| | 103.250.10.193 | 200 OK | 15 kB |
URL User Request GET HTTP/2IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (458), with CRLF line terminators Hashd6948fb9bab680796831fa636027a4d8 24cb3fd4b0e08f4aed1d4588aa962416b6fff856 b85a717e41fad33f8f388162623a66294650de2513cf165b466bc06aeccdafdc
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET / HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 14783
content-encoding: br
vary: Accept-Encoding
date: Sat, 04 May 2024 16:51:32 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.2/css/all.min.css | 104.17.25.14 | 200 OK | 19 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.2/css/all.min.css IP104.17.25.14:443
CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (52276) Hash5222e06b77a1692fa2520a219840e6be 8b4236206a8b86af3761a244277663046d7ff7ee 0934b1fc0d3a766d41d3adf5e7a115875e66e98ebba408d965a41cf3d2cb4ab5
GET /ajax/libs/font-awesome/6.4.2/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 16:51:32 GMT
content-type: text/css; charset=utf-8
content-length: 18778
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "64cac444-495a"
last-modified: Wed, 02 Aug 2023 21:01:56 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 343485
expires: Thu, 24 Apr 2025 16:51:32 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9IZZRmM%2F%2FKsgD2yS2f6LrzN9lEmAHsUL5aMeFyyb392dD7IOqB3VhIiGWTV29HDVtghRemz%2BTsaeRNvm0zLyoBoKTHyg62OFPI4E9LeM8piLr8bQlwr%2BJFq5t68bYfy4Ozjs%2BzXi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87e9ff02ddcf0afe-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css | 104.17.25.14 | 200 OK | 5.8 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css IP104.17.25.14:443
CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hashe9365fe85b7e4db79a87015e52c3db6c 2e2b5eb6e08f0f3d11fe0ada97c962a23ba6a0d9 dec3e9f0190a504ed0c8f4a5e957c107206ba106cac4a1bbb6cbac6369a16d56
GET /ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 16:51:32 GMT
content-type: text/css; charset=utf-8
content-length: 5845
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ed9-1149f"
last-modified: Mon, 04 May 2020 16:12:09 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 339185
expires: Thu, 24 Apr 2025 16:51:32 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8UAoqm3%2BauCbUVDPNrU5qDgEEVGI3NSnPlwt9pRJhEAfFe0mbIRqSxBXl3HZooqRvNG4ek6n3i31tEgufBFmPItZo4uMNWiXTfPkt5EjezZbztSxk3ffFj1wVOncyUanrgfAkKcE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87e9ff02dde00afe-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| i.ibb.co/PYpHF6b/Twitter-Show-Password.png | 162.19.58.161 | 200 OK | 28 kB |
URL GET HTTP/2i.ibb.co/PYpHF6b/Twitter-Show-Password.png IP162.19.58.161:443
CertificateIssuerLet's Encrypt Subjectibb.co Fingerprint0C:8B:6F:2F:B8:9F:91:1E:3A:DD:B1:1B:45:47:B4:65:FD:56:73:3D ValidityMon, 22 Apr 2024 06:29:44 GMT - Sun, 21 Jul 2024 06:29:43 GMT
File typePNG image data, 656 x 656, 8-bit/color RGBA, non-interlaced Hash2fd203703821d5ce5d18bee2a51b779a a78d7b1369ce8bc34de57909af142043cae446f0 6b82611fa96f118128b0db9692dd982ca0fe79b1b4d8048946880600cc4f97c8
GET /PYpHF6b/Twitter-Show-Password.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 16:51:32 GMT
content-type: image/png
content-length: 28355
last-modified: Tue, 17 Jan 2023 04:04:57 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| ajax.googleapis.com/ajax/libs/jquery/2.1.1/jquery.min.js | 216.58.207.202 | 200 OK | 30 kB |
URL GET HTTP/2ajax.googleapis.com/ajax/libs/jquery/2.1.1/jquery.min.js IP216.58.207.202:443
CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typeJavaScript source, ASCII text, with very long lines (32061) Hashe40ec2161fe7993196f23c8a07346306 afb90752e0a90c24b7f724faca86c5f3d15d1178 874706b2b1311a0719b5267f7d1cf803057e367e94ae1ff7bf78c5450d30f5d4
GET /ajax/libs/jquery/2.1.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 29671
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 23:24:46 GMT
expires: Fri, 02 May 2025 23:24:46 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 149207
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js | 216.58.207.202 | 200 OK | 30 kB |
URL GET HTTP/2ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js IP216.58.207.202:443
CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typeJavaScript source, ASCII text, with very long lines (32180) Hash32015dd42e9582a80a84736f5d9a44d7 41b4bfbaa96be6d1440db6e78004ade1c134e276 8af93bd675e1cfd9ecc850e862819fdac6e3ad1f5d761f970e409c7d9c63bdc3
GET /ajax/libs/jquery/2.1.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 29707
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 16:37:20 GMT
expires: Fri, 02 May 2025 16:37:20 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 173653
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ajax.googleapis.com/ajax/libs/jquery/1.9.1/jquery.min.js | 216.58.207.202 | 200 OK | 33 kB |
URL GET HTTP/2ajax.googleapis.com/ajax/libs/jquery/1.9.1/jquery.min.js IP216.58.207.202:443
CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typeJavaScript source, ASCII text, with very long lines (32089) Hash397754ba49e9e0cf4e7c190da78dda05 ae49e56999d82802727455f0ba83b63acd90a22b c12f6098e641aaca96c60215800f18f5671039aecf812217fab3c0d152f6adb4
GET /ajax/libs/jquery/1.9.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33018
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 01:52:39 GMT
expires: Fri, 02 May 2025 01:52:39 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 226734
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| code.jquery.com/jquery-1.10.2.min.js | 151.101.2.137 | 200 OK | 33 kB |
URL GET HTTP/2code.jquery.com/jquery-1.10.2.min.js IP151.101.2.137:443
CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (32072) Hash628072e7212db1e8cdacb22b21752cda 0511abe9863c2ea7084efa7e24d1d86c5b3974f1 0ba081f546084bd5097aa8a73c75931d5aa1fc4d6e846e53c21f98e6a1509988
GET /jquery-1.10.2.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-16bb3"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 May 2024 16:51:33 GMT
age: 20040887
x-served-by: cache-lga13622-LGA, cache-hel1410025-HEL
x-cache: HIT, HIT
x-cache-hits: 1, 161127
x-timer: S1714841493.097710,VS0,VE0
vary: Accept-Encoding
content-length: 32788
X-Firefox-Spdy: h2
|
|
| i.ibb.co/pZDr8sd/Twitter-Hide-Password.png | 162.19.58.161 | 200 OK | 28 kB |
URL GET HTTP/2i.ibb.co/pZDr8sd/Twitter-Hide-Password.png IP162.19.58.161:443
CertificateIssuerLet's Encrypt Subjectibb.co Fingerprint0C:8B:6F:2F:B8:9F:91:1E:3A:DD:B1:1B:45:47:B4:65:FD:56:73:3D ValidityMon, 22 Apr 2024 06:29:44 GMT - Sun, 21 Jul 2024 06:29:43 GMT
File typePNG image data, 656 x 656, 8-bit/color RGBA, non-interlaced Hash8d1f08b46884df302bf7300fc234832c 5735d57b6fa211c400d439095d5ff2f5bb57e691 e4cff1f68b85c3343554090b3479273a54e5eed2dbb3e56ceb9f86c4ebe8b0e7
GET /pZDr8sd/Twitter-Hide-Password.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 16:51:33 GMT
content-type: image/png
content-length: 28029
last-modified: Tue, 17 Jan 2023 04:04:57 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| amayyx.line.pm/index_files/css | 103.250.10.193 | 404 Not Found | 1.3 kB |
URL GET HTTP/2amayyx.line.pm/index_files/css IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
