m.payquiz.xyz/img/Answer_pc_Home.png
200 OK 508 B URL GET HTTP/3 m.payquiz.xyz/img/Answer_pc_Home.png
IP
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGoogle Trust Services LLC
Subjectpayquiz.xyz
Fingerprint82:12:11:9B:0D:EF:CA:9B:64:30:9A:3A:18:50:44:39:01:28:A4:46
ValidityWed, 20 Mar 2024 12:10:07 GMT - Tue, 18 Jun 2024 12:10:06 GMT
File type PNG image data, 44 x 44, 8-bit colormap, non-interlaced
Hash 60be355f63ecbb781dda38ade7cc47b5
ea3627b8f993fb00b1da9b31b795431701c8fcbb
2589ee98f66272d8af6bdf3639505cc42ff3d8aee18973129f3341ac734cfa17
GET /img/Answer_pc_Home.png HTTP/1.1
Host: m.payquiz.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/signin.php
Cookie: loclang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:18:11 GMT
content-type: image/png
content-length: 508
last-modified: Mon, 29 Nov 2021 06:38:58 GMT
etag: "61a47582-1fc"
expires: Fri, 24 May 2024 03:55:27 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 220964
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=M30z%2BTpDDniQ9YZCjf%2BGSLRuhlbD1cToSZOFchp1KA5cgq9fco%2FyMuLxnka9MWUkv5nVHozw0JYJ%2B1UYDJwGON2ViAlpBlRRbRQYSxoKlRp6miq38EvnXMq8m8tjjmL%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a83b0c8c45b51b-OSL
alt-svc: h3=":443"; ma=86400
m.payquiz.xyz/img/head.png
200 OK 3.3 kB URL GET HTTP/3 m.payquiz.xyz/img/head.png
IP
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGoogle Trust Services LLC
Subjectpayquiz.xyz
Fingerprint82:12:11:9B:0D:EF:CA:9B:64:30:9A:3A:18:50:44:39:01:28:A4:46
ValidityWed, 20 Mar 2024 12:10:07 GMT - Tue, 18 Jun 2024 12:10:06 GMT
File type PNG image data, 147 x 147, 8-bit colormap, non-interlaced
Hash 9c7de4763367fed9c9b5ffe680622c2a
d433a88bcb000f5e98385c06b4c0bc6da22190be
cd483b84dad3747061d18c6173a36ef438200d66d0cac503404173eec4913027
GET /img/head.png HTTP/1.1
Host: m.payquiz.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/signin.php
Cookie: loclang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:18:11 GMT
content-type: image/png
content-length: 3330
last-modified: Mon, 29 Nov 2021 06:38:58 GMT
etag: "61a47582-d02"
expires: Sat, 11 May 2024 18:19:15 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 1292336
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sXhuYWBFLid%2Flt%2FfII7jcvaKWtBx9UbLAW934BSGFEcxzEFCQUa7M%2Bssbt67amHhm4gUXXxAJsO036Ts3NkHpfJc%2FyI4QQ9lA%2FYFsSdj0dK8WBI56VghVtszFfGA6032"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a83b0c8c43b51b-OSL
alt-svc: h3=":443"; ma=86400
m.payquiz.xyz/img/Answer_pc_User-area.png
200 OK 1.1 kB URL GET HTTP/3 m.payquiz.xyz/img/Answer_pc_User-area.png
IP
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGoogle Trust Services LLC
Subjectpayquiz.xyz
Fingerprint82:12:11:9B:0D:EF:CA:9B:64:30:9A:3A:18:50:44:39:01:28:A4:46
ValidityWed, 20 Mar 2024 12:10:07 GMT - Tue, 18 Jun 2024 12:10:06 GMT
File type PNG image data, 44 x 44, 8-bit colormap, non-interlaced
Hash 169da7dd2359a7338b078288b22a087a
8eb84e4fdb93abbaf1043405c838da69efb660e4
1ad7c05edd739e9b883d4945aa902497127f690184221e45476497250d66b4bc
GET /img/Answer_pc_User-area.png HTTP/1.1
Host: m.payquiz.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/signin.php
Cookie: loclang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:18:11 GMT
content-type: image/png
content-length: 1140
last-modified: Mon, 29 Nov 2021 06:38:58 GMT
etag: "61a47582-474"
expires: Sun, 26 May 2024 17:17:44 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 26
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GMqth2uTmCBLbysQjwrnYLHl8KgsHQfTIP4wJsc92HbW%2FV1zDAWvpdTCmL0DFijxXUjxRtkIlEqIaM0ox3k4fC4sFO6FxfxYxj68HYHt%2FU%2B6UAFOiaHxRMMkom7v%2B6xZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a83b0c8c47b51b-OSL
alt-svc: h3=":443"; ma=86400
m.payquiz.xyz/img/Answer_pc_Support.png
200 OK 1.2 kB URL GET HTTP/3 m.payquiz.xyz/img/Answer_pc_Support.png
IP
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGoogle Trust Services LLC
Subjectpayquiz.xyz
Fingerprint82:12:11:9B:0D:EF:CA:9B:64:30:9A:3A:18:50:44:39:01:28:A4:46
ValidityWed, 20 Mar 2024 12:10:07 GMT - Tue, 18 Jun 2024 12:10:06 GMT
