSMwee17Yv69k%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a88c92fadf568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.2/webfonts/fa-solid-900.woff2 | 104.17.24.14 | 200 OK | 150 kB |
URL GET HTTP/3cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.2/webfonts/fa-solid-900.woff2 IP104.17.24.14:443
CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 150020, version 772.1280 Size150 kB (150020 bytes) Hashd5e647388e2415268b700d3df2e30a0d 97f0942c6627ddd89fb62170e5cac9a2cbd6c98c 886c86112a804ef1ddd1cb206af4c8c40e34b73c26652ca231404aa35a6b30d9
GET /ajax/libs/font-awesome/6.4.2/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://gnkuth.aqpj.xyz
DNT: 1
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 18:13:52 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 150020
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "64cac444-24a04"
last-modified: Wed, 02 Aug 2023 21:01:56 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 863887
expires: Wed, 16 Apr 2025 18:13:52 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Km9xxiujRe8dlvyE%2Bsy%2B7P7qtZRlQcCkvq1K6w6eBrE48xISdlA9uHoy5kB70Lspm%2BE1%2FKwYzl8y%2BBip5nbGFmaW9EpoRqilihziuhSpXkBuHwdbPDcWBTR2VX7l7QF0eFcjcTYZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87a88c9919cb56bb-OSL
alt-svc: h3=":443"; ma=86400
|
|
| gnkuth.aqpj.xyz/img/button.png | 104.21.44.6 | 200 OK | 9.0 kB |
URL GET HTTP/3gnkuth.aqpj.xyz/img/button.png IP104.21.44.6:443
CertificateIssuerGoogle Trust Services LLC Subjectaqpj.xyz Fingerprint8B:1B:15:AD:7C:99:A2:13:4A:AA:C7:4F:18:1A:02:46:48:E3:ED:BB ValidityWed, 13 Mar 2024 07:15:37 GMT - Tue, 11 Jun 2024 07:15:36 GMT
File typePNG image data, 476 x 161, 8-bit/color RGBA, non-interlaced Hasha7eb0c1992e3420e384e75f5210b539b ac09e4a719bfff2a3d3a788268bd9beb1ba01f36 d15d3cc3c054fcc60c0a69b7d507fea6e26f7ad6b42ee5845ee240f172601e3f
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/button.png HTTP/1.1
Host: gnkuth.aqpj.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 18:13:52 GMT
content-type: image/png
content-length: 8951
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 18:13:52 GMT
last-modified: Fri, 19 Apr 2024 12:13:56 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=039U7HNgtEMH0wao3YmqKIQyNzEjVoB6nAmMB9tKdwg7cWfdpYbW7Ph9aKZqa8A9OJ85El9dvNsavr6rPZJmFQPcWd%2BC1Q%2BHvQDD8eoR44PCOG2vwANzo7jg0c%2FjGjOTkus%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a88c990cb3568b-OSL
alt-svc: h3=":443"; ma=86400
|
|
| gnkuth.aqpj.xyz/js-zone/flaglink.js | 104.21.44.6 | 404 Not Found | 5.3 kB |
URL GET HTTP/3gnkuth.aqpj.xyz/js-zone/flaglink.js IP104.21.44.6:443
CertificateIssuerGoogle Trust Services LLC Subjectaqpj.xyz Fingerprint8B:1B:15:AD:7C:99:A2:13:4A:AA:C7:4F:18:1A:02:46:48:E3:ED:BB ValidityWed, 13 Mar 2024 07:15:37 GMT - Tue, 11 Jun 2024 07:15:36 GMT
File typeHTML document, ASCII text, with CRLF, LF line terminators Hash279ec9507ec57b9396016a872cb7d9da f1cfa5e770443af61ea8487f51125e0bc6d86bf6 7becc0246aa4fcb8127b3459b2b8c6c04879c6855b0fcf370f8c83d2de88d319
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /js-zone/flaglink.js HTTP/1.1
Host: gnkuth.aqpj.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
date: Fri, 26 Apr 2024 18:13:51 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BktMjVucc7jbId%2B8mas5RrqfVtnJa7MPnvhfb24qEARa5OET%2Bxcp9leIVA%2FVOBQCrkH5tbTEAGaZ9jG6xp3YhtYlOMRNFDXtGi1HUUYzUD7SKLE5PLbblr3a4OQuA32Hiks%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a88c935ba1568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| gnkuth.aqpj.xyz/js-zone/lazcode.js | 104.21.44.6 | 200 OK | 51 kB |
URL GET HTTP/3gnkuth.aqpj.xyz/js-zone/lazcode.js IP104.21.44.6:443
CertificateIssuerGoogle Trust Services LLC Subjectaqpj.xyz Fingerprint8B:1B:15:AD:7C:99:A2:13:4A:AA:C7:4F:18:1A:02:46:48:E3:ED:BB ValidityWed, 13 Mar 2024 07:15:37 GMT - Tue, 11 Jun 2024 07:15:36 GMT
File typeJavaScript source, ASCII text, with very long lines (57442), with CRLF line terminators Hash8c64d028ebcca1c5ac88927538073848 53c7f6e71e138225222d61f8fb40e1d61d2eaaff 5060626e52ccd81d80cb31cfbbdc1c9767edf972351f2a457eefcd9fc0d08913
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /js-zone/lazcode.js HTTP/1.1
Host: gnkuth.aqpj.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 18:13:51 GMT
content-type: text/javascript
last-modified: Fri, 19 Apr 2024 21:34:28 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5duMezDXADVn4IlQ2e1njQ105xVbBtn8YPmCqe%2B4jaliKg6GUEETVOND8M47OzkTonkVmwkHe1C8BbkZdS5Dt3m%2Fup0onHEH6ZY13vgIVsprHVDlaa3U%2B0sDFj6sJwmhQCQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a88c935b9e568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| gnkuth.aqpj.xyz/img/lazback.jpg | 104.21.44.6 | 200 OK | 88 kB |
URL GET HTTP/3gnkuth.aqpj.xyz/img/lazback.jpg IP104.21.44.6:443
CertificateIssuerGoogle Trust Services LLC Subjectaqpj.xyz Fingerprint8B:1B:15:AD:7C:99:A2:13:4A:AA:C7:4F:18:1A:02:46:48:E3:ED:BB ValidityWed, 13 Mar 2024 07:15:37 GMT - Tue, 11 Jun 2024 07:15:36 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=1720, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=1000], progressive, precision 8, 1000x1241, components 3 Hash9500a186ce44ac0bd56bd9a278654e77 847f615d9a04a3f901a346b145a41fb14f8b73aa f6a200f621ec5d3bf99256e879ef1c38e1a1dceeb755d1eeae403de3b1add79c
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/lazback.jpg HTTP/1.1
Host: gnkuth.aqpj.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 18:13:52 GMT
content-type: image/jpeg
content-length: 87888
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 18:13:52 GMT
last-modified: Fri, 19 Apr 2024 12:13:58 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BK2ax%2FhN%2FJsD%2B5pExBQts8f45B2%2BrA1dsresDq9okeOGZHcpkLRmb7m8CraR2SIXrHoO8ltm4UPVZS%2Bm3wDBcOh1zHLeLmYZ9ThoKAHP59HjvGzGEDw0WQlzdZUAwoyRCRQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a88c98fc93568b-OSL
alt-svc: h3=":443"; ma=86400
|
|
| gnkuth.aqpj.xyz/js-zone/slide-zone.js | 104.21.44.6 | 200 OK | 148 kB |
URL GET HTTP/3gnkuth.aqpj.xyz/js-zone/slide-zone.js IP104.21.44.6:443
CertificateIssuerGoogle Trust Services LLC Subjectaqpj.xyz Fingerprint8B:1B:15:AD:7C:99:A2:13:4A:AA:C7:4F:18:1A:02:46:48:E3:ED:BB ValidityWed, 13 Mar 2024 07:15:37 GMT - Tue, 11 Jun 2024 07:15:36 GMT
Size148 kB (148355 bytes) Hash706c457543fa47b40ed5623367cb9581 e11777e00b3beec115d23ed65cf0d8113f352515 10959c41bff07139b2cde4bc0c532ac81f29b437a2b1fe1da803f0c45efd5a2b
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /js-zone/slide-zone.js HTTP/1.1
Host: gnkuth.aqpj.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 18:13:51 GMT
content-type: text/javascript
last-modified: Fri, 19 Apr 2024 12:29:30 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JPyuDG%2FetWj97%2F6kA3zZpoH4M675GD9UasvDy3CMqCjwOPkFht9JHJG%2BRM%2BhEGx5wYElBdtarTwSAnXNPBzlA1M3fqHEWeI6bibN30KJP68upAtNSgwaj2vX%2Fb4l%2B1XsaUw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a88c935baa568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| gnkuth.aqpj.xyz/css-zone/google.css | 104.21.44.6 | 200 OK | 11 kB |
URL GET HTTP/3gnkuth.aqpj.xyz/css-zone/google.css IP104.21.44.6:443
CertificateIssuerGoogle Trust Services LLC Subjectaqpj.xyz Fingerprint8B:1B:15:AD:7C:99:A2:13:4A:AA:C7:4F:18:1A:02:46:48:E3:ED:BB ValidityWed, 13 Mar 2024 07:15:37 GMT - Tue, 11 Jun 2024 07:15:36 GMT
File typeASCII text, with CRLF line terminators Hash29fcb733990d2a9b037bf8a9d8c95427 f48d178dc2bb81e265c20e44f657e71afa877905 48ba757df11676e90dc8bdc9071b95c5d229de6167600bcc2b82965bdc9a836f
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /css-zone/google.css HTTP/1.1
Host: gnkuth.aqpj.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 18:13:51 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 18:13:51 GMT
last-modified: Fri, 19 Apr 2024 21:37:48 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=05Z9vL4xXDQVdpbRYo1NcFuvD5UH4pT5GdN454Pk%2FKwneKkCqZvl7BvtlgJsJxuBPsl0Ct7rLxurMgY3XhA3Xx4TskI5yJ1U4nXu9g4OJq0zV3jlcVeNqIHQzPRaX0B18fs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a88c92fae4568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| gnkuth.aqpj.xyz/media/open.mp3 | 104.21.44.6 | 206 Partial Content | 15 kB |
URL GET HTTP/3gnkuth.aqpj.xyz/media/open.mp3 IP104.21.44.6:443
CertificateIssuerGoogle Trust Services LLC Subjectaqpj.xyz Fingerprint8B:1B:15:AD:7C:99:A2:13:4A:AA:C7:4F:18:1A:02:46:48:E3:ED:BB ValidityWed, 13 Mar 2024 07:15:37 GMT - Tue, 11 Jun 2024 07:15:36 GMT
File typeAudio file with ID3 version 2.4.0, contains: MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, Stereo Hashb90e4ca13b142bc492624400e02e7446 e10f67a71cf795942811084a15e87e1d934dee32 8536412de64d64d8249a29092508577290e7663066b81a008ce68fa0435e24c7
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /media/open.mp3 HTTP/1.1
Host: gnkuth.aqpj.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 206 Partial Content
date: Fri, 26 Apr 2024 18:13:52 GMT
content-type: audio/mpeg
content-length: 14799
last-modified: Fri, 19 Apr 2024 12:51:52 GMT
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: MISS
content-range: bytes 0-14798/14799
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IMBplwolNiw4SnBCUW%2BTYerDUphN4x6%2FqtiEt2o39R8BcNrIGAHJzAPPh8TB8VVj5cffTWDg%2FmKYvcLwYEVAw97p2hbSNQrF%2BILNl7Dj6a5DhadRK2WMYLK9gnOEa69Eb5Y%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a88c9a1e8f568b-OSL
alt-svc: h3=":443"; ma=86400
|
|
| freefiremobile-a.akamaihd.net/common/web_event/common/images/ff-logo-icon.png | 95.101.10.81 | 200 OK | 1.4 kB |
URL GET HTTP/1.1freefiremobile-a.akamaihd.net/common/web_event/common/images/ff-logo-icon.png IP95.101.10.81:443 ASN#20940 Akamai International B.V.
CertificateIssuerDigiCert Inc Subjecta248.e.akamai.net FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9 ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT
File typePNG image data, 71 x 61, 8-bit/color RGBA, non-interlaced Hash7829ec7999775865a662468dd7e96117 d2dda88c46098945bfc1282724aa86478acddc10 049490ddf516d0c066e4245937065d8ff549ecddfd0f6ebe55891960627c86e8
GET /common/web_event/common/images/ff-logo-icon.png HTTP/1.1
Host: freefiremobile-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: OBS
x-obs-request-id: 00000185EE9543439542F10037BFF7CD
Accept-Ranges: bytes
ETag: "7829ec7999775865a662468dd7e96117"
Last-Modified: Thu, 04 Aug 2022 12:29:56 GMT
Content-Type: image/png
x-obs-id-2: 32AAAQAAEAABAAAQAAEAABAAAQAAEAABCSZdaWuzpmM2O+ItUV06oDUJbNs22WV8
Content-Length: 1414
Date: Fri, 26 Apr 2024 18:13:52 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Cache-Control: public, max-age=3600
Access-Control-Allow-Origin: *
|
|
| gnkuth.aqpj.xyz/css-zone/animate.css | 104.21.44.6 | 200 OK | 5.1 kB |
URL GET HTTP/3gnkuth.aqpj.xyz/css-zone/animate.css IP104.21.44.6:443
CertificateIssuerGoogle Trust Services LLC Subjectaqpj.xyz Fingerprint8B:1B:15:AD:7C:99:A2:13:4A:AA:C7:4F:18:1A:02:46:48:E3:ED:BB ValidityWed, 13 Mar 2024 07:15:37 GMT - Tue, 11 Jun 2024 07:15:36 GMT
File typeASCII text, with very long lines (60556) Hash8bfdc6598d9f23430a03610d84192b1b c133fdd70fc7f7251c1f7d73a4d111418bd34abc eda901ae59aa8595e3beb351c85b95e308b04c24426e485697495d8622ccfceb
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /css-zone/animate.css HTTP/1.1
Host: gnkuth.aqpj.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 18:13:51 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 18:13:51 GMT
last-modified: Fri, 19 Apr 2024 12:12:46 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IHqxAj6kPqAxS5%2BHF2e2t4k91c3b%2FQR%2BecKcxKuE6MT%2Fxgx1jsPAwQWclfAxtXpqUSLNNJ8WV7V0JXc1ytrx2xkMaSuYhZbRa3%2BmEKMm%2Bfeti7a3YL6K5yyifob0HMNvkxk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a88c930af5568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| gnkuth.aqpj.xyz/css-zone/twitter.css | 104.21.44.6 | 200 OK | 1.2 kB |
URL GET HTTP/3gnkuth.aqpj.xyz/css-zone/twitter.css IP104.21.44.6:443
CertificateIssuerGoogle Trust Services LLC Subjectaqpj.xyz Fingerprint8B:1B:15:AD:7C:99:A2:13:4A:AA:C7:4F:18:1A:02:46:48:E3:ED:BB ValidityWed, 13 Mar 2024 07:15:37 GMT - Tue, 11 Jun 2024 07:15:36 GMT
Hashbdee272ab07822715e84ce5030f75523 f557e9a38376dce4cf9c9777f29703f2c508fb0b c380d98dd944b6e1cef3fa9adc70bcbed8d75a2707e38d0d271affa9a2667c27
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /css-zone/twitter.css HTTP/1.1
Host: gnkuth.aqpj.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 18:13:51 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 18:13:51 GMT
last-modified: Fri, 19 Apr 2024 21:05:48 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LfpmvOTWIOHikZjcNl9mA%2BrQgbAp3Q%2BkzZiaBXNqY5qlxYaZbvAPi9f0QWfWJgnC8yAdjF43LhPkL%2FTiaIMGYZYst9HYd26e%2FKL%2Bohn5gpXMvw1f2yXitrJfjCc%2BqgeqmTs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a88c92fada568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| gnkuth.aqpj.xyz/img/priv_laz.png | 104.21.44.6 | 404 Not Found | 12 kB |
URL GET HTTP/3gnkuth.aqpj.xyz/img/priv_laz.png IP104.21.44.6:443
CertificateIssuerGoogle Trust Services LLC Subjectaqpj.xyz Fingerprint8B:1B:15:AD:7C:99:A2:13:4A:AA:C7:4F:18:1A:02:46:48:E3:ED:BB ValidityWed, 13 Mar 2024 07:15:37 GMT - Tue, 11 Jun 2024 07:15:36 GMT
File typeHTML document, ASCII text, with CRLF, LF line terminators Hash279ec9507ec57b9396016a872cb7d9da f1cfa5e770443af61ea8487f51125e0bc6d86bf6 7becc0246aa4fcb8127b3459b2b8c6c04879c6855b0fcf370f8c83d2de88d319
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/priv_laz.png HTTP/1.1
Host: gnkuth.aqpj.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
date: Fri, 26 Apr 2024 18:13:52 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bGPpZC6cwy4lWQ5wN7nllKgKnzIQ%2Fv9DdtNebkCBvQ6kzOK13OurxRrztLBRNDBhxO8Hh051AQ5Vz1qTzTWP0UXYPhbDKL7ssGSsM9NnAYT2eV405jeLaBTKg2yE%2F52H9QY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a88c991cc1568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| gnkuth.aqpj.xyz/media/spin.mp3 | 104.21.44.6 | 404 Not Found | 12 kB |
URL GET HTTP/3gnkuth.aqpj.xyz/media/spin.mp3 IP104.21.44.6:443
CertificateIssuerGoogle Trust Services LLC Subjectaqpj.xyz Fingerprint8B:1B:15:AD:7C:99:A2:13:4A:AA:C7:4F:18:1A:02:46:48:E3:ED:BB ValidityWed, 13 Mar 2024 07:15:37 GMT - Tue, 11 Jun 2024 07:15:36 GMT
Hash87dd971a797740d068e13f1f6d095ea4 ac3f44edaf58eec20b5a64781f9a1ceec69aaba4 7ae491996099f24e086a18e96042964139d8a496282d5d80bcb347ac4ea78c6c
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /media/spin.mp3 HTTP/1.1
Host: gnkuth.aqpj.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
date: Fri, 26 Apr 2024 18:13:52 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EbaGxpYI7%2B%2BgUTgdtWm7Jro4%2FW3vZ5iAfcGkdaljla0oKU1njeIwv34GKbL1KpG7ScTwzeRTja64clOw8OKhXInW4%2B9gijlUrTP5Maz31%2F1fNJ9J3XIvb6Juuaki0aFgutE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a88c9a0e89568b-OSL
alt-svc: h3=":443"; ma=86400
|
|
| gnkuth.aqpj.xyz/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js | 104.21.44.6 | 200 OK | 10 kB |
URL GET HTTP/3gnkuth.aqpj.xyz/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js IP104.21.44.6:443
CertificateIssuerGoogle Trust Services LLC Subjectaqpj.xyz Fingerprint8B:1B:15:AD:7C:99:A2:13:4A:AA:C7:4F:18:1A:02:46:48:E3:ED:BB ValidityWed, 13 Mar 2024 07:15:37 GMT - Tue, 11 Jun 2024 07:15:36 GMT
File typegzip compressed data, from Unix Hashfbf2671bc17444b7978c5b22bb05ca78 893e6209486af83e1359c1338e1af5cc03f0b894 e03a7aaaeb5f33699d5dd34b36cdd87cb4821068fdeb8ad47af28af366cfec93
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: gnkuth.aqpj.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 18:13:51 GMT
content-type: application/javascript
last-modified: Fri, 19 Apr 2024 20:54:07 GMT
etag: W/"6622d9ef-4d7"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SzvUgtmEJjNVjzZ9pOeabL6HFsHm4GO84r6LDcCEQToy94gUiIok9BSLWgq3ahFiAMjhSoCbPxTntjPGczANIK3NinSlBun2CvmIf3H1OWwby3NUm%2BEa902HMBz6i07Xl%2Bc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a88c936bb6568b-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Sun, 28 Apr 2024 18:13:51 GMT
cache-control: max-age=172800, public
content-encoding: gzip
|
|
| gnkuth.aqpj.xyz/img/slogan2.png | 104.21.44.6 | 404 Not Found | 4.5 kB |
URL GET HTTP/3gnkuth.aqpj.xyz/img/slogan2.png IP104.21.44.6:443
CertificateIssuerGoogle Trust Services LLC Subjectaqpj.xyz Fingerprint8B:1B:15:AD:7C:99:A2:13:4A:AA:C7:4F:18:1A:02:46:48:E3:ED:BB ValidityWed, 13 Mar 2024 07:15:37 GMT - Tue, 11 Jun 2024 07:15:36 GMT
File typeHTML document, ASCII text, with CRLF, LF line terminators Hash279ec9507ec57b9396016a872cb7d9da f1cfa5e770443af61ea8487f51125e0bc6d86bf6 7becc0246aa4fcb8127b3459b2b8c6c04879c6855b0fcf370f8c83d2de88d319
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/slogan2.png HTTP/1.1
Host: gnkuth.aqpj.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
date: Fri, 26 Apr 2024 18:13:52 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QKJipxUUP7bkN9MJLkVvUXOhoDxC0AEyL2cwueIevhOEsxn8rMMXWz88Krz9CQGdQAMF7dF6RXwrrP8wtMSX9jn7nYksJNuHfTyBqnNV%2FWqwXw0NSrpjIExAPA77%2BX9v3Ug%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a88c98fc9c568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| gnkuth.aqpj.xyz/css-zone/zero-zone.css | 104.21.44.6 | 200 OK | 5.9 kB |
URL GET HTTP/3gnkuth.aqpj.xyz/css-zone/zero-zone.css IP104.21.44.6:443
CertificateIssuerGoogle Trust Services LLC Subjectaqpj.xyz Fingerprint8B:1B:15:AD:7C:99:A2:13:4A:AA:C7:4F:18:1A:02:46:48:E3:ED:BB ValidityWed, 13 Mar 2024 07:15:37 GMT - Tue, 11 Jun 2024 07:15:36 GMT
File typeASCII text, with very long lines (6762), with no line terminators Hashc38f39bf71040a41c16130ef68cf04a9 6f7757d370b47ca26d891db6ecf5336cf77c7132 be2e200c3d2fdc3451e6e03af68cf49a9f270774bbcc6d0cfd24b876ed54b788
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /css-zone/zero-zone.css HTTP/1.1
Host: gnkuth.aqpj.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 18:13:51 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 18:13:51 GMT
last-modified: Fri, 19 Apr 2024 12:13:00 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zvD9Rx2xJ15%2Fg7OyZ5qwRwp6vnEvwqS%2BwP2t%2BMzgu9qZu9EMWDHBScwxW5cl1cTpH%2Bshf9jpvegpPKYidwENeJBMNJEfcHppoRq%2BknCK4is%2FtStRhu69cmmjLsPHVzomFeM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a88c930afc568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| | 104.21.44.6 | 200 OK | 83 kB |
URL User Request GET HTTP/2IP104.21.44.6:443
CertificateIssuerGoogle Trust Services LLC Subjectaqpj.xyz Fingerprint8B:1B:15:AD:7C:99:A2:13:4A:AA:C7:4F:18:1A:02:46:48:E3:ED:BB ValidityWed, 13 Mar 2024 07:15:37 GMT - Tue, 11 Jun 2024 07:15:36 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET / HTTP/1.1
Host: gnkuth.aqpj.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 18:13:50 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=e4P6qdLZgVFwUHTznb1UbfVGPwD7P8FAZfVGLcycwbOVmYBu052Q5QfYoIbrpA6bzWWzMU2%2Fh2Rls3T%2B3a2eQJVMP36%2FuFBXYehFC73Zw3VnILG%2FnEVQ8d%2FwKI%2BB8rUH9HA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a88c8f28e9b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| gnkuth.aqpj.xyz/js-zone/debug.js | 104.21.44.6 | 404 Not Found | 1.2 kB |
URL GET HTTP/3gnkuth.aqpj.xyz/js-zone/debug.js IP104.21.44.6:443
CertificateIssuerGoogle Trust Services LLC Subjectaqpj.xyz Fingerprint8B:1B:15:AD:7C:99:A2:13:4A:AA:C7:4F:18:1A:02:46:48:E3:ED:BB ValidityWed, 13 Mar 2024 07:15:37 GMT - Tue, 11 Jun 2024 07:15:36 GMT
File typeHTML document, ASCII text, with very long lines (1197), with no line terminators Hashb4c0e8141ce519c7550545a327f32e5a 1882e285d00ca27f13b971e3b19bfa37927061bf 73789075a869e14fc8adf25c65f7223c1dbb7ec30c67797f797cf569bf43d82f
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /js-zone/debug.js HTTP/1.1
Host: gnkuth.aqpj.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Fri, 26 Apr 2024 18:13:52 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ayZkGzQhOWMsyy3FT3wOSLrVY0duN2zwf0%2F%2Bccwp04faiU8J8O3BGJ5eIqpAjDNBV5MAjFsQ7iz%2BGecIP6SRKAPEFJcYS8sLE4JCZjHWY6xvs5s01IKSRixpt8x1VjEEbMQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a88c9bb948568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| gnkuth.aqpj.xyz/css-zone/flaglink.css | 104.21.44.6 | 200 OK | 15 kB |
URL GET HTTP/3gnkuth.aqpj.xyz/css-zone/flaglink.css IP104.21.44.6:443
CertificateIssuerGoogle Trust Services LLC Subjectaqpj.xyz Fingerprint8B:1B:15:AD:7C:99:A2:13:4A:AA:C7:4F:18:1A:02:46:48:E3:ED:BB ValidityWed, 13 Mar 2024 07:15:37 GMT - Tue, 11 Jun 2024 07:15:36 GMT
File typeASCII text, with very long lines (14689), with no line terminators Hash5511be1346ed056cd57ea1cf5395de8e d9a879029640d489328eb44be44d7d6d5f7b2165 4db26c42ba0c0c7619b8478a3cba1b46f151cbc0bb4c2ca641ede414e2d5f6a7
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /css-zone/flaglink.css HTTP/1.1
