| cdnjs.cloudflare.com/ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css | 104.17.25.14 | 200 OK | 5.8 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css IP104.17.25.14:443
Requested byhttps://zxcyg.mubbb.my.id/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hashe9365fe85b7e4db79a87015e52c3db6c 2e2b5eb6e08f0f3d11fe0ada97c962a23ba6a0d9 dec3e9f0190a504ed0c8f4a5e957c107206ba106cac4a1bbb6cbac6369a16d56
GET /ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:17:51 GMT
content-type: text/css; charset=utf-8
content-length: 5845
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ed9-1149f"
last-modified: Mon, 04 May 2020 16:12:09 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 602224
expires: Tue, 08 Apr 2025 06:17:51 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2B5mPK3aAazb3g%2B72oYx9fjjYgnouoo0KyXApoETn%2BPzfrb03MB%2BDo0WIOCG%2Fedp3JpKstZTNy93FPdPcxshNLMGDjbj%2FgkaO3fNwuBsbffZxjJEzrs0Aj5edvZcXxisbGitB2r7a"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 876288c39c440b65-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/gh/gowebid/assets@main/go_login/facebook_white.png | 151.101.129.229 | 200 OK | 29 kB |
URL GET HTTP/2cdn.jsdelivr.net/gh/gowebid/assets@main/go_login/facebook_white.png IP151.101.129.229:443
Requested byhttps://zxcyg.mubbb.my.id/ CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typePNG image data, 604 x 158, 8-bit/color RGBA, non-interlaced Hash74190b93fc4f5d88f0c8e6411ba20bd8 89ce2ecb660a90b8e6ed1b335443d7767c59f28a 092a3cd5f86b3f039feefdeb86694cd16ae545af214cfda614bdbbe2d1bde401
GET /gh/gowebid/assets@main/go_login/facebook_white.png HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: image/png
x-jsd-version: main
x-jsd-version-type: branch
etag: W/"7075-ic4uy2YKkLjm7RszVEPXdnxZ8oo"
accept-ranges: bytes
age: 27396
date: Thu, 18 Apr 2024 06:17:52 GMT
x-served-by: cache-fra-etou8220127-FRA, cache-hel1410029-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 28789
X-Firefox-Spdy: h2
|
|
| code.jquery.com/jquery-1.10.2.min.js | 151.101.66.137 | 200 OK | 33 kB |
URL GET HTTP/2code.jquery.com/jquery-1.10.2.min.js IP151.101.66.137:443
Requested byhttps://zxcyg.mubbb.my.id/ CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (32072) Hash628072e7212db1e8cdacb22b21752cda 0511abe9863c2ea7084efa7e24d1d86c5b3974f1 0ba081f546084bd5097aa8a73c75931d5aa1fc4d6e846e53c21f98e6a1509988
GET /jquery-1.10.2.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-16bb3"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 18 Apr 2024 06:17:52 GMT
age: 18620466
x-served-by: cache-lga13622-LGA, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 1, 60146
x-timer: S1713421072.135659,VS0,VE0
vary: Accept-Encoding
content-length: 32788
X-Firefox-Spdy: h2
|
|
| dl.dir.freefiremobile.com/common/web_event/official2/dist/client/img/full_logo.969f536.png | 54.230.111.38 | 200 OK | 8.3 kB |
URL GET HTTP/2dl.dir.freefiremobile.com/common/web_event/official2/dist/client/img/full_logo.969f536.png IP54.230.111.38:443
Requested byhttps://zxcyg.mubbb.my.id/ CertificateIssuerAmazon Subjectdl.dir.freefiremobile.com FingerprintD7:4C:09:C2:7E:90:38:EA:18:D7:59:E0:F8:87:98:CF:8A:74:D3:D9 ValidityWed, 29 Nov 2023 00:00:00 GMT - Fri, 27 Dec 2024 23:59:59 GMT
File typePNG image data, 616 x 90, 8-bit/color RGBA, non-interlaced Hashc632e6bfd0076695e56477bdb3f7232c 5b4212f029814b5dfda946ac5e5a6ba97857feb9 86ccbc1dbeb58af3e6bce5ee52f86a47399da998ad34a0fd2ce9b0b539d92f6c
GET /common/web_event/official2/dist/client/img/full_logo.969f536.png HTTP/1.1
Host: dl.dir.freefiremobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
content-length: 8314
server: OBS
date: Thu, 18 Apr 2024 05:47:26 GMT
x-obs-request-id: 0000018EEFBED9C2980C9F5219AFC72D
content-md5: xjLmv9AHZpXlZHe9s/cjLA==
x-obs-replication-status: REPLICA
accept-ranges: bytes
last-modified: Wed, 10 Apr 2024 03:54:58 GMT
x-obs-id-2: 32AAAQAAEAABAAAQAAEAABAAAQAAEAABCT5Pawrlw+45IZe0Xp59LuXRuWYPpHOB
etag: "c632e6bfd0076695e56477bdb3f7232c"
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 5XugUnmjo_cfM5z85ftApWXkzEY4SMvi8iAhGxJw8MwSu96pccyg0Q==
age: 1826
vary: Origin
X-Firefox-Spdy: h2
|
|
| dl.dir.freefiremobile.com/common/web_event/official2/dist/client/img/garena_logo.b28b2b6.png | 54.230.111.38 | 200 OK | 11 kB |
URL GET HTTP/2dl.dir.freefiremobile.com/common/web_event/official2/dist/client/img/garena_logo.b28b2b6.png IP54.230.111.38:443
Requested byhttps://zxcyg.mubbb.my.id/ CertificateIssuerAmazon Subjectdl.dir.freefiremobile.com FingerprintD7:4C:09:C2:7E:90:38:EA:18:D7:59:E0:F8:87:98:CF:8A:74:D3:D9 ValidityWed, 29 Nov 2023 00:00:00 GMT - Fri, 27 Dec 2024 23:59:59 GMT
File typePNG image data, 459 x 138, 8-bit/color RGBA, non-interlaced Hashf77fe97fc8f4d06fd93eaf7552c4a3e9 c73f03f3e5a9f460eb83e10ae7312738a36ce720 b695d33c5ece1af9739e89855c4cc718fd6e9550528009ee5ff644cac193cb41
GET /common/web_event/official2/dist/client/img/garena_logo.b28b2b6.png HTTP/1.1
Host: dl.dir.freefiremobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
content-length: 11185
server: OBS
date: Thu, 18 Apr 2024 05:34:03 GMT
x-obs-request-id: 0000018EEFB29B3290196F99481C9D3D
content-md5: 93/pf8j00G/ZPq91UsSj6Q==
x-obs-replication-status: REPLICA
accept-ranges: bytes
last-modified: Wed, 10 Apr 2024 03:54:57 GMT
x-obs-id-2: 32AAAQAAEAABAAAQAAEAABAAAQAAEAABCSHIBy/pQsl8yqISVx9KBwHq9gLP3Ile
etag: "f77fe97fc8f4d06fd93eaf7552c4a3e9"
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: DI791Mp3dAToYwjQCrSdUp3Lpo-RFdUkPjgmV_ikd1LnHihtrCcjLA==
age: 2629
vary: Origin
X-Firefox-Spdy: h2
|
|
| ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js | 142.250.74.170 | 200 OK | 30 kB |
URL GET HTTP/2ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js IP142.250.74.170:443
Requested byhttps://zxcyg.mubbb.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
File typeJavaScript source, ASCII text, with very long lines (32180) Hash32015dd42e9582a80a84736f5d9a44d7 41b4bfbaa96be6d1440db6e78004ade1c134e276 8af93bd675e1cfd9ecc850e862819fdac6e3ad1f5d761f970e409c7d9c63bdc3
GET /ajax/libs/jquery/2.1.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 29707
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 17:21:57 GMT
expires: Fri, 11 Apr 2025 17:21:57 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 564955
