firefox.settings.services.mozilla.com/v1/
143.204.55.27200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 1b3053fa528e28810f8a2cc9284cc921
cca9eb471d941881a6b9a1793aecb6c281908f6a
a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-stale=0
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 23 Sep 2022 08:19:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Atf4INVOqgQc6Ll3bZTsEzjRnglCp-xvbFntG06gXxKyOCDbqjX1CA==
Age: 3513
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 09a973de929ab7452edc342c780d3668
3f14f6e0a36f76863c0aea6fb561c266404a7ea3
e82ca5f310e37267fbf792427747e65c2bb35e684d3f629c0aa302f688bc4f80
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E82CA5F310E37267FBF792427747E65C2BB35E684D3F629C0AA302F688BC4F80"
Last-Modified: Fri, 23 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21379
Expires: Fri, 23 Sep 2022 15:14:10 GMT
Date: Fri, 23 Sep 2022 09:17:51 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash afb65a07bf7214addf83d17a53acba32
a8e973204431320aa7b362a4e73944520c4b51b9
46e1a9e6c98245afb7fa84bc6d9ba6844105024e2d3f56e28748e6c321475d02
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "46E1A9E6C98245AFB7FA84BC6D9BA6844105024E2D3F56E28748E6C321475D02"
Last-Modified: Wed, 21 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3117
Expires: Fri, 23 Sep 2022 10:09:48 GMT
Date: Fri, 23 Sep 2022 09:17:51 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: xCz46dhE0eW1G4F/Q+PdaQaNqCSq99PIAwR0nlyfoKLa4vlKDjVrmUEfZkh3Yyoc2kXvfZ4ktdc7Gkkv+MvkhA==
x-amz-request-id: WB1B7TAFJEGQFQZG
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 23 Sep 2022 08:46:54 GMT
age: 1857
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 09:17:51 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.comodoca.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 189a98f1f766cd0f6aa8eee6ab115536
f34d24b02ffac33bc64c87c6e8ec1d1ad28e9a34
30d9207463dd8b0f05dcffa1b8890124cb91388c040f116b2a59c4fe02af571a
POST / HTTP/1.1
Host: ocsp.comodoca.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 09:17:51 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 22 Sep 2022 22:28:57 GMT
Expires: Thu, 29 Sep 2022 22:28:56 GMT
Etag: "f34d24b02ffac33bc64c87c6e8ec1d1ad28e9a34"
Cache-Control: max-age=565264,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: MISS
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74f2308eaa3db4f9-OSL
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.27200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Fri, 23 Sep 2022 09:03:22 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Fri, 23 Sep 2022 09:19:49 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: XK2EuZb_9AvggSrcyz6nUxFSTkOcPkzbHcOwsSbd-YVDd80r5A88Ag==
Age: 870
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 86624f45fb3b7126dbe002f69c94dd86
30bcf274db5037122f989fb25dbf1e72c9ec417b
2cc9600578cf057dc499835773fb495caa60ac154c4945f0fc1f2b31d43f5502
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5894
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 09:17:52 GMT
Last-Modified: Fri, 23 Sep 2022 07:39:38 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
napffx5.com/
103.255.237.74200 OK 23 kB IP 103.255.237.74:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (21088), with CRLF line terminators
Hash 0ac1134cb0a4735b2e0066cd771c2c88
18b9d6377de0902a74d437b9053bff8f86ca3d53
17f3026614c3f006be3ca6f7f1bcb29856ade118c40e10eef3b6ec894d6f5c7d
Analyzer Verdict Alert openphish Garena
fortinet Phishing
quad9 Sinkholed
GET / HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:52 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
set-cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4; path=/; secure
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: br
push.services.mozilla.com/
52.27.12.161101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.27.12.161:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: yGWTrXgiiPj4y1Yo5gnH4g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 0W57RCUilwWoKrxDRB82hQPmBAQ=
cdnjs.cloudflare.com/ajax/libs/modernizr/2.8.3/modernizr.min.js
104.17.24.14200 OK 4.0 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/modernizr/2.8.3/modernizr.min.js
IP 104.17.24.14:0
File type HTML document, ASCII text, with very long lines (11084), with no line terminators
Hash a5775b673c18ffa903cd1a6129ce5f87
ee2569b285a7dbc4ccc95b01a16f06943fade768
ab8ad2f07d5214be2ade4edcd295d5fb8f8aa60971b3ec1348063a8a19659fc9
GET /ajax/libs/modernizr/2.8.3/modernizr.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 23 Sep 2022 09:17:52 GMT
content-type: application/javascript; charset=utf-8
content-length: 3980
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03f26-2b4c"
last-modified: Mon, 04 May 2020 16:13:26 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 37039
expires: Wed, 13 Sep 2023 09:17:52 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FZf9GPv1tAHCC%2FP98tO8V1jGDKDgPZP9ANClCI9ZGBHi%2BWnVOIObEhOuc4Iu3ueK0egrwH%2FlfNHcUN3u6zSYdPvoBovKDzh%2FQdMXSq4MXyvMKg%2BrPO6YmXFFv4txSciTE%2ButAyVM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74f230941ef90b49-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
104.17.24.14200 OK 5.6 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
IP 104.17.24.14:0
File type ASCII text, with very long lines (30837)
Hash 109d1ed85cd01f9cdab73a4cac5bf80d
d6c6498ad46de2d8e2008a8ff68e364ae7f16b32
8b3a74fe462f5b3c0635995fd721a60eb640e237680b0b532b96711f2823e8bc
GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 23 Sep 2022 09:17:52 GMT
