Report - ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB

Report Overview

Submitted URL
ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714643845323/
IP
104.21.31.195
ASN
#13335 CLOUDFLARENET
Submitted
2024-05-02 14:18:42
Access
public
Website Title
Rewards Program
Final URL
ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714643845323/#
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
8

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17	2024-05-01	431 B	29 kB	104.17.25.14
ng.nairaintheget.xyz	unknown	2024-02-11	2024-02-11	2024-02-29	7.4 kB	1.5 MB	104.21.31.195
woudaufe.net	unknown	2022-10-03	2022-10-03	2024-04-30	1.1 kB	16 kB	139.45.197.251
jouteetu.net	260109	2021-07-08	2021-07-15	2024-04-30	1.4 kB	1.9 kB	139.45.197.251
amunfezanttor.com	unknown	2023-03-31	2023-03-31	2024-05-02	1.0 kB	1.1 kB	139.45.197.250

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-02	medium	woudaufe.net	Sinkholed
2024-05-02	medium	woudaufe.net	Sinkholed
2024-05-02	medium	amunfezanttor.com	Sinkholed
2024-05-02	medium	amunfezanttor.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (14)

	URL	Size	First Seen	Last Seen
	ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714643845323/	265 B	2023-03-08	2024-05-05
Pretty URL ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714643845323/ IP 104.21.31.195 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 02:56:08 Last Seen2024-05-05 16:20:07 Times Seen97 Hash c3a023847ab8fdbdd9faefc2b647c433 b6f23ec7ebbdb7ff11921dc5ece14718eb47dbf5 6fdb2380806a446c2948c010d121933447304462b0890ed8308b68ee3ad69709 Loading...

	ng.nairaintheget.xyz/6/Wow_files/bckbton.js	833 B	2023-03-07	2024-05-16
Pretty URL ng.nairaintheget.xyz/6/Wow_files/bckbton.js IP 104.21.31.195 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:23:13 Last Seen2024-05-16 10:50:15 Times Seen410 Hash 6d1333b717d1eabeccff8b713f875b40 0faf77a5b803e056e57edd3927d10d577b4ba3b3 85c19f622b39183eb4be19e8edf3ee8b75fe78f979a3fdd3b018f45e6bd8bde5 Loading...

	woudaufe.net/pfe/current/micro.tag.min.js?z=5615385&sw=/sw-check-permissions-30a34.js	37 kB	2024-04-25	2024-05-15
Pretty URL woudaufe.net/pfe/current/micro.tag.min.js?z=5615385&sw=/sw-check-permissions-30a34.js IP 139.45.197.251 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 13:01:48 Last Seen2024-05-15 20:42:51 Times Seen2522 Hash 32d6dbd00a639e2cd10d1704b9159bd5 0dab4c95675393f1d0e13d20f13d80ee12e41d95 9f339e5efd7c959419a4e86bb4c5e9f07eae2ed839484846157be981917743de Loading...

	ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714643845323/	20 B	2023-03-07	2024-05-16
Pretty URL ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714643845323/ IP 104.21.31.195 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:23:13 Last Seen2024-05-16 10:50:15 Times Seen168 Hash 4dd038793c69dd3d689c086450913cbe d2239b76b4fb71bf4456746529043887e12ef10d 9f4874a711d1630c456f99c37fd35b52a75d923c3ea8a799514932928fa490bc Loading...

	ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714643845323/	153 B	2023-03-08	2024-05-05
Pretty URL ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714643845323/ IP 104.21.31.195 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 02:56:08 Last Seen2024-05-05 16:20:07 Times Seen97 Hash ccea2f3eb8d3714f725cea3e3e3b0713 f8f7e81adde1479c099a48c4051de291c5b33446 2b6163aaa508aa92d498c6b674e1b5535044b39728df7660e9ceeaa9f3a35e0c Loading...

	ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714643845323/	34 B	2023-03-08	2024-05-05
Pretty URL ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714643845323/ IP 104.21.31.195 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 02:56:08 Last Seen2024-05-05 16:20:07 Times Seen97 Hash 9c00903b987089144e43ecf4626e3112 062283943cefe220e68bfdc4b364a078e6e82954 6ed0f2e0de30c1924b035177ab91886a7988049e6ed77601ce705c851f57a133 Loading...

	ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714643845323/	1.8 kB	2023-03-08	2024-05-05
Pretty URL ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714643845323/ IP 104.21.31.195 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 02:56:08 Last Seen2024-05-05 16:20:07 Times Seen97 Hash 7e043f737cd4e2c4331dcc4465d2fa19 804ee845d592b7d0848d0458eb3febec4cf5ae74 8a29f8b031ff216cabedf967ed29d0d1476f06419924ea741c28293756302ef2 Loading...

	ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714643845323/	1.4 kB	2023-03-08	2024-05-05
Pretty URL ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714643845323/ IP 104.21.31.195 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 02:56:08 Last Seen2024-05-05 16:20:07 Times Seen97 Hash c9c870a5b8613e2bb3d6c59a875394c4 cf1b53de51b098e15a28af47d9462257c1f54382 772d32b3d4e807aa26cd930b8857d7ef9396ea9520cfda91ad0db24315f319f4 Loading...

	ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714643845323/	392 B	2023-03-08	2024-05-05
Pretty URL ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714643845323/ IP 104.21.31.195 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 02:56:08 Last Seen2024-05-05 16:20:07 Times Seen97 Hash dc53e9ca0a3500e86c9000461ea4ee10 d7aec7aa2e608c1150f5a744240c54c4c91ba844 1a4edc4ecebe37e6dd9ebe662dd57c59de13746a6e7b74b1a6053fc9c93e2680 Loading...

	cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js	88 kB	2023-03-07	2024-05-17
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:34 Last Seen2024-05-17 10:37:21 Times Seen98687 Hash 220afd743d9e9643852e31a135a9f3ae 88523924351bac0b5d560fe0c5781e2556e7693d 0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a Loading...

	ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714643845323/	535 B	2023-03-08	2024-05-05
Pretty URL ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714643845323/ IP 104.21.31.195 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 02:56:08 Last Seen2024-05-05 16:20:07 Times Seen97 Hash eb7d773d28ef725964cf876dbb7408df fb2cde802dfd465bd853042186932edee14dfc86 e09198ce47cae94b5e155eeddac0a7300f2d23adb05fdf0d909813724dfdd486 Loading...

	ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714643845323/	600 B	2023-03-13	2024-05-05
Pretty URL ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714643845323/ IP 104.21.31.195 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-13 16:38:54 Last Seen2024-05-05 16:20:07 Times Seen97 Hash ed0fa99833f182a8111bbdff672740c3 5547855e2e1c30bd83d2c3766476f0b185b0c343 93a64b7d46413ef29c1770771cc227c34942bac944416fcbb2f1ac475445825c Loading...

		Size	First Seen	Last Seen
	#1 Write - d41d8cd98f00b204e9800998ecf8427e	0 B	2023-03-07	2024-05-17
Pretty Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-17 10:47:11 Times Seen37736724 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	#2 Write - b013d7a9c832c75881341c244dcf57c1	8 B	2024-05-02	2024-05-02
Pretty Observations First Seen2024-05-02 08:56:55 Last Seen2024-05-02 16:18:42 Times Seen2 Hash b013d7a9c832c75881341c244dcf57c1 c01a03389d69a8923c72a199f92db8c13945ab7a b1c9c0ebc91f2ee88293b24d8b81c077f5b4de3d76870947d634923b01f72f60 Loading...

HTTP Transactions (21)

URL IP Response Size

cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js

104.17.25.14

200 OK

28 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714643845323/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
28 kB (27748 bytes)
Hash
220afd743d9e9643852e31a135a9f3ae
88523924351bac0b5d560fe0c5781e2556e7693d
0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a

HTTP Headers

GET /ajax/libs/jquery/3.4.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ng.nairaintheget.xyz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 02 May 2024 14:18:16 GMT
content-type: application/javascript; charset=utf-8
content-length: 27748
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-15851"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 151591
expires: Tue, 22 Apr 2025 14:18:16 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=85VxPO6Gv5UkdGzKHkUg5NKCHYsguJ%2Bb6jsemTMXdUm9dx31EBNhq9QLAjpUXn7mKWOL3uqpZLXkPKRq%2FaElmr2plnCQG1Yd0S3aRZTazqYUdctyIwXBpXlthqJv%2F9Jz%2BXocJnVH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87d8a3bfdba27127-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ng.nairaintheget.xyz/6/Wow_files/env_prize.png

104.21.31.195

200 OK

28 kB

URL GET HTTP/3
ng.nairaintheget.xyz/6/Wow_files/env_prize.png
IP
104.21.31.195:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714643845323/
Certificate
IssuerGoogle Trust Services LLC
Subjectnairaintheget.xyz
Fingerprint49:C4:BA:2D:AA:45:F9:61:08:6C:A9:95:CE:A1:AD:5C:06:77:A9:B6
ValidityWed, 10 Apr 2024 13:14:35 GMT - Tue, 09 Jul 2024 13:14:34 GMT

File type
PNG image data, 257 x 184, 8-bit/color RGBA, non-interlaced
Size
28 kB (27988 bytes)
Hash
810629e8af79cea550fe80b331ceb34e
9b76c8d9e49438dfa4b19a4534bba147cd486875
f0167c5e70765299536011353e73eae70f126629bb5e9b3b2b8f05378fc55a61

HTTP Headers

GET /6/Wow_files/env_prize.png HTTP/1.1
Host: ng.nairaintheget.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714643845323/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 02 May 2024 14:18:17 GMT
content-type: image/png
content-length: 27988
x-amz-id-2: RFsdiyjTqmQyAcOUHA4p4eo/AcWiYmNW4yIgwHVdI3dBZTCahBaSo72w3Ts5AdpIQINPhqj3gB8=
x-amz-request-id: 1APVVF4JYM56SCP4
last-modified: Sun, 11 Feb 2024 15:00:01 GMT
etag: "810629e8af79cea550fe80b331ceb34e"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aozEtS4%2FwPGKU2gBfC9G5SCiNB%2FP0Nl15544s1NTJ7fK3nb7Bf6Zq8xDnYWUD%2FewSVENGi9g66F%2FrmYFMfdPI54ZUfdb1jUtDOw0Shjmge1xkCWXxsLq4NuH1xkn72eS9V7EbrTioA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d8a3bfbfad569b-OSL
alt-svc: h3=":443"; ma=86400

ng.nairaintheget.xyz/6/Wow_files/env_closed.png

104.21.31.195

200 OK

2.3 kB

URL GET HTTP/3
ng.nairaintheget.xyz/6/Wow_files/env_closed.png
IP
104.21.31.195:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714643845323/
Certificate
IssuerGoogle Trust Services LLC
Subjectnairaintheget.xyz
Fingerprint49:C4:BA:2D:AA:45:F9:61:08:6C:A9:95:CE:A1:AD:5C:06:77:A9:B6
ValidityWed, 10 Apr 2024 13:14:35 GMT - Tue, 09 Jul 2024 13:14:34 GMT

