| cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js | 104.17.25.14 | 200 OK | 28 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js IP104.17.25.14:443
Requested byhttps://ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714583394533/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65451) Hash220afd743d9e9643852e31a135a9f3ae 88523924351bac0b5d560fe0c5781e2556e7693d 0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a
GET /ajax/libs/jquery/3.4.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ng.nairaintheget.xyz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 01 May 2024 21:26:34 GMT
content-type: application/javascript; charset=utf-8
content-length: 27748
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-15851"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 90889
expires: Mon, 21 Apr 2025 21:26:34 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=R9VdAit9YEgNeYlhKFmDLD0uF8LYwobGeEK3fr9MKLXcZOyd8MYfwmVnJ8G%2FjdNsUPA%2BSQHdq%2BIFhr4vY667ehu%2B5A6Kcu0bydPonKk%2FEUkqhgLGmNnHMsJxkRQd3lyV58plJp5u"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87d2d9c00eb6568d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ng.nairaintheget.xyz/6/Wow_files/env_closed.png | 172.67.179.157 | 200 OK | 2.3 kB |
URL GET HTTP/3ng.nairaintheget.xyz/6/Wow_files/env_closed.png IP172.67.179.157:443
Requested byhttps://ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714583394533/ CertificateIssuerGoogle Trust Services LLC Subjectnairaintheget.xyz Fingerprint49:C4:BA:2D:AA:45:F9:61:08:6C:A9:95:CE:A1:AD:5C:06:77:A9:B6 ValidityWed, 10 Apr 2024 13:14:35 GMT - Tue, 09 Jul 2024 13:14:34 GMT
File typePNG image data, 257 x 184, 8-bit colormap, non-interlaced Hash57cffe641003f9a80834df4f706d16c3 900af1f1f75f11f547bf4bab2f9f88f0b3b0c38d fd0a52dab9715198deaac93ec52117c0443279db1ed9b186790806d7542e98aa
GET /6/Wow_files/env_closed.png HTTP/1.1
Host: ng.nairaintheget.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714583394533/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 01 May 2024 21:26:34 GMT
content-type: image/png
content-length: 2283
x-amz-id-2: jGs+DzOT3ISapPquYhfYmqgephORzo3busRf7woKPLf3XwbTLkTJ/qQ0nvpera0ndGHe0hf20zM=
x-amz-request-id: KH8D74ZW57PV25SB
last-modified: Sun, 11 Feb 2024 14:59:58 GMT
etag: "57cffe641003f9a80834df4f706d16c3"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=F%2BDKk0FZBKBrmC1ouMctQnjBW72KxcTnzEcnuv%2B2usO7P5tokH9FpjYiJe4ppCVdo0bBS290uTaStfuNtI17lyPtegUCMGKxI6umjWBCTjA1Cfo%2FxhIJ5qQncTDucBLFemEwd67o0Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d2d9bffee756c5-OSL
alt-svc: h3=":443"; ma=86400
|
|
| ng.nairaintheget.xyz/6/Wow_files/env_prize.png | 172.67.179.157 | 200 OK | 28 kB |
URL GET HTTP/3ng.nairaintheget.xyz/6/Wow_files/env_prize.png IP172.67.179.157:443
Requested byhttps://ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714583394533/ CertificateIssuerGoogle Trust Services LLC Subjectnairaintheget.xyz Fingerprint49:C4:BA:2D:AA:45:F9:61:08:6C:A9:95:CE:A1:AD:5C:06:77:A9:B6 ValidityWed, 10 Apr 2024 13:14:35 GMT - Tue, 09 Jul 2024 13:14:34 GMT
File typePNG image data, 257 x 184, 8-bit/color RGBA, non-interlaced Hash810629e8af79cea550fe80b331ceb34e 9b76c8d9e49438dfa4b19a4534bba147cd486875 f0167c5e70765299536011353e73eae70f126629bb5e9b3b2b8f05378fc55a61
GET /6/Wow_files/env_prize.png HTTP/1.1