content-type: text/css; charset=utf-8
content-length: 5631
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5f-7918"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 731049
expires: Wed, 13 Sep 2023 09:17:52 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=u%2FTdGFMGmWWYKfflGvW%2BLmamEqbFgfx7zjofTL5GXW%2BF6JBrSr1KCZxZswMqXSnJy8TmAAqYKcS89eWkoln3RWUQyDC8YcFo8UKeCm2Il6tybqKmbvIAF3PzAhxaVgKk7E1qoj1X"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74f230941efb0b49-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/toastr.js/latest/css/toastr.min.css
104.17.24.14200 OK 2.7 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/toastr.js/latest/css/toastr.min.css
IP 104.17.24.14:0
File type ASCII text, with very long lines (6454), with CR line terminators
Hash dd0c975ac6cf18356e3a64a9e09c5d66
fb70cfe7308a9e4c162d7cbdb01ba7ceff8137ea
8524ee13d851584493788f99f936112522ed17b1829e2a3409715899c8831a06
GET /ajax/libs/toastr.js/latest/css/toastr.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 23 Sep 2022 09:17:52 GMT
content-type: text/css; charset=utf-8
content-length: 2672
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ffe-1a55"
last-modified: Mon, 04 May 2020 16:17:02 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 729650
expires: Wed, 13 Sep 2023 09:17:52 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9HfVlVe%2BP4A%2Bcif%2BTW8XEzPGa4pDyq9jDC6Pl7uoZBum2Ay0ogyEHYmN8m%2BwgxkFCuHTrQNoagENCleuf8mSOWrSvaj%2BfrwfRbnoV2JZNG4x%2BZueeFJjBbLUgKnRCjK5VkzNpnvf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74f230942f030b49-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/toastr.js/latest/js/toastr.min.js
104.17.24.14200 OK 1.9 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/toastr.js/latest/js/toastr.min.js
IP 104.17.24.14:0
File type ASCII text, with very long lines (5215)
Hash b3cd1197cd16cf84e2e4313f2ba15142
5b83415c62121e0967d874ad7b12b93e059cee18
ed2fb5b46a4b7e540ddbe08f457d1c2bce74880a8a4298c8b2799039c3297328
GET /ajax/libs/toastr.js/latest/js/toastr.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 23 Sep 2022 09:17:52 GMT
content-type: application/javascript; charset=utf-8
content-length: 1885
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ffe-15a1"
last-modified: Mon, 04 May 2020 16:17:02 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 40088
expires: Wed, 13 Sep 2023 09:17:52 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NUBjoSu2ML%2BnK8U9jgcaUY0w4Mof9cgRWHb0z4GV1aFEjoWwinUqtlKtpr5KKrHyvp8G28kjHzbqJ5ppZ3Al81dt1anPOafimloNLw1djB79NzrrRE8iE1K62HKEzPasgmg%2BHEUQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74f230942f050b49-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
napffx5.com/theme/Content/css/bootstrap-multiselect.css
103.255.237.74200 OK 378 B URL HTTP/1.1 napffx5.com/theme/Content/css/bootstrap-multiselect.css
IP 103.255.237.74:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (1149), with CRLF, LF line terminators
Hash 9674e16265775f1ce18410d49a342890
17102a97aa2fd995c0e2854ebf8d44a3067aa5eb
ccc29bce93a9d43b1e3d2aac871cef658e677ba0aa7f5c69eac1367657c22575
Analyzer Verdict Alert openphish Garena
quad9 Sinkholed
GET /theme/Content/css/bootstrap-multiselect.css HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:52 GMT
Content-Type: text/css
Last-Modified: Fri, 22 Jan 2021 15:02:08 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"600ae8f0-485"
Expires: Sun, 23 Oct 2022 09:17:52 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
napffx5.com/theme/Content/css/bootstrap.min.css
103.255.237.74200 OK 22 kB URL HTTP/1.1 napffx5.com/theme/Content/css/bootstrap.min.css
IP 103.255.237.74:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (580)
Hash c32042ce0fe539788cbf62f9eb520434
ad3809f3dad244268bc8209a9f56d242f144d048
221d361bdd254620c58cf0371d874ec2a0cff3f1989b1e356c35501558e152c6
Analyzer Verdict Alert openphish Garena
quad9 Sinkholed
GET /theme/Content/css/bootstrap.min.css HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:52 GMT
Content-Type: text/css
Last-Modified: Fri, 22 Jan 2021 15:03:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"600ae946-267d6"
Expires: Sun, 23 Oct 2022 09:17:52 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
napffx5.com/theme/assets/Scripts/loader/pace.js
103.255.237.74200 OK 4.3 kB URL HTTP/1.1 napffx5.com/theme/assets/Scripts/loader/pace.js
IP 103.255.237.74:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (12345), with CRLF, LF line terminators
Hash 7a653352482a81ca00a329c953f6bab1
42cbc6c4ea37a9dd6cc238eb57708dd11dfac75a
381b85e31ea1401eb19c60f824650a604f48d3e256078a67cb650eff9785351d
Analyzer Verdict Alert openphish Garena
fortinet Phishing
quad9 Sinkholed
GET /theme/assets/Scripts/loader/pace.js HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:53 GMT
Content-Type: application/javascript
Last-Modified: Fri, 22 Jan 2021 15:01:54 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"600ae8e2-3050"
Expires: Sun, 23 Oct 2022 09:17:53 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b9893dbb93b5cc3cb8637b496ecd3c1c
007b31caa727ce627f6ba81a3f43326a1538181e
b82608484e9e9dbf009de73986da468fff9833e5d040016b3214b8774ba9f500
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 09:17:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
napffx5.com/theme/Content/css/style_naptien.css?v=3/25/2020%205:56:25%20AM
103.255.237.74200 OK 5.7 kB URL HTTP/1.1 napffx5.com/theme/Content/css/style_naptien.css?v=3/25/2020%205:56:25%20AM
IP 103.255.237.74:0