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ajax.googleapis.com/ajax/libs/jquery/2.1.1/jquery.min.js | 142.250.74.170 | 200 OK | 30 kB |
URL GET HTTP/2ajax.googleapis.com/ajax/libs/jquery/2.1.1/jquery.min.js IP142.250.74.170:443
Requested byhttps://zxcyg.mubbb.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
File typeJavaScript source, ASCII text, with very long lines (32061) Hashe40ec2161fe7993196f23c8a07346306 afb90752e0a90c24b7f724faca86c5f3d15d1178 874706b2b1311a0719b5267f7d1cf803057e367e94ae1ff7bf78c5450d30f5d4
GET /ajax/libs/jquery/2.1.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 29671
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 17:38:23 GMT
expires: Fri, 11 Apr 2025 17:38:23 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 563969
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| i.ibb.co/ccxBcPG/ap-resize.png | 162.19.58.156 | 200 OK | 64 kB |
URL GET HTTP/2i.ibb.co/ccxBcPG/ap-resize.png IP162.19.58.156:443
Requested byhttps://zxcyg.mubbb.my.id/ CertificateIssuerLet's Encrypt Subjectibb.co Fingerprint47:33:B4:39:55:FC:BC:18:08:79:9C:6C:9D:F3:CF:3A:89:C4:99:62 ValidityWed, 07 Feb 2024 12:41:56 GMT - Tue, 07 May 2024 12:41:55 GMT
File typePNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced Hash577860cea8b0ad65ee35abb12a486d9e 524bd6d47354c516316a6197d25dadb6b0302420 dd20f80c86b2dd26de9c4eb68ad4df3216319f546822c003132b2a52b8e24be2
GET /ccxBcPG/ap-resize.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 06:17:52 GMT
content-type: image/png
content-length: 63618
last-modified: Wed, 13 Mar 2024 16:49:15 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| zxcyg.mubbb.my.id/static/img/reward/6.png | 188.114.96.1 | 200 OK | 86 kB |
URL GET HTTP/3zxcyg.mubbb.my.id/static/img/reward/6.png IP188.114.96.1:443
Requested byhttps://zxcyg.mubbb.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectmubbb.my.id FingerprintB6:0E:37:53:C6:DC:64:5B:AB:D8:51:2D:41:E0:3B:23:2E:0C:D0:B4 ValidityMon, 04 Mar 2024 02:04:58 GMT - Sun, 02 Jun 2024 02:04:57 GMT
File typePNG image data, 280 x 368, 8-bit/color RGB, non-interlaced Hasha2fa517c4924ef7d3358cf41f9d809a9 10aa0714f0c5a7594850317d9752ed9682d191a3 bf95403ac749d17c3997e8783b83f878075c7f987c9f1103074026d566549445
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /static/img/reward/6.png HTTP/1.1
Host: zxcyg.mubbb.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:17:52 GMT
content-type: image/png
content-length: 86293
last-modified: Wed, 13 Mar 2024 17:14:45 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TOHMfOlBjDZyU0omF0bAJ9dtcAYq6tfl7xDHasHF8C3CsbWcgqS%2BPcT4PqzeOsH4TMOmQxKtDOlkNJGt01wV4l%2FXH9ynbU6LxFTbAx9Ye4TqZ2tq6fZRT5fIu9PWSkab08rebw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876288c39aafb4eb-OSL
alt-svc: h3=":443"; ma=86400
|
|
| i.ibb.co/ynHzRkW/20240313-233643.jpg | 162.19.58.156 | 200 OK | 40 kB |
URL GET HTTP/2i.ibb.co/ynHzRkW/20240313-233643.jpg IP162.19.58.156:443
Requested byhttps://zxcyg.mubbb.my.id/ CertificateIssuerLet's Encrypt Subjectibb.co Fingerprint47:33:B4:39:55:FC:BC:18:08:79:9C:6C:9D:F3:CF:3A:89:C4:99:62 ValidityWed, 07 Feb 2024 12:41:56 GMT - Tue, 07 May 2024 12:41:55 GMT
File typeJPEG image data, Exif standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], progressive, precision 8, 413x640, components 3 Hashd8600333aa46e5f17e9f8f091add5df0 8f60c7c6f2e2df641b1d291fbb273247bc3c0b32 bccf1e168cc1f2b09f2e94f217fd2bfbf1d1b9a78bd75492ecfba7789768e529
GET /ynHzRkW/20240313-233643.jpg HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 06:17:52 GMT
content-type: image/jpeg
content-length: 40179
last-modified: Wed, 13 Mar 2024 16:37:45 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/material-design-iconic-font/2.2.0/fonts/Material-Design-Iconic-Font.woff2?v=2.2.0 | 104.17.25.14 | 200 OK | 38 kB |
URL GET HTTP/3cdnjs.cloudflare.com/ajax/libs/material-design-iconic-font/2.2.0/fonts/Material-Design-Iconic-Font.woff2?v=2.2.0 IP104.17.25.14:443
Requested byhttps://zxcyg.mubbb.my.id/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 38384, version 1.0 Hasha4d31128b633bc0b1cc1f18a34fb3851 6ee4c79372c3fd679706306ede47e4b03cf53d60 e8eea96e29a7c0a72612ab85ca3229979666467a28349642c2176e7189a1a39c
GET /ajax/libs/material-design-iconic-font/2.2.0/fonts/Material-Design-Iconic-Font.woff2?v=2.2.0 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://zxcyg.mubbb.my.id
DNT: 1
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:17:52 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 38384
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "5eb03ed9-95f0"
last-modified: Mon, 04 May 2020 16:12:09 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 218181
expires: Tue, 08 Apr 2025 06:17:52 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bSehFlelXldNdugYspawDb8BBDQrW6NtCgy3bbRfRDYO4rYLRAD7Yzdg8I3x5d3SQCuNLeoCIvRSQWw6XNIyeG%2BBSm1YhlRCiwSMdcjoc9ev67hIeNZe3XKA%2Fy3iBRCs1ksqkLTC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 876288c8efd81bfe-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/teko/v20/LYjNdG7kmE0gfaN9pQ.woff2 | 216.58.207.227 | 200 OK | 15 kB |
URL GET HTTP/2fonts.gstatic.com/s/teko/v20/LYjNdG7kmE0gfaN9pQ.woff2 IP216.58.207.227:443
Requested byhttps://zxcyg.mubbb.my.id/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15044, version 1.0 Hash4806226b885b3b3d0ae52142f6bfb3af 2ea5cc6d5e4adb874989a2b74bda062296fb1ad3 714088bef569d6981bfae79530ef315f4d6505f302a944ce9063601919977e6f
GET /s/teko/v20/LYjNdG7kmE0gfaN9pQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://zxcyg.mubbb.my.id
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15044
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 20:39:40 GMT
expires: Tue, 15 Apr 2025 20:39:40 GMT
cache-control: public, max-age=31536000
age: 207492
last-modified: Thu, 24 Aug 2023 21:55:11 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| zxcyg.mubbb.my.id/img/ghg.png | 188.114.96.1 | 200 OK | 109 kB |
URL GET HTTP/3zxcyg.mubbb.my.id/img/ghg.png IP188.114.96.1:443
Requested byhttps://zxcyg.mubbb.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectmubbb.my.id FingerprintB6:0E:37:53:C6:DC:64:5B:AB:D8:51:2D:41:E0:3B:23:2E:0C:D0:B4 ValidityMon, 04 Mar 2024 02:04:58 GMT - Sun, 02 Jun 2024 02:04:57 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1600x900, components 3 Size109 kB (109359 bytes) Hashc1dfd3273f7fadb0b01a0d05b85e3018 2135b42ba250e283eb7122645aa41fff2cbbe7f8 f358b3c5a22a9f41f30f20c4be14a07acbd225c1891b0a858405f2ffb1df60f5