Host: ng.nairaintheget.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714583394533/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 01 May 2024 21:26:34 GMT
content-type: image/png
content-length: 27988
x-amz-id-2: RFsdiyjTqmQyAcOUHA4p4eo/AcWiYmNW4yIgwHVdI3dBZTCahBaSo72w3Ts5AdpIQINPhqj3gB8=
x-amz-request-id: 1APVVF4JYM56SCP4
last-modified: Sun, 11 Feb 2024 15:00:01 GMT
etag: "810629e8af79cea550fe80b331ceb34e"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Auv2fJUH2hjGjqiEaQ3OWhKhTXFYkpqLg29tuma9b8DaJPHOtCd0IRB5%2F3ESamPrcpJe1%2BBGLZqg2SGfCvUaegMe%2BBIwJIsbnlKSw8WbHfuX5%2BmOkPhcEqcL6gQdCuOhBaFZf0Ut%2FQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d2d9c00efb56c5-OSL
alt-svc: h3=":443"; ma=86400
|
|
| ng.nairaintheget.xyz/6/Wow_files/bckbton.js | 172.67.179.157 | 200 OK | 14 kB |
URL GET HTTP/3ng.nairaintheget.xyz/6/Wow_files/bckbton.js IP172.67.179.157:443
Requested byhttps://ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714583394533/ CertificateIssuerGoogle Trust Services LLC Subjectnairaintheget.xyz Fingerprint49:C4:BA:2D:AA:45:F9:61:08:6C:A9:95:CE:A1:AD:5C:06:77:A9:B6 ValidityWed, 10 Apr 2024 13:14:35 GMT - Tue, 09 Jul 2024 13:14:34 GMT
File typeJavaScript source, ASCII text, with CRLF line terminators Hash6d1333b717d1eabeccff8b713f875b40 0faf77a5b803e056e57edd3927d10d577b4ba3b3 85c19f622b39183eb4be19e8edf3ee8b75fe78f979a3fdd3b018f45e6bd8bde5
GET /6/Wow_files/bckbton.js HTTP/1.1
Host: ng.nairaintheget.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714583394533/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 01 May 2024 21:26:34 GMT
content-type: application/javascript
x-amz-id-2: Ehti88SNkDWfSoeUn0V9H2TfCD471OtdQ3J8ujCu4tu4G0vX6hKcABv3EiEq5OxrVlPslaajPlw=
x-amz-request-id: KH802KXTFCST4FBH
last-modified: Sun, 11 Feb 2024 14:59:56 GMT
etag: W/"6d1333b717d1eabeccff8b713f875b40"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UVAWYnI1pw8Y2QwAHNMv2%2BwYE6aJC65qrmxe4ryHjKJQ5q%2B5Mkr4xLR%2Bg1O991T%2Fsfbom%2FWm%2BU76HslODdFhPkHDWB%2F6pb53Tn5XCOfPWmahiH4396cJJASafOfFMZI1PuyGuTUktw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d2d9c00efe56c5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| woudaufe.net/zone?&pub=0&zone_id=5615385&is_mobile=false&domain=ng.nairaintheget.xyz&var=&ymid=&var_3=&var_4=&dsig=&tg=1&sw=3.1.504&trace_id=277d31b8-bf57-41f5-8c04-c3abeaffcd3a&action=prerequest | 139.45.197.251 | 200 OK | 0 B |
URL POST HTTP/2woudaufe.net/zone?&pub=0&zone_id=5615385&is_mobile=false&domain=ng.nairaintheget.xyz&var=&ymid=&var_3=&var_4=&dsig=&tg=1&sw=3.1.504&trace_id=277d31b8-bf57-41f5-8c04-c3abeaffcd3a&action=prerequest IP139.45.197.251:443
Requested byhttps://ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714583394533/ CertificateIssuerLet's Encrypt Subjectwoudaufe.net Fingerprint97:B7:E3:B4:46:26:82:1A:84:6C:4D:15:C2:B7:B8:FE:0F:00:67:F5 ValidityMon, 15 Apr 2024 05:41:42 GMT - Sun, 14 Jul 2024 05:41:41 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /zone?&pub=0&zone_id=5615385&is_mobile=false&domain=ng.nairaintheget.xyz&var=&ymid=&var_3=&var_4=&dsig=&tg=1&sw=3.1.504&trace_id=277d31b8-bf57-41f5-8c04-c3abeaffcd3a&action=prerequest HTTP/1.1
Host: woudaufe.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ng.nairaintheget.xyz
DNT: 1
Connection: keep-alive
Referer: https://ng.nairaintheget.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 01 May 2024 21:26:34 GMT
content-length: 0