File type assembler source, Unicode text, UTF-8 (with BOM) text, with very long lines (441), with CRLF, LF line terminators
Hash 3d043e3ed912549b309d7e8149f44a20
d87b4c0ae2d140eaeb9fb17ef428b95da5958cdf
63e20ebb7aedf8ecad0fc5a1ef94b10fb320cbd106dcfb9e3366432bc059ad07
Analyzer Verdict Alert quad9 Sinkholed
GET /theme/Content/css/style_naptien.css?v=3/25/2020%205:56:25%20AM HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:53 GMT
Content-Type: text/css
Last-Modified: Fri, 22 Jan 2021 15:02:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"600ae8f4-741f"
Expires: Sun, 23 Oct 2022 09:17:53 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
napffx5.com/theme/Content/css/styleLogin.css
103.255.237.74200 OK 3.0 kB URL HTTP/1.1 napffx5.com/theme/Content/css/styleLogin.css
IP 103.255.237.74:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF, LF line terminators
Hash e0594ab136557df6f12cce76d0183db9
0a8f69329bdda782f273df13c862d0f71d1ec4ae
dbb51afb396ae5610c88466513fda63b937428a8e49f27f938af72fc28d1254b
Analyzer Verdict Alert openphish Garena
quad9 Sinkholed
GET /theme/Content/css/styleLogin.css HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:53 GMT
Content-Type: text/css
Last-Modified: Fri, 22 Jan 2021 15:02:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"600ae8f6-307b"
Expires: Sun, 23 Oct 2022 09:17:53 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
napffx5.com/theme/Content/css/owl.carousel.css
103.255.237.74200 OK 1.6 kB URL HTTP/1.1 napffx5.com/theme/Content/css/owl.carousel.css
IP 103.255.237.74:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF, LF line terminators
Hash f4fb9d9f6713605979330f939b26db21
33150c5d85a591d1c8f7c65ae545cb7831029dc3
5c006ae55f0cd77b761638dd0488c09fae8b1fd0e8c1f8a677eb6dab1d9dfba7
Analyzer Verdict Alert openphish Garena
quad9 Sinkholed
GET /theme/Content/css/owl.carousel.css HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:53 GMT
Content-Type: text/css
Last-Modified: Fri, 22 Jan 2021 15:03:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"600ae946-1da6"
Expires: Sun, 23 Oct 2022 09:17:53 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b9893dbb93b5cc3cb8637b496ecd3c1c
007b31caa727ce627f6ba81a3f43326a1538181e
b82608484e9e9dbf009de73986da468fff9833e5d040016b3214b8774ba9f500
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 09:17:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ecc9360712b996f96e6663941ec51a3f
521826ef669ca72d6cfae23e1f8bf50dc81127d4
809f64dc56800c61df04de85ddfc7c7d26455f402c02a4ca7fc6a307b4382070
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "809F64DC56800C61DF04DE85DDFC7C7D26455F402C02A4CA7FC6A307B4382070"
Last-Modified: Thu, 22 Sep 2022 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9340
Expires: Fri, 23 Sep 2022 11:53:33 GMT
Date: Fri, 23 Sep 2022 09:17:53 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b9893dbb93b5cc3cb8637b496ecd3c1c
007b31caa727ce627f6ba81a3f43326a1538181e
b82608484e9e9dbf009de73986da468fff9833e5d040016b3214b8774ba9f500
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 09:17:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
napffx5.com/theme/assets/Scripts/loader/css.css
103.255.237.74200 OK 510 B URL HTTP/1.1 napffx5.com/theme/assets/Scripts/loader/css.css
IP 103.255.237.74:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF, LF line terminators
Hash 872c69d5c4c5a53c4a570c1ea21bbb23
4f2412e4ea9f8d36bff4db41b028020d3cba94f1
5823abb22f5c29dd36f288da83fa2efd941e7162ffb3eb9428d4527697c85f7f
Analyzer Verdict Alert openphish Garena
quad9 Sinkholed
GET /theme/assets/Scripts/loader/css.css HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:53 GMT
Content-Type: text/css
Last-Modified: Fri, 22 Jan 2021 15:02:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"600ae8f6-83b"
Expires: Sun, 23 Oct 2022 09:17:53 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
ajax.googleapis.com/ajax/libs/jquery/3.4.1/jquery.min.js
142.250.74.10200 OK 31 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/3.4.1/jquery.min.js
IP 142.250.74.10:0
File type ASCII text, with very long lines (65451)
Hash 81182f4b684635f6bdcbdd907ee66f25
a1f2f151df72ede41397c8131bd47a3ce85575b3
be40946c98d9a78a3c7c9ad097d379ab12549a195bd7a4766919a1d3fd987396
GET /ajax/libs/jquery/3.4.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30774
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 20 Sep 2022 15:53:22 GMT
expires: Wed, 20 Sep 2023 15:53:22 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 235471
last-modified: Mon, 13 May 2019 14:37:17 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 1e6c9be31449287ca2725eb224a39e88
c65a22026855d7f48e9e735e19c34470e4487066
b6d0504176ab904be26a92b03910531c3a99a30a542d45a1f4865a5166256096
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2885
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 09:17:53 GMT
Last-Modified: Fri, 23 Sep 2022 08:29:48 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 5e136317c0c71275860fcce48a860311
ea873b454c69b6bed9c6bfb32ca8b3d500c8cf3a
8280ba5f21730cd6cde3d0a3581bbdc319b5d707e268bc50f3b59d2846350830
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5808
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 09:17:53 GMT
Last-Modified: Fri, 23 Sep 2022 07:41:06 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 280
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 375756444a8871bbe816165e294fb262
2f9e18473daa3daae633a4df448a2230e77f8c33