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/ghg.png HTTP/1.1
Host: zxcyg.mubbb.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:17:52 GMT
content-type: image/png
content-length: 109359
last-modified: Wed, 13 Mar 2024 16:46:43 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xz%2BG0xoehJWITXfPjv5PgE7j46yWq99Tk7jX6yxiE9Vxk0JsV6YEgsOYMkx42mC06aQ0OaV9nUoNGw0eAJvbtodysFs%2FtBd%2BC9wltzu6vsRgUDdy66p4a9LmL0K9t%2Ft1bC1JLw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876288c38a99b4eb-OSL
alt-svc: h3=":443"; ma=86400
|
|
| zxcyg.mubbb.my.id/static/img/reward/7.png | 188.114.96.1 | 200 OK | 114 kB |
URL GET HTTP/3zxcyg.mubbb.my.id/static/img/reward/7.png IP188.114.96.1:443
Requested byhttps://zxcyg.mubbb.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectmubbb.my.id FingerprintB6:0E:37:53:C6:DC:64:5B:AB:D8:51:2D:41:E0:3B:23:2E:0C:D0:B4 ValidityMon, 04 Mar 2024 02:04:58 GMT - Sun, 02 Jun 2024 02:04:57 GMT
File typePNG image data, 283 x 375, 8-bit/color RGB, non-interlaced Size114 kB (113552 bytes) Hash605b6c7b2dd8bae6e7bd23a5340f0a1c f76afc84509e0dba81b2b7779dca0d2add397ccd d4dda75dccadd401b95c228ac709862607cbef2073b67de22783898e42c5c783
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /static/img/reward/7.png HTTP/1.1
Host: zxcyg.mubbb.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:17:52 GMT
content-type: image/png
content-length: 113552
last-modified: Wed, 13 Mar 2024 17:14:09 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ppA5gNzoTcPAHlrdY7C2XWxrxc4OUmvsctyLuf%2BHeRsYInmhoutZI%2BGfDXOsSKSwdcGRkx3F6XwSOr9xYqmZnTChD9C6qIsh3zAWeve3W5z%2BL0TIpZbQvsyrOFOmeUVMVB1r7A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876288c39ab5b4eb-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/teko/v20/LYjNdG7kmE0gfaN9pQ.woff2 | 216.58.207.227 | 200 OK | 15 kB |
URL GET HTTP/2fonts.gstatic.com/s/teko/v20/LYjNdG7kmE0gfaN9pQ.woff2 IP216.58.207.227:443
Requested byhttps://zxcyg.mubbb.my.id/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15044, version 1.0 Hash4806226b885b3b3d0ae52142f6bfb3af 2ea5cc6d5e4adb874989a2b74bda062296fb1ad3 714088bef569d6981bfae79530ef315f4d6505f302a944ce9063601919977e6f
GET /s/teko/v20/LYjNdG7kmE0gfaN9pQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://zxcyg.mubbb.my.id
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15044
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 20:39:40 GMT
expires: Tue, 15 Apr 2025 20:39:40 GMT
cache-control: public, max-age=31536000
age: 207492
last-modified: Thu, 24 Aug 2023 21:55:11 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| zxcyg.mubbb.my.id/static/img/reward/3.png | 188.114.96.1 | 200 OK | 95 kB |
URL GET HTTP/3zxcyg.mubbb.my.id/static/img/reward/3.png IP188.114.96.1:443
Requested byhttps://zxcyg.mubbb.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectmubbb.my.id FingerprintB6:0E:37:53:C6:DC:64:5B:AB:D8:51:2D:41:E0:3B:23:2E:0C:D0:B4 ValidityMon, 04 Mar 2024 02:04:58 GMT - Sun, 02 Jun 2024 02:04:57 GMT
File typePNG image data, 288 x 375, 8-bit/color RGB, non-interlaced Hash61b63bc126a15906fbec1d71f25620cb fa6f9aed9123e35f2881093348439c7e8d168a63 b09f710d05214acd76849a89ac25e9b41e37ab4fabcaadd5f123184281346b29
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /static/img/reward/3.png HTTP/1.1
Host: zxcyg.mubbb.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:17:52 GMT
content-type: image/png
content-length: 94921
last-modified: Wed, 13 Mar 2024 17:15:49 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=U2SlRQ%2BJEkkkmS6nwYXIVDJf0lN1iLEqnvjBJsB8412zjMbvavrgLA3KH%2FjgBpCtpcH%2BjxPfA2s8zuz0Qnj2iXqaURAYc9d6Iv2CkAChz%2F8DFAWguHInzuAecuW81Of52HYZ3g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876288c38aa7b4eb-OSL
alt-svc: h3=":443"; ma=86400
|
|
| zxcyg.mubbb.my.id/static/img/reward/1.png | 188.114.96.1 | 200 OK | 100 kB |
URL GET HTTP/3zxcyg.mubbb.my.id/static/img/reward/1.png IP188.114.96.1:443
Requested byhttps://zxcyg.mubbb.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectmubbb.my.id FingerprintB6:0E:37:53:C6:DC:64:5B:AB:D8:51:2D:41:E0:3B:23:2E:0C:D0:B4 ValidityMon, 04 Mar 2024 02:04:58 GMT - Sun, 02 Jun 2024 02:04:57 GMT
File typePNG image data, 280 x 368, 8-bit/color RGB, non-interlaced Hashb5cf485d30d6adc5f0e6280a358c9a3d b4c50eefb47bed38e51b09b8c272eb879bed2185 5e8d6499246a5c5e3aabc844313a0a154fbd1c8837cc59c9cea14fb5b86cc1f4
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /static/img/reward/1.png HTTP/1.1
Host: zxcyg.mubbb.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:17:52 GMT
content-type: image/png
content-length: 99552
last-modified: Wed, 13 Mar 2024 17:17:38 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ifwpJWY%2FS%2FYxiM7UulXQSHL1b9u27kECKD2bvwCqIlx%2B0FdA6yy0S%2FDr2Dh%2F0bgv2U7NIk5giImDpzVXutBOSNTWwOzN0n2IQ1ExTxLyAYo4O4%2FfzSmBZnDqe%2F2scieXWvWrfw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876288c38aa1b4eb-OSL
alt-svc: h3=":443"; ma=86400
|
|
| zxcyg.mubbb.my.id/static/img/reward/2.png | 188.114.96.1 | 200 OK | 90 kB |
URL GET HTTP/3zxcyg.mubbb.my.id/static/img/reward/2.png IP188.114.96.1:443
Requested byhttps://zxcyg.mubbb.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectmubbb.my.id FingerprintB6:0E:37:53:C6:DC:64:5B:AB:D8:51:2D:41:E0:3B:23:2E:0C:D0:B4 ValidityMon, 04 Mar 2024 02:04:58 GMT - Sun, 02 Jun 2024 02:04:57 GMT
File typePNG image data, 284 x 367, 8-bit/color RGB, non-interlaced Hash9e2c5f54ed2813612815c71dc27a56c3 da86f7a340cee9ff11da48666698285c4b202743 8f85bb40508b7048b6aa28f5e72b59a828568e074e56bacda991a45c06b0c123
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /static/img/reward/2.png HTTP/1.1
Host: zxcyg.mubbb.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:17:53 GMT
content-type: image/png
content-length: 89530
last-modified: Wed, 13 Mar 2024 17:14:54 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ej01%2BzbiyKe72Q5VyOAN2A1fLUgvDfxAXF7isL8ha1NsXaWd5HsCqm8e3xxBgql296BeNjh%2FUE%2B%2BFDKBjEDJKthGBmRMscajWiKRQDX%2F0QeiejVe8OVW64MRQcIpJZLHaB1LGA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876288c38aa4b4eb-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.pubgmobile.com/en/images/nav_menu.svg | 95.101.11.144 | 200 OK | 426 B |
URL GET HTTP/2www.pubgmobile.com/en/images/nav_menu.svg IP95.101.11.144:443 ASN#20940 Akamai International B.V.