x-trace-id: 0c955d5d1fa0df55d215dfb0f2940db7
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://ng.nairaintheget.xyz
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| ng.nairaintheget.xyz/6/Wow_files/ng4.jpg | 172.67.179.157 | 200 OK | 8.0 kB |
URL GET HTTP/3ng.nairaintheget.xyz/6/Wow_files/ng4.jpg IP172.67.179.157:443
Requested byhttps://ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714583394533/ CertificateIssuerGoogle Trust Services LLC Subjectnairaintheget.xyz Fingerprint49:C4:BA:2D:AA:45:F9:61:08:6C:A9:95:CE:A1:AD:5C:06:77:A9:B6 ValidityWed, 10 Apr 2024 13:14:35 GMT - Tue, 09 Jul 2024 13:14:34 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=1], baseline, precision 8, 275x183, components 3 Hash13927e3f3e1e9dd4da043478a2426bfe ebab60939afabda4d6730f3b8dfa7061fe133acb bbbc1fe136c12a17974ed20f7ecd8224ab912ab65c518f745c45a0beae377ccc
GET /6/Wow_files/ng4.jpg HTTP/1.1
Host: ng.nairaintheget.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ng.nairaintheget.xyz/6/Wow_files/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 01 May 2024 21:26:35 GMT
content-type: image/jpeg
content-length: 8037
x-amz-id-2: k2vBipYkm5aVV/wot6E92gTFl4dS8KPoOilrKD4Qc3l2UWxTo/4LsshVJJqfonG3uNqvbuNUCTU=
x-amz-request-id: 1APMCFHNSJRZMDKA
last-modified: Sun, 11 Feb 2024 15:00:12 GMT
etag: "13927e3f3e1e9dd4da043478a2426bfe"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9nUyvE70Y5GfbWOgLWXWeyyc41EgFjBN9F6OGVWVLfEG%2Bv97SRQb0OK5InuvdGFWu0BV%2FdZSRLFn7g8Ut2sKXgsFafZ0rFxccip0i0fRRBnbhP08h0C%2FnTeaXc6T2KB7uYb4Kl31TQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d2d9c2ca7a56c5-OSL
alt-svc: h3=":443"; ma=86400
|
|
| ng.nairaintheget.xyz/6/Wow_files/ng2.jpg | 172.67.179.157 | 200 OK | 19 kB |
URL GET HTTP/3ng.nairaintheget.xyz/6/Wow_files/ng2.jpg IP172.67.179.157:443
Requested byhttps://ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714583394533/ CertificateIssuerGoogle Trust Services LLC Subjectnairaintheget.xyz Fingerprint49:C4:BA:2D:AA:45:F9:61:08:6C:A9:95:CE:A1:AD:5C:06:77:A9:B6 ValidityWed, 10 Apr 2024 13:14:35 GMT - Tue, 09 Jul 2024 13:14:34 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 600x416, Scaling: [none]x[none], YUV color, decoders should clamp Hashb42bcb9c4989e82773642eb876eeeb6f d1e76811c62211b7cff8191a7339244a2b9d7e7a 841d59cdcc060e3366a5cb3381ef4d8e0b09a06d5231b07f244a62b6f856a34b
GET /6/Wow_files/ng2.jpg HTTP/1.1
Host: ng.nairaintheget.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ng.nairaintheget.xyz/6/Wow_files/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 01 May 2024 21:26:35 GMT
content-type: image/jpeg
content-length: 18728
x-amz-id-2: ScAfSG08W3FGZm6G0jNCkGXxe0iONE0FeZuf/REDYVVM6ss1LClenMv3NRqi5yY+lj2peAnxpLQ=
x-amz-request-id: 1APYW8EHD5NXXC3C
last-modified: Sun, 11 Feb 2024 15:00:09 GMT
etag: "b42bcb9c4989e82773642eb876eeeb6f"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VbascjiLMVuwOwMv8YzYRD4s6Fr%2FSGYdgvFL3K8mH%2BkCBSG%2BkBsITyPM8UyuD9euNIE35YhAVRXkz5LtjjcUHQtSe58O4UFdPeYGi5w5R7dbeIxFB7CXOAhwXH2dw7A%2FY7KB6tuzdw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d2d9c2ca6656c5-OSL
alt-svc: h3=":443"; ma=86400
|
|
| ng.nairaintheget.xyz/6/Wow_files/Jerry-Ojumah.png | 172.67.179.157 | 200 OK | 888 kB |
URL GET HTTP/3ng.nairaintheget.xyz/6/Wow_files/Jerry-Ojumah.png IP172.67.179.157:443
Requested byhttps://ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714583394533/ CertificateIssuerGoogle Trust Services LLC Subjectnairaintheget.xyz Fingerprint49:C4:BA:2D:AA:45:F9:61:08:6C:A9:95:CE:A1:AD:5C:06:77:A9:B6 ValidityWed, 10 Apr 2024 13:14:35 GMT - Tue, 09 Jul 2024 13:14:34 GMT
File typePNG image data, 1440 x 960, 8-bit/color RGB, non-interlaced Size888 kB (887466 bytes) Hash78e4bed7dc12ad7964c289ca9d02ae26 9ebc3cb02a5cf660d691f846fbcd06dd33e5c055 922f3463136ddfcffde76c37b3e0ed509038a49a71bde0aea65da6a7f6b107c4
GET /6/Wow_files/Jerry-Ojumah.png HTTP/1.1
Host: ng.nairaintheget.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ng.nairaintheget.xyz/6/Wow_files/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 01 May 2024 21:26:35 GMT
content-type: image/png
content-length: 887466
x-amz-id-2: scbjyALy6Zbue5zbvZuLCBeqKkGsqYtaUPxeCT9OhHGtoZKxgZnYyysnUX8VBrg9SyKhO+bm4ZU=
x-amz-request-id: H4SEJEJR1VEAWBDW
last-modified: Sun, 11 Feb 2024 15:00:05 GMT
etag: "78e4bed7dc12ad7964c289ca9d02ae26"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cO5MOcCC6gy9LedcbMWZXJox5jo17bTutN43VDEU134z5s4Ln790NCvbsTxXW1CAtgy%2F%2Bn8NpvHHwDst7AVN7bvZ3XgA1vPHmZSuytHQ7Me2shYo1sWaREYyoMPi%2Bb75nn1c10Cksg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d2d9c2ca6256c5-OSL
alt-svc: h3=":443"; ma=86400
|
|
| ng.nairaintheget.xyz/6/Wow_files/nig1.jpg | 172.67.179.157 | 200 OK | 254 kB |
URL GET HTTP/3ng.nairaintheget.xyz/6/Wow_files/nig1.jpg IP172.67.179.157:443
Requested byhttps://ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714583394533/ CertificateIssuerGoogle Trust Services LLC Subjectnairaintheget.xyz Fingerprint49:C4:BA:2D:AA:45:F9:61:08:6C:A9:95:CE:A1:AD:5C:06:77:A9:B6 ValidityWed, 10 Apr 2024 13:14:35 GMT - Tue, 09 Jul 2024 13:14:34 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Converted from WebP to JPG using ezgif.com", baseline, precision 8, 1200x1200, components 3 Size254 kB (253688 bytes) Hash1531c7fdd75b339d29da825611e2753d f4231edead77493063bf5e93b6cf18f5ef25c16e 9ce9caf4ab2995de82c7fe2b15ed17b3da80171149c691e6a042a9d13721a05b
GET /6/Wow_files/nig1.jpg HTTP/1.1
Host: ng.nairaintheget.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ng.nairaintheget.xyz/6/Wow_files/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 01 May 2024 21:26:35 GMT
content-type: image/jpeg
content-length: 253688
x-amz-id-2: HOaRVcDqrf3tLI6zSOCkroAamQrcBFK2otpiA3oHah1DHCfk/36W4yWwhkd0jKxI0yiOBNdSm5A=
x-amz-request-id: H4S2A83B65XVH1TW
last-modified: Sun, 11 Feb 2024 15:00:16 GMT
etag: "1531c7fdd75b339d29da825611e2753d"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XCh0cJ%2Fs%2FjFDUb50D%2FuOAAfDBI0HGEXN1Y3JMPhjogkVTeo1NrWcISjiuFa%2Br9VkEdrIyw6AcznpHrzFV6bgDVagf59r2Jd8DgJYdg9lOexEatbUSvYFjdQ9jAIog1M5TRshAEZnOw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d2d9c2ca6c56c5-OSL
alt-svc: h3=":443"; ma=86400
|
|
| ng.nairaintheget.xyz/6/Wow_files/nh3.png | 172.67.179.157 | 200 OK | 199 kB |
URL GET HTTP/3ng.nairaintheget.xyz/6/Wow_files/nh3.png IP172.67.179.157:443
Requested byhttps://ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714583394533/ CertificateIssuerGoogle Trust Services LLC Subjectnairaintheget.xyz Fingerprint49:C4:BA:2D:AA:45:F9:61:08:6C:A9:95:CE:A1:AD:5C:06:77:A9:B6 ValidityWed, 10 Apr 2024 13:14:35 GMT - Tue, 09 Jul 2024 13:14:34 GMT
File typePNG image data, 289 x 285, 8-bit/color RGBA, non-interlaced Size199 kB (199315 bytes) Hash1065ebed25d5896df0fb704d40906574 54ecd5fd8bb72389205a1fe8148229e3af765c31 0e353e4dfcc946ec5be8c36670ef399d0960da2382f143d48f2d87f02e7e00f5
GET /6/Wow_files/nh3.png HTTP/1.1
Host: ng.nairaintheget.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ng.nairaintheget.xyz/6/Wow_files/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 01 May 2024 21:26:35 GMT
content-type: image/png
content-length: 199315
x-amz-id-2: VOn3uBrkvZqI6ZZQo0S/4qCDiVvSXvNjFnQlmlzEtIzo/prGX0B6Yp8Y8r6UnIxhjNPPuDqD6Gc=
x-amz-request-id: 1APZ6SQ1DWC0T0A6
last-modified: Sun, 11 Feb 2024 15:00:14 GMT
etag: "1065ebed25d5896df0fb704d40906574"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TAQGeOgxlrTeK1cRSj0sGf4wYDkN%2Byd9LDlDI8L0dhh7%2FHOwE%2ByMFfuye%2B6HvNxRPx%2BpLToIgLe6Ud9QEsq48AVFGLofePbyhxUVmbt%2FCT9HO0eQ80mQchy2zjEY43NvhqB7bni5nQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d2d9c2ca7856c5-OSL
alt-svc: h3=":443"; ma=86400
|
|
| jouteetu.net/custom | 139.45.197.251 | 200 OK | 39 B |
IP139.45.197.251:443
Requested byhttps://ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714583394533/ CertificateIssuerLet's Encrypt Subjectjouteetu.net FingerprintF5:94:3C:5E:6B:54:1A:97:82:F8:7E:1F:C2:51:04:8C:FB:F5:CF:65 ValidityWed, 13 Mar 2024 19:38:02 GMT - Tue, 11 Jun 2024 19:38:01 GMT
Hash058b158c2be925f556454ef762d93538 cc6fc563b4b6baee880fdbc7fcfaa134978e33c9 ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: jouteetu.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 448
Origin: https://ng.nairaintheget.xyz
DNT: 1
Connection: keep-alive
Referer: https://ng.nairaintheget.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 01 May 2024 21:26:35 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 20e8e83a35e7589310930d5bd884b0dc
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://ng.nairaintheget.xyz
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| jouteetu.net/custom | 139.45.197.251 | 200 OK | 39 B |
IP139.45.197.251:443
Requested byhttps://ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714583394533/ CertificateIssuerLet's Encrypt Subjectjouteetu.net FingerprintF5:94:3C:5E:6B:54:1A:97:82:F8:7E:1F:C2:51:04:8C:FB:F5:CF:65 ValidityWed, 13 Mar 2024 19:38:02 GMT - Tue, 11 Jun 2024 19:38:01 GMT
Hash058b158c2be925f556454ef762d93538 cc6fc563b4b6baee880fdbc7fcfaa134978e33c9 ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: jouteetu.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 450
Origin: https://ng.nairaintheget.xyz
DNT: 1
Connection: keep-alive
Referer: https://ng.nairaintheget.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 01 May 2024 21:26:35 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 5cacc6821a1511bc20148ed72200ccbd
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://ng.nairaintheget.xyz
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| jouteetu.net/custom | 139.45.197.251 | 200 OK | 39 B |
IP139.45.197.251:443
Requested byhttps://ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714583394533/ CertificateIssuerLet's Encrypt Subjectjouteetu.net FingerprintF5:94:3C:5E:6B:54:1A:97:82:F8:7E:1F:C2:51:04:8C:FB:F5:CF:65 ValidityWed, 13 Mar 2024 19:38:02 GMT - Tue, 11 Jun 2024 19:38:01 GMT
Hash058b158c2be925f556454ef762d93538 cc6fc563b4b6baee880fdbc7fcfaa134978e33c9 ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: jouteetu.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 451