c2e94c3082cb76fad8f5ace3c686f46d43c807b7f2d3cb9f2b4d9965b91af4c2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 09:17:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b9893dbb93b5cc3cb8637b496ecd3c1c
007b31caa727ce627f6ba81a3f43326a1538181e
b82608484e9e9dbf009de73986da468fff9833e5d040016b3214b8774ba9f500
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 09:17:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b9893dbb93b5cc3cb8637b496ecd3c1c
007b31caa727ce627f6ba81a3f43326a1538181e
b82608484e9e9dbf009de73986da468fff9833e5d040016b3214b8774ba9f500
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 09:17:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maxcdn.bootstrapcdn.com/bootstrap/3.4.0/js/bootstrap.min.js
104.18.11.207200 OK 11 kB URL HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/3.4.0/js/bootstrap.min.js
IP 104.18.11.207:0
File type ASCII text, with very long lines (37481)
Hash 530c26dacde193c82561e9a6af5ae496
daf13ff758f178072e0b268b52d531bae4f36f00
bde8b11e2fea7a7b7b0ec68f6bb46048388458bc0273a3321fcbd2206bf6495e
GET /bootstrap/3.4.0/js/bootstrap.min.js HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 23 Sep 2022 09:17:53 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: SE
cdn-edgestorageid: 565, 617, 617
last-modified: Mon, 25 Jan 2021 22:04:00 GMT
cdn-cachedat: 2021-04-23 06:53:05
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: 82949e3a4ffefb0b3980b7d96ff76a06
cdn-cache: HIT
cf-cache-status: HIT
age: 12034980
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 74f230980d841bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-Z2NG0B4NRP
142.250.74.72200 OK 75 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-Z2NG0B4NRP
IP 142.250.74.72:0
File type ASCII text, with very long lines (17807)
Hash 74ce4721bbe8a594ba7f73516e2f4e50
728583689778caa7c65c24783a59a459d972ea48
1ecc37d8f15034c26d31a5fa535eb472f5962d6537ef94bad8753c688c9368b4
GET /gtag/js?id=G-Z2NG0B4NRP HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 23 Sep 2022 09:17:53 GMT
expires: Fri, 23 Sep 2022 09:17:53 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 74621
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.rawgit.com/t4t5/sweetalert/v0.2.0/lib/sweet-alert.css
194.242.11.186301 Moved Permanently 104 B URL HTTP/2 cdn.rawgit.com/t4t5/sweetalert/v0.2.0/lib/sweet-alert.css
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type ASCII text, with no line terminators
Hash 0198cee7c281cc43065d810e3dd35825
7f3b4786c4704806af231e4caceaa1fa239e3aa1
d93bd0ba8ba436443e91b0e446a1ab1d5f16bfb26f6d420c76411a9dfff27f29
GET /t4t5/sweetalert/v0.2.0/lib/sweet-alert.css HTTP/1.1
Host: cdn.rawgit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Fri, 23 Sep 2022 09:17:53 GMT
content-type: text/plain; charset=utf-8
content-length: 104
location: https://cdn.jsdelivr.net/gh/t4t5/sweetalert@v0.2.0/lib/sweet-alert.css
server: BunnyCDN-NO-830
cdn-pullzone: 201235
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: NO
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
age: 283
alt-svc: h3=":443", h3-29=":443", h3-27=":443"
cache-control: public, max-age=2592000
cdn-cachedat: 09/23/2022 09:17:53
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-served-by: cache-fra19133-FRA, cache-chi-kigq8000055-CHI
x-cache: MISS, HIT
cdn-proxyver: 1.02
cdn-requestpullcode: 301
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 301
cdn-requestid: c0b3911bcded31547a1b3ffd094d0ed5
cdn-cache: EXPIRED
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 375756444a8871bbe816165e294fb262
2f9e18473daa3daae633a4df448a2230e77f8c33
c2e94c3082cb76fad8f5ace3c686f46d43c807b7f2d3cb9f2b4d9965b91af4c2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 09:17:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
unpkg.com/sweetalert@2.1.2/dist/sweetalert.min.js
104.16.126.175200 OK 14 kB URL HTTP/2 unpkg.com/sweetalert@2.1.2/dist/sweetalert.min.js
IP 104.16.126.175:0
File type ASCII text, with very long lines (40808), with no line terminators
Hash dbac9ae8cb67f391e829bf5440e97308
de9a3a83002974a5091541ffe6d2157ee16cd666
e5cb09abc017729deac7c36fc0bc9aef570d9a7e268411e7497331a33d161201
GET /sweetalert@2.1.2/dist/sweetalert.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://napffx5.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 23 Sep 2022 09:17:53 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"9f68-Kj2qvHAjLGNQq0jTJgXcSmrB8fo"
via: 1.1 fly.io
fly-request-id: 01F3YGW88676FQX0FXNA5B1VWZ
cf-cache-status: HIT
age: 13235398
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74f230988b8cb521-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP 104.18.21.226:0
Hash 6724531503cd3944777116681c409193
9642c2980210e6739632fe9122c32aa34d8b1ccb
0cffd60e715ca951303cb6881a2f4aadc09386cd0132d55f46d7aa758360976f
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 09:17:53 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "00BB8E4B6433B692CC4463A8CCFAB33ADF2588A3"
Expires: Fri, 23 Sep 2022 20:00:00 GMT
Last-Modified: Fri, 23 Sep 2022 08:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 1700
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74f23098fbc2b527-OSL
napffx5.com/theme/Content/js/jquery-1.9.1.min.js
103.255.237.74200 OK 33 kB URL HTTP/1.1 napffx5.com/theme/Content/js/jquery-1.9.1.min.js
IP 103.255.237.74:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (32089)
Hash ce3948ed8ff4f91a07b3f67b91e7ff93
a47b35b2558eef957334b5fb4f0b0f5716577c7b
707870aae756c988ae6ae916e489996c08b0b963355edc748c58f180a27037a2
Analyzer Verdict Alert openphish Garena
fortinet Phishing
quad9 Sinkholed