Requested byhttps://zxcyg.mubbb.my.id/ CertificateIssuerDigiCert Inc Subjectwetv.acc.qq.com Fingerprint5C:D9:77:1B:16:32:99:FE:C5:2E:BD:E3:86:D8:71:22:B0:1B:6A:3F ValidityMon, 30 Oct 2023 00:00:00 GMT - Wed, 30 Oct 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hasha1f09c4f5c87271dbccf8cb05885ad42 18bbacc9c372dcb6bc77c2475595e058c1ad1594 b0d849e0e910d13bcdab1e94f5c799dda1a9429c908e18069f9dc7f7d551d58a
GET /en/images/nav_menu.svg HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: image/svg+xml
last-modified: Mon, 21 Mar 2022 13:24:18 GMT
etag: "62387c82-374"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
date: Thu, 18 Apr 2024 06:17:53 GMT
content-length: 426
X-Firefox-Spdy: h2
|
|
| zxcyg.mubbb.my.id/static/img/free.png | 188.114.96.1 | 200 OK | 241 kB |
URL GET HTTP/3zxcyg.mubbb.my.id/static/img/free.png IP188.114.96.1:443
Requested byhttps://zxcyg.mubbb.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectmubbb.my.id FingerprintB6:0E:37:53:C6:DC:64:5B:AB:D8:51:2D:41:E0:3B:23:2E:0C:D0:B4 ValidityMon, 04 Mar 2024 02:04:58 GMT - Sun, 02 Jun 2024 02:04:57 GMT
File typePNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced Size241 kB (240826 bytes) Hash0b368ba0d6ba79cdac00266cc788423c abfe41488bb222f5b68a60e8f8574f78d15a5fd3 8d6767ef7c3e6f41f5ba1beca5da879c48d9247922d421196157c2a4192debf0
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /static/img/free.png HTTP/1.1
Host: zxcyg.mubbb.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:17:55 GMT
content-type: image/png
content-length: 240826
last-modified: Wed, 13 Mar 2024 16:20:48 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=U6lCo%2FPmb3r%2BNeeWeYhyMD1Y1oQCascQvwJvcMuYTwUw%2FNdVUlE6%2FroVRj5k9GcjnF7tg4EiFvziHCwCRT13N9l%2BxCTSVmDJoILM8cDO4MQW%2Bl0JNmwxXjaUCW2XFH%2BSjVIBlg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876288c38a9fb4eb-OSL
alt-svc: h3=":443"; ma=86400
|
|
| zxcyg.mubbb.my.id/img/wheel.png | 188.114.96.1 | 200 OK | 55 kB |
URL GET HTTP/3zxcyg.mubbb.my.id/img/wheel.png IP188.114.96.1:443
Requested byhttps://zxcyg.mubbb.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectmubbb.my.id FingerprintB6:0E:37:53:C6:DC:64:5B:AB:D8:51:2D:41:E0:3B:23:2E:0C:D0:B4 ValidityMon, 04 Mar 2024 02:04:58 GMT - Sun, 02 Jun 2024 02:04:57 GMT
File typePNG image data, 859 x 871, 8-bit/color RGBA, non-interlaced Hash16ef0d10bc717ef3f5f503bfb8fcd5cd 5ad4d846bd3343ae0eb69c0160d57e15f50a5831 d48485a468b2b5d0ee7dd63efc60de6d4690573cf3b17968b223ec8f2476f84f
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/wheel.png HTTP/1.1
Host: zxcyg.mubbb.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:17:56 GMT
content-type: image/png
content-length: 55386
last-modified: Tue, 07 Mar 2023 18:28:00 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Gg9CRPfDaH5t2OVWspVk5Rk7R0GNlZgnU45eE68Gm5eWehip8usumoppp6xYEFDEYB4HkVL9lBJHjYjgiHZNtW101D3sarty7Ee2bw7PTmYi5AuU65ApiKOBM9Xoejr9hliV2Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876288c38a9bb4eb-OSL
alt-svc: h3=":443"; ma=86400
|
|
| zxcyg.mubbb.my.id/static/img/reward/0.png | 188.114.96.1 | 200 OK | 102 kB |
URL GET HTTP/3zxcyg.mubbb.my.id/static/img/reward/0.png IP188.114.96.1:443
Requested byhttps://zxcyg.mubbb.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectmubbb.my.id FingerprintB6:0E:37:53:C6:DC:64:5B:AB:D8:51:2D:41:E0:3B:23:2E:0C:D0:B4 ValidityMon, 04 Mar 2024 02:04:58 GMT - Sun, 02 Jun 2024 02:04:57 GMT
File typePNG image data, 288 x 372, 8-bit/color RGB, non-interlaced Size102 kB (101830 bytes) Hashea837f048ada68024773ccec95019232 7ecd7c57ef61f72d960ad11af2d6563e47593e54 6bf4912c37ae07cf9cfc242dde86ce1279c383ff823130e2b7e56459952d7b80
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /static/img/reward/0.png HTTP/1.1
Host: zxcyg.mubbb.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:17:56 GMT
content-type: image/png
content-length: 101830
last-modified: Thu, 14 Mar 2024 11:45:02 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vWT%2BSX3q4KXIOGQ5tx%2Bsb1cWlIJ3Pt5SzCKhs92Csm76nehp9k%2BGm9eHWpMeVgrYsoQHumxwOLVh6KA53P79FSl%2BEIroCS9vtXtO2SsmjR%2F%2FyyjslhXv0l2cfqF9cHXT8Qhj9A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876288c3aabfb4eb-OSL
alt-svc: h3=":443"; ma=86400
|
|
| zxcyg.mubbb.my.id/img/btn-off.png | 188.114.96.1 | 200 OK | 737 B |
URL GET HTTP/3zxcyg.mubbb.my.id/img/btn-off.png IP188.114.96.1:443
Requested byhttps://zxcyg.mubbb.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectmubbb.my.id FingerprintB6:0E:37:53:C6:DC:64:5B:AB:D8:51:2D:41:E0:3B:23:2E:0C:D0:B4 ValidityMon, 04 Mar 2024 02:04:58 GMT - Sun, 02 Jun 2024 02:04:57 GMT
File typePNG image data, 195 x 58, 8-bit colormap, non-interlaced Hash0ec1c29e13291ba7838177581aaf9578 f9fe0f9a9e9d5333c6c21ee099766e67ed076778 5c53b5b7d34dc07cb451499f37ff279a87d87033e9f3b6589c887a667fedfc4d
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/btn-off.png HTTP/1.1
Host: zxcyg.mubbb.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:17:57 GMT
content-type: image/png
content-length: 737
last-modified: Tue, 29 Nov 2022 14:13:36 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RpT2Z7fbXMawyiKLPkeamdHCSVz16DlboW8T5SPowcTDozrcvVp6Ir3RFr8ESzG2HSw5DdgJ4YC6EBMAuyfk%2BYfYIeo8cqAssCpy7m8cIZnLMTjoOc4%2FmjDV2%2BP6HrlIxDA34A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876288c8a837b4eb-OSL
alt-svc: h3=":443"; ma=86400
|
|
| zxcyg.mubbb.my.id/static/img/reward/5.png | 188.114.96.1 | 200 OK | 108 kB |
URL GET HTTP/3zxcyg.mubbb.my.id/static/img/reward/5.png IP188.114.96.1:443
Requested byhttps://zxcyg.mubbb.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectmubbb.my.id FingerprintB6:0E:37:53:C6:DC:64:5B:AB:D8:51:2D:41:E0:3B:23:2E:0C:D0:B4 ValidityMon, 04 Mar 2024 02:04:58 GMT - Sun, 02 Jun 2024 02:04:57 GMT