Origin: https://ng.nairaintheget.xyz
DNT: 1
Connection: keep-alive
Referer: https://ng.nairaintheget.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 01 May 2024 21:26:35 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: bbe1090df79e4fa1b31ad25f99ee00ba
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://ng.nairaintheget.xyz
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| amunfezanttor.com/event | 139.45.197.250 | 200 OK | 0 B |
IP139.45.197.250:443
Requested byhttps://ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714583394533/ CertificateIssuerLet's Encrypt Subjectamunfezanttor.com FingerprintAB:2C:60:54:FF:D7:D6:23:0E:87:1A:98:EC:94:B3:9B:29:1A:F3:AA ValidityWed, 10 Apr 2024 19:04:12 GMT - Tue, 09 Jul 2024 19:04:11 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
OPTIONS /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://ng.nairaintheget.xyz/
Origin: https://ng.nairaintheget.xyz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 01 May 2024 21:26:35 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://ng.nairaintheget.xyz
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token,X-Oaid
access-control-max-age: 86400
X-Firefox-Spdy: h2
|
|
| amunfezanttor.com/event | 139.45.197.250 | 200 OK | 94 B |
IP139.45.197.250:443
Requested byhttps://ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714583394533/ CertificateIssuerLet's Encrypt Subjectamunfezanttor.com FingerprintAB:2C:60:54:FF:D7:D6:23:0E:87:1A:98:EC:94:B3:9B:29:1A:F3:AA ValidityWed, 10 Apr 2024 19:04:12 GMT - Tue, 09 Jul 2024 19:04:11 GMT
Hash08b36235b6ed4ba3da822208ece465b2 35625dfd126a6144f7f819aeee6e96a77ba4d636 ac004e0fa0a1ede0791dc1d1105fe61da7166a1018a6f4381651e160a5b2c339
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ng.nairaintheget.xyz/
Content-Type: application/json
Content-Length: 1066
Origin: https://ng.nairaintheget.xyz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 01 May 2024 21:26:35 GMT
content-type: application/json; charset=utf-8
content-length: 94
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://ng.nairaintheget.xyz
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| ng.nairaintheget.xyz/sw-check-permissions-30a34.js?zoneId=5615385 | 172.67.179.157 | 200 OK | 7.5 kB |
URL GET HTTP/3ng.nairaintheget.xyz/sw-check-permissions-30a34.js?zoneId=5615385 IP172.67.179.157:443
Requested byhttps://ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714583394533/ CertificateIssuerGoogle Trust Services LLC Subjectnairaintheget.xyz Fingerprint49:C4:BA:2D:AA:45:F9:61:08:6C:A9:95:CE:A1:AD:5C:06:77:A9:B6 ValidityWed, 10 Apr 2024 13:14:35 GMT - Tue, 09 Jul 2024 13:14:34 GMT
Hash8731d0e15415390028fc7632952fa672 c13a2289183da5ed853385510e59c60aafa35f4b 3009b5f3e5fa5ad3443f01249134904d2de44ac7c8791b13d5a6f77f77982fef
GET /sw-check-permissions-30a34.js?zoneId=5615385 HTTP/1.1
Host: ng.nairaintheget.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714583394533/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 01 May 2024 21:26:35 GMT
content-type: application/javascript
x-amz-id-2: w9fSmigMJS+F+38nyp6z89+fWfg09upJuoNcbEgbYKdFVF9XJE7NtODKcy3NK1GqmSPgLSFr6Eg=
x-amz-request-id: 6SP7YWFWQGTESC5X
last-modified: Sun, 11 Feb 2024 15:02:16 GMT