File type
PNG image data, 257 x 184, 8-bit colormap, non-interlaced
Size
2.3 kB (2283 bytes)
Hash
57cffe641003f9a80834df4f706d16c3
900af1f1f75f11f547bf4bab2f9f88f0b3b0c38d
fd0a52dab9715198deaac93ec52117c0443279db1ed9b186790806d7542e98aa

HTTP Headers

GET /6/Wow_files/env_closed.png HTTP/1.1
Host: ng.nairaintheget.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714643845323/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 02 May 2024 14:18:17 GMT
content-type: image/png
content-length: 2283
x-amz-id-2: jGs+DzOT3ISapPquYhfYmqgephORzo3busRf7woKPLf3XwbTLkTJ/qQ0nvpera0ndGHe0hf20zM=
x-amz-request-id: KH8D74ZW57PV25SB
last-modified: Sun, 11 Feb 2024 14:59:58 GMT
etag: "57cffe641003f9a80834df4f706d16c3"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=b5vFdSTE%2FRmYdS0IMSXOaGrnLpW5P1vsMLcvEB6kpihZdU%2FL6apa7rJYTovnjYo2TVz%2FCiW695riNPnaRzna3IKtKjWBAS9dF2ITRNDdfWLPLU9Ld8IYId9Az5x7z9Uq809dqChCRg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d8a3bfbfac569b-OSL
alt-svc: h3=":443"; ma=86400

ng.nairaintheget.xyz/6/Wow_files/nigflag.png

104.21.31.195

200 OK

14 kB

URL GET HTTP/3
ng.nairaintheget.xyz/6/Wow_files/nigflag.png
IP
104.21.31.195:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714643845323/
Certificate
IssuerGoogle Trust Services LLC
Subjectnairaintheget.xyz
Fingerprint49:C4:BA:2D:AA:45:F9:61:08:6C:A9:95:CE:A1:AD:5C:06:77:A9:B6
ValidityWed, 10 Apr 2024 13:14:35 GMT - Tue, 09 Jul 2024 13:14:34 GMT

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
Size
14 kB (13527 bytes)
Hash
4f0ce3ee8974b1568fc18bada517b418
86ac212f10d86689245130a3c2921b29c760be2a
f73f1dea5d1e1817f2399e7a292145d1dba84be26326ea00aae9fbe4b1a487fb

HTTP Headers

GET /6/Wow_files/nigflag.png HTTP/1.1
Host: ng.nairaintheget.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ng.nairaintheget.xyz/6/Wow_files/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 02 May 2024 14:18:17 GMT
content-type: image/png
content-length: 13527
x-amz-id-2: YFTK0JQsuodbAGEN+3Ghp0lLpzHdpvnpFybo2QQpjaa0FxNLmSXUiKsoEdPXXGipFi0HVr9B+tI=
x-amz-request-id: 1APP6DH7697VEREV
last-modified: Sun, 11 Feb 2024 15:00:17 GMT
etag: "4f0ce3ee8974b1568fc18bada517b418"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OMKh7pPvW6Q8vasS7xv5UAeHI5wY%2BfV2z%2BiYnHq4Qh6%2BbHZKHXPz27pFko%2Bt%2FUMmqUlj2D6BwHO1kTazyfLRem89e9aF%2BeXQJ73l%2F%2BTrGQ7h8fTuciXBN50lJbHaooD4qFndwZRFBA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d8a3c24ab7569b-OSL
alt-svc: h3=":443"; ma=86400

woudaufe.net/zone?&pub=0&zone_id=5615385&is_mobile=false&domain=ng.nairaintheget.xyz&var=&ymid=&var_3=&var_4=&dsig=&tg=1&sw=3.1.504&trace_id=b2f2ec0a-72f5-48ce-bb2d-589062b6eadf&action=prerequest

139.45.197.251

200 OK

0 B

URL POST HTTP/2
woudaufe.net/zone?&pub=0&zone_id=5615385&is_mobile=false&domain=ng.nairaintheget.xyz&var=&ymid=&var_3=&var_4=&dsig=&tg=1&sw=3.1.504&trace_id=b2f2ec0a-72f5-48ce-bb2d-589062b6eadf&action=prerequest
IP
139.45.197.251:443
ASN
#9002 RETN Limited

Requested by
https://ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714643845323/
Certificate
IssuerLet's Encrypt
Subjectwoudaufe.net
Fingerprint97:B7:E3:B4:46:26:82:1A:84:6C:4D:15:C2:B7:B8:FE:0F:00:67:F5
ValidityMon, 15 Apr 2024 05:41:42 GMT - Sun, 14 Jul 2024 05:41:41 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /zone?&pub=0&zone_id=5615385&is_mobile=false&domain=ng.nairaintheget.xyz&var=&ymid=&var_3=&var_4=&dsig=&tg=1&sw=3.1.504&trace_id=b2f2ec0a-72f5-48ce-bb2d-589062b6eadf&action=prerequest HTTP/1.1
Host: woudaufe.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ng.nairaintheget.xyz
DNT: 1
Connection: keep-alive
Referer: https://ng.nairaintheget.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 May 2024 14:18:17 GMT
content-length: 0
x-trace-id: 187f74ea7393dc1f049dbb03621cf385
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://ng.nairaintheget.xyz
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

woudaufe.net/pfe/current/micro.tag.min.js?z=5615385&sw=/sw-check-permissions-30a34.js