File typePNG image data, 291 x 372, 8-bit/color RGB, non-interlaced Size108 kB (107481 bytes) Hashbbe4e0314326e8ac5a818ecb60bdb7d7 fd5458fbe85165f5891a2fad85f21ce9d82eb7f4 7acdcbdf7f22b04d468847756c508d84575d348b52fbec152d333e50f3581c89
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /static/img/reward/5.png HTTP/1.1
Host: zxcyg.mubbb.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:17:56 GMT
content-type: image/png
content-length: 107481
last-modified: Wed, 13 Mar 2024 17:18:10 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=E139J8wvbLet9yx9SQXZapVcGDhWzjbKz%2FhnOzF214F2TclRq37uEFysFRELIC4ipY3tK9J95dHhgFFUD%2B6dL2iwSs%2BZ6P%2BPUJx0hQsVjyJr02T8G9uGXlnzOlqyftY7LVnXxg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876288c39aadb4eb-OSL
alt-svc: h3=":443"; ma=86400
|
|
| rawcdn.githack.com/AlexHostX/all.asset/6635455e463c4b55d9c4dac99f2c44f9091b612c/unclick.mp3 | 104.21.234.230 | 301 Moved Permanently | 205 B |
URL GET HTTP/2rawcdn.githack.com/AlexHostX/all.asset/6635455e463c4b55d9c4dac99f2c44f9091b612c/unclick.mp3 IP104.21.234.230:443
Requested byhttps://zxcyg.mubbb.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectgithack.com FingerprintA4:13:2F:80:0A:C6:7C:8B:08:12:12:22:60:76:15:7D:40:80:70:54 ValidityFri, 01 Mar 2024 13:12:36 GMT - Thu, 30 May 2024 13:12:35 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hasha131a561ff1fcd4bd22ae4d8a44096a7 0fe2f1188600da413aa9656c095a8f0d0230c231 33dd33c7e4fd25ef18436701457abcb00574695b1d109f7ab25f145b6cc09218
GET /AlexHostX/all.asset/6635455e463c4b55d9c4dac99f2c44f9091b612c/unclick.mp3 HTTP/1.1
Host: rawcdn.githack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Thu, 18 Apr 2024 06:17:57 GMT
content-type: text/html
location: https://raw.githubusercontent.com/AlexHostX/all.asset/6635455e463c4b55d9c4dac99f2c44f9091b612c/unclick.mp3
cache-control: max-age=86400, public
access-control-allow-origin: *
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YX426NuJOHtYz1hvOKtb2yUNFDiO1Y5EaNVEFi3XNVzS5fmh0EjRCOSCRFZNTjcToqNvn3cQ3FxRNt5OKK1xTwyQV94RuYbJCpwSm%2BheWBmyBmHu9CKE2QpDrB%2BWkVPq5JDO9sk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876288e49bc07187-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| rawcdn.githack.com/AlexHostX/all.asset/d1a42a80f01064a559cb0ce4e5ec0474091c651f/click.mp3 | 104.21.234.230 | 301 Moved Permanently | 205 B |
URL GET HTTP/2rawcdn.githack.com/AlexHostX/all.asset/d1a42a80f01064a559cb0ce4e5ec0474091c651f/click.mp3 IP104.21.234.230:443
Requested byhttps://zxcyg.mubbb.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectgithack.com FingerprintA4:13:2F:80:0A:C6:7C:8B:08:12:12:22:60:76:15:7D:40:80:70:54 ValidityFri, 01 Mar 2024 13:12:36 GMT - Thu, 30 May 2024 13:12:35 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hasha131a561ff1fcd4bd22ae4d8a44096a7 0fe2f1188600da413aa9656c095a8f0d0230c231 33dd33c7e4fd25ef18436701457abcb00574695b1d109f7ab25f145b6cc09218
GET /AlexHostX/all.asset/d1a42a80f01064a559cb0ce4e5ec0474091c651f/click.mp3 HTTP/1.1
Host: rawcdn.githack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Thu, 18 Apr 2024 06:17:57 GMT
content-type: text/html
location: https://raw.githubusercontent.com/AlexHostX/all.asset/d1a42a80f01064a559cb0ce4e5ec0474091c651f/click.mp3
cache-control: max-age=86400, public
access-control-allow-origin: *
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QS0sN%2FTAJQzgJ1g9c%2F%2BXH5cnLuGERZJlLtJTVHFjZkk3WD6l6bGevQRj%2F2Iykrjb0yjZD1py8oPki5FKICw6ax%2FUjQ5wlvY9xZbOrZ16WZiP5s5N7jTuumXQnWEmucGONQhXdOs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876288e49bb87187-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| zxcyg.mubbb.my.id/static/img/reward/8.png | 188.114.96.1 | 200 OK | 102 kB |
URL GET HTTP/3zxcyg.mubbb.my.id/static/img/reward/8.png IP188.114.96.1:443
Requested byhttps://zxcyg.mubbb.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectmubbb.my.id FingerprintB6:0E:37:53:C6:DC:64:5B:AB:D8:51:2D:41:E0:3B:23:2E:0C:D0:B4 ValidityMon, 04 Mar 2024 02:04:58 GMT - Sun, 02 Jun 2024 02:04:57 GMT
File typePNG image data, 288 x 372, 8-bit/color RGB, non-interlaced Size102 kB (101830 bytes) Hashea837f048ada68024773ccec95019232 7ecd7c57ef61f72d960ad11af2d6563e47593e54 6bf4912c37ae07cf9cfc242dde86ce1279c383ff823130e2b7e56459952d7b80
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /static/img/reward/8.png HTTP/1.1
Host: zxcyg.mubbb.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:17:57 GMT
content-type: image/png
content-length: 101830
last-modified: Wed, 13 Mar 2024 17:11:30 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=be9YZsymUtr94bapCFv%2FzB9JNU63cx%2F8nskG2z1chFP8pno7tG%2By7ig%2BgUeZk62qXNmyhmGiXQBwVD2uk7h9QP3GryS%2BCOPdKFO5mfD3EtcXD3%2B9irlu75jEv9b2pRKHt8pqgg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876288c39ab6b4eb-OSL
alt-svc: h3=":443"; ma=86400
|
|
| zxcyg.mubbb.my.id/static/wheelStop.mp3 | 188.114.96.1 | 206 Partial Content | 21 kB |
URL GET HTTP/3zxcyg.mubbb.my.id/static/wheelStop.mp3 IP188.114.96.1:443
Requested byhttps://zxcyg.mubbb.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectmubbb.my.id FingerprintB6:0E:37:53:C6:DC:64:5B:AB:D8:51:2D:41:E0:3B:23:2E:0C:D0:B4 ValidityMon, 04 Mar 2024 02:04:58 GMT - Sun, 02 Jun 2024 02:04:57 GMT
File typeAudio file with ID3 version 2.3.0, contains: MPEG ADTS, layer III, v1, 128 kbps, 48 kHz, JntStereo Hashda5c02d0af9c7f9db0fb0e213858ccfa 9f7c649258009c2c853b74349c060d9de12109b1 2998755f4b37c49010974e07f9aa0643b0a9c5be592d42988c733d0e3acc9ae3
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /static/wheelStop.mp3 HTTP/1.1
Host: zxcyg.mubbb.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 206 Partial Content
date: Thu, 18 Apr 2024 06:17:57 GMT
content-type: audio/mpeg
content-length: 20994
last-modified: Mon, 03 Oct 2022 21:34:34 GMT
cache-control: max-age=14400
cf-cache-status: MISS
content-range: bytes 0-20993/20994
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VinEX8lTHoqwJI%2BJEQ3YPolQlyCI1XhhekXSWP%2BsSgI9pMKrNAcCWnAhvtMBQWIS8zsHqf1UTgKsKF9DfpfrPnGdprHl2awaC6ZioQbayDgRBveUWb8WAC4TDIg9lZoBpiTNxw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876288e3f9a3b4eb-OSL
alt-svc: h3=":443"; ma=86400
|
|
| zxcyg.mubbb.my.id/static/img/reward/4.png | 188.114.96.1 | 200 OK | 92 kB |
URL GET HTTP/3zxcyg.mubbb.my.id/static/img/reward/4.png IP188.114.96.1:443
Requested byhttps://zxcyg.mubbb.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectmubbb.my.id FingerprintB6:0E:37:53:C6:DC:64:5B:AB:D8:51:2D:41:E0:3B:23:2E:0C:D0:B4 ValidityMon, 04 Mar 2024 02:04:58 GMT - Sun, 02 Jun 2024 02:04:57 GMT
File typePNG image data, 283 x 359, 8-bit/color RGB, non-interlaced Hash8564d70663058bb3502a1888f51fcd72 85e22240e15bbcbb4d368987a61a1c697e403edf 87875b47144648bcbf091f0554200be688cb750781e98ca037a63841fb0c8005
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /static/img/reward/4.png HTTP/1.1
Host: zxcyg.mubbb.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:17:57 GMT
content-type: image/png
content-length: 91503
last-modified: Wed, 13 Mar 2024 17:17:49 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IFvdOHk11VWBtU5QOQgS8mWW0y13pfacFrPBrq8BK7znkNwbg3oDFMeT3pj787qoCEZOztzkEgTfREyzpbyG%2BHFM5WuWk7IdkTRTy0RR%2FZKdMl%2BkBJZ3PzKJrNxdpDASPcbSPg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876288c38aa9b4eb-OSL
alt-svc: h3=":443"; ma=86400
|
|
| play-lh.googleusercontent.com/jWN9pjF7atbqHYXAAfwvIjtzpGwTIVwX9etT0-9HiWjRjE1hInoEgJiWjwsiemu2rEb8 | 142.250.74.86 | 200 OK | 73 kB |
URL GET HTTP/2play-lh.googleusercontent.com/jWN9pjF7atbqHYXAAfwvIjtzpGwTIVwX9etT0-9HiWjRjE1hInoEgJiWjwsiemu2rEb8 IP142.250.74.86:443
Requested byhttps://zxcyg.mubbb.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectedgestatic.com Fingerprint78:1A:D9:37:F2:33:3C:A9:0F:4C:4A:E8:40:9E:55:8E:02:75:1E:15 ValidityMon, 04 Mar 2024 06:35:07 GMT - Mon, 27 May 2024 06:35:06 GMT
File typePNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced Hash2bafc2fba248405e93058e3c26dfa614 8361bf3eec4ea108953492ad3a332d48d6f7671f 828588fb737f1eb815949ff596fe72a7ba7a1fdb9ad6816d95aa97e88f150506
GET /jWN9pjF7atbqHYXAAfwvIjtzpGwTIVwX9etT0-9HiWjRjE1hInoEgJiWjwsiemu2rEb8 HTTP/1.1
Host: play-lh.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1"
expires: Fri, 19 Apr 2024 06:17:58 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.png"
x-content-type-options: nosniff
date: Thu, 18 Apr 2024 06:17:58 GMT
server: fife
content-length: 73303
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| i.postimg.cc/nVkV8M0W/FfMaxx.jpg | 162.19.61.80 | 200 OK | 37 kB |
URL GET HTTP/2i.postimg.cc/nVkV8M0W/FfMaxx.jpg IP162.19.61.80:443
Requested byhttps://zxcyg.mubbb.my.id/ CertificateIssuerLet's Encrypt Subjectpostimg.cc FingerprintF9:1B:A9:B2:AB:2D:30:75:4E:44:3F:7A:6F:40:77:77:39:CE:1B:13 ValidityWed, 21 Feb 2024 07:13:33 GMT - Tue, 21 May 2024 07:13:32 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 512x512, components 3 Hash61aa45bf291755caa8f0664e4e8b91e9 33f6c6304486ce8004d9d459f08aa6b95982f0ba 323b5ffc0bc7f906cf266b1622e4de3f8dfddcb3f38c460e58b468906d51ebf3
GET /nVkV8M0W/FfMaxx.jpg HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 06:17:58 GMT
content-type: image/jpeg
content-length: 37166
last-modified: Sat, 04 Mar 2023 14:21:43 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| zxcyg.mubbb.my.id/css/animate.css | 188.114.96.1 | 200 OK | 78 kB |
URL GET HTTP/3zxcyg.mubbb.my.id/css/animate.css IP188.114.96.1:443
Requested byhttps://zxcyg.mubbb.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectmubbb.my.id FingerprintB6:0E:37:53:C6:DC:64:5B:AB:D8:51:2D:41:E0:3B:23:2E:0C:D0:B4 ValidityMon, 04 Mar 2024 02:04:58 GMT - Sun, 02 Jun 2024 02:04:57 GMT
Hash8eae1a9cfafdc593321d4d59ec4905ea 232f5f3f4c3a0a56823e0e933f9c7fec3aa9cbcc e89c81987c5cbc157097eaa6657d6a594abf030cc89bb63f0d2154d8383e9fab
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /css/animate.css HTTP/1.1
Host: zxcyg.mubbb.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:17:52 GMT
content-type: text/css
last-modified: Mon, 20 Jun 2022 07:07:26 GMT
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QIbPWQLnUeYhqfk5LWcKQXlMvCSo272ygwreYs9vhFFyoDNIa1L6SlGnsl0jCQ0oTqfVt7lDcCMI%2BvEZJcuMYOs5ZH2nVfasYb5ZRovqdQnSRMAyO5slDIXDTeBIwckKrsjWuA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876288c36a64b4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| raw.githubusercontent.com/AlexHostX/all.asset/6635455e463c4b55d9c4dac99f2c44f9091b612c/unclick.mp3 | 185.199.111.133 | 404 Not Found | 0 B |
URL GET HTTP/2raw.githubusercontent.com/AlexHostX/all.asset/6635455e463c4b55d9c4dac99f2c44f9091b612c/unclick.mp3 IP185.199.111.133:443
Requested byhttps://zxcyg.mubbb.my.id/ CertificateIssuerDigiCert Inc Subject*.github.io Fingerprint97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28 ValidityFri, 15 Mar 2024 00:00:00 GMT - Fri, 14 Mar 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /AlexHostX/all.asset/6635455e463c4b55d9c4dac99f2c44f9091b612c/unclick.mp3 HTTP/1.1
Host: raw.githubusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br, identity
Range: bytes=0-
Referer: https://zxcyg.mubbb.my.id/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: deny
x-xss-protection: 1; mode=block
content-type: text/plain; charset=utf-8
x-github-request-id: BFEC:22870C:3103BEF:33E4D44:6620BB15
accept-ranges: bytes
date: Thu, 18 Apr 2024 06:17:57 GMT
via: 1.1 varnish
x-served-by: cache-hel1410024-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1713421077.317605,VS0,VE121
vary: Authorization,Accept-Encoding,Origin
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-fastly-request-id: e1081e1bed1640956acacf307bba5769f71205b4
expires: Thu, 18 Apr 2024 06:22:57 GMT
source-age: 0
content-length: 14
X-Firefox-Spdy: h2