GET /theme/Content/js/jquery-1.9.1.min.js HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:53 GMT
Content-Type: application/javascript
Last-Modified: Fri, 22 Jan 2021 15:01:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"600ae8e0-169df"
Expires: Sun, 23 Oct 2022 09:17:53 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
napffx5.com/theme/assets/Scripts/sweetalert/sweetalert.min.js
103.255.237.74200 OK 5.4 kB URL HTTP/1.1 napffx5.com/theme/assets/Scripts/sweetalert/sweetalert.min.js
IP 103.255.237.74:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (16977), with CRLF line terminators
Hash 6662beb174d3d98dd77dccfa0bf73895
8cb32c299d5e5a8fbba98ca8a4cff22f78166d86
227337812cba870512ff75c613f014e2c0d88a2b3ad9cff6fab0acece9922987
Analyzer Verdict Alert openphish Garena
fortinet Phishing
quad9 Sinkholed
GET /theme/assets/Scripts/sweetalert/sweetalert.min.js HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:53 GMT
Content-Type: application/javascript
Last-Modified: Fri, 22 Jan 2021 15:01:54 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"600ae8e2-4258"
Expires: Sun, 23 Oct 2022 09:17:53 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
napffx5.com/theme/assets/Scripts/loadingoverlay/loadingoverlay.min.js
103.255.237.74200 OK 12 kB URL HTTP/1.1 napffx5.com/theme/assets/Scripts/loadingoverlay/loadingoverlay.min.js
IP 103.255.237.74:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (17017), with CRLF line terminators
Hash 4ed4a67f97f756d54b9cc2e2eb984f5b
037c75dd496ff90caad8086193133114083655dc
e8ef142b9ed0dca894ab4ed80022ee2e4405d83000c112fecf9ed9ca548a290e
Analyzer Verdict Alert openphish Garena
fortinet Phishing
quad9 Sinkholed
GET /theme/assets/Scripts/loadingoverlay/loadingoverlay.min.js HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:53 GMT
Content-Type: application/javascript
Last-Modified: Fri, 22 Jan 2021 15:01:54 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"600ae8e2-4433"
Expires: Sun, 23 Oct 2022 09:17:53 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
napffx5.com/theme/assets/Scripts/loadingoverlay/loadingoverlay_progress.min.js
103.255.237.74200 OK 547 B URL HTTP/1.1 napffx5.com/theme/assets/Scripts/loadingoverlay/loadingoverlay_progress.min.js
IP 103.255.237.74:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (741), with CRLF line terminators
Hash 368ca1f9323e9631f7884edea1ac5efe
1fc65e98781f8e3f59ec35cca918de45909f4343
66feaef0c89aaa9e6db2f9a0df4766e03a6a37a81d32c210b073d7d0d6d3eda3
Analyzer Verdict Alert openphish Garena
fortinet Phishing
quad9 Sinkholed
GET /theme/assets/Scripts/loadingoverlay/loadingoverlay_progress.min.js HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:53 GMT
Content-Type: application/javascript
Last-Modified: Fri, 22 Jan 2021 15:01:54 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"600ae8e2-486"
Expires: Sun, 23 Oct 2022 09:17:53 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
napffx5.com/assets/js/jquery.min.js
103.255.237.74404 Not Found 439 B URL HTTP/1.1 napffx5.com/assets/js/jquery.min.js
IP 103.255.237.74:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 07d733caa4017913036975480682e8e1
cf3458aeb5757a30be2ca516280f0a3c12198e6c
9020d0f10fe75f5291bd9effcfbb424ce656d0b761defc18edfd47d28c0d9487
Analyzer Verdict Alert openphish Garena
fortinet Phishing
quad9 Sinkholed
GET /assets/js/jquery.min.js HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Server: Apache
Date: Fri, 23 Sep 2022 09:17:53 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
Content-Encoding: gzip
napffx5.com/theme/assets/frontend/theme/assets/plugins/socicon/socicon.css
103.255.237.74200 OK 308 B URL HTTP/1.1 napffx5.com/theme/assets/frontend/theme/assets/plugins/socicon/socicon.css
IP 103.255.237.74:0
File type HTML document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 1367776526590ff571d9f11e67d427c5
e06b663286303a6d9edf1ac948bc7e5f5bba9460
c4ffe71840b9fd559dfa83e030622b96c51af5d7f4163faf7c57f1bae51d760a
Analyzer Verdict Alert openphish Garena
quad9 Sinkholed
GET /theme/assets/frontend/theme/assets/plugins/socicon/socicon.css HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:53 GMT
Content-Type: text/css
Last-Modified: Fri, 22 Jan 2021 15:02:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"600ae8f8-27c"
Expires: Sun, 23 Oct 2022 09:17:53 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
napffx5.com/theme/assets/Scripts/sweetalert/sweetalert.css
103.255.237.74200 OK 3.8 kB URL HTTP/1.1 napffx5.com/theme/assets/Scripts/sweetalert/sweetalert.css
IP 103.255.237.74:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash dbd2f67ee522cb08e3d4561a00227e55
7bae594cb80dc690c56e3bb97e7cef352745c331
038c0f9f1656017f56b30a7e8c0981cd355336557a61a8f83bd11a09af4200e9
Analyzer Verdict Alert openphish Garena
quad9 Sinkholed
GET /theme/assets/Scripts/sweetalert/sweetalert.css HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:53 GMT
Content-Type: text/css
Last-Modified: Fri, 22 Jan 2021 15:02:18 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"600ae8fa-5d0a"
Expires: Sun, 23 Oct 2022 09:17:53 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
napffx5.com/theme/assets/frontend/theme/assets/plugins/font-awesome/css/font-awesome.min.css
103.255.237.74200 OK 6.1 kB URL HTTP/1.1 napffx5.com/theme/assets/frontend/theme/assets/plugins/font-awesome/css/font-awesome.min.css
IP 103.255.237.74:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (26655), with CRLF line terminators
Hash c00f59a3302f3a78cb2fff89defe46dd
254be5f569f94fa7e70933e77f56980f696f91a7