139.45.197.251

200 OK

15 kB

URL GET HTTP/2
woudaufe.net/pfe/current/micro.tag.min.js?z=5615385&sw=/sw-check-permissions-30a34.js
IP
139.45.197.251:443
ASN
#9002 RETN Limited

Requested by
https://ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714643845323/
Certificate
IssuerLet's Encrypt
Subjectwoudaufe.net
Fingerprint97:B7:E3:B4:46:26:82:1A:84:6C:4D:15:C2:B7:B8:FE:0F:00:67:F5
ValidityMon, 15 Apr 2024 05:41:42 GMT - Sun, 14 Jul 2024 05:41:41 GMT

File type
gzip compressed data, max speed, from Unix
Size
15 kB (15182 bytes)
Hash
5b3813bd4d8ed345f2540ad3b1b38ccb
7a88926fe33ff878c1f84167bf527692536c5db0
1a41065f82ff86aa3aa640fa86a8cf67a9dacce69b6aae48301a206505d43af1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pfe/current/micro.tag.min.js?z=5615385&sw=/sw-check-permissions-30a34.js HTTP/1.1
Host: woudaufe.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ng.nairaintheget.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 02 May 2024 14:18:17 GMT
content-type: application/javascript
last-modified: Thu, 25 Apr 2024 10:48:53 GMT
etag: W/"662a3515-9116"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2

jouteetu.net/custom

139.45.197.251

200 OK

39 B

URL POST HTTP/2
jouteetu.net/custom
IP
139.45.197.251:443
ASN
#9002 RETN Limited

Requested by
https://ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714643845323/
Certificate
IssuerLet's Encrypt
Subjectjouteetu.net
FingerprintF5:94:3C:5E:6B:54:1A:97:82:F8:7E:1F:C2:51:04:8C:FB:F5:CF:65
ValidityWed, 13 Mar 2024 19:38:02 GMT - Tue, 11 Jun 2024 19:38:01 GMT

File type
JSON text data
Size
39 B (39 bytes)
Hash
058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881

HTTP Headers

POST /custom HTTP/1.1
Host: jouteetu.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 450
Origin: https://ng.nairaintheget.xyz
DNT: 1
Connection: keep-alive
Referer: https://ng.nairaintheget.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 02 May 2024 14:18:17 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: fd75736958cdf5ab16c4dc77301dc109
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://ng.nairaintheget.xyz
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

jouteetu.net/custom

139.45.197.251

200 OK

39 B

URL POST HTTP/2
jouteetu.net/custom
IP
139.45.197.251:443
ASN
#9002 RETN Limited

Requested by
https://ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714643845323/
Certificate
IssuerLet's Encrypt
Subjectjouteetu.net
FingerprintF5:94:3C:5E:6B:54:1A:97:82:F8:7E:1F:C2:51:04:8C:FB:F5:CF:65
ValidityWed, 13 Mar 2024 19:38:02 GMT - Tue, 11 Jun 2024 19:38:01 GMT

File type
JSON text data
Size
39 B (39 bytes)
Hash
058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881

HTTP Headers

POST /custom HTTP/1.1
Host: jouteetu.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 448
Origin: https://ng.nairaintheget.xyz
DNT: 1
Connection: keep-alive
Referer: https://ng.nairaintheget.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 02 May 2024 14:18:17 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 9e15fabb8babeb289935befac86f60f4
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://ng.nairaintheget.xyz
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

jouteetu.net/custom

139.45.197.251

200 OK

39 B

URL POST HTTP/2
jouteetu.net/custom
IP
139.45.197.251:443
ASN
#9002 RETN Limited

Requested by
https://ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714643845323/
Certificate
IssuerLet's Encrypt
Subjectjouteetu.net
FingerprintF5:94:3C:5E:6B:54:1A:97:82:F8:7E:1F:C2:51:04:8C:FB:F5:CF:65
ValidityWed, 13 Mar 2024 19:38:02 GMT - Tue, 11 Jun 2024 19:38:01 GMT

File type
JSON text data
Size
39 B (39 bytes)
Hash
058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881

HTTP Headers

POST /custom HTTP/1.1
Host: jouteetu.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 451
Origin: https://ng.nairaintheget.xyz
DNT: 1
Connection: keep-alive
Referer: https://ng.nairaintheget.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 02 May 2024 14:18:17 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 97232be3abf911ea8496f5ab53c9a05d
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://ng.nairaintheget.xyz
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

amunfezanttor.com/event

139.45.197.250

200 OK

0 B

URL POST HTTP/2
amunfezanttor.com/event
IP
139.45.197.250:443
ASN
#9002 RETN Limited

Requested by
https://ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714643845323/
Certificate
IssuerLet's Encrypt
Subjectamunfezanttor.com
FingerprintAB:2C:60:54:FF:D7:D6:23:0E:87:1A:98:EC:94:B3:9B:29:1A:F3:AA
ValidityWed, 10 Apr 2024 19:04:12 GMT - Tue, 09 Jul 2024 19:04:11 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

