Report - nokbah.com/

Report Overview

Visited public
2025-05-07 21:51:30
Tags
URL
nokbah.com/
Finishing URL
nokbah.com/
IP / ASN
199.188.201.22
#22612 NAMECHEAP-NET
Title
DragonJP: Platform Hiburan Online Paling Penuh Bonus dan Keseruan dan Penuh Kejuatan di Setiap Waktu

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
usglobalasset.com	unknown	2021-12-07	2022-02-04	2025-04-20	449 B	827 B	104.26.3.220
1.bp.blogspot.com	8403	2000-07-31	2012-05-21	2025-04-29	1.0 kB	2.8 kB	142.250.74.97
imagegue.site	unknown	2025-03-26	2025-05-07	2025-05-07	848 B	500 kB	199.188.201.22
nokbah.com	unknown	unknown	No data	No data	467 B	22 kB	199.188.201.22
cdn.ampproject.org	329	2015-08-31	2015-10-09	2025-05-01	1.3 kB	315 kB	216.58.207.193
res.cloudinary.com	2520	2011-05-24	2012-10-03	2025-05-01	466 B	682 B	96.6.16.40

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (3)

	URL	From	Size	First Seen	Last Seen
	cdn.ampproject.org/v0/amp-accordion-0.1.js	ScriptElement	18 kB	2025-04-26	2025-05-13
Pretty URL cdn.ampproject.org/v0/amp-accordion-0.1.js IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-26 21:40 Last Seen2025-05-13 15:25 Times Seen38 Hash ac8a8af65442663edeb645bdfa6d0ea8 428f20a2f8505302ffcecd891b9f0b9e108fc87b 6ebecdf384486947426b5beab87481d276bb54932b178a6d061ee21be03e6d76 Loading...

	cdn.ampproject.org/v0.js	ScriptElement	285 kB	2025-04-26	2025-05-13
Pretty URL cdn.ampproject.org/v0.js IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-26 03:55 Last Seen2025-05-13 15:25 Times Seen190 Hash 4791be0f74c35e6ab563959327cac7a8 f6ce674f9ae992511895c53781e65ec310e4a3cf 27f09232a4cd828446c1f25dc7d1f94cd309e27421e737925dc7228b377d2b91 Loading...

	cdn.ampproject.org/rtv/012504091801000/v0/amp-auto-lightbox-0.1.js	ScriptElement	7.8 kB	2025-04-26	2025-05-13
Pretty URL cdn.ampproject.org/rtv/012504091801000/v0/amp-auto-lightbox-0.1.js IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-26 18:33 Last Seen2025-05-13 15:25 Times Seen174 Hash 0f8464e38039fd08d1f54e70d08df6db 8d415a3612a948c6948d8afa2f182688799478e5 28019b1d5cbaadc2bfb33bcb9d59378e164155dd32cf119798f0c580f9dfd1cc Loading...

HTTP Transactions (10)

	URL	IP	Response	Size
	usglobalasset.com/Dragonjp/popup/merchpop710-Dragonjp.jpg	104.26.3.220	404 Not Found	0 B
URL GET usglobalasset.com/Dragonjp/popup/merchpop710-Dragonjp.jpg IP 104.26.3.220:443 ASN #13335 CLOUDFLARENET Requested by https://nokbah.com/ Certificate IssuerGoogle Trust Services Subjectusglobalasset.com Fingerprint10:3E:B4:BD:91:A8:F8:45:27:A8:61:89:77:C1:95:5B:67:03:7E:ED ValidityFri, 02 May 2025 21:48:58 GMT - Thu, 31 Jul 2025 22:48:57 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /Dragonjp/popup/merchpop710-Dragonjp.jpg HTTP/1.1 Host: usglobalasset.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://nokbah.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 404 Not Found date: Wed, 07 May 2025 21:51:10 GMT content-type: text/html cache-control: max-age=2678400 cf-cache-status: MISS report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jTEPuGccIbMyYcketpI2%2Fb2P4kId3KCRFb8v5ImFQxGMxAiB0m%2Fy70VZOyYE3dZnaSz2jAuaDnSlbaQbWV0yW%2FoO7oGXvS2yxS4%2FMOxGLW5XCA3CHXtmQI%2BPGD4aVXCj48u%2F"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 93c3efe82d0456c9-OSL content-encoding: br alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=TCP&rtt=887&min_rtt=513&rtt_var=849&sent=8&recv=9&lost=0&retrans=0&sent_bytes=3215&recv_bytes=1093&delivery_rate=7784946&cwnd=254&unsent_bytes=0&cid=4d7614510d7d65ea&ts=692&x=0" X-Firefox-Spdy: h2