df8d94a27b438f9d73a9afb593f47bd2a36dad9eb9a23f4e8420d0ea26bc6f63
Analyzer Verdict Alert openphish Garena
quad9 Sinkholed
GET /theme/assets/frontend/theme/assets/plugins/font-awesome/css/font-awesome.min.css HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:53 GMT
Content-Type: text/css
Last-Modified: Fri, 22 Jan 2021 15:04:26 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"600ae97a-68d1"
Expires: Sun, 23 Oct 2022 09:17:53 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
napffx5.com/theme/assets/frontend/theme/assets/plugins/simple-line-icons/simple-line-icons.min.css
103.255.237.74200 OK 2.2 kB URL HTTP/1.1 napffx5.com/theme/assets/frontend/theme/assets/plugins/simple-line-icons/simple-line-icons.min.css
IP 103.255.237.74:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (9527), with CRLF line terminators
Hash cb66bf17d2f4775c99b253fe4ee66487
26849043be3d87e51bd8a8f0a7c1ef73ae250532
98e43a4a44764f835b3a03251cdb9b7b5b7a62175a87218d31f8b53d71742847
Analyzer Verdict Alert openphish Garena
quad9 Sinkholed
GET /theme/assets/frontend/theme/assets/plugins/simple-line-icons/simple-line-icons.min.css HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:53 GMT
Content-Type: text/css
Last-Modified: Fri, 22 Jan 2021 15:04:36 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"600ae984-257d"
Expires: Sun, 23 Oct 2022 09:17:53 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
napffx5.com/theme/assets/frontend/theme/assets/plugins/animate/animate.min.css
103.255.237.74200 OK 3.9 kB URL HTTP/1.1 napffx5.com/theme/assets/frontend/theme/assets/plugins/animate/animate.min.css
IP 103.255.237.74:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (55788), with CRLF line terminators
Hash b0b77606056a25baed95bda9a9572c90
42a5b1cd68ed59d1f9953e1f8a963fcfb48c21df
1485919097b1fa14644a6d735107b88a9d79dfbd476fc1eedf3d6d3c5715635b
Analyzer Verdict Alert openphish Garena
quad9 Sinkholed
GET /theme/assets/frontend/theme/assets/plugins/animate/animate.min.css HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:53 GMT
Content-Type: text/css
Last-Modified: Fri, 22 Jan 2021 15:04:38 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"600ae986-d9f9"
Expires: Sun, 23 Oct 2022 09:17:53 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
napffx5.com/theme/assets/frontend/theme/assets/global/plugins/magnific/magnific.css
103.255.237.74200 OK 1.8 kB URL HTTP/1.1 napffx5.com/theme/assets/frontend/theme/assets/global/plugins/magnific/magnific.css
IP 103.255.237.74:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 18d063493498715a05751311ba90dede
0a65f62bf9486b3f1abd6124a92934078f7d3454
eecdc6c84406e0cdbe74d50766fb1f588e469c8b471986041236f5b7a7f005d2
Analyzer Verdict Alert openphish Garena
quad9 Sinkholed
GET /theme/assets/frontend/theme/assets/global/plugins/magnific/magnific.css HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:53 GMT
Content-Type: text/css
Last-Modified: Fri, 22 Jan 2021 15:03:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"600ae938-1c8b"
Expires: Sun, 23 Oct 2022 09:17:53 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2540
Expires: Fri, 23 Sep 2022 10:00:13 GMT
Date: Fri, 23 Sep 2022 09:17:53 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2540
Expires: Fri, 23 Sep 2022 10:00:13 GMT
Date: Fri, 23 Sep 2022 09:17:53 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2540
Expires: Fri, 23 Sep 2022 10:00:13 GMT
Date: Fri, 23 Sep 2022 09:17:53 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2540
Expires: Fri, 23 Sep 2022 10:00:13 GMT
Date: Fri, 23 Sep 2022 09:17:53 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2540
Expires: Fri, 23 Sep 2022 10:00:13 GMT
Date: Fri, 23 Sep 2022 09:17:53 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffccf6ade-04f7-4d15-943c-bde343725d94.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffccf6ade-04f7-4d15-943c-bde343725d94.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 02a682b4703bb9d6381c762726c05531
1d7f7b4cfdd7425213a21afdd1d5a5d8d11d0e54
fb672de67420a239fe5d7e2588f640150ed29883fe2a46ded160385e3265004c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffccf6ade-04f7-4d15-943c-bde343725d94.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8029
x-amzn-requestid: 2fc5c63d-5cef-42f4-a6d2-b55f51c57af6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4Y0tHjGoAMFcFw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd4ea-73f2f78a2d1ca8fc666d2571;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:34:34 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 7DX67a-HmEh76IorINvRU61AKtSiimdPnHFnYeR2OJezZJ1_mJq0MA==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 21:48:22 GMT
age: 41371
etag: "1d7f7b4cfdd7425213a21afdd1d5a5d8d11d0e54"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ac33f06-9198-44a5-b43b-9cbcc092cf52.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ac33f06-9198-44a5-b43b-9cbcc092cf52.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1eab8da8cc1495a0221efadddd1a0bcc
4156c37b612d5fb99c6b061187a3cb0b314ae4a8
2fc5dbd9216f775cd305de80d17db2e6c74abcb1e30bfa7065c4d763a7345026
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ac33f06-9198-44a5-b43b-9cbcc092cf52.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9481
x-amzn-requestid: d527d22a-6822-4b90-b9cb-034f58f73c24
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4Y0IGl7oAMFSKg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd4e7-13a676d9596cbd20663d2d8f;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:34:31 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: V8vtLV7n0bPpR5xQtqcH6WK7uBV4ObaMdy_9qN_TtISqAozEwPe0hA==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 22:11:15 GMT