OPTIONS /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://ng.nairaintheget.xyz/
Origin: https://ng.nairaintheget.xyz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 02 May 2024 14:18:17 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://ng.nairaintheget.xyz
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token,X-Oaid
access-control-max-age: 86400
X-Firefox-Spdy: h2

ng.nairaintheget.xyz/6/Wow_files/ng2.jpg

104.21.31.195

200 OK

19 kB

URL GET HTTP/3
ng.nairaintheget.xyz/6/Wow_files/ng2.jpg
IP
104.21.31.195:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714643845323/
Certificate
IssuerGoogle Trust Services LLC
Subjectnairaintheget.xyz
Fingerprint49:C4:BA:2D:AA:45:F9:61:08:6C:A9:95:CE:A1:AD:5C:06:77:A9:B6
ValidityWed, 10 Apr 2024 13:14:35 GMT - Tue, 09 Jul 2024 13:14:34 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 600x416, Scaling: [none]x[none], YUV color, decoders should clamp
Size
19 kB (18728 bytes)
Hash
b42bcb9c4989e82773642eb876eeeb6f
d1e76811c62211b7cff8191a7339244a2b9d7e7a
841d59cdcc060e3366a5cb3381ef4d8e0b09a06d5231b07f244a62b6f856a34b

HTTP Headers

GET /6/Wow_files/ng2.jpg HTTP/1.1
Host: ng.nairaintheget.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ng.nairaintheget.xyz/6/Wow_files/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 02 May 2024 14:18:17 GMT
content-type: image/jpeg
content-length: 18728
x-amz-id-2: ScAfSG08W3FGZm6G0jNCkGXxe0iONE0FeZuf/REDYVVM6ss1LClenMv3NRqi5yY+lj2peAnxpLQ=
x-amz-request-id: 1APYW8EHD5NXXC3C
last-modified: Sun, 11 Feb 2024 15:00:09 GMT
etag: "b42bcb9c4989e82773642eb876eeeb6f"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wxQc6ceqS98%2FlhOg3p17Y2cplHgmcjKSUYN9Gbi%2B39IAr06lmBdwzwUEmSk%2BIegcvccUbTeCC%2FhwkyD6zpahAFJKVQArMGrZBocq%2FtuTJpfk%2FEaHe6sREcguC%2FY5x0vwRl5h6Mg4nA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d8a3c24abd569b-OSL
alt-svc: h3=":443"; ma=86400

ng.nairaintheget.xyz/6/Wow_files/nig1.jpg

104.21.31.195

200 OK

254 kB

URL GET HTTP/3
ng.nairaintheget.xyz/6/Wow_files/nig1.jpg
IP
104.21.31.195:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714643845323/
Certificate
IssuerGoogle Trust Services LLC
Subjectnairaintheget.xyz
Fingerprint49:C4:BA:2D:AA:45:F9:61:08:6C:A9:95:CE:A1:AD:5C:06:77:A9:B6
ValidityWed, 10 Apr 2024 13:14:35 GMT - Tue, 09 Jul 2024 13:14:34 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Converted from WebP to JPG using ezgif.com", baseline, precision 8, 1200x1200, components 3
Size
254 kB (253688 bytes)
Hash
1531c7fdd75b339d29da825611e2753d
f4231edead77493063bf5e93b6cf18f5ef25c16e
9ce9caf4ab2995de82c7fe2b15ed17b3da80171149c691e6a042a9d13721a05b

HTTP Headers

GET /6/Wow_files/nig1.jpg HTTP/1.1
Host: ng.nairaintheget.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ng.nairaintheget.xyz/6/Wow_files/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 02 May 2024 14:18:17 GMT
content-type: image/jpeg
content-length: 253688
x-amz-id-2: HOaRVcDqrf3tLI6zSOCkroAamQrcBFK2otpiA3oHah1DHCfk/36W4yWwhkd0jKxI0yiOBNdSm5A=
x-amz-request-id: H4S2A83B65XVH1TW
last-modified: Sun, 11 Feb 2024 15:00:16 GMT
etag: "1531c7fdd75b339d29da825611e2753d"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7w%2FFFuDBuQqNfrv%2BxYw6FY3efMffJhIefikf3wlbDHta%2BWEJhApbPUR0Ffk64BFE3zWflAMCkbC7MQM5il6c7xngUkOLB3xGIG1mbeNO2ez1zTL7wsnPZHDeDzO3aDZ6q%2BZGD7IZUw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d8a3c25ac1569b-OSL
alt-svc: h3=":443"; ma=86400

ng.nairaintheget.xyz/6/Wow_files/nh3.png

104.21.31.195

200 OK

199 kB

URL GET HTTP/3
ng.nairaintheget.xyz/6/Wow_files/nh3.png
IP
104.21.31.195:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714643845323/
Certificate
IssuerGoogle Trust Services LLC
Subjectnairaintheget.xyz
Fingerprint49:C4:BA:2D:AA:45:F9:61:08:6C:A9:95:CE:A1:AD:5C:06:77:A9:B6
ValidityWed, 10 Apr 2024 13:14:35 GMT - Tue, 09 Jul 2024 13:14:34 GMT