	1.bp.blogspot.com/-__IMbgSJyQE/X_1UAfFMBZI/AAAAAAAACkk/LyFvbNSxjv0zhTU_PbbSKVNf87CMt__WQCLcBGAsYHQ/s0/favicon-Dragonjp.png	142.250.74.97	200 OK	874 B
URL GET 1.bp.blogspot.com/-__IMbgSJyQE/X_1UAfFMBZI/AAAAAAAACkk/LyFvbNSxjv0zhTU_PbbSKVNf87CMt__WQCLcBGAsYHQ/s0/favicon-Dragonjp.png IP 142.250.74.97:443 ASN #15169 GOOGLE Requested by https://nokbah.com/ Certificate IssuerGoogle Trust Services Subjectmisc-sni.blogspot.com Fingerprint46:3A:EA:ED:D2:A4:6C:DE:D6:24:83:90:0A:B5:D4:FC:C7:AB:0C:C9 ValidityMon, 31 Mar 2025 08:55:13 GMT - Mon, 23 Jun 2025 08:55:12 GMT File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced Size 874 B (874 bytes) Hash a1282c6a63ac61db8fa540e3c8e92b23 5610a53d1e6565509521a3d4e4f259e308ed1793 e89b91d86126aa9f5103c9f07e3912278699d1314cdb27e632deaff7a869e988 HTTP Headers `GET /-__IMbgSJyQE/X_1UAfFMBZI/AAAAAAAACkk/LyFvbNSxjv0zhTU_PbbSKVNf87CMt__WQCLcBGAsYHQ/s0/favicon-Dragonjp.png HTTP/1.1 Host: 1.bp.blogspot.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://nokbah.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: image/png vary: Origin access-control-allow-origin: * timing-allow-origin: * access-control-expose-headers: Content-Length etag: "va4a" expires: Thu, 08 May 2025 21:51:10 GMT cache-control: public, max-age=86400, no-transform content-disposition: inline;filename="favicon-agen138.png" x-content-type-options: nosniff date: Wed, 07 May 2025 21:51:10 GMT server: fife content-length: 874 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	imagegue.site/logo/dragonlogo.png	199.188.201.22	200 OK	268 kB
URL GET imagegue.site/logo/dragonlogo.png IP 199.188.201.22:443 ASN #22612 NAMECHEAP-NET Requested by https://nokbah.com/ Certificate IssuerSectigo Limited Subjectimagegue.site Fingerprint6B:C8:A1:E4:07:EA:2A:4F:B3:71:90:C6:84:2E:9E:7A:48:BA:D2:5D ValidityWed, 26 Mar 2025 00:00:00 GMT - Thu, 26 Mar 2026 23:59:59 GMT File type PNG image data, 989 x 252, 8-bit/color RGBA, non-interlaced Size 268 kB (267910 bytes) Hash 0e6a83caa56ae0a2023dc5d10c3ed676 1b5abb5fbe014cde42ae416caf65263ffb15561e 00417e30cb7a91e85190fb7869fd0071122eaba657837681a2c6caab8e8fcbdf HTTP Headers `GET /logo/dragonlogo.png HTTP/1.1 Host: imagegue.site User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://nokbah.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK cache-control: public, max-age=604800 expires: Wed, 14 May 2025 21:51:11 GMT content-type: image/png last-modified: Thu, 01 May 2025 00:25:11 GMT accept-ranges: bytes content-length: 267910 date: Wed, 07 May 2025 21:51:11 GMT server: LiteSpeed x-turbo-charged-by: LiteSpeed X-Firefox-Spdy: h2`

	1.bp.blogspot.com/-__IMbgSJyQE/X_1UAfFMBZI/AAAAAAAACkk/LyFvbNSxjv0zhTU_PbbSKVNf87CMt__WQCLcBGAsYHQ/s0/favicon-Dragonjp.png	142.250.74.97	200 OK	874 B
URL GET 1.bp.blogspot.com/-__IMbgSJyQE/X_1UAfFMBZI/AAAAAAAACkk/LyFvbNSxjv0zhTU_PbbSKVNf87CMt__WQCLcBGAsYHQ/s0/favicon-Dragonjp.png IP 142.250.74.97:443 ASN #15169 GOOGLE Requested by https://nokbah.com/ Certificate IssuerGoogle Trust Services Subjectmisc-sni.blogspot.com Fingerprint46:3A:EA:ED:D2:A4:6C:DE:D6:24:83:90:0A:B5:D4:FC:C7:AB:0C:C9 ValidityMon, 31 Mar 2025 08:55:13 GMT - Mon, 23 Jun 2025 08:55:12 GMT File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced Size 874 B (874 bytes) Hash a1282c6a63ac61db8fa540e3c8e92b23 5610a53d1e6565509521a3d4e4f259e308ed1793 e89b91d86126aa9f5103c9f07e3912278699d1314cdb27e632deaff7a869e988 HTTP Headers `GET /-__IMbgSJyQE/X_1UAfFMBZI/AAAAAAAACkk/LyFvbNSxjv0zhTU_PbbSKVNf87CMt__WQCLcBGAsYHQ/s0/favicon-Dragonjp.png HTTP/1.1 Host: 1.bp.blogspot.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://nokbah.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/3 200 OK access-control-allow-origin: * timing-allow-origin: * access-control-expose-headers: Content-Length content-disposition: inline;filename="favicon-agen138.png" x-content-type-options: nosniff server: fife content-length: 874 x-xss-protection: 0 date: Wed, 07 May 2025 21:51:10 GMT expires: Thu, 08 May 2025 21:51:10 GMT cache-control: public, max-age=86400, no-transform etag: "va4a" content-type: image/png vary: Origin age: 1 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000`

	nokbah.com/	199.188.201.22	200 OK	22 kB
URL User Request GET nokbah.com/ IP 199.188.201.22:443 ASN #22612 NAMECHEAP-NET Certificate IssuerSectigo Limited Subjectnokbah.com FingerprintDC:89:0A:E4:6B:B7:F1:8D:FA:59:88:FD:09:34:92:F7:52:A7:46:B5 ValidityTue, 06 May 2025 00:00:00 GMT - Wed, 06 May 2026 23:59:59 GMT File type HTML document, Unicode text, UTF-8 text, with very long lines (10237), with CRLF line terminators Size 22 kB (21812 bytes) Hash b8569a9a44ec57e72112e46719e7a80e 0994b260f0ba4129ef2d73630ace6970ee576504 52f2030ba9f4119f6c36caf779819228eb89ba210841e1c679e1242191f4a031 HTTP Headers `GET / HTTP/1.1 Host: nokbah.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK content-type: text/html last-modified: Wed, 07 May 2025 11:18:06 GMT accept-ranges: bytes content-encoding: br vary: Accept-Encoding content-length: 4703 date: Wed, 07 May 2025 21:51:09 GMT server: LiteSpeed x-turbo-charged-by: LiteSpeed X-Firefox-Spdy: h2`