age: 39998
etag: "4156c37b612d5fb99c6b061187a3cb0b314ae4a8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
napffx5.com/theme/assets/frontend/theme/assets/plugins/cubeportfolio/css/cubeportfolio.min.css
103.255.237.74200 OK 12 kB URL HTTP/1.1 napffx5.com/theme/assets/frontend/theme/assets/plugins/cubeportfolio/css/cubeportfolio.min.css
IP 103.255.237.74:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (65238), with CRLF line terminators
Hash 9943f09af1212a9db67c812a4c1ed70c
aa7488cbfb6da80f1889003ee1c65a19be594d9f
73b69d7ef16d28b03605fe949959a44de41e246f4a8824412491a9da1ff65c9e
Analyzer Verdict Alert openphish Garena
quad9 Sinkholed
GET /theme/assets/frontend/theme/assets/plugins/cubeportfolio/css/cubeportfolio.min.css HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:53 GMT
Content-Type: text/css
Last-Modified: Fri, 22 Jan 2021 15:04:38 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"600ae986-137b9"
Expires: Sun, 23 Oct 2022 09:17:53 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98db69a9-8416-4b0b-b1b4-1ed196b985e5.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98db69a9-8416-4b0b-b1b4-1ed196b985e5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3b318ea5c36d2b22b925f7dfe382df5f
0264e73c4cfff0bb255757c7e1c760a5ad3ece80
0c2f58ea4f5f32bb327f292e1b8fb5a4a60230bffc3abc440a624df27ec0d6bc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98db69a9-8416-4b0b-b1b4-1ed196b985e5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5340
x-amzn-requestid: b13bc974-e15d-43a4-a918-fbc35b09a36f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4Y19HljIAMFY8w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd4f2-2cb226ba4bd7c7e74d9ab2db;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:34:42 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 8DCVWC4Ihr4R21i3ySyiWdUK0aGymTE22B842ZKolG-ZThiKSMX-uQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 22:11:26 GMT
age: 39987
etag: "0264e73c4cfff0bb255757c7e1c760a5ad3ece80"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9bb1df1b-7300-4e0d-ad7a-6e90b6c03299.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9bb1df1b-7300-4e0d-ad7a-6e90b6c03299.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e2bbb3856eeac20d0ee556c96144bf6c
76ac1f33cd006227162e12e7142e754562bec0c0
1e3f6551d401346b6d809d8feb9b36a9e0006f99f518d1130aa9bd630bfb6801
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9bb1df1b-7300-4e0d-ad7a-6e90b6c03299.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12538
x-amzn-requestid: 2ae96766-6999-44ec-8084-a19d26b3e118
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YpOJOHYFIAMFXYw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6326c3d4-060b96fa5fc99e79711bde3f;Sampled=0
x-amzn-remapped-date: Sun, 18 Sep 2022 07:08:04 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: f2gWVJG2DTnIblkJjx4bkFIeg8GauM9TnrThPQPZTkAuL7D7AyG2TQ==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 17:48:34 GMT
age: 55759
etag: "76ac1f33cd006227162e12e7142e754562bec0c0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Pacifico%7CWork+Sans:400,300,600,400italic,700%7CAmatic+SC:400,700&subset=latin-ext
142.250.74.10200 OK 5.8 kB URL HTTP/2 fonts.googleapis.com/css?family=Pacifico%7CWork+Sans:400,300,600,400italic,700%7CAmatic+SC:400,700&subset=latin-ext
IP 142.250.74.10:0
Hash f9e9b238e9c5fb08e7e842daf04d15e9
d6a043abb48fe7d2db5a7b29efa18e99f7e6350f
12003ef1bf823c65998b81808524791625a87d266a42b139c4f3a92529b47c2d
GET /css?family=Pacifico%7CWork+Sans:400,300,600,400italic,700%7CAmatic+SC:400,700&subset=latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 23 Sep 2022 09:17:53 GMT
date: Fri, 23 Sep 2022 09:17:53 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77ad616-c829-40b4-8b70-2be46252d64c.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77ad616-c829-40b4-8b70-2be46252d64c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8ea5f06ad31f0cedd2cb5c6df82f35f4
60a83a1618ffae06e49ca3002bac1db9980dcfe8
5f6a4cb92c016ef0f229b11d727e9680a15b10782b5bfe9e66ad9d100b458d8d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77ad616-c829-40b4-8b70-2be46252d64c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10279
x-amzn-requestid: 2ff2c324-51c5-484d-b049-3eacbdc1024a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yyj8THHdoAMF44g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632a804e-0f4da4ba2a84679b3fd297fc;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 03:09:02 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: z0uCxl-5L4gijwJsCjssxmgnJr4yhzvtiZdcX4wOXzgiuh8-Yj92vg==
via: 1.1 c21a0d27ceec21e266c9f962d0349438.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 04:32:56 GMT
age: 17097
etag: "60a83a1618ffae06e49ca3002bac1db9980dcfe8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
napffx5.com/theme/assets/frontend/theme/assets/plugins/fancybox/jquery.fancybox.css
103.255.237.74200 OK 1.4 kB URL HTTP/1.1 napffx5.com/theme/assets/frontend/theme/assets/plugins/fancybox/jquery.fancybox.css
IP 103.255.237.74:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash b83ab78d4ba537c9eb19635197dbace8
d9f00d70d17bc7e80843398dd6a585469c8e687f
32c5faee5f870e0745cf961187f8a92493562279bc2af7643d4c36a49a5cd443
Analyzer Verdict Alert openphish Garena
quad9 Sinkholed
GET /theme/assets/frontend/theme/assets/plugins/fancybox/jquery.fancybox.css HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:53 GMT