File type
PNG image data, 289 x 285, 8-bit/color RGBA, non-interlaced
Size
199 kB (199315 bytes)
Hash
1065ebed25d5896df0fb704d40906574
54ecd5fd8bb72389205a1fe8148229e3af765c31
0e353e4dfcc946ec5be8c36670ef399d0960da2382f143d48f2d87f02e7e00f5

HTTP Headers

GET /6/Wow_files/nh3.png HTTP/1.1
Host: ng.nairaintheget.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ng.nairaintheget.xyz/6/Wow_files/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 02 May 2024 14:18:17 GMT
content-type: image/png
content-length: 199315
x-amz-id-2: VOn3uBrkvZqI6ZZQo0S/4qCDiVvSXvNjFnQlmlzEtIzo/prGX0B6Yp8Y8r6UnIxhjNPPuDqD6Gc=
x-amz-request-id: 1APZ6SQ1DWC0T0A6
last-modified: Sun, 11 Feb 2024 15:00:14 GMT
etag: "1065ebed25d5896df0fb704d40906574"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ujh7BUDFkBqFBCPJ0REJalPX%2F31b79ldP1oYk8BV29j14Mq9J8KE3enM0IH23cywHbZ14KcRoYuEZmrFeAvTM2qQ5nUbJS23A%2FWCaA6pz5mFDZr%2FQjHB2Ojblv3AjVRKsjL0NLABzQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d8a3c25ac5569b-OSL
alt-svc: h3=":443"; ma=86400

ng.nairaintheget.xyz/6/Wow_files/ng4.jpg

104.21.31.195

200 OK

8.0 kB

URL GET HTTP/3
ng.nairaintheget.xyz/6/Wow_files/ng4.jpg
IP
104.21.31.195:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714643845323/
Certificate
IssuerGoogle Trust Services LLC
Subjectnairaintheget.xyz
Fingerprint49:C4:BA:2D:AA:45:F9:61:08:6C:A9:95:CE:A1:AD:5C:06:77:A9:B6
ValidityWed, 10 Apr 2024 13:14:35 GMT - Tue, 09 Jul 2024 13:14:34 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=1], baseline, precision 8, 275x183, components 3
Size
8.0 kB (8037 bytes)
Hash
13927e3f3e1e9dd4da043478a2426bfe
ebab60939afabda4d6730f3b8dfa7061fe133acb
bbbc1fe136c12a17974ed20f7ecd8224ab912ab65c518f745c45a0beae377ccc

HTTP Headers

GET /6/Wow_files/ng4.jpg HTTP/1.1
Host: ng.nairaintheget.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ng.nairaintheget.xyz/6/Wow_files/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 02 May 2024 14:18:17 GMT
content-type: image/jpeg
content-length: 8037
x-amz-id-2: k2vBipYkm5aVV/wot6E92gTFl4dS8KPoOilrKD4Qc3l2UWxTo/4LsshVJJqfonG3uNqvbuNUCTU=
x-amz-request-id: 1APMCFHNSJRZMDKA
last-modified: Sun, 11 Feb 2024 15:00:12 GMT
etag: "13927e3f3e1e9dd4da043478a2426bfe"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fkkf4c%2B5lCSJTvtDCxLocRamoJAoX35hST2KyscJxNTcn%2BIxJboqCjuFqanZtnj5l0jy3La7mgJPASx62eHCoDEMzJj8f02KRRlaZm5lisoK2b%2BTIrM8XMqdSdt91ymnKyvUd5TFsw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d8a3c25ac9569b-OSL
alt-svc: h3=":443"; ma=86400

ng.nairaintheget.xyz/6/Wow_files/Jerry-Ojumah.png

104.21.31.195

200 OK

888 kB

URL GET HTTP/3
ng.nairaintheget.xyz/6/Wow_files/Jerry-Ojumah.png
IP
104.21.31.195:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714643845323/
Certificate
IssuerGoogle Trust Services LLC
Subjectnairaintheget.xyz
Fingerprint49:C4:BA:2D:AA:45:F9:61:08:6C:A9:95:CE:A1:AD:5C:06:77:A9:B6
ValidityWed, 10 Apr 2024 13:14:35 GMT - Tue, 09 Jul 2024 13:14:34 GMT

File type
PNG image data, 1440 x 960, 8-bit/color RGB, non-interlaced
Size
888 kB (887466 bytes)
Hash
78e4bed7dc12ad7964c289ca9d02ae26
9ebc3cb02a5cf660d691f846fbcd06dd33e5c055
922f3463136ddfcffde76c37b3e0ed509038a49a71bde0aea65da6a7f6b107c4

HTTP Headers

GET /6/Wow_files/Jerry-Ojumah.png HTTP/1.1
Host: ng.nairaintheget.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ng.nairaintheget.xyz/6/Wow_files/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 02 May 2024 14:18:17 GMT
content-type: image/png
content-length: 887466
x-amz-id-2: scbjyALy6Zbue5zbvZuLCBeqKkGsqYtaUPxeCT9OhHGtoZKxgZnYyysnUX8VBrg9SyKhO+bm4ZU=
x-amz-request-id: H4SEJEJR1VEAWBDW
last-modified: Sun, 11 Feb 2024 15:00:05 GMT
etag: "78e4bed7dc12ad7964c289ca9d02ae26"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Vf90yPj1v9pKQ1ogshuDHZpotIznjVZ1KsBoZEf6tTsMV3tPzCW4cUZRxFbGwY2PHrXhFot3L1FcFKSrw2Qi2TkqY%2FvZm9gSuM98IyETLI1e5HrVtJSEj%2FEQiZe0dYo%2F41uD3TCSYw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d8a3c24abb569b-OSL
alt-svc: h3=":443"; ma=86400

amunfezanttor.com/event

139.45.197.250

200 OK

94 B

URL POST HTTP/2
amunfezanttor.com/event
IP
139.45.197.250:443
ASN
#9002 RETN Limited