Host: gnkuth.aqpj.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 18:13:51 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 18:13:51 GMT
last-modified: Fri, 19 Apr 2024 12:12:50 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QT5L7nsWZ%2FTq7vHHgQ%2F4R8DdAaKVAzRn%2B%2BYg8D%2FB2C7nf2%2FW2jof7rfrYBVA7Blm1YZr1DLtX8wlvGjMeV7c1zj8ZnHqDzKdZwP78aj2AwQ31VP9McRl%2Bqf0htKdyjEnLAM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a88c930af1568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| gnkuth.aqpj.xyz/js-zone/gift-zone.js | 104.21.44.6 | 404 Not Found | 1.2 kB |
URL GET HTTP/3gnkuth.aqpj.xyz/js-zone/gift-zone.js IP104.21.44.6:443
CertificateIssuerGoogle Trust Services LLC Subjectaqpj.xyz Fingerprint8B:1B:15:AD:7C:99:A2:13:4A:AA:C7:4F:18:1A:02:46:48:E3:ED:BB ValidityWed, 13 Mar 2024 07:15:37 GMT - Tue, 11 Jun 2024 07:15:36 GMT
File typeHTML document, ASCII text, with very long lines (1197), with no line terminators Hashb4c0e8141ce519c7550545a327f32e5a 1882e285d00ca27f13b971e3b19bfa37927061bf 73789075a869e14fc8adf25c65f7223c1dbb7ec30c67797f797cf569bf43d82f
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /js-zone/gift-zone.js HTTP/1.1
Host: gnkuth.aqpj.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Fri, 26 Apr 2024 18:13:52 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IwdiWkSfBtECpruGDInIeLUyyzO6QwBGNpGdErzmaWDVSqvj5IUIeB16KISFhbw2je2LAEj5iLkWPCXz%2FW7E24ldBmo2JKwY0kDNGwcFujwrHNZqZB4ZbIkk4ur7LjW3JF4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a88c992cee568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| gnkuth.aqpj.xyz/js-zone/gift-zone.js | 104.21.44.6 | 404 Not Found | 1.2 kB |
URL GET HTTP/3gnkuth.aqpj.xyz/js-zone/gift-zone.js IP104.21.44.6:443
CertificateIssuerGoogle Trust Services LLC Subjectaqpj.xyz Fingerprint8B:1B:15:AD:7C:99:A2:13:4A:AA:C7:4F:18:1A:02:46:48:E3:ED:BB ValidityWed, 13 Mar 2024 07:15:37 GMT - Tue, 11 Jun 2024 07:15:36 GMT
File typeHTML document, ASCII text, with very long lines (1197), with no line terminators Hashb4c0e8141ce519c7550545a327f32e5a 1882e285d00ca27f13b971e3b19bfa37927061bf 73789075a869e14fc8adf25c65f7223c1dbb7ec30c67797f797cf569bf43d82f
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /js-zone/gift-zone.js HTTP/1.1
Host: gnkuth.aqpj.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Fri, 26 Apr 2024 18:13:51 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aOydceuX1sB6fREVgGZZJ9vNsfmbj5Gn%2FdbFjDZq%2BE%2FWl%2FIn%2FZk%2BlZ0%2B9Zx7s0STfrG29hnUBD6hLZJA22R4G21UOi%2BUH7xEu4FFf1ggUlwxk0WxasRbUgVX7dzna5GHptE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a88c935b9d568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| gnkuth.aqpj.xyz/js-zone/slidernotif.js | 104.21.44.6 | 404 Not Found | 1.2 kB |
URL GET HTTP/3gnkuth.aqpj.xyz/js-zone/slidernotif.js IP104.21.44.6:443
CertificateIssuerGoogle Trust Services LLC Subjectaqpj.xyz Fingerprint8B:1B:15:AD:7C:99:A2:13:4A:AA:C7:4F:18:1A:02:46:48:E3:ED:BB ValidityWed, 13 Mar 2024 07:15:37 GMT - Tue, 11 Jun 2024 07:15:36 GMT
File typeHTML document, ASCII text, with very long lines (1197), with no line terminators Hashb4c0e8141ce519c7550545a327f32e5a 1882e285d00ca27f13b971e3b19bfa37927061bf 73789075a869e14fc8adf25c65f7223c1dbb7ec30c67797f797cf569bf43d82f
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /js-zone/slidernotif.js HTTP/1.1
Host: gnkuth.aqpj.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Fri, 26 Apr 2024 18:13:51 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YnztAzrMFn2wzQaLNoh1AOUQdsbqxGKwREnqkzJIeemuiuQO1eYRL55znCtQBAlDxcgc1%2FZGjk02vPix90hm6i9ZyoISF91xuZe7NK7jRfK4BmeOEaOFdH1as9UN0Rv8OlQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a88c935ba2568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| gnkuth.aqpj.xyz/media/close.mp3 | 104.21.44.6 | 206 Partial Content | 10 kB |
URL GET HTTP/3gnkuth.aqpj.xyz/media/close.mp3 IP104.21.44.6:443
CertificateIssuerGoogle Trust Services LLC Subjectaqpj.xyz Fingerprint8B:1B:15:AD:7C:99:A2:13:4A:AA:C7:4F:18:1A:02:46:48:E3:ED:BB ValidityWed, 13 Mar 2024 07:15:37 GMT - Tue, 11 Jun 2024 07:15:36 GMT
File typeAudio file with ID3 version 2.4.0, contains: MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, Stereo Hash9348d3f465b74d585b2a1e9de00ae05a 51bd0fc14cfc6985bf66f0ba86c068014b391961 06a13cad73913af634994d110b013db9e7f6f5ad149e921cba4ef27ec4a2a17d
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /media/close.mp3 HTTP/1.1
Host: gnkuth.aqpj.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 206 Partial Content
date: Fri, 26 Apr 2024 18:13:52 GMT
content-type: audio/mpeg
content-length: 10202
last-modified: Fri, 19 Apr 2024 12:51:56 GMT
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: MISS
content-range: bytes 0-10201/10202
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ThnWMU6iLGVWJbr0q%2FKcZaR6J2ViIy81B%2FpR78GYAB1%2FgJ6I4feFVlzMYGbJbbwPildx4YtfeD4DU632kZXItw0MgYOFDUCDlahCyhNpHXUpQ55Ez3n9W206BuIEFzdkFUk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a88c9a1e92568b-OSL
alt-svc: h3=":443"; ma=86400
|
|
| stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css | 104.18.10.207 | 200 OK | 31 kB |
URL GET HTTP/2stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css IP104.18.10.207:443
CertificateIssuerGoogle Trust Services LLC Subjectbootstrapcdn.com Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63 ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT
File typeASCII text, with very long lines (30837) Hash269550530cc127b6aa5a35925a7de6ce 512c7d79033e3028a9be61b540cf1a6870c896f8 799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gnkuth.aqpj.xyz