File typeHTML document, ASCII text, with CRLF, LF line terminators Hash8150f458ed6fb9b1db4e5cfa57a1a281 6e5726854d28687b560d7fdcb5c782c425c7dfb9 4c13d452dd5d49671bd93ca32f2b4f85c78e39b6ab0ad1f38d98ed267f8fd896
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET /index_files/css HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1251
date: Sat, 04 May 2024 16:51:32 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| amayyx.line.pm/css-zone/facebook.css | 103.250.10.193 | 200 OK | 858 B |
URL GET HTTP/2amayyx.line.pm/css-zone/facebook.css IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
Hash79944320da11cf793b2da9f7de935ee1 9a0e05c0557c8bcfc38af508f6701bc4f1db79c6 39dd7801f3de58dee8645cbe039ab1d1a9bbc88b33e5f80fd75ffa08700fc5a4
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET /css-zone/facebook.css HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 16:51:32 GMT
content-type: text/css
last-modified: Thu, 30 Nov 2023 00:01:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 858
date: Sat, 04 May 2024 16:51:32 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| amayyx.line.pm/css-zone/twitter.css | 103.250.10.193 | 200 OK | 1.2 kB |
URL GET HTTP/2amayyx.line.pm/css-zone/twitter.css IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
Hash46b2abce3c1d015d31287f99ea7c83bf faf9ad0a9b4f7f24f031437094a87e338ff219d4 9d84488e9e3804595d8f9058f06e98df5c7cbd4acb6522200955dd00467d1ede
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET /css-zone/twitter.css HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 16:51:32 GMT
content-type: text/css
last-modified: Sat, 10 Feb 2024 02:54:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1166
date: Sat, 04 May 2024 16:51:32 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| amayyx.line.pm/css-zone/link.css | 103.250.10.193 | 200 OK | 1.2 kB |
URL GET HTTP/2amayyx.line.pm/css-zone/link.css IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
Hash3ed339100adb2212456e4298f2853c9e a352083f768897eb8fb36bfd4d6bfb7baf5fe7e9 c5a7a11d6e7f95374f3807bb44972f182214b6c31bed8508495f8b998d932677
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET /css-zone/link.css HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 16:51:32 GMT
content-type: text/css
last-modified: Tue, 12 Mar 2024 20:57:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1216
date: Sat, 04 May 2024 16:51:32 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| amayyx.line.pm/css-zone/flaglink.css | 103.250.10.193 | 200 OK | 2.1 kB |
URL GET HTTP/2amayyx.line.pm/css-zone/flaglink.css IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
File typeASCII text, with very long lines (14690), with no line terminators Hash958e119c09a94281c86f41edbc55e353 e9f9710dbc493154a5ba6f674cce2b0c951f5df6 27b19ce922bc8af7755cbd1cc6bdd1e60d7acfaf31c27bfd1d15e9dfa5e92eff
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET /css-zone/flaglink.css HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 16:51:32 GMT
content-type: text/css
last-modified: Tue, 27 Feb 2024 00:05:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2135
date: Sat, 04 May 2024 16:51:32 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| amayyx.line.pm/css-zone/animate.css | 103.250.10.193 | 200 OK | 4.5 kB |
URL GET HTTP/2amayyx.line.pm/css-zone/animate.css IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
Hash8eae1a9cfafdc593321d4d59ec4905ea 232f5f3f4c3a0a56823e0e933f9c7fec3aa9cbcc e89c81987c5cbc157097eaa6657d6a594abf030cc89bb63f0d2154d8383e9fab
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET /css-zone/animate.css HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 16:51:32 GMT
content-type: text/css
last-modified: Tue, 02 Jan 2024 15:53:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4458
date: Sat, 04 May 2024 16:51:32 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| amayyx.line.pm/css-zone/style-zone.css | 103.250.10.193 | 200 OK | 13 kB |
URL GET HTTP/2amayyx.line.pm/css-zone/style-zone.css IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
File typeASCII text, with very long lines (7259), with CRLF line terminators Hashbf8aae337ab98479c0ce62f2e1bb3e22 b8487ca016740ac825bf8354c8721d20a841d406 0ff021b1ca733462c1afca2efb85188ac402044b4d0f930e8564dcfa00d4b3da
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET /css-zone/style-zone.css HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 16:51:32 GMT
content-type: text/css
last-modified: Wed, 24 Apr 2024 20:49:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12698
date: Sat, 04 May 2024 16:51:32 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| amayyx.line.pm/css-zone/zero-zone.css | 103.250.10.193 | 200 OK | 975 B |
URL GET HTTP/2amayyx.line.pm/css-zone/zero-zone.css IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
File typeASCII text, with CRLF line terminators Hash255526c90952841f4d10a4c900fbf61b acc023672c9b5029f1c6eac0b6d7fa0d31d0b9b9 ae93a089a7ca2b4f3e49754629f61cb3d07b0bd02e77f5d3d7340a51b401a334
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET /css-zone/zero-zone.css HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 16:51:32 GMT
content-type: text/css
last-modified: Wed, 03 Apr 2024 22:04:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 975
date: Sat, 04 May 2024 16:51:32 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| www.pubgmobile.com/act/a20180515iggamepc/logo.png | 23.36.76.250 | 200 OK | 6.1 kB |
URL GET HTTP/2www.pubgmobile.com/act/a20180515iggamepc/logo.png IP23.36.76.250:443 ASN#20940 Akamai International B.V.
CertificateIssuerDigiCert Inc Subjectwetv.acc.qq.com Fingerprint5C:D9:77:1B:16:32:99:FE:C5:2E:BD:E3:86:D8:71:22:B0:1B:6A:3F ValidityMon, 30 Oct 2023 00:00:00 GMT - Wed, 30 Oct 2024 23:59:59 GMT
Hasha74329a2054a9e096a43ba8742dd9523 4ccac3041bf854721b91dcb45286b8488dd9f072 cde9945e91f0e51058869d687cd24c8f58804f25623999f1291c71b3697093b6
GET /act/a20180515iggamepc/logo.png HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
etag: "5ff6baa2-3bf2"
last-modified: Mon, 08 May 2023 08:25:46 GMT
server: Akamai Image Manager
content-length: 6055
content-type: image/avif
cache-control: private, no-transform, max-age=43200
expires: Sun, 05 May 2024 04:51:33 GMT
date: Sat, 04 May 2024 16:51:33 GMT
akamai-grn: 0.f64c2417.1714841493.62a9792
X-Firefox-Spdy: h2
|
|
| amayyx.line.pm/img/style-img/logo.png | 103.250.10.193 | 200 OK | 8.3 kB |
URL GET HTTP/2amayyx.line.pm/img/style-img/logo.png IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
File typePNG image data, 616 x 90, 8-bit/color RGBA, non-interlaced Hashc632e6bfd0076695e56477bdb3f7232c 5b4212f029814b5dfda946ac5e5a6ba97857feb9 86ccbc1dbeb58af3e6bce5ee52f86a47399da998ad34a0fd2ce9b0b539d92f6c
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET /img/style-img/logo.png HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 16:51:32 GMT
content-type: image/png
last-modified: Sun, 07 Apr 2024 14:48:20 GMT
accept-ranges: bytes
content-length: 8314
date: Sat, 04 May 2024 16:51:32 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| www.pubgmobile.com/en/images/nav_menu.svg | 23.36.76.250 | 200 OK | 426 B |
URL GET HTTP/2www.pubgmobile.com/en/images/nav_menu.svg IP23.36.76.250:443 ASN#20940 Akamai International B.V.
CertificateIssuerDigiCert Inc Subjectwetv.acc.qq.com Fingerprint5C:D9:77:1B:16:32:99:FE:C5:2E:BD:E3:86:D8:71:22:B0:1B:6A:3F ValidityMon, 30 Oct 2023 00:00:00 GMT - Wed, 30 Oct 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hasha1f09c4f5c87271dbccf8cb05885ad42 18bbacc9c372dcb6bc77c2475595e058c1ad1594 b0d849e0e910d13bcdab1e94f5c799dda1a9429c908e18069f9dc7f7d551d58a
GET /en/images/nav_menu.svg HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: image/svg+xml
last-modified: Mon, 21 Mar 2022 13:24:18 GMT
etag: "62387c82-374"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
date: Sat, 04 May 2024 16:51:33 GMT
content-length: 426
akamai-grn: 0.f64c2417.1714841493.62a9785
X-Firefox-Spdy: h2
|
|
| www.pubgmobile.com/en/images/nav_language.svg | 23.36.76.250 | 200 OK | 675 B |
URL GET HTTP/2www.pubgmobile.com/en/images/nav_language.svg IP23.36.76.250:443 ASN#20940 Akamai International B.V.
CertificateIssuerDigiCert Inc Subjectwetv.acc.qq.com Fingerprint5C:D9:77:1B:16:32:99:FE:C5:2E:BD:E3:86:D8:71:22:B0:1B:6A:3F ValidityMon, 30 Oct 2023 00:00:00 GMT - Wed, 30 Oct 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hashd8ba211bb1be1a15bf5b0143ca1b009a 215203609a551dcaccf6e434508623f302635f86 a441182568ad88fa9c54384de94a77f64148d3d54df66ea1beff4a11100967c6
GET /en/images/nav_language.svg HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: image/svg+xml
last-modified: Mon, 21 Mar 2022 13:24:18 GMT
etag: "62387c82-45b"
accept-ranges: bytes
unused62: 8096267
vary: Accept-Encoding
content-encoding: gzip
content-length: 675
date: Sat, 04 May 2024 16:51:33 GMT
akamai-grn: 0.f64c2417.1714841493.62a9794
X-Firefox-Spdy: h2
|
|
| amayyx.line.pm/js-zone/flaglink.js | 103.250.10.193 | 404 Not Found | 1.3 kB |
URL GET HTTP/2amayyx.line.pm/js-zone/flaglink.js IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
File typeHTML document, ASCII text, with CRLF, LF line terminators Hash8150f458ed6fb9b1db4e5cfa57a1a281 6e5726854d28687b560d7fdcb5c782c425c7dfb9 4c13d452dd5d49671bd93ca32f2b4f85c78e39b6ab0ad1f38d98ed267f8fd896
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET /js-zone/flaglink.js HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1251
date: Sat, 04 May 2024 16:51:33 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| amayyx.line.pm/js-zone/slidernotif.js | 103.250.10.193 | 404 Not Found | 1.3 kB |
URL GET HTTP/2amayyx.line.pm/js-zone/slidernotif.js IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
File typeHTML document, ASCII text, with CRLF, LF line terminators Hash8150f458ed6fb9b1db4e5cfa57a1a281 6e5726854d28687b560d7fdcb5c782c425c7dfb9 4c13d452dd5d49671bd93ca32f2b4f85c78e39b6ab0ad1f38d98ed267f8fd896
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET /js-zone/slidernotif.js HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1251
date: Sat, 04 May 2024 16:51:33 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| amayyx.line.pm/js-zone/sender.js | 103.250.10.193 | 404 Not Found | 1.3 kB |
URL GET HTTP/2amayyx.line.pm/js-zone/sender.js IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
File typeHTML document, ASCII text, with CRLF, LF line terminators Hash8150f458ed6fb9b1db4e5cfa57a1a281 6e5726854d28687b560d7fdcb5c782c425c7dfb9 4c13d452dd5d49671bd93ca32f2b4f85c78e39b6ab0ad1f38d98ed267f8fd896
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET /js-zone/sender.js HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1251
date: Sat, 04 May 2024 16:51:33 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| amayyx.line.pm/js-zone/slide-zone.js | 103.250.10.193 | 200 OK | 361 B |
URL GET HTTP/2amayyx.line.pm/js-zone/slide-zone.js IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
File typeASCII text, with CRLF line terminators Hashaff6ffab6b449f031ee8b2f0e550f7b8 85f544cf556a48c10c754636443cc8df2f86a123 497a23bd289b4a897294e8f9e2d083339e4efc7eb98b1e5595fbc0c83920a82f
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET /js-zone/slide-zone.js HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/javascript
last-modified: Sat, 20 Apr 2024 09:55:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 361
date: Sat, 04 May 2024 16:51:33 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| amayyx.line.pm/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js | 103.250.10.193 | 404 Not Found | 1.3 kB |
URL GET HTTP/2amayyx.line.pm/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
File typeHTML document, ASCII text, with CRLF, LF line terminators Hash8150f458ed6fb9b1db4e5cfa57a1a281 6e5726854d28687b560d7fdcb5c782c425c7dfb9 4c13d452dd5d49671bd93ca32f2b4f85c78e39b6ab0ad1f38d98ed267f8fd896
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1251
date: Sat, 04 May 2024 16:51:33 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| amayyx.line.pm/js-zone/gift-zone.js | 103.250.10.193 | 200 OK | 14 kB |
URL GET HTTP/2amayyx.line.pm/js-zone/gift-zone.js IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
File typeJavaScript source, ASCII text, with very long lines (36832), with no line terminators Hashf4d89cb089607276fb37d1931eae8d38 adf42a4881b0fe5c416f5b8d13c6fa10b4375e09 dce2926b2bd4b47cfc4cae6e46d2bf0a0440af564bb2bc35d7bdc032c1640147
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET /js-zone/gift-zone.js HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/javascript
last-modified: Wed, 24 Apr 2024 20:45:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 13629
date: Sat, 04 May 2024 16:51:33 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| amayyx.line.pm/js-zone/lazcode.js | 103.250.10.193 | 200 OK | 54 kB |
URL GET HTTP/2amayyx.line.pm/js-zone/lazcode.js IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hash1dfbd87bf074aaccde7055dc70d9f78c 4cd135760b9a8174cc43d4b4c421a304c03f0cde 7f7138c86507e1a0d42a74936d8f610a0a2ae42fc81d2306d1cdc4a1bae639ad
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET /js-zone/lazcode.js HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/javascript
last-modified: Wed, 24 Apr 2024 20:45:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 53505
date: Sat, 04 May 2024 16:51:33 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| amayyx.line.pm/img/lazaheader/1.jpg | 103.250.10.193 | 200 OK | 66 kB |
URL GET HTTP/2amayyx.line.pm/img/lazaheader/1.jpg IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=843, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=1230], progressive, precision 8, 1230x813, components 3 Hash668fa7fdba5a3b6854027ddbe84470b5 4210c67e3b28ba3e885155c1b71be7a7ede5525f 5ac1bc59ab9ef0019765912c275ba50cd1e3744f59bd2de9e15227b1e775bb7a
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET /img/lazaheader/1.jpg HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 16:51:32 GMT
content-type: image/jpeg
last-modified: Wed, 24 Apr 2024 18:28:56 GMT
accept-ranges: bytes
content-length: 66034
date: Sat, 04 May 2024 16:51:32 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.2/webfonts/fa-solid-900.woff2 | 104.17.25.14 | 200 OK | 150 kB |
URL GET HTTP/3cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.2/webfonts/fa-solid-900.woff2 IP104.17.25.14:443
CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 150020, version 772.1280 Size150 kB (150020 bytes) Hashd5e647388e2415268b700d3df2e30a0d 97f0942c6627ddd89fb62170e5cac9a2cbd6c98c 886c86112a804ef1ddd1cb206af4c8c40e34b73c26652ca231404aa35a6b30d9
GET /ajax/libs/font-awesome/6.4.2/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://amayyx.line.pm
DNT: 1
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 16:51:33 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 150020
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "64cac444-24a04"
last-modified: Wed, 02 Aug 2023 21:01:56 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 339044
expires: Thu, 24 Apr 2025 16:51:33 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6Qx3blfVkdfmEQhVp0nwDQv6hoLHHlzXpobDnOkU7uXcLIs3rE8fG4GrRETtmC8%2BdLFTQe4kiTYez0EMLeDj6m7tW6rl0mN%2Bg%2FH5k5NtSrqjPjl%2B52xdCqeNfR4ikcgAfMRwRUg7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87e9ff08d9c81c02-OSL
alt-svc: h3=":443"; ma=86400
|
|
| amayyx.line.pm/img/style-img/facebook-text.png | 103.250.10.193 | 200 OK | 12 kB |
URL GET HTTP/2amayyx.line.pm/img/style-img/facebook-text.png IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
File typePNG image data, 604 x 158, 8-bit colormap, non-interlaced Hashc8469979cfb24192fc638efb7784a921 ff2f9c8fdb233dc3bfabd2ecaf11cbb70791dfa3 0cb512d932e3ad625dfb6c1ae0d47e1dfafecdf31c9c7fd9c9677c95bf31efb5
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET /img/style-img/facebook-text.png HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 16:51:33 GMT
content-type: image/png
last-modified: Thu, 30 Nov 2023 00:01:46 GMT
accept-ranges: bytes
content-length: 12239
date: Sat, 04 May 2024 16:51:33 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| amayyx.line.pm/img/style-img/icon_2.jpg | 103.250.10.193 | 200 OK | 9.6 kB |
URL GET HTTP/2amayyx.line.pm/img/style-img/icon_2.jpg IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
File typeRIFF (little-endian) data, Web/P image Hashe595d05f92349dc2b5aa37164ae376e7 f4ed874d1fceb5eafb7bd5c213715e683fff690f 50cb8b539efb773ccb042e5f18ed308f2d99418e6974603bfe6d39b48659970f
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET /img/style-img/icon_2.jpg HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 16:51:33 GMT
content-type: image/jpeg
last-modified: Sun, 07 Apr 2024 14:48:16 GMT
accept-ranges: bytes
content-length: 9604
date: Sat, 04 May 2024 16:51:33 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| amayyx.line.pm/img/style-img/twitter-text.png | 103.250.10.193 | 404 Not Found | 1.3 kB |
URL GET HTTP/2amayyx.line.pm/img/style-img/twitter-text.png IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
File typeHTML document, ASCII text, with CRLF, LF line terminators Hash8150f458ed6fb9b1db4e5cfa57a1a281 6e5726854d28687b560d7fdcb5c782c425c7dfb9 4c13d452dd5d49671bd93ca32f2b4f85c78e39b6ab0ad1f38d98ed267f8fd896
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET /img/style-img/twitter-text.png HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1251
date: Sat, 04 May 2024 16:51:33 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| amayyx.line.pm/img/style-img/icon_fb.png | 103.250.10.193 | 200 OK | 4.5 kB |
URL GET HTTP/2amayyx.line.pm/img/style-img/icon_fb.png IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
File typePNG image data, 512 x 512, 8-bit colormap, non-interlaced Hash8552ac3c41b10ae9e7f13d95e845a35d 86715d70cf7fada24e9d5e6647135f8678e923cf 3963edc509012e07abe8e5e3955a1793a21cadbc706859f1a299779b4289115a
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET /img/style-img/icon_fb.png HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 16:51:33 GMT
content-type: image/png
last-modified: Thu, 30 Nov 2023 00:01:46 GMT
accept-ranges: bytes
content-length: 4538
date: Sat, 04 May 2024 16:51:33 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| amayyx.line.pm/img/logo.png | 103.250.10.193 | 200 OK | 3.6 kB |
URL GET HTTP/2amayyx.line.pm/img/logo.png IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
File typePNG image data, 459 x 138, 4-bit colormap, non-interlaced Hash710ab12fbdd93e89d98902a1df21555e e8be6465ebdd6c3f842ccac1d1c521e317acbd30 ae45ffe0390664e695ea67cab0df07806db28af10705db5b6cf714021d33f41b
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET /img/logo.png HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 16:51:33 GMT
content-type: image/png
last-modified: Wed, 24 Apr 2024 13:29:20 GMT
accept-ranges: bytes
content-length: 3567
date: Sat, 04 May 2024 16:51:33 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| amayyx.line.pm/img/priv_laz.png | 103.250.10.193 | 404 Not Found | 1.3 kB |
URL GET HTTP/2amayyx.line.pm/img/priv_laz.png IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
File typeHTML document, ASCII text, with CRLF, LF line terminators Hash8150f458ed6fb9b1db4e5cfa57a1a281 6e5726854d28687b560d7fdcb5c782c425c7dfb9 4c13d452dd5d49671bd93ca32f2b4f85c78e39b6ab0ad1f38d98ed267f8fd896
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET /img/priv_laz.png HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1251
date: Sat, 04 May 2024 16:51:33 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| amayyx.line.pm/img/popup-close2.png | 103.250.10.193 | 200 OK | 705 B |
URL GET HTTP/2amayyx.line.pm/img/popup-close2.png IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
File typePNG image data, 30 x 31, 8-bit colormap, non-interlaced Hash70f09a845a78b4baf0406db0c13550d5 25b4fe777250c55e31172d001ae007fafb1ca591 98545fb5e68a5177fa675e38c5a44c990ae910665a46a4b7e1b1e415f87ae286
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET /img/popup-close2.png HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 16:51:33 GMT
content-type: image/png
last-modified: Wed, 24 Apr 2024 13:29:20 GMT
accept-ranges: bytes
content-length: 705
date: Sat, 04 May 2024 16:51:33 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| amayyx.line.pm/img/kotak.png | 103.250.10.193 | 404 Not Found | 1.3 kB |
URL GET HTTP/2amayyx.line.pm/img/kotak.png IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
File typeHTML document, ASCII text, with CRLF, LF line terminators Hash8150f458ed6fb9b1db4e5cfa57a1a281 6e5726854d28687b560d7fdcb5c782c425c7dfb9 4c13d452dd5d49671bd93ca32f2b4f85c78e39b6ab0ad1f38d98ed267f8fd896
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET /img/kotak.png HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1251
date: Sat, 04 May 2024 16:51:33 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| amayyx.line.pm/img/load.gif | 103.250.10.193 | 404 Not Found | 1.3 kB |
URL GET HTTP/2amayyx.line.pm/img/load.gif IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
File typeHTML document, ASCII text, with CRLF, LF line terminators Hash8150f458ed6fb9b1db4e5cfa57a1a281 6e5726854d28687b560d7fdcb5c782c425c7dfb9 4c13d452dd5d49671bd93ca32f2b4f85c78e39b6ab0ad1f38d98ed267f8fd896
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET /img/load.gif HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1251
date: Sat, 04 May 2024 16:51:33 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| amayyx.line.pm/img/reward/1/4/asddvertert/acas234asd/3243sc23/3243dsfsdf4/asdas34dc/ds34234/asd234234/cczhsgj66h.png | 103.250.10.193 | 200 OK | 22 kB |
URL GET HTTP/2amayyx.line.pm/img/reward/1/4/asddvertert/acas234asd/3243sc23/3243dsfsdf4/asdas34dc/ds34234/asd234234/cczhsgj66h.png IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
File typePNG image data, 480 x 480, 8-bit colormap, non-interlaced Hash2ea755e5a47ff4bc9dcc5a80b5e7cf22 8155072b74ef70391f38ff68bf780c5a8c0dd41d fab73ba6a21f32be10606d9b2b158c2d633ab85bf6d94e9c6412e23726e30ea9
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET /img/reward/1/4/asddvertert/acas234asd/3243sc23/3243dsfsdf4/asdas34dc/ds34234/asd234234/cczhsgj66h.png HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 16:51:33 GMT
content-type: image/png
last-modified: Wed, 24 Apr 2024 13:27:26 GMT
accept-ranges: bytes
content-length: 21769
date: Sat, 04 May 2024 16:51:33 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| amayyx.line.pm/img/reward/1/4/asddvertert/acas234asd/3243sc23/3243dsfsdf4/asdas34dc/ds34234/asd234234/897asjs7sh72.png | 103.250.10.193 | 200 OK | 48 kB |
URL GET HTTP/2amayyx.line.pm/img/reward/1/4/asddvertert/acas234asd/3243sc23/3243dsfsdf4/asdas34dc/ds34234/asd234234/897asjs7sh72.png IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
File typePNG image data, 480 x 480, 8-bit colormap, non-interlaced Hashfd3e9635f370e559a00e0f40a14d3087 8076bb128b2f2dd1cfe2e360f1d333069d24cbdd d62950f8557e1ac65ae5ec1b48d39e3ddb1c2ba65baa8d3425fe974bfc5e6e39
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET /img/reward/1/4/asddvertert/acas234asd/3243sc23/3243dsfsdf4/asdas34dc/ds34234/asd234234/897asjs7sh72.png HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 16:51:33 GMT
content-type: image/png
last-modified: Wed, 24 Apr 2024 13:27:26 GMT
accept-ranges: bytes
content-length: 47872
date: Sat, 04 May 2024 16:51:33 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| amayyx.line.pm/img/reward/1/4/asddvertert/acas234asd/3243sc23/3243dsfsdf4/asdas34dc/ds34234/asd234234/66asgs72h.png | 103.250.10.193 | 200 OK | 35 kB |
URL GET HTTP/2amayyx.line.pm/img/reward/1/4/asddvertert/acas234asd/3243sc23/3243dsfsdf4/asdas34dc/ds34234/asd234234/66asgs72h.png IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
File typePNG image data, 480 x 480, 8-bit colormap, non-interlaced Hash5228d4961a08333372d4814cdad5274b f0ca3fe0d8f3d17baf7fdd56aa9ae36f99f2ba9f 7c54aa250da450e0d5ca17523bbcb63bf32b712817cb70bf2c625b1f0a6e250e
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET /img/reward/1/4/asddvertert/acas234asd/3243sc23/3243dsfsdf4/asdas34dc/ds34234/asd234234/66asgs72h.png HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 16:51:33 GMT
content-type: image/png
last-modified: Wed, 24 Apr 2024 13:27:26 GMT
accept-ranges: bytes
content-length: 35078
date: Sat, 04 May 2024 16:51:33 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| amayyx.line.pm/img/laz-spin.png | 103.250.10.193 | 200 OK | 21 kB |
URL GET HTTP/2amayyx.line.pm/img/laz-spin.png IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
File typePNG image data, 595 x 563, 8-bit colormap, non-interlaced Hashf56888fe76cbc64c5fdf4015096bbd65 7ce071fa117821224044923f46cead9da1cf4450 0648ed50a3a1802759d207d3f6a7d2cfebdf9917289e3fb02eebdb06339e4e59
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET /img/laz-spin.png HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 16:51:33 GMT
content-type: image/png
last-modified: Wed, 24 Apr 2024 13:29:20 GMT
accept-ranges: bytes
content-length: 21258
date: Sat, 04 May 2024 16:51:33 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| amayyx.line.pm/img/reward/1/4/asddvertert/acas234asd/3243sc23/3243dsfsdf4/asdas34dc/ds34234/asd234234/zzsad3.png | 103.250.10.193 | 200 OK | 36 kB |
URL GET HTTP/2amayyx.line.pm/img/reward/1/4/asddvertert/acas234asd/3243sc23/3243dsfsdf4/asdas34dc/ds34234/asd234234/zzsad3.png IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
File typePNG image data, 480 x 480, 8-bit colormap, non-interlaced Hash75c72e827120bad811db40692d42b81e 0edad5ae727aba5fdd2f0aced15b9e9ad50e84ff 9e2ba561149957b64a9d26ddea8ec5a8ecb69a18404c3974b14c185b83de3859
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET /img/reward/1/4/asddvertert/acas234asd/3243sc23/3243dsfsdf4/asdas34dc/ds34234/asd234234/zzsad3.png HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 16:51:33 GMT
content-type: image/png
last-modified: Wed, 24 Apr 2024 13:26:50 GMT
accept-ranges: bytes
content-length: 36429
date: Sat, 04 May 2024 16:51:33 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| amayyx.line.pm/img/reward/1/4/asddvertert/acas234asd/3243sc23/3243dsfsdf4/asdas34dc/ds34234/asd234234/asd32sd1.png | 103.250.10.193 | 200 OK | 47 kB |
URL GET HTTP/2amayyx.line.pm/img/reward/1/4/asddvertert/acas234asd/3243sc23/3243dsfsdf4/asdas34dc/ds34234/asd234234/asd32sd1.png IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
File typePNG image data, 480 x 480, 8-bit colormap, non-interlaced Hash3c52562e6daf02ef55b7c2e65d1a7c88 24d39d52edda6658ab0793d83404666284ecc72e 27619c6a63b83c992258343017ce95f5f97fa109823d0cf5436d3f836c353645
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET /img/reward/1/4/asddvertert/acas234asd/3243sc23/3243dsfsdf4/asdas34dc/ds34234/asd234234/asd32sd1.png HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 16:51:33 GMT
content-type: image/png
last-modified: Wed, 24 Apr 2024 13:27:26 GMT
accept-ranges: bytes
content-length: 47137
date: Sat, 04 May 2024 16:51:33 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| amayyx.line.pm/img/reward/1/4/asddvertert/acas234asd/3243sc23/3243dsfsdf4/asdas34dc/ds34234/asd234234/234c233.png | 103.250.10.193 | 200 OK | 40 kB |
URL GET HTTP/2amayyx.line.pm/img/reward/1/4/asddvertert/acas234asd/3243sc23/3243dsfsdf4/asdas34dc/ds34234/asd234234/234c233.png IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
File typePNG image data, 480 x 480, 8-bit colormap, non-interlaced Hash6802a45420dd31d2f84d0f33efd416d1 3fd75af40e96fd91ed25350f5cbb4ea1b20ba51c 40eb2dfe605e8f0154f47a7aab44e3744f38d5982f5ad35ef7c74844a6e8df66
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET /img/reward/1/4/asddvertert/acas234asd/3243sc23/3243dsfsdf4/asdas34dc/ds34234/asd234234/234c233.png HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 16:51:33 GMT
content-type: image/png
last-modified: Wed, 24 Apr 2024 13:27:26 GMT
accept-ranges: bytes
content-length: 40108
date: Sat, 04 May 2024 16:51:33 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| amayyx.line.pm/img/reward/withBg/laza1.jpg | 103.250.10.193 | 200 OK | 17 kB |
URL GET HTTP/2amayyx.line.pm/img/reward/withBg/laza1.jpg IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 480x480, components 3 Hash0cc321b8d1a396f806c43109b18881f4 3d0378c9e4ca4d3e0e89b982fcf723789435998b c9215141249ed10c44165dff66a11319b5a9305507af4686e5d65733083895b0
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET /img/reward/withBg/laza1.jpg HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 16:51:33 GMT
content-type: image/jpeg
last-modified: Sun, 21 Apr 2024 14:03:24 GMT
accept-ranges: bytes
content-length: 16568
date: Sat, 04 May 2024 16:51:33 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| amayyx.line.pm/img/tokens.png | 103.250.10.193 | 200 OK | 4.3 kB |
URL GET HTTP/2amayyx.line.pm/img/tokens.png IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
File typePNG image data, 135 x 130, 8-bit colormap, non-interlaced Hash4c6f6672cfc42bcf9eab59ad8044a7b7 f5274c25b45ffd6008a8d98f43720ea536f43a95 e55ffb92ae661225a08a3b3607998b212ecf4350947109b225b90b9a5f13480a
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET /img/tokens.png HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 16:51:33 GMT
content-type: image/png
last-modified: Wed, 24 Apr 2024 13:29:20 GMT
accept-ranges: bytes
content-length: 4283
date: Sat, 04 May 2024 16:51:33 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| amayyx.line.pm/img/reward/withBg/laza2.jpg | 103.250.10.193 | 200 OK | 16 kB |
URL GET HTTP/2amayyx.line.pm/img/reward/withBg/laza2.jpg IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 480x480, components 3 Hash74c19b04d2ab21e0c4c09de2a005f93d d41713e65d92e42299d15c03a6dbff8522f69f6e f8342a22f397bb2d21a347a4ba9d0e8a5b275727301862e21cf5a34f0dba49bf
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET /img/reward/withBg/laza2.jpg HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 16:51:33 GMT
content-type: image/jpeg
last-modified: Sun, 21 Apr 2024 14:03:26 GMT
accept-ranges: bytes
content-length: 16436
date: Sat, 04 May 2024 16:51:33 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| amayyx.line.pm/img/reward/withBg/laza3.jpg | 103.250.10.193 | 200 OK | 23 kB |
URL GET HTTP/2amayyx.line.pm/img/reward/withBg/laza3.jpg IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=480, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=480], progressive, precision 8, 480x480, components 3 Hash950ebcbde26134cbf74bfe2d753761c6 510ec4714b4923eef01c79c29c2736b9f55ceaaf 056a23671e32c208d1e1f83f7ee4396e2e1e72c27ec47257eceb4fbf0905ea39
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET /img/reward/withBg/laza3.jpg HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 16:51:33 GMT
content-type: image/jpeg
last-modified: Thu, 11 Apr 2024 16:43:16 GMT
accept-ranges: bytes
content-length: 22804
date: Sat, 04 May 2024 16:51:33 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| amayyx.line.pm/img/reward/withBg/laza4.jpg | 103.250.10.193 | 200 OK | 23 kB |
URL GET HTTP/2amayyx.line.pm/img/reward/withBg/laza4.jpg IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=480, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=480], progressive, precision 8, 480x480, components 3 Hash8c414250328592f515d7dd22408985d2 6afceb0ddb513dbb9f9a62a0beb55be2b2ce2cc4 d5902002cfb1e9cbf44723af63f3eeb5b7ccf9e0b1b31eb59c50f5e90a300b94
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET /img/reward/withBg/laza4.jpg HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 16:51:33 GMT
content-type: image/jpeg
last-modified: Thu, 11 Apr 2024 16:43:36 GMT
accept-ranges: bytes
content-length: 23351
date: Sat, 04 May 2024 16:51:33 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| amayyx.line.pm/img/reward/withBg/laza5.jpg | 103.250.10.193 | 200 OK | 23 kB |
URL GET HTTP/2amayyx.line.pm/img/reward/withBg/laza5.jpg IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=480, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=480], progressive, precision 8, 480x480, components 3 Hashb92f86713a796e10f6b9ac90a666664f c4f8d34d0677e07c9ab3321ac00ae26695f708c3 759759f31a3cca1ad1754ed870a0f987c76a1c08452bb2ba23c3a3a6b1d015b7
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET /img/reward/withBg/laza5.jpg HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 16:51:33 GMT
content-type: image/jpeg
last-modified: Thu, 11 Apr 2024 16:43:50 GMT
accept-ranges: bytes
content-length: 22569
date: Sat, 04 May 2024 16:51:33 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| amayyx.line.pm/img/reward/withBg/laza6.jpg | 103.250.10.193 | 200 OK | 25 kB |
URL GET HTTP/2amayyx.line.pm/img/reward/withBg/laza6.jpg IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=480, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=480], progressive, precision 8, 480x480, components 3 Hash4330caba343a0550a303cb6f8b96c9b2 343329673623a1b6ddfdd2e4ac5a46242d4cf1dd 3bcc613ebc86418db03079e61a53c6f5aa2d7546e93d555080ea497fc3b3afe8
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET /img/reward/withBg/laza6.jpg HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 16:51:33 GMT
content-type: image/jpeg
last-modified: Thu, 11 Apr 2024 16:43:00 GMT
accept-ranges: bytes
content-length: 25374
date: Sat, 04 May 2024 16:51:33 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| amayyx.line.pm/img/loadlogin.png | 103.250.10.193 | 200 OK | 66 kB |
URL GET HTTP/2amayyx.line.pm/img/loadlogin.png IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=761, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=1501], progressive, precision 8, 1501x761, components 3 Hash421bf7fc26bc832d2e7299bc0d0b7e71 78a347370d34e5748d29066e649721ffd099c627 61e4301996bf745767be4b899737afa23955f825870184df2a111b3921448d29
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET /img/loadlogin.png HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 16:51:33 GMT
content-type: image/png
last-modified: Wed, 17 Apr 2024 18:15:58 GMT
accept-ranges: bytes
content-length: 65943
date: Sat, 04 May 2024 16:51:33 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| amayyx.line.pm/img/lazback.jpg | 103.250.10.193 | 200 OK | 73 kB |
URL GET HTTP/2amayyx.line.pm/img/lazback.jpg IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=1720, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=1000], progressive, precision 8, 1000x2062, components 3 Hash38d213059383619152b75a45f728418b 8d69f7335a01f8caf6da97ee251be64ad954313f 3ccc1c8f1c31046b10542eb83af1b1f2f7465076eb033e6bb1360ef10fe1fbea
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET /img/lazback.jpg HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 16:51:33 GMT
content-type: image/jpeg
last-modified: Wed, 24 Apr 2024 18:48:32 GMT
accept-ranges: bytes
content-length: 72608
date: Sat, 04 May 2024 16:51:33 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| amayyx.line.pm/img/slogan1.png | 103.250.10.193 | 200 OK | 27 kB |
URL GET HTTP/2amayyx.line.pm/img/slogan1.png IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
File typePNG image data, 666 x 375, 8-bit colormap, non-interlaced Hash77d93a816a8ebe1cc14dd78951b12cac 1ced3012ce1fb9faf364903ebba7dfc56de95816 f27572305e1e9df8bb4e08a20a35bd01f765ef233556da06f4105788ed9098f3
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET /img/slogan1.png HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 16:51:33 GMT
content-type: image/png
last-modified: Wed, 24 Apr 2024 13:29:20 GMT
accept-ranges: bytes
content-length: 26727
date: Sat, 04 May 2024 16:51:33 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| amayyx.line.pm/img/slogan2.png | 103.250.10.193 | 200 OK | 28 kB |
URL GET HTTP/2amayyx.line.pm/img/slogan2.png IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
File typePNG image data, 609 x 133, 8-bit colormap, non-interlaced Hashbd0ec5aad21218fef48cd3b3e4d6d8a2 3c7e5fab1fdfe3a48b8c50f6a655db16992c252d 1d6c05edb242d389189d36a4fe04779c6fe04b95816f46ff632c6a242338443d
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET /img/slogan2.png HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 16:51:33 GMT
content-type: image/png
last-modified: Wed, 24 Apr 2024 13:29:20 GMT
accept-ranges: bytes
content-length: 27496
date: Sat, 04 May 2024 16:51:33 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| amayyx.line.pm/img/item-off.png | 103.250.10.193 | 200 OK | 262 kB |
URL GET HTTP/2amayyx.line.pm/img/item-off.png IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
File typePNG image data, 1200 x 1200, 8-bit colormap, non-interlaced Size262 kB (261734 bytes) Hash0ee8258f6f64e1f0acd35abb67dbee8b 95d020884a3d0b7980dde8a45bd7adbb79337a5e 2a401bca438f18f650fbf83177518265a4d20a9c1206b68231a45887345ce3c2
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET /img/item-off.png HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/css-zone/zero-zone.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 16:51:33 GMT
content-type: image/png
last-modified: Wed, 24 Apr 2024 13:29:20 GMT
accept-ranges: bytes
content-length: 261734
date: Sat, 04 May 2024 16:51:33 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| amayyx.line.pm/img/box.png | 103.250.10.193 | 404 Not Found | 1.3 kB |
URL GET HTTP/2amayyx.line.pm/img/box.png IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
File typeHTML document, ASCII text, with CRLF, LF line terminators Hash8150f458ed6fb9b1db4e5cfa57a1a281 6e5726854d28687b560d7fdcb5c782c425c7dfb9 4c13d452dd5d49671bd93ca32f2b4f85c78e39b6ab0ad1f38d98ed267f8fd896
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET /img/box.png HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1251
date: Sat, 04 May 2024 16:51:33 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| amayyx.line.pm/img/exbg.png | 103.250.10.193 | 200 OK | 29 kB |
URL GET HTTP/2amayyx.line.pm/img/exbg.png IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
File typePNG image data, 748 x 224, 8-bit colormap, non-interlaced Hashd1ce9d6d59bb0bb9e39d263dc8acb49d 389965c9083abde8c59678fc17b66912d5f56820 06bf109f40c19289850fa941b58151dacda96f0c3bc96f67f9898f10f287ef39
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET /img/exbg.png HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 16:51:33 GMT
content-type: image/png
last-modified: Wed, 24 Apr 2024 13:28:54 GMT
accept-ranges: bytes
content-length: 29281
date: Sat, 04 May 2024 16:51:33 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| amayyx.line.pm/img/bgcollect.png | 103.250.10.193 | 200 OK | 13 kB |
URL GET HTTP/2amayyx.line.pm/img/bgcollect.png IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
File typePNG image data, 770 x 125, 8-bit colormap, non-interlaced Hash1c7802a5531e66d268f528f70775eb96 9e1cc336dd2ce5f16dc599272a2120e40082e894 c0cc229300767a2acd1f9d5a796f7d321558bc3bb9376f67c91a4c922e1235cf
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET /img/bgcollect.png HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 16:51:33 GMT
content-type: image/png
last-modified: Wed, 24 Apr 2024 20:30:52 GMT
accept-ranges: bytes
content-length: 12550
date: Sat, 04 May 2024 16:51:33 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| amayyx.line.pm/img/yes.png | 103.250.10.193 | 200 OK | 3.8 kB |
URL GET HTTP/2amayyx.line.pm/img/yes.png IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
File typePNG image data, 174 x 53, 8-bit colormap, non-interlaced Hash2de8dd9dffd06308e22cc8b260fe79ae bec2e7a0e904f73ae6c8c908d853b9b2417c6ada 7741ea63cca2bb3f0044ef6447651ec0db1872e98f5aa06eed82eec415160f02
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET /img/yes.png HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 16:51:33 GMT
content-type: image/png
last-modified: Wed, 24 Apr 2024 13:29:20 GMT
accept-ranges: bytes
content-length: 3817
date: Sat, 04 May 2024 16:51:33 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| amayyx.line.pm/fonts/laza.woff2 | 103.250.10.193 | 200 OK | 22 kB |
URL GET HTTP/2amayyx.line.pm/fonts/laza.woff2 IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 22220, version 1.0 Hash345579e8566a3dd6dc9feb5362fbe7e1 df075dd0c26e72fd7df19948f07904c1eaa72ded 1d0dfcc32b3be2bf3b3dbc371e9b7c5ce205f4bc6f7c8ce0226256cc7064c3e4
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET /fonts/laza.woff2 HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 16:51:33 GMT
content-type: font/woff2
last-modified: Thu, 30 Nov 2023 00:01:44 GMT
accept-ranges: bytes
content-length: 22220
date: Sat, 04 May 2024 16:51:33 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| amayyx.line.pm/js-zone/flaglink.js | 103.250.10.193 | 404 Not Found | 1.3 kB |
URL GET HTTP/2amayyx.line.pm/js-zone/flaglink.js IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
File typeHTML document, ASCII text, with CRLF, LF line terminators Hash8150f458ed6fb9b1db4e5cfa57a1a281 6e5726854d28687b560d7fdcb5c782c425c7dfb9 4c13d452dd5d49671bd93ca32f2b4f85c78e39b6ab0ad1f38d98ed267f8fd896
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET /js-zone/flaglink.js HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1251
date: Sat, 04 May 2024 16:51:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| amayyx.line.pm/media/spin.mp3 | 103.250.10.193 | 206 Partial Content | 93 kB |
URL GET HTTP/2amayyx.line.pm/media/spin.mp3 IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
File typeAudio file with ID3 version 2.4.0, contains: MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, Stereo Hashd79ba85640e089dabcc31377d3586363 9e114f0f2ae0cad5b464a6d14f3f3e91193b204a c116089f76fcfac640d9077510d653c8efe84c308e3b163913b9193417bbc6a5
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET /media/spin.mp3 HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 206 Partial Content
content-type: audio/mpeg
last-modified: Thu, 30 Nov 2023 00:01:44 GMT
content-range: bytes 0-93346/93347
content-length: 93347
date: Sat, 04 May 2024 16:51:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| amayyx.line.pm/media/open.mp3 | 103.250.10.193 | 206 Partial Content | 15 kB |
URL GET HTTP/2amayyx.line.pm/media/open.mp3 IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
File typeAudio file with ID3 version 2.4.0, contains: MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, Stereo Hashb90e4ca13b142bc492624400e02e7446 e10f67a71cf795942811084a15e87e1d934dee32 8536412de64d64d8249a29092508577290e7663066b81a008ce68fa0435e24c7
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET /media/open.mp3 HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 206 Partial Content
content-type: audio/mpeg
last-modified: Sun, 07 Apr 2024 15:56:10 GMT
content-range: bytes 0-14798/14799
content-length: 14799
date: Sat, 04 May 2024 16:51:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| amayyx.line.pm/media/close.mp3 | 103.250.10.193 | 206 Partial Content | 10 kB |
URL GET HTTP/2amayyx.line.pm/media/close.mp3 IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
File typeAudio file with ID3 version 2.4.0, contains: MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, Stereo Hash9348d3f465b74d585b2a1e9de00ae05a 51bd0fc14cfc6985bf66f0ba86c068014b391961 06a13cad73913af634994d110b013db9e7f6f5ad149e921cba4ef27ec4a2a17d
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET /media/close.mp3 HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 206 Partial Content
content-type: audio/mpeg
last-modified: Sun, 07 Apr 2024 15:56:30 GMT
content-range: bytes 0-10201/10202
content-length: 10202
date: Sat, 04 May 2024 16:51:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| amayyx.line.pm/js-zone/slidernotif.js | 103.250.10.193 | 404 Not Found | 1.3 kB |
URL GET HTTP/2amayyx.line.pm/js-zone/slidernotif.js IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
File typeHTML document, ASCII text, with CRLF, LF line terminators Hash8150f458ed6fb9b1db4e5cfa57a1a281 6e5726854d28687b560d7fdcb5c782c425c7dfb9 4c13d452dd5d49671bd93ca32f2b4f85c78e39b6ab0ad1f38d98ed267f8fd896
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET /js-zone/slidernotif.js HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1251
date: Sat, 04 May 2024 16:51:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| amayyx.line.pm/js-zone/sender.js | 103.250.10.193 | 404 Not Found | 1.3 kB |
URL GET HTTP/2amayyx.line.pm/js-zone/sender.js IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
File typeHTML document, ASCII text, with CRLF, LF line terminators Hash8150f458ed6fb9b1db4e5cfa57a1a281 6e5726854d28687b560d7fdcb5c782c425c7dfb9 4c13d452dd5d49671bd93ca32f2b4f85c78e39b6ab0ad1f38d98ed267f8fd896
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET /js-zone/sender.js HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1251
date: Sat, 04 May 2024 16:51:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| amayyx.line.pm/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js | 103.250.10.193 | 404 Not Found | 1.3 kB |
URL GET HTTP/2amayyx.line.pm/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js IP103.250.10.193:443 ASN#138608 Cloud Host Pte Ltd
CertificateIssuerLet's Encrypt Subjectwww.amayyx.line.pm FingerprintF3:B0:3A:DF:24:3E:DA:6B:1E:2D:6B:75:20:9E:CE:00:3D:C2:11:CC ValidityFri, 03 May 2024 12:51:13 GMT - Thu, 01 Aug 2024 12:51:12 GMT
File typeHTML document, ASCII text, with CRLF, LF line terminators Hash8150f458ed6fb9b1db4e5cfa57a1a281 6e5726854d28687b560d7fdcb5c782c425c7dfb9 4c13d452dd5d49671bd93ca32f2b4f85c78e39b6ab0ad1f38d98ed267f8fd896
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Garena |
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: amayyx.line.pm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1251
date: Sat, 04 May 2024 16:51:35 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| freefiremobile-a.akamaihd.net/common/web_event/common/images/ff-logo-icon.png | 95.101.10.81 | 200 OK | 1.4 kB |
URL GET HTTP/1.1freefiremobile-a.akamaihd.net/common/web_event/common/images/ff-logo-icon.png IP95.101.10.81:443 ASN#20940 Akamai International B.V.
CertificateIssuerDigiCert Inc Subjecta248.e.akamai.net FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9 ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT
File typePNG image data, 71 x 61, 8-bit/color RGBA, non-interlaced Hash7829ec7999775865a662468dd7e96117 d2dda88c46098945bfc1282724aa86478acddc10 049490ddf516d0c066e4245937065d8ff549ecddfd0f6ebe55891960627c86e8
GET /common/web_event/common/images/ff-logo-icon.png HTTP/1.1
Host: freefiremobile-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: OBS
x-obs-request-id: 00000185EE9543439542F10037BFF7CD
Accept-Ranges: bytes
ETag: "7829ec7999775865a662468dd7e96117"
Last-Modified: Thu, 04 Aug 2022 12:29:56 GMT
Content-Type: image/png
x-obs-id-2: 32AAAQAAEAABAAAQAAEAABAAAQAAEAABCSZdaWuzpmM2O+ItUV06oDUJbNs22WV8
Content-Length: 1414
Date: Sat, 04 May 2024 16:51:35 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Cache-Control: public, max-age=3600
Access-Control-Allow-Origin: *
|
|
| fonts.googleapis.com/css?family=Roboto:300,400,500,700|Teko:300,400,500 | 142.250.74.170 | 200 OK | 12 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Roboto:300,400,500,700|Teko:300,400,500 IP142.250.74.170:443
CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
Hash807349734f3707b50b73c3fd626526e8 2f3ab67f0ffa01bc1f0c180cae9085ecc8d96d63 ce7d7e11e41b1b3619cbdf436bbf2557fda2d97d434e65fab281207ffae5c0d0
GET /css?family=Roboto:300,400,500,700|Teko:300,400,500 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 04 May 2024 16:51:32 GMT
date: Sat, 04 May 2024 16:51:32 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Teko&display=swap | 142.250.74.170 | 200 OK | 1.2 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Teko&display=swap IP142.250.74.170:443
CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typeASCII text, with very long lines (1182), with no line terminators Hash517c67874f6f9ada9c4283fe962de9cf 3ef9577a3d48a4d102dbad75e10bc5563e08d81f 6a843b3e563cf2b17bbb15e15041f252e7524deb41991c4a2ce088b0e1c7f29a
GET /css2?family=Teko&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 04 May 2024 16:51:32 GMT
date: Sat, 04 May 2024 16:51:32 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css | 104.18.10.207 | 200 OK | 31 kB |
URL GET HTTP/2stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css IP104.18.10.207:443
CertificateIssuerGoogle Trust Services LLC Subjectbootstrapcdn.com Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63 ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT
File typeASCII text, with very long lines (30837) Hash269550530cc127b6aa5a35925a7de6ce 512c7d79033e3028a9be61b540cf1a6870c896f8 799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://amayyx.line.pm
DNT: 1
Connection: keep-alive
Referer: https://amayyx.line.pm/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 16:51:32 GMT
content-type: text/css; charset=utf-8
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31919000
content-encoding: br
etag: W/"269550530cc127b6aa5a35925a7de6ce"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 03/18/2024 12:28:12
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1078
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: d6340617f129cfe9cc10a022142bef0a
cdn-cache: HIT
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87e9ff02c9c31c02-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|