Requested by
https://ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714643845323/
Certificate
IssuerLet's Encrypt
Subjectamunfezanttor.com
FingerprintAB:2C:60:54:FF:D7:D6:23:0E:87:1A:98:EC:94:B3:9B:29:1A:F3:AA
ValidityWed, 10 Apr 2024 19:04:12 GMT - Tue, 09 Jul 2024 19:04:11 GMT

File type
JSON text data
Size
94 B (94 bytes)
Hash
1a26d02da7e323d120686ed9531b0734
1be6fe4758271900ebffee6147d872146fcb93a5
de28acbf38a0388ed730434f7000d193fda99b22db0758b864757a4977f69982

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ng.nairaintheget.xyz/
Content-Type: application/json
Content-Length: 1066
Origin: https://ng.nairaintheget.xyz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 May 2024 14:18:17 GMT
content-type: application/json; charset=utf-8
content-length: 94
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://ng.nairaintheget.xyz
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

ng.nairaintheget.xyz/sw-check-permissions-30a34.js?zoneId=5615385

104.21.31.195

200 OK

6.1 kB

URL GET HTTP/3
ng.nairaintheget.xyz/sw-check-permissions-30a34.js?zoneId=5615385
IP
104.21.31.195:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714643845323/
Certificate
IssuerGoogle Trust Services LLC
Subjectnairaintheget.xyz
Fingerprint49:C4:BA:2D:AA:45:F9:61:08:6C:A9:95:CE:A1:AD:5C:06:77:A9:B6
ValidityWed, 10 Apr 2024 13:14:35 GMT - Tue, 09 Jul 2024 13:14:34 GMT

File type
Java source, ASCII text
Size
6.1 kB (6111 bytes)
Hash
8731d0e15415390028fc7632952fa672
c13a2289183da5ed853385510e59c60aafa35f4b
3009b5f3e5fa5ad3443f01249134904d2de44ac7c8791b13d5a6f77f77982fef

HTTP Headers

GET /sw-check-permissions-30a34.js?zoneId=5615385 HTTP/1.1
Host: ng.nairaintheget.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714643845323/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 02 May 2024 14:18:18 GMT
content-type: application/javascript
x-amz-id-2: w9fSmigMJS+F+38nyp6z89+fWfg09upJuoNcbEgbYKdFVF9XJE7NtODKcy3NK1GqmSPgLSFr6Eg=
x-amz-request-id: 6SP7YWFWQGTESC5X
last-modified: Sun, 11 Feb 2024 15:02:16 GMT
etag: W/"8731d0e15415390028fc7632952fa672"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JcXNnwsCGDow%2FdbEVCXL5L2qU1%2BhqaCy1VhJ70wXLAHrh9FBbfsIxbNZePyvI8IyS9J5PSzap6vrrVAJncgu36y9JIScBM7mOKgYjYLRL9Y9%2FnLCvG1033fvbxmusa94IaFZpvG6kg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d8a3c54f19569b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714643845323/

104.21.31.195

200 OK

16 kB

URL User Request GET HTTP/2
ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714643845323/
IP
104.21.31.195:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectnairaintheget.xyz
Fingerprint49:C4:BA:2D:AA:45:F9:61:08:6C:A9:95:CE:A1:AD:5C:06:77:A9:B6
ValidityWed, 10 Apr 2024 13:14:35 GMT - Tue, 09 Jul 2024 13:14:34 GMT

File type

Size
16 kB (16071 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714643845323/ HTTP/1.1
Host: ng.nairaintheget.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 02 May 2024 14:18:16 GMT
content-type: text/html
x-amz-id-2: mCqHgoy/Lp8oryzkFyhD2JPqNWUGH9mxNVmb+/QfeMfrD58P4twD1U3HM+7BFOLzxaxucPfozJs=
x-amz-request-id: E78HADMRVY5CYGGV
last-modified: Sun, 11 Feb 2024 15:03:51 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZDDe0QNo6mDzbyJ8RdNKRZ%2FIYLvdB4A28C3s%2Fw6dZ5GPC9QH7%2Fmd1N1OvQSurumc3HgZNTxzeWWEhorG38mgjwzJfd3AzZiBmLkPTAe46HPxQDIgjBShuXNZ240bddKBUyNDSIoRKA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87d8a3bbd86356b5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ng.nairaintheget.xyz/6/Wow_files/main.css

104.21.31.195

200 OK

95 kB

URL GET HTTP/3
ng.nairaintheget.xyz/6/Wow_files/main.css
IP
104.21.31.195:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714643845323/
Certificate
IssuerGoogle Trust Services LLC
Subjectnairaintheget.xyz
Fingerprint49:C4:BA:2D:AA:45:F9:61:08:6C:A9:95:CE:A1:AD:5C:06:77:A9:B6
ValidityWed, 10 Apr 2024 13:14:35 GMT - Tue, 09 Jul 2024 13:14:34 GMT