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 18:13:51 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding, Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: US
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"269550530cc127b6aa5a35925a7de6ce"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 04/17/2024 23:15:38
cdn-edgestorageid: 871
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 2e7d1a79944c7677396db8d6e9b50b59
cdn-cache: HIT
content-encoding: br
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87a88c936d5556c1-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| gnkuth.aqpj.xyz/js-zone/sender.js | 104.21.44.6 | 404 Not Found | 1.2 kB |
URL GET HTTP/3gnkuth.aqpj.xyz/js-zone/sender.js IP104.21.44.6:443
CertificateIssuerGoogle Trust Services LLC Subjectaqpj.xyz Fingerprint8B:1B:15:AD:7C:99:A2:13:4A:AA:C7:4F:18:1A:02:46:48:E3:ED:BB ValidityWed, 13 Mar 2024 07:15:37 GMT - Tue, 11 Jun 2024 07:15:36 GMT
File typeHTML document, ASCII text, with very long lines (1197), with no line terminators Hashb4c0e8141ce519c7550545a327f32e5a 1882e285d00ca27f13b971e3b19bfa37927061bf 73789075a869e14fc8adf25c65f7223c1dbb7ec30c67797f797cf569bf43d82f
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /js-zone/sender.js HTTP/1.1
Host: gnkuth.aqpj.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Fri, 26 Apr 2024 18:13:51 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=E949M0%2B91JegduU%2ByxNb4HBV7NupoaRVm2zHQ4q7Kcs0T0XVUH%2FmqwPDrZHObdPw%2BmtKcqBOOxDQI63NQvXIghejeKgZac8oVJ7NV7fz8aWBLXkxQpr1wVYzoR51f7%2BxR9w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a88c935ba9568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| gnkuth.aqpj.xyz/img/dragon.png | 104.21.44.6 | 404 Not Found | 1.2 kB |
URL GET HTTP/3gnkuth.aqpj.xyz/img/dragon.png IP104.21.44.6:443
CertificateIssuerGoogle Trust Services LLC Subjectaqpj.xyz Fingerprint8B:1B:15:AD:7C:99:A2:13:4A:AA:C7:4F:18:1A:02:46:48:E3:ED:BB ValidityWed, 13 Mar 2024 07:15:37 GMT - Tue, 11 Jun 2024 07:15:36 GMT
File typeHTML document, ASCII text, with very long lines (1197), with no line terminators Hashb4c0e8141ce519c7550545a327f32e5a 1882e285d00ca27f13b971e3b19bfa37927061bf 73789075a869e14fc8adf25c65f7223c1dbb7ec30c67797f797cf569bf43d82f
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/dragon.png HTTP/1.1
Host: gnkuth.aqpj.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Fri, 26 Apr 2024 18:13:52 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yv12HozqjQfq%2F0z8t%2F2Z8UPo2dfDnLSEJziIJCv6YlXaGpw2vEBDO%2BLlNH4%2FzZOu5soU%2Bt9ASTjs%2FwPWARVGCg4fhozqWelZQBH2qOFjhauuHZ2XQk%2F4hFS2OzJuhTroVvA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a88c98fc97568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| gnkuth.aqpj.xyz/cdn-cgi/rum? | 104.21.44.6 | 200 OK | 0 B |
URL POST HTTP/3gnkuth.aqpj.xyz/cdn-cgi/rum? IP104.21.44.6:443
CertificateIssuerGoogle Trust Services LLC Subjectaqpj.xyz Fingerprint8B:1B:15:AD:7C:99:A2:13:4A:AA:C7:4F:18:1A:02:46:48:E3:ED:BB ValidityWed, 13 Mar 2024 07:15:37 GMT - Tue, 11 Jun 2024 07:15:36 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
POST /cdn-cgi/rum? HTTP/1.1
Host: gnkuth.aqpj.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 1031
Origin: https://gnkuth.aqpj.xyz
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 18:13:52 GMT
server: cloudflare
cf-ray: 87a88c9c6a09568b-OSL
x-frame-options: DENY
x-content-type-options: nosniff
|
|
| gnkuth.aqpj.xyz/img/point-card-bg.png | 104.21.44.6 | 200 OK | 148 kB |
URL GET HTTP/3gnkuth.aqpj.xyz/img/point-card-bg.png IP104.21.44.6:443
CertificateIssuerGoogle Trust Services LLC Subjectaqpj.xyz Fingerprint8B:1B:15:AD:7C:99:A2:13:4A:AA:C7:4F:18:1A:02:46:48:E3:ED:BB ValidityWed, 13 Mar 2024 07:15:37 GMT - Tue, 11 Jun 2024 07:15:36 GMT
File typePNG image data, 408 x 480, 8-bit/color RGBA, non-interlaced Size148 kB (148048 bytes) Hash00745bb0871790016d921aa3eb334e35 09cfd9b8b7e1cec1755fff6699d6d0ba3fc4fa96 5e9008541404e8d0872528159d06fa56bda7e8372ec9c24880cfe75672d93690
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/point-card-bg.png HTTP/1.1
Host: gnkuth.aqpj.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 18:13:52 GMT
content-type: image/png
content-length: 148048
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 18:13:52 GMT
last-modified: Fri, 19 Apr 2024 12:14:04 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=s%2F0iymRamTehqbFjFTcrv4u3ljpjllKr69PKZIDu42Wl5uryoAune9ivEG5cVF5Qyn2Lmc2G3kvrUV76pt0zFZz6%2FrcM7lJm00jIZ8IdxjFgu%2BrZBk7fZmgmYwSBg4F2PVg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a88c990ca4568b-OSL
alt-svc: h3=":443"; ma=86400
|
|
| gnkuth.aqpj.xyz/css-zone/link.css | 104.21.44.6 | 200 OK | 4.9 kB |
URL GET HTTP/3gnkuth.aqpj.xyz/css-zone/link.css IP104.21.44.6:443
CertificateIssuerGoogle Trust Services LLC Subjectaqpj.xyz Fingerprint8B:1B:15:AD:7C:99:A2:13:4A:AA:C7:4F:18:1A:02:46:48:E3:ED:BB ValidityWed, 13 Mar 2024 07:15:37 GMT - Tue, 11 Jun 2024 07:15:36 GMT
File typeASCII text, with very long lines (4908), with no line terminators Hash075857b24d3b34d8a8dfc84df5f27e49 bbaf1f5bead9b7f4f55d629ed9482745e6a450aa 8eeef1c64d3e88bea44976570b86418f8f4e3b4752b24bc8cd9f6965a5f0b0b2
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /css-zone/link.css HTTP/1.1
Host: gnkuth.aqpj.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 18:13:51 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 18:13:51 GMT