|
|
| | 188.114.96.1 | 200 OK | 20 kB |
URL User Request GET HTTP/2IP188.114.96.1:443
CertificateIssuerGoogle Trust Services LLC Subjectmubbb.my.id FingerprintB6:0E:37:53:C6:DC:64:5B:AB:D8:51:2D:41:E0:3B:23:2E:0C:D0:B4 ValidityMon, 04 Mar 2024 02:04:58 GMT - Sun, 02 Jun 2024 02:04:57 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET / HTTP/1.1
Host: zxcyg.mubbb.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:17:51 GMT
content-type: text/html; charset=UTF-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yuBXkOunwivzRiHeiONdHPdkbBcFJEhx%2B1D%2FQrfSV%2BW4n1kXRAHDtf73lOTtFBp1On6wMLLU948jVlDljWg%2BDb8ttweCJoftvuOlifL7fHMUJ6RsqdJmmLAX9%2B%2BFKTuZaY12Cg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876288bfa8d8b500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| zxcyg.mubbb.my.id/js/ryucodex.js | 188.114.96.1 | 200 OK | 4.3 kB |
URL GET HTTP/3zxcyg.mubbb.my.id/js/ryucodex.js IP188.114.96.1:443
Requested byhttps://zxcyg.mubbb.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectmubbb.my.id FingerprintB6:0E:37:53:C6:DC:64:5B:AB:D8:51:2D:41:E0:3B:23:2E:0C:D0:B4 ValidityMon, 04 Mar 2024 02:04:58 GMT - Sun, 02 Jun 2024 02:04:57 GMT
File typeJavaScript source, ASCII text, with very long lines (4762), with no line terminators Hashdecdcba332baceb9b9b35d877f590465 f902f3eb9c01e750fdd50049f3c4508a7583319e 410f9ffe1cee74c404fd7b3b58cfbb4a6c388e2b167560dbf10b1aa159d70243
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /js/ryucodex.js HTTP/1.1
Host: zxcyg.mubbb.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:17:57 GMT
content-type: text/javascript
last-modified: Wed, 26 Oct 2022 09:44:40 GMT
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hPs4WMGtIyjD7drItMt9tkeMhtk4IuDUfiqz0zweP%2BMJ0LvfMQDwG5afU7doiwRKCwpD4B9wQ0YxlnawBlkLTtXmrAB3K0PwOEydBF3mhkzPAVoE01mS31DKSx5X7RavTNSmpQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876288c4ac06b4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zxcyg.mubbb.my.id/css/login/twitter.css | 188.114.96.1 | 200 OK | 2.2 kB |
URL GET HTTP/3zxcyg.mubbb.my.id/css/login/twitter.css IP188.114.96.1:443
Requested byhttps://zxcyg.mubbb.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectmubbb.my.id FingerprintB6:0E:37:53:C6:DC:64:5B:AB:D8:51:2D:41:E0:3B:23:2E:0C:D0:B4 ValidityMon, 04 Mar 2024 02:04:58 GMT - Sun, 02 Jun 2024 02:04:57 GMT
File typeASCII text, with very long lines (2432), with no line terminators Hash7d5267c9b34aa43887197a665912df33 3a527c4c1711d636a2b59c2efa4335c1f63b04b4 348779db86aad5d0930000f53c1763b20a7613db3aaebaccd12b5d0789bbb3a3
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /css/login/twitter.css HTTP/1.1
Host: zxcyg.mubbb.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:17:52 GMT
content-type: text/css
last-modified: Wed, 22 Jun 2022 07:02:08 GMT
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eOBN8niTUlsXw3e%2FUGrbV40247UAEowEDLbY968uYWT5RF3gjsAHrzdT2Wi2EIYMElZOeZKHKFDQ0f2vOF4KNR3iaZ0fSxyJdPolwk2t9DsQWeVqY1zRe0AXpHxe3AVxV82JlQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876288c36a6db4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| unpkg.com/package-ion@2.4.3-icons/ionicons.map.js | 104.17.245.203 | 404 Not Found | 0 B |
URL GET HTTP/2unpkg.com/package-ion@2.4.3-icons/ionicons.map.js IP104.17.245.203:443
Requested byhttps://zxcyg.mubbb.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectunpkg.com Fingerprint2E:F1:F6:31:28:EC:29:20:41:F4:58:4B:B1:CF:51:16:77:7E:BF:E3 ValidityMon, 01 Apr 2024 02:40:24 GMT - Sun, 30 Jun 2024 02:40:23 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /package-ion@2.4.3-icons/ionicons.map.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Thu, 18 Apr 2024 06:17:52 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
content-encoding: br
etag: W/"2b-fYuHHVpRh3xetcRZpF4tsszS3/0"
via: 1.1 fly.io
fly-request-id: 01HVQXNDR5M0RNP52T5V5G1PDY-arn
cf-cache-status: EXPIRED
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 876288c4b8fc5687-OSL
X-Firefox-Spdy: h2
|
|
| zxcyg.mubbb.my.id/static/wheelsong.mp3 | 188.114.96.1 | 206 Partial Content | 113 kB |
URL GET HTTP/3zxcyg.mubbb.my.id/static/wheelsong.mp3 IP188.114.96.1:443
Requested byhttps://zxcyg.mubbb.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectmubbb.my.id FingerprintB6:0E:37:53:C6:DC:64:5B:AB:D8:51:2D:41:E0:3B:23:2E:0C:D0:B4 ValidityMon, 04 Mar 2024 02:04:58 GMT - Sun, 02 Jun 2024 02:04:57 GMT
File typeAudio file with ID3 version 2.3.0, contains: MPEG ADTS, layer III, v1, 256 kbps, 44.1 kHz, JntStereo Size113 kB (112789 bytes) Hashe5af7795c4852e81055c9c29e38f36d4 0f927d8e36a2fade571b202d5e8a4cf2f759a334 acf2efb7836efd7e4909de245d99d4558bb09e07b6adae15c71c639b504f9e66
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /static/wheelsong.mp3 HTTP/1.1
Host: zxcyg.mubbb.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 206 Partial Content
date: Thu, 18 Apr 2024 06:17:58 GMT
content-type: audio/mpeg
content-length: 315326
last-modified: Mon, 03 Oct 2022 21:34:34 GMT
cache-control: max-age=14400
cf-cache-status: MISS
content-range: bytes 0-315325/315326
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UJDnd60C8SrpjtfYSNTpOewqDiGt%2BFGygnbfpkr4imtTsc21TiPajCU6SmQ%2BnBGJtPejNmCRZWLQ7VcGbabxxH3qfhUQaGhAIOFGQ4ryBavjlE%2BIqEbdFVxiYdEXY8vaiz4KlQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876288e3f9a2b4eb-OSL
alt-svc: h3=":443"; ma=86400
|
|
| raw.githubusercontent.com/AlexHostX/all.asset/d1a42a80f01064a559cb0ce4e5ec0474091c651f/click.mp3 | 185.199.111.133 | 404 Not Found | 0 B |
URL GET HTTP/2raw.githubusercontent.com/AlexHostX/all.asset/d1a42a80f01064a559cb0ce4e5ec0474091c651f/click.mp3 IP185.199.111.133:443
Requested byhttps://zxcyg.mubbb.my.id/ CertificateIssuerDigiCert Inc Subject*.github.io Fingerprint97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28 ValidityFri, 15 Mar 2024 00:00:00 GMT - Fri, 14 Mar 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /AlexHostX/all.asset/d1a42a80f01064a559cb0ce4e5ec0474091c651f/click.mp3 HTTP/1.1