File type
ASCII text, with very long lines (349), with CRLF line terminators
Size
95 kB (94764 bytes)
Hash
3c2e07f55de8da912e0818519f03c858
4d9eee9ad6c9435af403f1cc44abef75c5b5f56e
bf605c8632208808c4e71ae3a6ae69996e6502478563e26495b5ec842cf5be65

HTTP Headers

GET /6/Wow_files/main.css HTTP/1.1
Host: ng.nairaintheget.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714643845323/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 02 May 2024 14:18:17 GMT
content-type: text/css
x-amz-id-2: VxAh+G1Ymf/hf7uC+fv6lC2IwuMxvVqazsLGCwI0Z2zo4vyhKrzcuNrrQpPWKZato3MEdONNm+Y=
x-amz-request-id: NES6DMP7RGV7AQKM
last-modified: Sun, 11 Feb 2024 15:00:06 GMT
etag: W/"3c2e07f55de8da912e0818519f03c858"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TFFZ3aq6vGg80p9rwf17VCnqTODYxJ6EN37dmGCLWmBsMWXT4oXSIUYOXeeRDai4p06uktys4t%2BVtlFsQkg2MbXHG1DeeeE%2B130nytL13U44StZmuH2vTIvwCqC6VJvumNnmjiwSWQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d8a3bfbfa9569b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

ng.nairaintheget.xyz/favicon.ico

104.21.31.195

404 Not Found

539 B

URL GET HTTP/3
ng.nairaintheget.xyz/favicon.ico
IP
104.21.31.195:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714643845323/
Certificate
IssuerGoogle Trust Services LLC
Subjectnairaintheget.xyz
Fingerprint49:C4:BA:2D:AA:45:F9:61:08:6C:A9:95:CE:A1:AD:5C:06:77:A9:B6
ValidityWed, 10 Apr 2024 13:14:35 GMT - Tue, 09 Jul 2024 13:14:34 GMT

File type
HTML document, ASCII text, with very long lines (559), with no line terminators
Size
539 B (539 bytes)
Hash
7de240f0d1f8ba464a7371e631292efe
21c299d4c5835865e35ea240db7208fb17df23ae
4f8587508484f761065c9fd08ec0d988441ab820c4fd81e76a122a5c8bfdbed6

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: ng.nairaintheget.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714643845323/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 02 May 2024 14:18:18 GMT
content-type: text/html; charset=utf-8
x-amz-request-id: PDSH17W3J1VERQMC
x-amz-id-2: 2Q+aqDxidrNXv7L5bfdze/lOTJYRQmnqq+SM1QbKlMqJEbNU9OiU+T4SaTM3cxvbjEJGxTbb1uE=
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=D8X%2BkL6ENRfiFI%2FWZhzo8NG%2Bwl4GBvBY8Q9muRG8LSlqWqTOz5C8GpMZGR8ulq%2BbeQ23IfPeTd1zLtka6XX8URGF37Js0Z%2FxjImxaussV2TE4b7h1JP7OEMh3DTcbkNW%2FO10oFzHfg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d8a3c5efd2569b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

ng.nairaintheget.xyz/6/Wow_files/bckbton.js

104.21.31.195

200 OK

833 B

URL GET HTTP/3
ng.nairaintheget.xyz/6/Wow_files/bckbton.js
IP
104.21.31.195:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714643845323/
Certificate
IssuerGoogle Trust Services LLC
Subjectnairaintheget.xyz
Fingerprint49:C4:BA:2D:AA:45:F9:61:08:6C:A9:95:CE:A1:AD:5C:06:77:A9:B6
ValidityWed, 10 Apr 2024 13:14:35 GMT - Tue, 09 Jul 2024 13:14:34 GMT

File type
JavaScript source, ASCII text, with very long lines (901), with no line terminators
Size
833 B (833 bytes)
Hash
3583bb84d6ebeca4aafb06d6c94e4687
0bb76fca357356abe66354240e43c42a2514b399
426cac7803821ba2a61d9a2673490bd48cf41faa467bc8755abb6a5b8da1ba23

HTTP Headers

GET /6/Wow_files/bckbton.js HTTP/1.1
Host: ng.nairaintheget.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ng.nairaintheget.xyz/6/indexH.html?domain=tracknation.xyz&carrier=&bemobdata=c=43524af8-21f4-415d-a793-9c64fe811f8b..l=77961f07-1fe2-4f35-ab01-a4cd7d0f2bce..a=0..b=0..r=tracknation~BEMOB_DOT~xyz..ts=1714643845323/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 02 May 2024 14:18:17 GMT
content-type: application/javascript
x-amz-id-2: Ehti88SNkDWfSoeUn0V9H2TfCD471OtdQ3J8ujCu4tu4G0vX6hKcABv3EiEq5OxrVlPslaajPlw=
x-amz-request-id: KH802KXTFCST4FBH
last-modified: Sun, 11 Feb 2024 14:59:56 GMT
etag: W/"6d1333b717d1eabeccff8b713f875b40"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=By%2B7Srb6A9Uv%2F8EfBstygDyivoTAP3BJ02QjUdWrhXx6pxpxH6WQpTc%2FbhEY2uqVc31WaF1kQa4ZvZAMJ%2FFm%2Fa%2Bc3MFBbPrcGBMIYkVIO3h1r1%2Bsxm%2FUQnnc4SXjrfHvqoL1MAPfOg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d8a3bfbfb0569b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (14)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML