| www.googletagmanager.com/gtag/js?id=UA-80520768-2 | 142.250.74.168 | 200 OK | 69 kB |
URL GET HTTP/2www.googletagmanager.com/gtag/js?id=UA-80520768-2 IP142.250.74.168:443
CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (1763) Hashd57d4c367455089dd9bb4a8527779df1 271f61e905681140f10c5decd17c59c4d855a0bf 3f666c56cd19eaa6f19cc2bf6b6a81a8d68e894461ce481f7a60a79622da269a
GET /gtag/js?id=UA-80520768-2 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://kxgxi.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 25 Apr 2024 20:49:35 GMT
expires: Thu, 25 Apr 2024 20:49:35 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 69225
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Open+Sans | 142.250.74.106 | 200 OK | 20 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Open+Sans IP142.250.74.106:443
CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typegzip compressed data, max compression Hash3895f0370ccce9075c9af22bb2536670 37182520f9adbad6e9e19bac8602d9b26ecca72e a1ea1fc2e915f387b7a4decce82c71dcea243a6b0e633d24dce8ed5bac2544ba
GET /css?family=Open+Sans HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://kxgxi.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 25 Apr 2024 20:49:35 GMT
date: Thu, 25 Apr 2024 20:49:35 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| c0.wallpaperflare.com/preview/231/247/682/5be98e06c77ea.jpg | 104.21.235.45 | 200 OK | 54 kB |
URL GET HTTP/2c0.wallpaperflare.com/preview/231/247/682/5be98e06c77ea.jpg IP104.21.235.45:443
CertificateIssuerLet's Encrypt Subjectwallpaperflare.com Fingerprint5F:B4:3F:9C:30:37:AE:8D:9E:21:D6:00:5B:F2:30:89:E8:8D:5D:B5 ValidityFri, 01 Mar 2024 16:17:29 GMT - Thu, 30 May 2024 16:17:28 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 910x607, components 3 Hash510ca71d77bcaf4996a1df307a3d9ab2 c9db3b2c62c73512598e9cfa9f6f18661573f09d 6b30cafde4b787e82456ea2372d4cb6e4515a172ca60e624b91c353517637e13
GET /preview/231/247/682/5be98e06c77ea.jpg HTTP/1.1
Host: c0.wallpaperflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://kxgxi.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 20:49:35 GMT
content-type: image/jpeg
content-length: 54390
last-modified: Thu, 23 May 2019 15:17:16 GMT
etag: "5ce6b97c-d476"
expires: Sat, 13 Dec 2025 09:15:36 GMT
cache-control: max-age=51840000
access-control-allow-origin: *
cf-cache-status: HIT
age: 300839
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JYxy0TJO0662Xdd4Rid2j9Had7drhOfM1yjwmwm3EiNQjfImb9O11iB01%2BygJdEh2NPi%2BsCzkZCHSVWI6ltrJ8Fene%2B4tH4oAJUzaB0VZyIJRDbqmDDU%2B%2FKOa5aWZsVpl6yaCzmBs3s%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a13354fec776fc-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| kxgxi.pages.dev/favicon.ico | 172.66.44.223 | 200 OK | 14 kB |
URL GET HTTP/3kxgxi.pages.dev/favicon.ico IP172.66.44.223:443
CertificateIssuerLet's Encrypt Subjectkxgxi.pages.dev Fingerprint78:27:3C:86:75:3E:6E:AD:45:52:12:CF:E0:B8:06:0D:C0:CF:3F:43 ValidityTue, 23 Apr 2024 13:35:46 GMT - Mon, 22 Jul 2024 13:35:45 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (7217) Hashe178a077d4644c4d7e6542243848cc33 cab20f581f3e39d1037dd7e38ead594a96d2acaa 4858f8c3f0764d721200745c794240d1b889fbc8ec3ff86a7b7d7672a6203283
Analyzer | Verdict | Alert | OpenPhish | phishing | Generic/Spear Phishing |
GET /favicon.ico HTTP/1.1
Host: kxgxi.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://kxgxi.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 20:49:35 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"6b30934b5be6908ff516261b5783f26e"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=R0hJ3JaVpp4xkTLom4fQSJm1u%2FQVy8NoHkDornPqjpfahU2EaE8gCGFGnHoWv6zuEXZh5taMpVnv3EPhg2YLNGEzE66%2Bi%2FHI%2F9AyaGUNWsVUyTbnRIdaIokB11%2FPqiG5jFs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a133556a9e56af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/opensans/v40/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 | 216.58.207.227 | 200 OK | 19 kB |
URL GET HTTP/2fonts.gstatic.com/s/opensans/v40/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 IP216.58.207.227:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 18668, version 1.0 Hash8655d20bbcc8cdbfab17b6be6cf55df3 90edbfa9a7dabb185487b4774076f82eb6412270 e7af9d60d875eb1c1b1037bbbfdec41fcb096d0ebcf98a48717ad8b07906ced6
GET /s/opensans/v40/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://kxgxi.pages.dev
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18668
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 02:34:50 GMT
expires: Fri, 25 Apr 2025 02:34:50 GMT
cache-control: public, max-age=31536000
age: 65685
last-modified: Thu, 14 Dec 2023 02:00:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| | 172.66.44.223 | 200 OK | 16 kB |
URL User Request GET HTTP/2IP172.66.44.223:443
CertificateIssuerLet's Encrypt Subjectkxgxi.pages.dev Fingerprint78:27:3C:86:75:3E:6E:AD:45:52:12:CF:E0:B8:06:0D:C0:CF:3F:43 ValidityTue, 23 Apr 2024 13:35:46 GMT - Mon, 22 Jul 2024 13:35:45 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Generic/Spear Phishing |
GET / HTTP/1.1
Host: kxgxi.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 20:49:35 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"6b30934b5be6908ff516261b5783f26e"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XPt%2F4Y5wn6VLl3QaA%2FPsvINoK5lsrS%2Bi5%2F0AuZDuJEUOcyU7E07GDG8Sgk7qSDHQubGTNCLDfHDKNBbgooulhB8Ulhvl26Pv3AnXtOu%2BeW4d29tkeCkase9r3jSeoIOKGTo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a133516a56568f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|