Host: raw.githubusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br, identity
Range: bytes=0-
Referer: https://zxcyg.mubbb.my.id/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: deny
x-xss-protection: 1; mode=block
content-type: text/plain; charset=utf-8
x-github-request-id: A666:22C804:5D6581:62C0B6:6620BB15
accept-ranges: bytes
date: Thu, 18 Apr 2024 06:17:57 GMT
via: 1.1 varnish
x-served-by: cache-hel1410024-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1713421077.324908,VS0,VE121
vary: Authorization,Accept-Encoding,Origin
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-fastly-request-id: 7b08bc79c8fdcc3ca90da3e0f2a66a45ad699202
expires: Thu, 18 Apr 2024 06:22:57 GMT
source-age: 0
content-length: 14
X-Firefox-Spdy: h2
|
|
| zxcyg.mubbb.my.id/css/style.css | 188.114.96.1 | 200 OK | 21 kB |
URL GET HTTP/3zxcyg.mubbb.my.id/css/style.css IP188.114.96.1:443
Requested byhttps://zxcyg.mubbb.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectmubbb.my.id FingerprintB6:0E:37:53:C6:DC:64:5B:AB:D8:51:2D:41:E0:3B:23:2E:0C:D0:B4 ValidityMon, 04 Mar 2024 02:04:58 GMT - Sun, 02 Jun 2024 02:04:57 GMT
File typeassembler source, ASCII text Hash7305e168336600617a117cae101e6695 03738a97c782a6a3918f69aa63ecdedee1c84330 443d150a1d878908b45e11aa31211009f724d894efc40d24495a9222c0a226a3
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /css/style.css HTTP/1.1
Host: zxcyg.mubbb.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:17:52 GMT
content-type: text/css
last-modified: Wed, 13 Mar 2024 17:23:53 GMT
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=D6HbDBOJLWF5YGhTVt0w18z7AYV%2F%2FusSZ%2BVT28Hlbv7PwRjXas9rhImzyIHGhkLesMyv5BhINZGJYlpMDatInm5OEGM2zRVZh7ZYg%2FeSEE%2F%2BsVdroCKOjQf0eUtX2dN%2Bx24WuA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876288c36a62b4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.googleapis.com/css?family=Roboto:300,400,500,700|Teko:300,400,500 | 216.58.207.234 | 200 OK | 12 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Roboto:300,400,500,700|Teko:300,400,500 IP216.58.207.234:443
Requested byhttps://zxcyg.mubbb.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
Hash807349734f3707b50b73c3fd626526e8 2f3ab67f0ffa01bc1f0c180cae9085ecc8d96d63 ce7d7e11e41b1b3619cbdf436bbf2557fda2d97d434e65fab281207ffae5c0d0
GET /css?family=Roboto:300,400,500,700|Teko:300,400,500 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 18 Apr 2024 06:17:52 GMT
date: Thu, 18 Apr 2024 06:17:52 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| unpkg.com/package-ion@2.4.3-icons/ionicons.map.js | 104.17.245.203 | 404 Not Found | 0 B |
URL GET HTTP/2unpkg.com/package-ion@2.4.3-icons/ionicons.map.js IP104.17.245.203:443
Requested byhttps://zxcyg.mubbb.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectunpkg.com Fingerprint2E:F1:F6:31:28:EC:29:20:41:F4:58:4B:B1:CF:51:16:77:7E:BF:E3 ValidityMon, 01 Apr 2024 02:40:24 GMT - Sun, 30 Jun 2024 02:40:23 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /package-ion@2.4.3-icons/ionicons.map.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Thu, 18 Apr 2024 06:17:52 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
content-encoding: br
etag: W/"2b-fYuHHVpRh3xetcRZpF4tsszS3/0"
via: 1.1 fly.io
fly-request-id: 01HVQXNDR5M0RNP52T5V5G1PDY-arn
cf-cache-status: HIT
age: 0
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 876288c91ded5687-OSL
X-Firefox-Spdy: h2
|
|
| zxcyg.mubbb.my.id/css/login/facebook.css | 188.114.96.1 | 200 OK | 3.1 kB |
URL GET HTTP/3zxcyg.mubbb.my.id/css/login/facebook.css IP188.114.96.1:443
Requested byhttps://zxcyg.mubbb.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectmubbb.my.id FingerprintB6:0E:37:53:C6:DC:64:5B:AB:D8:51:2D:41:E0:3B:23:2E:0C:D0:B4 ValidityMon, 04 Mar 2024 02:04:58 GMT - Sun, 02 Jun 2024 02:04:57 GMT
File typeASCII text, with very long lines (3340), with no line terminators Hash6855b848037caf4bc5994c5cde899b53 b202e8a3af1d8aea1d7f689fbb6546ccbd21a8bd f2ecc09425ab65f4ca927f7987d4d1c2895ac4d79d14d65b814e66aaae87020e
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /css/login/facebook.css HTTP/1.1
Host: zxcyg.mubbb.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:17:52 GMT
content-type: text/css
last-modified: Mon, 20 Jun 2022 07:07:26 GMT
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JAoTFLpMHWxcgXhgJ%2BFWexl4zQhsSNqjSjFnFJfbUFaRjJgVURf8psZBbypcXtwuL9R7ouwOQjrYhD3QcF06WylPzj5bqL8B9V5hH%2BN4FYGuqceYLQMFnKmCocT4fOVZfSxcjA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876288c36a68b4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css | 104.18.11.207 | 200 OK | 31 kB |
URL GET HTTP/2stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css IP104.18.11.207:443
Requested byhttps://zxcyg.mubbb.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectbootstrapcdn.com Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63 ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT
File typeASCII text, with very long lines (30837) Hash269550530cc127b6aa5a35925a7de6ce 512c7d79033e3028a9be61b540cf1a6870c896f8 799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zxcyg.mubbb.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:17:51 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"269550530cc127b6aa5a35925a7de6ce"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 10/31/2023 18:48:06
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 722
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: dd809c84048d5afa8e77adc8acacd559
cdn-cache: HIT
cf-cache-status: HIT
age: 12795246
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 876288c38e54b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|