last-modified: Fri, 19 Apr 2024 12:12:54 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bqmRmowC9VqwcRpopAld7mXGbk2NLT%2FFPx18blHZ08vgU6%2F9sOs2mTtJbT3DEMAIvcU0ikT6I%2Bpp%2Ff6M5Z5IkSoUpO7iP312%2B4QX%2F9wcCS%2FmJF8PIZTTMvxkzNrWELos7j8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a88c930aeb568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| gnkuth.aqpj.xyz/js-zone/debug.js | 104.21.44.6 | 404 Not Found | 1.2 kB |
URL GET HTTP/3gnkuth.aqpj.xyz/js-zone/debug.js IP104.21.44.6:443
CertificateIssuerGoogle Trust Services LLC Subjectaqpj.xyz Fingerprint8B:1B:15:AD:7C:99:A2:13:4A:AA:C7:4F:18:1A:02:46:48:E3:ED:BB ValidityWed, 13 Mar 2024 07:15:37 GMT - Tue, 11 Jun 2024 07:15:36 GMT
File typeHTML document, ASCII text, with very long lines (1197), with no line terminators Hashb4c0e8141ce519c7550545a327f32e5a 1882e285d00ca27f13b971e3b19bfa37927061bf 73789075a869e14fc8adf25c65f7223c1dbb7ec30c67797f797cf569bf43d82f
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /js-zone/debug.js HTTP/1.1
Host: gnkuth.aqpj.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Fri, 26 Apr 2024 18:13:51 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JoYVU7NTKzt%2BsnP8SclWPBRSbVz1syMCVUblOdXlP%2BKQJY%2FXUk9k8VLNja%2Fn61dTdqRqfCQchS4%2BPWU8wBi5t33lHmF0AmW%2FNxvecY3JZLkHqOQSP%2BaAmab0pU7xrsXnAHA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a88c935bab568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| gnkuth.aqpj.xyz/js-zone/sender.js | 104.21.44.6 | 404 Not Found | 1.2 kB |
URL GET HTTP/3gnkuth.aqpj.xyz/js-zone/sender.js IP104.21.44.6:443
CertificateIssuerGoogle Trust Services LLC Subjectaqpj.xyz Fingerprint8B:1B:15:AD:7C:99:A2:13:4A:AA:C7:4F:18:1A:02:46:48:E3:ED:BB ValidityWed, 13 Mar 2024 07:15:37 GMT - Tue, 11 Jun 2024 07:15:36 GMT
File typeHTML document, ASCII text, with very long lines (1197), with no line terminators Hashb4c0e8141ce519c7550545a327f32e5a 1882e285d00ca27f13b971e3b19bfa37927061bf 73789075a869e14fc8adf25c65f7223c1dbb7ec30c67797f797cf569bf43d82f
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /js-zone/sender.js HTTP/1.1
Host: gnkuth.aqpj.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Fri, 26 Apr 2024 18:13:52 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3vqgw7TK6en2EthvEwyAkWWZZFQD0j%2FjNDjlewJtZo7jFk7C6hX2sOzAX27XFHaZEgGI4NDDmsOkLLxZ4%2FRaINfUvr%2FlHBD77iTdzVAEY9AQLqHi7aLde4AEx0SLg21OQEU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a88c9b48c4568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| gnkuth.aqpj.xyz/css-zone/style-zone.css | 104.21.44.6 | 200 OK | 45 kB |
URL GET HTTP/3gnkuth.aqpj.xyz/css-zone/style-zone.css IP104.21.44.6:443
CertificateIssuerGoogle Trust Services LLC Subjectaqpj.xyz Fingerprint8B:1B:15:AD:7C:99:A2:13:4A:AA:C7:4F:18:1A:02:46:48:E3:ED:BB ValidityWed, 13 Mar 2024 07:15:37 GMT - Tue, 11 Jun 2024 07:15:36 GMT
File typeASCII text, with very long lines (44697), with no line terminators Hash56b2d0e9c1943a843e99281fd74c3a7b 6ed535b72d9ac23522d1f404e912a59454efe0c7 fe3be324522dd74ec304a834c579e82f21af823617a5e6c9d0396c36ff0589c2
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /css-zone/style-zone.css HTTP/1.1
Host: gnkuth.aqpj.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 18:13:51 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 18:13:51 GMT
last-modified: Fri, 19 Apr 2024 12:12:56 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ESH8viwSpr6suFGJlo1HBbxXk0nONWmTA1POUZSaFI5hyy5wvIN0PXZxMnITnce3XPFPm5g7p4D0JMn1tEv5JDKR%2F8n8lZ3ctKCaeNbTS1pfl4yATRQwaeq8ST9VLxnbC10%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a88c930af8568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.googleapis.com/css?family=Roboto:300,400,500,700|Teko:300,400,500 | 142.250.74.106 | 200 OK | 12 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Roboto:300,400,500,700|Teko:300,400,500 IP142.250.74.106:443
CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50 ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT
Hash807349734f3707b50b73c3fd626526e8 2f3ab67f0ffa01bc1f0c180cae9085ecc8d96d63 ce7d7e11e41b1b3619cbdf436bbf2557fda2d97d434e65fab281207ffae5c0d0
GET /css?family=Roboto:300,400,500,700|Teko:300,400,500 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 26 Apr 2024 18:13:51 GMT
date: Fri, 26 Apr 2024 18:13:51 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| static.cloudflareinsights.com/beacon.min.js/v2cb3a2ab87c5498db5ce7e6608cf55231689030342039 | 104.16.79.73 | 200 OK | 20 kB |
URL GET HTTP/2static.cloudflareinsights.com/beacon.min.js/v2cb3a2ab87c5498db5ce7e6608cf55231689030342039 IP104.16.79.73:443
CertificateIssuerGoogle Trust Services LLC Subjectcloudflareinsights.com Fingerprint73:92:5A:16:97:55:FC:A5:32:7C:F3:9D:0C:84:EF:F3:2F:AA:B5:00 ValiditySun, 10 Mar 2024 02:33:42 GMT - Sat, 08 Jun 2024 02:33:41 GMT
File typeJavaScript source, ASCII text, with very long lines (19978), with no line terminators Hash09c0cae9d18b9ef8e6a132e71c3c245d e2237916aea3bba321d0662fc1bc188f0cd3e167 af780e357234ceb6feec085a9a31f46834c88c4d3852d79050ad9dc3658a3a67
GET /beacon.min.js/v2cb3a2ab87c5498db5ce7e6608cf55231689030342039 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gnkuth.aqpj.xyz
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 18:13:51 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/"2023.7.0"
last-modified: Tue, 23 Apr 2024 12:12:17 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a88c93bee41c12-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| gnkuth.aqpj.xyz/img/bg_tip2.png | 104.21.44.6 | 200 OK | 4.7 kB |
URL GET HTTP/3gnkuth.aqpj.xyz/img/bg_tip2.png IP104.21.44.6:443