etag: W/"8731d0e15415390028fc7632952fa672"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WKpnOiHiWG7UAxrM8RpExKCAJ33xfV%2F3nbNlgSC3Bq0iBaYMVjhkiNfl0CHzxfqUoWfHB7KfYGgrEE6j9AsD2FJJUnT6Y7np28aaM5NqaNDEt8IkY%2FHV7zkmZwoQIqNQYZRWih3I5A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d2d9c768bb56c5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| woudaufe.net/pfe/current/micro.tag.min.js?z=5615385&sw=/sw-check-permissions-30a34.js | 139.45.197.251 | 200 OK | 37 kB |
URL GET HTTP/2woudaufe.net/pfe/current/micro.tag.min.js?z=5615385&sw=/sw-check-permissions-30a34.js IP139.45.197.251:443
Requested byhttps://ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714583394533/ CertificateIssuerLet's Encrypt Subjectwoudaufe.net Fingerprint97:B7:E3:B4:46:26:82:1A:84:6C:4D:15:C2:B7:B8:FE:0F:00:67:F5 ValidityMon, 15 Apr 2024 05:41:42 GMT - Sun, 14 Jul 2024 05:41:41 GMT
File typeJavaScript source, ASCII text, with very long lines (37142), with no line terminators Hash32d6dbd00a639e2cd10d1704b9159bd5 0dab4c95675393f1d0e13d20f13d80ee12e41d95 9f339e5efd7c959419a4e86bb4c5e9f07eae2ed839484846157be981917743de
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pfe/current/micro.tag.min.js?z=5615385&sw=/sw-check-permissions-30a34.js HTTP/1.1
Host: woudaufe.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ng.nairaintheget.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 01 May 2024 21:26:34 GMT
content-type: application/javascript
last-modified: Thu, 25 Apr 2024 10:48:53 GMT
etag: W/"662a3515-9116"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| ng.nairaintheget.xyz/6/Wow_files/main.css | 172.67.179.157 | 200 OK | 95 kB |
URL GET HTTP/3ng.nairaintheget.xyz/6/Wow_files/main.css IP172.67.179.157:443
Requested byhttps://ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714583394533/ CertificateIssuerGoogle Trust Services LLC Subjectnairaintheget.xyz Fingerprint49:C4:BA:2D:AA:45:F9:61:08:6C:A9:95:CE:A1:AD:5C:06:77:A9:B6 ValidityWed, 10 Apr 2024 13:14:35 GMT - Tue, 09 Jul 2024 13:14:34 GMT
File typeASCII text, with very long lines (349), with CRLF line terminators Hash3c2e07f55de8da912e0818519f03c858 4d9eee9ad6c9435af403f1cc44abef75c5b5f56e bf605c8632208808c4e71ae3a6ae69996e6502478563e26495b5ec842cf5be65
GET /6/Wow_files/main.css HTTP/1.1
Host: ng.nairaintheget.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714583394533/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 01 May 2024 21:26:34 GMT
content-type: text/css
x-amz-id-2: VxAh+G1Ymf/hf7uC+fv6lC2IwuMxvVqazsLGCwI0Z2zo4vyhKrzcuNrrQpPWKZato3MEdONNm+Y=
x-amz-request-id: NES6DMP7RGV7AQKM
last-modified: Sun, 11 Feb 2024 15:00:06 GMT
etag: W/"3c2e07f55de8da912e0818519f03c858"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NuztlPbVGGUC652xdkBHvPwtuxzFTRkP7Ky8jIn9e4xb7SXjqKOQX6f5D9tmw7c9Y7VQZ2P%2FC%2FLL33tOKxJlCduuPBnB%2FzJ%2FIRm%2FzSHm38%2BaoxuB5abkj3Dr7JeOeUq%2FGkE0cgu09g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d2d9bffee356c5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| ng.nairaintheget.xyz/6/Wow_files/nigflag.png | 172.67.179.157 | 200 OK | 14 kB |
URL GET HTTP/3ng.nairaintheget.xyz/6/Wow_files/nigflag.png IP172.67.179.157:443
Requested byhttps://ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714583394533/ CertificateIssuerGoogle Trust Services LLC Subjectnairaintheget.xyz Fingerprint49:C4:BA:2D:AA:45:F9:61:08:6C:A9:95:CE:A1:AD:5C:06:77:A9:B6 ValidityWed, 10 Apr 2024 13:14:35 GMT - Tue, 09 Jul 2024 13:14:34 GMT
File typePNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced Hash4f0ce3ee8974b1568fc18bada517b418 86ac212f10d86689245130a3c2921b29c760be2a f73f1dea5d1e1817f2399e7a292145d1dba84be26326ea00aae9fbe4b1a487fb
GET /6/Wow_files/nigflag.png HTTP/1.1
Host: ng.nairaintheget.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ng.nairaintheget.xyz/6/Wow_files/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 01 May 2024 21:26:34 GMT
content-type: image/png
content-length: 13527
x-amz-id-2: YFTK0JQsuodbAGEN+3Ghp0lLpzHdpvnpFybo2QQpjaa0FxNLmSXUiKsoEdPXXGipFi0HVr9B+tI=
x-amz-request-id: 1APP6DH7697VEREV
last-modified: Sun, 11 Feb 2024 15:00:17 GMT
etag: "4f0ce3ee8974b1568fc18bada517b418"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DXzZ9ilOSBnJUHY1PH6emGK8DcgDI%2FdftV2nywNo9%2F8hAbk3cf7EuLkiwUUUfu686bu0brZQ6U8AapEtLqHDotUo4iWlsLx9jclQDCP3ah92C22io4UpIi4BjG98%2BqVHxOWej6GlYw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d2d9c2ca5b56c5-OSL
alt-svc: h3=":443"; ma=86400
|
|
| ng.nairaintheget.xyz/favicon.ico | 172.67.179.157 | 404 Not Found | 539 B |
URL GET HTTP/3ng.nairaintheget.xyz/favicon.ico IP172.67.179.157:443
Requested byhttps://ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714583394533/ CertificateIssuerGoogle Trust Services LLC Subjectnairaintheget.xyz Fingerprint49:C4:BA:2D:AA:45:F9:61:08:6C:A9:95:CE:A1:AD:5C:06:77:A9:B6 ValidityWed, 10 Apr 2024 13:14:35 GMT - Tue, 09 Jul 2024 13:14:34 GMT
File typeHTML document, ASCII text, with very long lines (559), with no line terminators Hash71247e7d31a9adfce3d5ac59618d8c18 e72430ea210ff205e50ff9aa0c6b816f25ebaffe 0058cbf07faaefb1c485af60df2c9809840d4b634a0625df82a188b1cf0d3d1f
GET /favicon.ico HTTP/1.1
Host: ng.nairaintheget.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714583394533/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Wed, 01 May 2024 21:26:35 GMT
content-type: text/html; charset=utf-8
x-amz-request-id: QF980DJ6FGRFYYKP
x-amz-id-2: 5y7Ve30fWJHov6R3LCJEL888HYAAPNXxmxS/cu9aC3FIdNJcSl2mFwNJRWZDmfwwDe0n24it268=
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=E%2BdxccLlrXOY2LjZq%2BRI%2Fgyy%2Bjkl4yTAN2%2Fed1Q04vbjG1jGTV%2FgjLTEDga4lYaYTCviCzMs%2BifRUEg1w%2FAlz%2FGynlbeRuLqWbyuajAFm9sLtRshHgaZd7abTXSaNtLLQHna8S3Jmw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d2d9c8297056c5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714583394533/ | 172.67.179.157 | 200 OK | 16 kB |
URL User Request GET HTTP/2ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714583394533/ IP172.67.179.157:443
CertificateIssuerGoogle Trust Services LLC Subjectnairaintheget.xyz Fingerprint49:C4:BA:2D:AA:45:F9:61:08:6C:A9:95:CE:A1:AD:5C:06:77:A9:B6 ValidityWed, 10 Apr 2024 13:14:35 GMT - Tue, 09 Jul 2024 13:14:34 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714583394533/ HTTP/1.1
Host: ng.nairaintheget.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 01 May 2024 21:26:34 GMT
content-type: text/html
x-amz-id-2: hv6oCGODB3e4/s93eym2bOlem4DR+pxzPO66IuSwYlIKC733ZBbL5uaVqphrH0HWmV2KKP0AMr4=
x-amz-request-id: CARTZAFKC5QJD6E7
last-modified: Sun, 11 Feb 2024 15:03:51 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1s88AsBnXNUawZUEjI8KUVv36dBrsJxqY8T85ajY1bSHjhXjWlE38XjHlrzxUvZ47%2BecxAcsgNjTqII5qCAjIxT7pe%2Bax6huduO4%2B7%2BGlOOQcBvcDJna3ierJjOvkhfysrmwhFpYgw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87d2d9bcad2956ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|