File type PNG image data, 44 x 44, 8-bit colormap, non-interlaced
Hash 92c8aacf76b31d3a08597a3849f0545e
2c74f1aed7b114f8d31565f530467ff373284380
e6b897df6a87f20bec1bb5f4689d122f67095992aae84b79e814a88a1f00fd81
GET /img/Answer_pc_Support.png HTTP/1.1
Host: m.payquiz.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/signin.php
Cookie: loclang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:18:11 GMT
content-type: image/png
content-length: 1194
last-modified: Mon, 29 Nov 2021 06:38:58 GMT
etag: "61a47582-4aa"
expires: Sat, 11 May 2024 18:19:16 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 1292335
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ooRJb5SN%2FtgL9F54NJGYD6%2BAI9MLEEgQhMkOJNrobwpcWFk3B1QI8D7%2B%2F137tKSZRvgkP35efCW3ieLc0tXtTLD5pEzSQTjBWbZOiS%2Bx2le7ltI4MruNeLfkCSSVWwWj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a83b0c8c49b51b-OSL
alt-svc: h3=":443"; ma=86400
m.payquiz.xyz/img/Answer_pc_F.A.Q.png
200 OK 1.2 kB URL GET HTTP/3 m.payquiz.xyz/img/Answer_pc_F.A.Q.png
IP
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGoogle Trust Services LLC
Subjectpayquiz.xyz
Fingerprint82:12:11:9B:0D:EF:CA:9B:64:30:9A:3A:18:50:44:39:01:28:A4:46
ValidityWed, 20 Mar 2024 12:10:07 GMT - Tue, 18 Jun 2024 12:10:06 GMT
File type PNG image data, 44 x 44, 8-bit colormap, non-interlaced
Hash dcbdee5147e3caea028b18dc665c965d
82de1c17e9214503382c2aa01bed2eef72075dcb
548520c286521c9d0f7c38f16e0934211322bd8571c6764242a89662c3978d4c
GET /img/Answer_pc_F.A.Q.png HTTP/1.1
Host: m.payquiz.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/signin.php
Cookie: loclang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:18:11 GMT
content-type: image/png
content-length: 1208
last-modified: Mon, 29 Nov 2021 06:38:58 GMT
etag: "61a47582-4b8"
expires: Sat, 11 May 2024 18:19:16 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 1292334
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ned08kfpxNhQZClcVhle0CC4hqMopEML1yVFlEO14t6o2gZOPLmx1b4gXy2mnIyvzIWftTp64tdhDNYlNwtE4GxAXYgrXPyHgOjF%2Bs1goAYw60DE45Ztrn13Z8ABNOYJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a83b0c8c4ab51b-OSL
alt-svc: h3=":443"; ma=86400
m.payquiz.xyz/img/Answer_pc_Language.png
200 OK 893 B URL GET HTTP/3 m.payquiz.xyz/img/Answer_pc_Language.png
IP
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGoogle Trust Services LLC
Subjectpayquiz.xyz
Fingerprint82:12:11:9B:0D:EF:CA:9B:64:30:9A:3A:18:50:44:39:01:28:A4:46
ValidityWed, 20 Mar 2024 12:10:07 GMT - Tue, 18 Jun 2024 12:10:06 GMT
File type PNG image data, 44 x 44, 8-bit colormap, non-interlaced
Hash 9b034b5eb84e477e4c6e868baf9a42bf
b4ad7abdebcb0f12ca3e16a2e5ad6d1749322d3b
38fd90ebc3999035170310a5c38ddcf8745dce659edfcb0fafb72d0714f68d43
GET /img/Answer_pc_Language.png HTTP/1.1
Host: m.payquiz.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/signin.php
Cookie: loclang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:18:11 GMT
content-type: image/png
content-length: 893
last-modified: Mon, 29 Nov 2021 06:38:58 GMT
etag: "61a47582-37d"
expires: Sat, 18 May 2024 05:03:16 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 735295
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=escIZ%2Bpu0AnfLxUc0attCqj%2Bv5KFqGD8T3FDzLNN45g5KjdDH%2F8dBBLyJL35MKJEuX%2Bl1WKWlbNuM6skzgh8CKicf8MsjQM3uXa81i7AVuIXin3TIOWuuLTf8gToLfkz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a83b0c8c4bb51b-OSL
alt-svc: h3=":443"; ma=86400
m.payquiz.xyz/img/Answer_7.png
200 OK 338 B URL GET HTTP/3 m.payquiz.xyz/img/Answer_7.png
IP
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGoogle Trust Services LLC
Subjectpayquiz.xyz
Fingerprint82:12:11:9B:0D:EF:CA:9B:64:30:9A:3A:18:50:44:39:01:28:A4:46
ValidityWed, 20 Mar 2024 12:10:07 GMT - Tue, 18 Jun 2024 12:10:06 GMT
File type PNG image data, 35 x 35, 8-bit colormap, non-interlaced
Hash d7ad748bd3ba01d43e3c09c705f1720d
8754bee0d330d3207c4ec04bee4ec29258a203d3
9a30cd63bb9af11a2bb36d7dcb6806cfd71cc2fef7362694d82059b2e644a307
GET /img/Answer_7.png HTTP/1.1
Host: m.payquiz.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/signin.php
Cookie: loclang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:18:11 GMT
content-type: image/png
content-length: 338
last-modified: Mon, 29 Nov 2021 06:38:58 GMT
etag: "61a47582-152"
expires: Sun, 26 May 2024 17:17:44 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 26
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kBez24g9pv2JtYkzaIOPXDulDi5rJ2x2tnUEuutPmgwE%2FqKAdW2jhB7UM%2FuW8S8lZJMpvQaoVaIlfI%2FoP1tzdNPPtWYd5MHiC8pdkrg0eIBYq0OqdE2cU6JFOZyIGZ6C"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a83b0c8c50b51b-OSL
alt-svc: h3=":443"; ma=86400
m.payquiz.xyz/img/Answer_pc_Rules.png
200 OK 455 B URL GET HTTP/3 m.payquiz.xyz/img/Answer_pc_Rules.png
IP
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGoogle Trust Services LLC
Subjectpayquiz.xyz
Fingerprint82:12:11:9B:0D:EF:CA:9B:64:30:9A:3A:18:50:44:39:01:28:A4:46
ValidityWed, 20 Mar 2024 12:10:07 GMT - Tue, 18 Jun 2024 12:10:06 GMT
File type PNG image data, 44 x 44, 8-bit colormap, non-interlaced
Hash 45420c3303ad8593b2ed7d2ae02530de
09392189c8e80f20950059ef721b2c799ab1d239
482355fa327e795e3114e335fa70f6c4ee352bbd66540d365c94c719cd3d7847
GET /img/Answer_pc_Rules.png HTTP/1.1
Host: m.payquiz.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/signin.php
Cookie: loclang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:18:11 GMT
content-type: image/png
content-length: 455
last-modified: Mon, 29 Nov 2021 06:38:58 GMT
etag: "61a47582-1c7"
expires: Sun, 26 May 2024 17:17:44 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 26
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QuSvau3TIrtIWaDF8AXvE9%2FKPaXS4VvxdvgJgNhXBXWWT48yA8%2BP3M%2B0BQUae%2BYU2jIoE2vW8GVFc%2FqzIfkIoGW0Wo2e%2F1I2Tkn3NOd3rd0EnAftPbWSGEm8HbduVoxf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a83b0c8c4fb51b-OSL
alt-svc: h3=":443"; ma=86400
m.payquiz.xyz/img/Answer_15.png
200 OK 1.5 kB URL GET HTTP/3 m.payquiz.xyz/img/Answer_15.png
IP
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGoogle Trust Services LLC
Subjectpayquiz.xyz
Fingerprint82:12:11:9B:0D:EF:CA:9B:64:30:9A:3A:18:50:44:39:01:28:A4:46
ValidityWed, 20 Mar 2024 12:10:07 GMT - Tue, 18 Jun 2024 12:10:06 GMT
File type PNG image data, 482 x 270, 8-bit colormap, non-interlaced
Hash 4978bd85288fbbfed0278c0e7f625009
f37aa6532095f7d1248a186292c05062458d5c8e
8bd443af9e7ea126b3cd6839c67f16bade003a150eba9171b0bd7b114449fef8
GET /img/Answer_15.png HTTP/1.1
Host: m.payquiz.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/public/common.css?v=1025
Cookie: loclang=en; userInfo=%7B%22id%22%3A%221%22%2C%22name%22%3A%22test11%22%2C%22email%22%3A%22%22%2C%22head%22%3A%22./img/head.png%22%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:18:12 GMT
content-type: image/png
content-length: 1501
last-modified: Mon, 29 Nov 2021 06:38:58 GMT
etag: "61a47582-5dd"
expires: Sun, 26 May 2024 17:17:45 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 27
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nnDro%2Bu1sG5gEEh0f01EtUqRGurhpA2tF6Pxy2%2FUdy6QzAOVxdlRlyzN2HoFgSvNVcp68NKaTJjhV76mlSnnxdR1deBjldQr4LMuX7MnO2t9DbeKmsfNf80RORokO1f6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a83b0d7d80b51b-OSL
alt-svc: h3=":443"; ma=86400
m.payquiz.xyz/img/Answer_bg.jpg
200 OK 9.2 kB URL GET HTTP/3 m.payquiz.xyz/img/Answer_bg.jpg
IP
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGoogle Trust Services LLC
Subjectpayquiz.xyz
Fingerprint82:12:11:9B:0D:EF:CA:9B:64:30:9A:3A:18:50:44:39:01:28:A4:46
ValidityWed, 20 Mar 2024 12:10:07 GMT - Tue, 18 Jun 2024 12:10:06 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 750x1625, components 3
Hash ae6d0f3d012f7e40e2663ac3b50ace02
9bdde67f3abe5abda16b3aad0183972557556b1a
29ba93cc464765da13bb0e3c31d0b55fe63709dd0deeab4d94f225f3f5930165
GET /img/Answer_bg.jpg HTTP/1.1
Host: m.payquiz.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/public/common.css?v=1025
Cookie: loclang=en; userInfo=%7B%22id%22%3A%221%22%2C%22name%22%3A%22test11%22%2C%22email%22%3A%22%22%2C%22head%22%3A%22./img/head.png%22%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:18:12 GMT
content-type: image/jpeg
content-length: 9223
last-modified: Mon, 29 Nov 2021 06:38:58 GMT
etag: "61a47582-2407"
expires: Fri, 24 May 2024 03:55:28 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 220964
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wYXE8KktRtQOJ%2F53KlPcKyMiMCQLCxGriA%2B93xEJEUpvCKDNqrPX9CWW6I%2F5Bby0N9lZIMo%2BUlh%2FtynZvgcp6qKR7kGuNo8dlCovCajoqcOEXqY1DFt33YzKWhtFcFB0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a83b0d7d83b51b-OSL
alt-svc: h3=":443"; ma=86400
m.payquiz.xyz/img/Answer_1.png
200 OK 9.7 kB URL GET HTTP/3 m.payquiz.xyz/img/Answer_1.png
IP
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGoogle Trust Services LLC
Subjectpayquiz.xyz
Fingerprint82:12:11:9B:0D:EF:CA:9B:64:30:9A:3A:18:50:44:39:01:28:A4:46
ValidityWed, 20 Mar 2024 12:10:07 GMT - Tue, 18 Jun 2024 12:10:06 GMT
File type PNG image data, 650 x 836, 8-bit colormap, non-interlaced
Hash d4a5980610579d23018ecf9a30c73967
ff28569ee1e381682e2bc4178614951955df537e
351af559d10c31589635d1e8911b59286638badf38c141826f7af5f95a356f09
GET /img/Answer_1.png HTTP/1.1
Host: m.payquiz.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/public/common.css?v=1025
Cookie: loclang=en; userInfo=%7B%22id%22%3A%221%22%2C%22name%22%3A%22test11%22%2C%22email%22%3A%22%22%2C%22head%22%3A%22./img/head.png%22%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:18:12 GMT
content-type: image/png
content-length: 9704
last-modified: Mon, 29 Nov 2021 06:38:58 GMT
etag: "61a47582-25e8"
expires: Fri, 24 May 2024 03:32:53 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 222319
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JaEwLg09ICji%2BLU04JID31IWAIMx6nD2RZuIlQStRK2eot3Oq6jFptPRtkga8Un7B755L81VVBvAk45VbJsyKFgmF%2F2T3rcgQktVCBhaToHCI7KgBAsgQ0%2Bx2gF89bsW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a83b0d8d88b51b-OSL
alt-svc: h3=":443"; ma=86400
ulogin.ru/js/ulogin.js
200 OK 19 kB IP
ASN #12695 LLC Digital Network
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerLet's Encrypt
Subjectulogin.ru
Fingerprint9B:19:52:DB:BA:EE:1E:EB:EC:62:1E:7F:67:75:1F:46:E8:A0:25:57
ValidityTue, 23 Apr 2024 22:04:41 GMT - Mon, 22 Jul 2024 22:04:40 GMT
File type JavaScript source, ASCII text, with very long lines (580)
Hash 99079650e3006abe89dc0274b6de70e9
79342f8f88a6e15f2b4ccade87441ef5c0e250a7
3280543e84de566566928da72b8b14c87af08fdcc9a853e0bccbde1ed0be49df
GET /js/ulogin.js HTTP/1.1
Host: ulogin.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 Apr 2024 17:18:13 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 10 Aug 2021 18:41:38 GMT
Set-Cookie: ulogin_token=uf7e5307f737ec1d5b323f21b3ed19749; expires=Tuesday, 12-Jan-2030 10:00:00 GMT; path=/
Expires: Mon, 29 Apr 2024 17:18:13 GMT
Cache-Control: max-age=259200
Content-Encoding: gzip
ulogin.ru/version/3.0/img/providers-32-classic.png?version=img.3.0.2
200 OK 37 kB URL GET HTTP/1.1 ulogin.ru/version/3.0/img/providers-32-classic.png?version=img.3.0.2
IP
ASN #12695 LLC Digital Network
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerLet's Encrypt
Subjectulogin.ru
Fingerprint9B:19:52:DB:BA:EE:1E:EB:EC:62:1E:7F:67:75:1F:46:E8:A0:25:57
ValidityTue, 23 Apr 2024 22:04:41 GMT - Mon, 22 Jul 2024 22:04:40 GMT
File type PNG image data, 32 x 816, 8-bit/color RGBA, non-interlaced
Hash deda48d7164be4bd370e4f4a842ef4c3
05779a81d5c22751d9fc3233e24dd39d863874b4
4101a0011295ffe856d6ed838c40acace8a110e03a4bd884f681de7a9354b320
GET /version/3.0/img/providers-32-classic.png?version=img.3.0.2 HTTP/1.1
Host: ulogin.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 Apr 2024 17:18:13 GMT
Content-Type: image/png
Content-Length: 37284
Last-Modified: Tue, 10 Aug 2021 18:31:03 GMT
Connection: keep-alive
ETag: "6112c5e7-91a4"
Expires: Mon, 29 Apr 2024 17:18:13 GMT
Cache-Control: max-age=259200, public
Accept-Ranges: bytes
tj.657g.xyz/api/event
202 Accepted 2 B IP
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGoogle Trust Services LLC
Subject657g.xyz
Fingerprint50:D6:E0:11:AD:45:D4:13:FA:D4:11:BC:81:A3:03:88:0B:91:49:F4
ValidityTue, 05 Mar 2024 08:51:58 GMT - Mon, 03 Jun 2024 08:51:57 GMT
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
Analyzer Verdict Alert OpenPhish phishing PayPal Inc.
POST /api/event HTTP/1.1
Host: tj.657g.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 79
Origin: https://m.payquiz.xyz
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 202 Accepted
date: Fri, 26 Apr 2024 17:18:12 GMT
content-type: text/plain; charset=utf-8
content-length: 2
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-expose-headers:
cache-control: max-age=0, private, must-revalidate
x-request-id: F8nkL70gDis-j9YN4BAB
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Tgi4Jwd78ZCoVBnbpNu5CVDJPk%2B3XSeVVgKX3rP%2B4K2jM4YFKOupwSuEO2XYJkS2ag0NFi1PXwvCknsh84cnaWPpRHIwufkAHoT9ZwxbIM%2BB2ecfVnX0L%2FgTfvo4yw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a83b0eccfcb4fd-OSL
alt-svc: h3=":443"; ma=86400
ulogin.ru/stats.html?r=42169&type=panel&xdm_e=https%3A%2F%2Fm.payquiz.xyz&xdm_c=default8215&xdm_p=1
200 OK 1.1 kB URL GET HTTP/1.1 ulogin.ru/stats.html?r=42169&type=panel&xdm_e=https%3A%2F%2Fm.payquiz.xyz&xdm_c=default8215&xdm_p=1
IP
ASN #12695 LLC Digital Network
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerLet's Encrypt
Subjectulogin.ru
Fingerprint9B:19:52:DB:BA:EE:1E:EB:EC:62:1E:7F:67:75:1F:46:E8:A0:25:57
ValidityTue, 23 Apr 2024 22:04:41 GMT - Mon, 22 Jul 2024 22:04:40 GMT
File type HTML document, ASCII text, with CRLF line terminators
Hash 172c9de95b5e09f3f3fb6788dc85e618
a0af500d47d229611d00a78a0bfbcdefedc6d519
0d35a0dfc59effaee55acbe08ff749792d5c5dee22ac7969a297bdbd3fc5b00b
GET /stats.html?r=42169&type=panel&xdm_e=https%3A%2F%2Fm.payquiz.xyz&xdm_c=default8215&xdm_p=1 HTTP/1.1
Host: ulogin.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 Apr 2024 17:18:13 GMT
Content-Type: text/html
Last-Modified: Tue, 10 Aug 2021 16:01:27 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
ulogin.ru/js/easyXDM.min.js?version=js.2.0.0
200 OK 7.0 kB URL GET HTTP/1.1 ulogin.ru/js/easyXDM.min.js?version=js.2.0.0
IP
ASN #12695 LLC Digital Network
Requested by https://ulogin.ru/stats.html?r=42169&type=panel&xdm_e=https%3A%2F%2Fm.payquiz.xyz&xdm_c=default8215&xdm_p=1
Certificate IssuerLet's Encrypt
Subjectulogin.ru
Fingerprint9B:19:52:DB:BA:EE:1E:EB:EC:62:1E:7F:67:75:1F:46:E8:A0:25:57
ValidityTue, 23 Apr 2024 22:04:41 GMT - Mon, 22 Jul 2024 22:04:40 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (19804)
Hash 0cc34325f9c69f544cb67247c57fc48e
c6b3bf80233dcb3340e217fb16849eef4bf6e238
d00c673032c1444178a7cebc6cf988440d2e1ead769aea9470806bba9beab8a8
GET /js/easyXDM.min.js?version=js.2.0.0 HTTP/1.1
Host: ulogin.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ulogin.ru/stats.html?r=42169&type=panel&xdm_e=https%3A%2F%2Fm.payquiz.xyz&xdm_c=default8215&xdm_p=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 Apr 2024 17:18:13 GMT
Content-Type: application/x-javascript
Content-Length: 6980
Last-Modified: Wed, 08 Jun 2016 14:44:03 GMT
Connection: keep-alive
Vary: Accept-Encoding
ETag: "57582f33-1b44"
Content-Encoding: gzip
Expires: Mon, 29 Apr 2024 17:18:13 GMT
Cache-Control: max-age=259200, public
m.payquiz.xyz/public/sweetalert.css
200 OK 12 kB URL GET HTTP/3 m.payquiz.xyz/public/sweetalert.css
IP
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGoogle Trust Services LLC
Subjectpayquiz.xyz
Fingerprint82:12:11:9B:0D:EF:CA:9B:64:30:9A:3A:18:50:44:39:01:28:A4:46
ValidityWed, 20 Mar 2024 12:10:07 GMT - Tue, 18 Jun 2024 12:10:06 GMT
File type ASCII text, with CRLF line terminators
Hash 9b8007e29ad2778d449264166a7892b7
47418efe84958fcf4a945cbf6c2f54d29967e79b
4513f34c44831aab38d5171e7d729e3fabeea39dfc7ffd06722b490d02f20a70
GET /public/sweetalert.css HTTP/1.1
Host: m.payquiz.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/signin.php
Cookie: loclang=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:18:11 GMT
content-type: text/css
last-modified: Mon, 29 Nov 2021 06:38:58 GMT
vary: Accept-Encoding
etag: W/"61a47582-5d03"
expires: Sat, 27 Apr 2024 04:10:21 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 4069
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ks69AmtZTAAzrhmdPvbI4U4iWK4E6UZykzJGsK65QTSig5oprtI6W1yrJNC0k83xe7X%2BLuMcqzFAPQSZw3c%2BKVAwwv9vtrrsL%2FLh4VjzcysK%2FxagUuQmDaZ697p9YA3W"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a83b0c8c41b51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
hm.baidu.com/hm.js?60c87f46b6c9bdadb204d78d0c8c690d
200 OK 11 kB URL GET HTTP/1.1 hm.baidu.com/hm.js?60c87f46b6c9bdadb204d78d0c8c690d
IP
ASN #56040 China Mobile communications corporation
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type JavaScript source, ASCII text, with very long lines (620)
Hash 83b8f356ac7a5928996b95d514e7ed4f
6763dbf464939cc36748a11a2c60dd6483568639
9db95b94f39f2fffa7802a684a7b2980ab31d7bf81dbd2fe8d488f35fbda416d
GET /hm.js?60c87f46b6c9bdadb204d78d0c8c690d HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11258
Content-Type: application/javascript
Date: Fri, 26 Apr 2024 17:18:13 GMT
Etag: c0d585d879747b0243961502995791d0
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=C128E5AF97534D7B; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=165021999&si=60c87f46b6c9bdadb204d78d0c8c690d&v=1.3.0&lv=1&sn=18434&r=0&ww=1280&u=https%3A%2F%2Fm.payquiz.xyz%2Fsignin.php&tt=Sign%20In
200 OK 43 B URL GET HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=165021999&si=60c87f46b6c9bdadb204d78d0c8c690d&v=1.3.0&lv=1&sn=18434&r=0&ww=1280&u=https%3A%2F%2Fm.payquiz.xyz%2Fsignin.php&tt=Sign%20In
IP
ASN #56040 China Mobile communications corporation
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=165021999&si=60c87f46b6c9bdadb204d78d0c8c690d&v=1.3.0&lv=1&sn=18434&r=0&ww=1280&u=https%3A%2F%2Fm.payquiz.xyz%2Fsignin.php&tt=Sign%20In HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Fri, 26 Apr 2024 17:18:14 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=D4A701D54D36E8E5; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
m.payquiz.xyz/favicon.ico
200 OK 11 kB URL GET HTTP/3 m.payquiz.xyz/favicon.ico
IP
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGoogle Trust Services LLC
Subjectpayquiz.xyz
Fingerprint82:12:11:9B:0D:EF:CA:9B:64:30:9A:3A:18:50:44:39:01:28:A4:46
ValidityWed, 20 Mar 2024 12:10:07 GMT - Tue, 18 Jun 2024 12:10:06 GMT
File type MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel
Hash 201e8d4ea8aee41c203c084f7d1c4e33
8613f3c329fce3f9211731e06ee6da330a11359e
75616a42ff4f96e6e7f3b1d3a74881d9148a46a276377bebab3a98b96c1cdb35
GET /favicon.ico HTTP/1.1
Host: m.payquiz.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/signin.php
Cookie: loclang=en; userInfo=%7B%22id%22%3A%221%22%2C%22name%22%3A%22test11%22%2C%22email%22%3A%22%22%2C%22head%22%3A%22./img/head.png%22%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:18:12 GMT
content-type: image/x-icon
last-modified: Sun, 24 Apr 2022 01:42:36 GMT
etag: W/"6264ab0c-10be"
cache-control: max-age=14400
cf-cache-status: HIT
age: 27
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gX6zI8LTqXiViNkrJm4d1DQAUsJVyk2gNh1XFrZtNWCSTSoyLh%2Bl98e7eAGSkYM0kQwqAWpHXNtYatDQGicuQSjNY%2BvQ2p5jXOPBpR%2B4qKVfoSrGFPX4Ps%2FlO3pzenwJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a83b106992b51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
m.payquiz.xyz/public/common.css?v=1025
200 OK 25 kB URL GET HTTP/3 m.payquiz.xyz/public/common.css?v=1025
IP
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGoogle Trust Services LLC
Subjectpayquiz.xyz
Fingerprint82:12:11:9B:0D:EF:CA:9B:64:30:9A:3A:18:50:44:39:01:28:A4:46
ValidityWed, 20 Mar 2024 12:10:07 GMT - Tue, 18 Jun 2024 12:10:06 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /public/common.css?v=1025 HTTP/1.1
Host: m.payquiz.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/signin.php
Cookie: loclang=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:18:11 GMT
content-type: text/css
last-modified: Mon, 08 Jan 2024 02:50:02 GMT
vary: Accept-Encoding
etag: W/"659b62da-612a"
expires: Sat, 27 Apr 2024 05:17:44 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 26
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yGYZFlXE7he8NVM9KfMn5MgyqA23ZcsBbnzWU6HwF7Mei%2FRfUyRgjE7gZRzpTbCbHCJvYnBhClZnUFudmNvxS6a%2FB1WynEJx3Pvfs%2FjAllqzG52QTd02RH12xJ73b4m6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a83b0c6c1fb51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
m.payquiz.xyz/public/jquery-3.6.0.min.js
200 OK 90 kB URL GET HTTP/3 m.payquiz.xyz/public/jquery-3.6.0.min.js
IP
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGoogle Trust Services LLC
Subjectpayquiz.xyz
Fingerprint82:12:11:9B:0D:EF:CA:9B:64:30:9A:3A:18:50:44:39:01:28:A4:46
ValidityWed, 20 Mar 2024 12:10:07 GMT - Tue, 18 Jun 2024 12:10:06 GMT
File type JavaScript source, ASCII text, with very long lines (65447)
Hash 8fb8fee4fcc3cc86ff6c724154c49c42
b82d238d4e31fdf618bae8ac11a6c812c03dd0d4
ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e
GET /public/jquery-3.6.0.min.js HTTP/1.1
Host: m.payquiz.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/signin.php
Cookie: loclang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:18:11 GMT
content-type: application/javascript
last-modified: Mon, 29 Nov 2021 06:38:58 GMT
vary: Accept-Encoding
etag: W/"61a47582-15d9d"
expires: Sat, 27 Apr 2024 04:10:21 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 4070
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tMDAvgImQhaM%2Be32P2ZgK%2FjD67cz6ColUBs%2Fdyl%2FfAWMbnuiwDbW89YDR%2FmvbUsjdj6hzTfuyIx5hDHGzT%2FswvHPIdiMKL%2F5h%2F1HIQBKMAlgMb892ppEXGqtFP41lfh9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a83b0c7c2cb51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
m.payquiz.xyz/public/sweetalert-dev.js?v=1025
200 OK 43 kB URL GET HTTP/3 m.payquiz.xyz/public/sweetalert-dev.js?v=1025
IP
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGoogle Trust Services LLC
Subjectpayquiz.xyz
Fingerprint82:12:11:9B:0D:EF:CA:9B:64:30:9A:3A:18:50:44:39:01:28:A4:46
ValidityWed, 20 Mar 2024 12:10:07 GMT - Tue, 18 Jun 2024 12:10:06 GMT
File type JavaScript source, ASCII text, with very long lines (482), with CRLF line terminators
Hash 57904bb2d29194cdeb977098ced0997d
c05fe82fb5d018c812cb485a33529c4de85fac8a
4012721763780fea2a700978f072c577cfa5ded57dd165919cec59e1677ee89b
GET /public/sweetalert-dev.js?v=1025 HTTP/1.1
Host: m.payquiz.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/signin.php
Cookie: loclang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:18:11 GMT
content-type: application/javascript
last-modified: Mon, 29 Nov 2021 06:38:58 GMT
vary: Accept-Encoding
etag: W/"61a47582-a8d9"
expires: Sat, 27 Apr 2024 05:17:44 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 26
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sxxTXPd9l8KoyYmZM9u2haNMXeuxvVrl63lPRk8tMJ%2FapzWTG3VMHlAlwYguP8zanJqD%2FhcNG%2BnMBbYQumALLPe6uLTPzOZWx9XgOCBl%2F2aTwLl8ctdnUvx%2FBm117Tfg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a83b0c8c40b51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
tj.657g.xyz/js/script.js
200 OK 1.3 kB IP
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGoogle Trust Services LLC
Subject657g.xyz
Fingerprint50:D6:E0:11:AD:45:D4:13:FA:D4:11:BC:81:A3:03:88:0B:91:49:F4
ValidityTue, 05 Mar 2024 08:51:58 GMT - Mon, 03 Jun 2024 08:51:57 GMT
File type ASCII text, with very long lines (1384), with no line terminators
Hash 16cfd1982a40489c41a52add24d36b85
344f1896d895c5d0a7c4caecafcf1942603cd026
72073aacecd145e525b16c4c845c07bff5798e813eeed702dff748a18b6186ce
Analyzer Verdict Alert OpenPhish phishing PayPal Inc.
GET /js/script.js HTTP/1.1
Host: tj.657g.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 17:18:11 GMT
content-type: application/javascript
cf-bgj: minify
expires: Fri, 26 Apr 2024 18:48:21 GMT
vary: Accept-Encoding
x-cache: HIT
access-control-allow-origin: *
cache-control: max-age=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 37925
last-modified: Fri, 26 Apr 2024 06:46:06 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LmbaGTcSlheWPD7eT9Y%2BoxagJc%2BqVVcr3teU6Pcxy%2BQGUwKCqGpgIU%2BL4ba4HOY40L5tCUAAMtuHUzMLanJEhh%2BewK%2BvO5X3WAA4EULIcc60YbYWWSJDVhnEMPq78g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a83b0caa6e0afa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
m.payquiz.xyz/question.php?pkid=40xp4cybbbs0./signin.php./signin.php./signin.php./signin.php./signin.php./signin.php./signin.php./signin.php./signin.php./signin.php./signin.php
302 Found 7.6 kB URL User Request GET HTTP/2 m.payquiz.xyz/question.php?pkid=40xp4cybbbs0./signin.php./signin.php./signin.php./signin.php./signin.php./signin.php./signin.php./signin.php./signin.php./signin.php./signin.php
IP
Certificate IssuerGoogle Trust Services LLC
Subjectpayquiz.xyz
Fingerprint82:12:11:9B:0D:EF:CA:9B:64:30:9A:3A:18:50:44:39:01:28:A4:46
ValidityWed, 20 Mar 2024 12:10:07 GMT - Tue, 18 Jun 2024 12:10:06 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /question.php?pkid=40xp4cybbbs0./signin.php./signin.php./signin.php./signin.php./signin.php./signin.php./signin.php./signin.php./signin.php./signin.php./signin.php HTTP/1.1
Host: m.payquiz.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Fri, 26 Apr 2024 17:18:11 GMT
content-type: text/html;charset=utf-8
location: ./signin.php
set-cookie: loclang=en; expires=Mon, 29-Apr-2024 17:18:11 GMT; Max-Age=259200; path=/
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7ISPMtCTTpOu67Zje4SnW8DVQD8gbVKGdPigTfe3bERV7VqDpQJyyLqKsBDDheJLxCFdcNxNx9ZnlO0NJddehDP4ZxQbAuzk643D13TmjZr8D3UIMLVth0vlP%2BweGUX8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a83b07a93356bf-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
200 OK 7.6 kB URL User Request GET HTTP/2 IP
Certificate IssuerGoogle Trust Services LLC
Subjectpayquiz.xyz
Fingerprint82:12:11:9B:0D:EF:CA:9B:64:30:9A:3A:18:50:44:39:01:28:A4:46
ValidityWed, 20 Mar 2024 12:10:07 GMT - Tue, 18 Jun 2024 12:10:06 GMT
File type HTML document, ASCII text, with very long lines (8142), with no line terminators
Hash 536262b3c2a9045f2a23a12f8f61e2b6
95c414744cd4091b5793bd020228332132cb7175
c17d141c70822fd625a7eca93599e88e11efd123f59dab12cd8755bd9716c543
GET /signin.php HTTP/1.1
Host: m.payquiz.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: loclang=en
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 17:18:11 GMT
content-type: text/html;charset=utf-8
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZXCBGzZuahG1KfKSKyPOocSl8O%2F5mRE8fNEz6Rwt%2FxZiziuBBBFTe6MDJad7dtiIdF8y9BxwzBfw5wFWCC0joQfMRc%2BrTsqt68M8eVhQi2Xe5HN7UZ4m%2BYOyCgusMse0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a83b092b9656bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
m.payquiz.xyz/public/common.js?v=1025
200 OK 4.1 kB URL GET HTTP/3 m.payquiz.xyz/public/common.js?v=1025
IP
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGoogle Trust Services LLC
Subjectpayquiz.xyz
Fingerprint82:12:11:9B:0D:EF:CA:9B:64:30:9A:3A:18:50:44:39:01:28:A4:46
ValidityWed, 20 Mar 2024 12:10:07 GMT - Tue, 18 Jun 2024 12:10:06 GMT
File type JavaScript source, ASCII text, with very long lines (4534), with no line terminators
Hash 12db91574b3cca21d2b9a2acf363780a
7df943c3d8d8bac389ec0e276673b194b8a78c9f
f97c910e9c79918cfa6d9f1ad9a3cb49021c759e5fe0bce7e0017e10e3d9af4e
GET /public/common.js?v=1025 HTTP/1.1
Host: m.payquiz.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/signin.php
Cookie: loclang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:18:11 GMT
content-type: application/javascript
last-modified: Wed, 20 Dec 2023 06:50:16 GMT
vary: Accept-Encoding
etag: W/"65828ea8-ffc"
expires: Sat, 27 Apr 2024 05:17:44 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 26
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qM1M4a0vrRJ%2Fobe%2BpQs4I%2BmlSQnCv2%2FTo6KUjb8VymzvEwxHCON%2FN18XrtLipW4KdiDwPNS%2BcSplwzpMSF02UJeZvsU%2FceJ4BISbeG4ek%2BdVUKN%2BcjKDnIEVGWKdEOUO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a83b0c8c3db51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
172.67.142.133
188.114.96.1
111.45.11.83
104.21.87.84
95.163.118.168