	cdn.ampproject.org/v0/amp-accordion-0.1.js	216.58.207.193	200 OK	18 kB
URL GET cdn.ampproject.org/v0/amp-accordion-0.1.js IP 216.58.207.193:443 ASN #15169 GOOGLE Requested by https://nokbah.com/ Certificate IssuerGoogle Trust Services Subjectmisc-sni.google.com Fingerprint3B:25:F5:65:60:48:E4:3F:A6:DF:0B:0B:23:76:CF:D9:FA:33:D9:D5 ValidityMon, 31 Mar 2025 08:54:45 GMT - Mon, 23 Jun 2025 08:54:44 GMT File type JavaScript source, ASCII text, with very long lines (17480) Size 18 kB (17598 bytes) Hash ac8a8af65442663edeb645bdfa6d0ea8 428f20a2f8505302ffcecd891b9f0b9e108fc87b 6ebecdf384486947426b5beab87481d276bb54932b178a6d061ee21be03e6d76 HTTP Headers `GET /v0/amp-accordion-0.1.js HTTP/1.1 Host: cdn.ampproject.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://nokbah.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK accept-ranges: bytes vary: Accept-Encoding content-encoding: br content-type: text/javascript; charset=UTF-8 access-control-allow-origin: * content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp cross-origin-resource-policy: cross-origin cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available" report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]} timing-allow-origin: * content-length: 5814 date: Wed, 07 May 2025 21:51:10 GMT expires: Wed, 07 May 2025 21:51:10 GMT cache-control: private, max-age=604800, stale-while-revalidate=604800 etag: "b7d6ec94554bc2f1" strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: sffe x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	imagegue.site/dragon/lpban1.jpg	199.188.201.22	200 OK	232 kB
URL GET imagegue.site/dragon/lpban1.jpg IP 199.188.201.22:443 ASN #22612 NAMECHEAP-NET Requested by https://nokbah.com/ Certificate IssuerSectigo Limited Subjectimagegue.site Fingerprint6B:C8:A1:E4:07:EA:2A:4F:B3:71:90:C6:84:2E:9E:7A:48:BA:D2:5D ValidityWed, 26 Mar 2025 00:00:00 GMT - Thu, 26 Mar 2026 23:59:59 GMT File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1536x1024, components 3 Size 232 kB (231838 bytes) Hash 8b34bf24904dae69bb00d6176528a688 92c9b2a482371a51e115a9207ce17ca8e8e9363b 11e5415f3e169ffb8c440ead9fcbf330ac0640067c98a9d62ae43689810722db HTTP Headers `GET /dragon/lpban1.jpg HTTP/1.1 Host: imagegue.site User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://nokbah.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK cache-control: public, max-age=604800 expires: Wed, 14 May 2025 21:51:11 GMT content-type: image/jpeg last-modified: Wed, 07 May 2025 10:10:58 GMT accept-ranges: bytes content-length: 231838 date: Wed, 07 May 2025 21:51:11 GMT server: LiteSpeed x-turbo-charged-by: LiteSpeed X-Firefox-Spdy: h2`

	cdn.ampproject.org/v0.js	216.58.207.193	200 OK	285 kB
URL GET cdn.ampproject.org/v0.js IP 216.58.207.193:443 ASN #15169 GOOGLE Requested by https://nokbah.com/ Certificate IssuerGoogle Trust Services Subjectmisc-sni.google.com Fingerprint3B:25:F5:65:60:48:E4:3F:A6:DF:0B:0B:23:76:CF:D9:FA:33:D9:D5 ValidityMon, 31 Mar 2025 08:54:45 GMT - Mon, 23 Jun 2025 08:54:44 GMT File type JavaScript source, Unicode text, UTF-8 text, with very long lines (64654) Size 285 kB (284590 bytes) Hash 4791be0f74c35e6ab563959327cac7a8 f6ce674f9ae992511895c53781e65ec310e4a3cf 27f09232a4cd828446c1f25dc7d1f94cd309e27421e737925dc7228b377d2b91 HTTP Headers `GET /v0.js HTTP/1.1 Host: cdn.ampproject.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://nokbah.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK accept-ranges: bytes vary: Accept-Encoding content-encoding: br content-type: text/javascript; charset=UTF-8 access-control-allow-origin: * content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp cross-origin-resource-policy: cross-origin cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available" report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]} timing-allow-origin: * content-length: 73100 date: Wed, 07 May 2025 21:51:10 GMT expires: Wed, 07 May 2025 21:51:10 GMT cache-control: private, max-age=3000, stale-while-revalidate=1206600 etag: "779a6ff65bc2cd8a" strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: sffe x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	res.cloudinary.com/gumiho/image/upload/v1644849128/bos303/livechat-250.svg	96.6.16.40	401 Unauthorized	0 B
URL GET res.cloudinary.com/gumiho/image/upload/v1644849128/bos303/livechat-250.svg IP 96.6.16.40:443 ASN #16625 AKAMAI-AS Requested by https://nokbah.com/ Certificate IssuerGoDaddy.com, Inc. Subject.cloudinary.com Fingerprint3C:38:41:3E:81:35:9E:7E:6D:34:B2:E4:FB:E2:0B:55:E7:BC:5D:73 ValidityWed, 18 Dec 2024 12:38:55 GMT - Wed, 14 Jan 2026 15:36:44 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /gumiho/image/upload/v1644849128/bos303/livechat-250.svg HTTP/1.1 Host: res.cloudinary.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://nokbah.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 401 Unauthorized content-type: text/html content-length: 0 date: Wed, 07 May 2025 21:51:10 GMT cache-control: private, no-transform, max-age=0, no-cache access-control-expose-headers: Content-Length,Content-Disposition,Content-Range,Etag,Server-Timing,Vary,X-Cld-Error,X-Robots-Tag access-control-allow-origin: * accept-ranges: bytes timing-allow-origin: * server: Cloudinary strict-transport-security: max-age=604800 x-cld-error: gumiho cannot be accessed via this endpoint content-transfer-encoding: binary content-disposition: inline pragma: no-cache server-timing: cld-akam;dur=19;start=2025-05-07T21:51:10.147Z;desc=synth,rtt;dur=7 X-Firefox-Spdy: h2

	cdn.ampproject.org/rtv/012504091801000/v0/amp-auto-lightbox-0.1.js	216.58.207.193	200 OK	7.8 kB
URL GET cdn.ampproject.org/rtv/012504091801000/v0/amp-auto-lightbox-0.1.js IP 216.58.207.193:443 ASN #15169 GOOGLE Requested by https://nokbah.com/ Certificate IssuerGoogle Trust Services Subjectmisc-sni.google.com Fingerprint3B:25:F5:65:60:48:E4:3F:A6:DF:0B:0B:23:76:CF:D9:FA:33:D9:D5 ValidityMon, 31 Mar 2025 08:54:45 GMT - Mon, 23 Jun 2025 08:54:44 GMT File type JavaScript source, ASCII text, with very long lines (7690) Size 7.8 kB (7812 bytes) Hash 0f8464e38039fd08d1f54e70d08df6db 8d415a3612a948c6948d8afa2f182688799478e5 28019b1d5cbaadc2bfb33bcb9d59378e164155dd32cf119798f0c580f9dfd1cc HTTP Headers `GET /rtv/012504091801000/v0/amp-auto-lightbox-0.1.js HTTP/1.1 Host: cdn.ampproject.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://nokbah.com DNT: 1 Connection: keep-alive Referer: https://nokbah.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK accept-ranges: bytes content-encoding: br access-control-allow-origin: * content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp cross-origin-resource-policy: cross-origin cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available" report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]} timing-allow-origin: * content-length: 2974 strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 01 May 2025 10:37:32 GMT expires: Fri, 01 May 2026 10:37:32 GMT cache-control: public, max-age=31536000 etag: "8c21af8a72cbf02f" content-type: text/javascript; charset=UTF-8 vary: Accept-Encoding age: 558819 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (3)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (10)

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL User Request GET

IP

ASN

Certificate

File type

Size

Hash

HTTP Headers

URL GET

IP