CertificateIssuerGoogle Trust Services LLC Subjectaqpj.xyz Fingerprint8B:1B:15:AD:7C:99:A2:13:4A:AA:C7:4F:18:1A:02:46:48:E3:ED:BB ValidityWed, 13 Mar 2024 07:15:37 GMT - Tue, 11 Jun 2024 07:15:36 GMT
File typePNG image data, 294 x 60, 8-bit/color RGBA, non-interlaced Hashe6e384113f6408d2149e208cdc36e440 49dfcfe8573b081462b91f35595857729ac49b94 5196f4e5036989b49701a500568571f70d0796002b585ba8fbe50939762ec258
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/bg_tip2.png HTTP/1.1
Host: gnkuth.aqpj.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 18:13:52 GMT
content-type: image/png
content-length: 4693
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 18:13:52 GMT
last-modified: Fri, 19 Apr 2024 12:13:48 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QeNgITD0gjizcSOBGyZuGRZg2xOmGifm32B3DprOJnx1ifT8nWz5T%2Brnj8%2F6scFqzJSrUP%2BhNpJuHFQu%2FLk3hggxGfdJeOH%2BisXmG5nLaynoyVvgwzad5jpI1JWAAe7Apzc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a88c990c9d568b-OSL
alt-svc: h3=":443"; ma=86400
|
|
| gnkuth.aqpj.xyz/index_files/css | 104.21.44.6 | 404 Not Found | 1.2 kB |
URL GET HTTP/3gnkuth.aqpj.xyz/index_files/css IP104.21.44.6:443
CertificateIssuerGoogle Trust Services LLC Subjectaqpj.xyz Fingerprint8B:1B:15:AD:7C:99:A2:13:4A:AA:C7:4F:18:1A:02:46:48:E3:ED:BB ValidityWed, 13 Mar 2024 07:15:37 GMT - Tue, 11 Jun 2024 07:15:36 GMT
File typeHTML document, ASCII text, with very long lines (1197), with no line terminators Hashb4c0e8141ce519c7550545a327f32e5a 1882e285d00ca27f13b971e3b19bfa37927061bf 73789075a869e14fc8adf25c65f7223c1dbb7ec30c67797f797cf569bf43d82f
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /index_files/css HTTP/1.1
Host: gnkuth.aqpj.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Fri, 26 Apr 2024 18:13:51 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PU8b0yYBHAWDDHjQ%2BpH1OXFs2GunBUJ%2BJY8aJaBs04ughc2CuNpuJSTBWK1lV0pm4gSm7u58tGYFAj4iABKQkbwa1Qp2rDsVhkoU2lyw0LIYiEp%2F5xEAdm8cEZuPbByeqqk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a88c92fad5568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| gnkuth.aqpj.xyz/fonts/laza.woff2 | 104.21.44.6 | 200 OK | 22 kB |
URL GET HTTP/3gnkuth.aqpj.xyz/fonts/laza.woff2 IP104.21.44.6:443
CertificateIssuerGoogle Trust Services LLC Subjectaqpj.xyz Fingerprint8B:1B:15:AD:7C:99:A2:13:4A:AA:C7:4F:18:1A:02:46:48:E3:ED:BB ValidityWed, 13 Mar 2024 07:15:37 GMT - Tue, 11 Jun 2024 07:15:36 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 22220, version 1.0 Hash345579e8566a3dd6dc9feb5362fbe7e1 df075dd0c26e72fd7df19948f07904c1eaa72ded 1d0dfcc32b3be2bf3b3dbc371e9b7c5ce205f4bc6f7c8ce0226256cc7064c3e4
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /fonts/laza.woff2 HTTP/1.1
Host: gnkuth.aqpj.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 18:13:52 GMT
content-type: font/woff2
content-length: 22220
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 18:13:52 GMT
last-modified: Fri, 19 Apr 2024 12:13:04 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=10L8FKdLvyI1wZ6Kp%2Bb5clnFXHvj4oxxAXh2%2F2j%2BsjmuCUENjA%2BZa5NKCtkkVEUgYvZaGtzDHhhG0ZrAelnDsa%2Fr3%2BKdIXoBNC6X1QJvDoz8Ox%2FeYLxqEeiUMKGtZ%2BcmAqI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a88c990cb6568b-OSL
alt-svc: h3=":443"; ma=86400
|
|
| gnkuth.aqpj.xyz/css-zone/facebook.css | 104.21.44.6 | 200 OK | 3.2 kB |
URL GET HTTP/3gnkuth.aqpj.xyz/css-zone/facebook.css IP104.21.44.6:443
CertificateIssuerGoogle Trust Services LLC Subjectaqpj.xyz Fingerprint8B:1B:15:AD:7C:99:A2:13:4A:AA:C7:4F:18:1A:02:46:48:E3:ED:BB ValidityWed, 13 Mar 2024 07:15:37 GMT - Tue, 11 Jun 2024 07:15:36 GMT
File typeASCII text, with very long lines (3205), with no line terminators Hashbd2e033285abffc9db8950315eadef3e 7eea1a14befeebda28451b3c95ef411bc86eb683 ca0d15c923835ca2ef8820dbe94473b66b4390c6f1fc1b9b45572bb0a66635d8
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /css-zone/facebook.css HTTP/1.1
Host: gnkuth.aqpj.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 18:13:51 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 18:13:51 GMT
last-modified: Fri, 19 Apr 2024 12:12:48 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aI8x1w6qtU1TSzt9WTCxPpP1zLHX4o2YzSUzeqsxHGn%2FmRZW7Qi3MDdYKWqTI2Z6k5havEgVtyYMkxArMVu%2BD1qzPvOfFlzWnX6d4PP0qKP%2FrqBtvrFmV8ChTMfKyVGg%2FXs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a88c92fad9568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| gnkuth.aqpj.xyz/js-zone/slidernotif.js | 104.21.44.6 | 404 Not Found | 1.2 kB |
URL GET HTTP/3gnkuth.aqpj.xyz/js-zone/slidernotif.js IP104.21.44.6:443
CertificateIssuerGoogle Trust Services LLC Subjectaqpj.xyz Fingerprint8B:1B:15:AD:7C:99:A2:13:4A:AA:C7:4F:18:1A:02:46:48:E3:ED:BB ValidityWed, 13 Mar 2024 07:15:37 GMT - Tue, 11 Jun 2024 07:15:36 GMT
File typeHTML document, ASCII text, with very long lines (1197), with no line terminators Hashb4c0e8141ce519c7550545a327f32e5a 1882e285d00ca27f13b971e3b19bfa37927061bf 73789075a869e14fc8adf25c65f7223c1dbb7ec30c67797f797cf569bf43d82f
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /js-zone/slidernotif.js HTTP/1.1
Host: gnkuth.aqpj.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gnkuth.aqpj.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Fri, 26 Apr 2024 18:13:52 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ro3D98u1br52Bzpj5qbOw80yfcyIFCOFHx%2FapcJW4eZOOBia5z9hgD%2F17sdtlB8Z5PZTRCKwNoAozg66FgX2zkEyl3rZ4t%2BW%2FAPL5QkCcyKVq1s7pRppUWGKxPgtxwZthTU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a88c9a6f50568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|