Content-Type: text/css
Last-Modified: Fri, 22 Jan 2021 15:04:38 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"600ae986-1445"
Expires: Sun, 23 Oct 2022 09:17:53 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
napffx5.com/theme/assets/frontend/theme/assets/demos/default/css/custom.css?tom=63711497
103.255.237.74200 OK 641 B URL HTTP/1.1 napffx5.com/theme/assets/frontend/theme/assets/demos/default/css/custom.css?tom=63711497
IP 103.255.237.74:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 511d8ec3e52c4413a9e6e71ac616a332
70767b59698afb3fc61eb0867d394b55a32f6e8f
4519ef9aa7e0ff5895acbcdb2d0fbfd8ec879b4650d4d83cc87bc3acacba2f91
Analyzer Verdict Alert openphish Garena
fortinet Phishing
quad9 Sinkholed
GET /theme/assets/frontend/theme/assets/demos/default/css/custom.css?tom=63711497 HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:53 GMT
Content-Type: text/css
Last-Modified: Fri, 22 Jan 2021 15:03:30 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"600ae942-1053"
Expires: Sun, 23 Oct 2022 09:17:53 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
napffx5.com/theme/assets/frontend/css/vongquaykimcuong.css
103.255.237.74200 OK 358 B URL HTTP/1.1 napffx5.com/theme/assets/frontend/css/vongquaykimcuong.css
IP 103.255.237.74:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 987ac6b3f0a2490da3b7695aa093969e
08617c8eab489cc78d5e2a26fcd350314255274d
58dc0f07d66f0f7a96c8b7cef8f0500dd03c6019c9d3de38c0c931e325abdeea
Analyzer Verdict Alert openphish Garena
quad9 Sinkholed
GET /theme/assets/frontend/css/vongquaykimcuong.css HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:53 GMT
Content-Type: text/css
Last-Modified: Fri, 22 Jan 2021 15:03:30 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"600ae942-312"
Expires: Sun, 23 Oct 2022 09:17:53 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
napffx5.com/theme/assets/frontend/theme/assets/demos/default/css/themes/default.css?tom=25086348
103.255.237.74200 OK 2.0 kB URL HTTP/1.1 napffx5.com/theme/assets/frontend/theme/assets/demos/default/css/themes/default.css?tom=25086348
IP 103.255.237.74:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (615), with CRLF line terminators
Hash 497e605888028f1118d6bebd282193d6
e0e9d0f708f967cfe87b274644704729b1a87489
4df2bf5ecad8a3403bf3854269a3aa917a9df6ea0b7a8a820943b1b4916c3e02
Analyzer Verdict Alert quad9 Sinkholed
GET /theme/assets/frontend/theme/assets/demos/default/css/themes/default.css?tom=25086348 HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:53 GMT
Content-Type: text/css
Last-Modified: Fri, 22 Jan 2021 15:03:30 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"600ae942-39a2"
Expires: Sun, 23 Oct 2022 09:17:53 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
napffx5.com/theme/assets/frontend/plugins/bootstrap/js/bootstrap.min.js
103.255.237.74200 OK 9.9 kB URL HTTP/1.1 napffx5.com/theme/assets/frontend/plugins/bootstrap/js/bootstrap.min.js
IP 103.255.237.74:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (32033), with CRLF line terminators
Hash 1e0b7e1d164b5f84c78c22acb6cdfb37
f09d988281127ad27404a59e649c251e6319758d
3d43dbee307ac93be5362b44b3d730e0c1a05ef22ec518314b4b4359e93fc780
Analyzer Verdict Alert openphish Garena
fortinet Phishing
quad9 Sinkholed
GET /theme/assets/frontend/plugins/bootstrap/js/bootstrap.min.js HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:53 GMT
Content-Type: application/javascript
Last-Modified: Fri, 22 Jan 2021 15:01:54 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"600ae8e2-90c2"
Expires: Sun, 23 Oct 2022 09:17:53 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
napffx5.com/theme/assets/frontend/plugins/owl-carousel/slider.js
103.255.237.74200 OK 577 B URL HTTP/1.1 napffx5.com/theme/assets/frontend/plugins/owl-carousel/slider.js
IP 103.255.237.74:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 79d584953a51c771a3ce20dd5937c235
1ccef2398867c66c422b8a23acff53b196e2b34b
b84c1e0100a38f7da6b684dc984eb154d9bcead6c06e53dd802746bdaafbee1c
Analyzer Verdict Alert openphish Garena
fortinet Phishing
quad9 Sinkholed
GET /theme/assets/frontend/plugins/owl-carousel/slider.js HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:53 GMT
Content-Type: application/javascript
Last-Modified: Fri, 22 Jan 2021 15:01:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"600ae8e4-9ea"
Expires: Sun, 23 Oct 2022 09:17:53 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
napffx5.com/theme/assets/frontend/theme/assets/demos/default/css/components.css?tom=90531144
103.255.237.74200 OK 54 kB URL HTTP/1.1 napffx5.com/theme/assets/frontend/theme/assets/demos/default/css/components.css?tom=90531144
IP 103.255.237.74:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 74221d3bea41abe7bb6eba1a8aec1806
699a0fc17011310d862e8390aae26fbc3ecf254f
b279351a5bfa1c34db73190a499f64ed1da50a98cf8f6c242b4583242cf1a133
Analyzer Verdict Alert openphish Garena
fortinet Phishing
quad9 Sinkholed
GET /theme/assets/frontend/theme/assets/demos/default/css/components.css?tom=90531144 HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:53 GMT
Content-Type: text/css
Last-Modified: Fri, 22 Jan 2021 15:03:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"600ae93c-81e06"
Expires: Sun, 23 Oct 2022 09:17:53 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
napffx5.com/theme/assets/frontend/plugins/jquery-cookie/jquery.cookie.js
103.255.237.74200 OK 1.4 kB URL HTTP/1.1 napffx5.com/theme/assets/frontend/plugins/jquery-cookie/jquery.cookie.js
IP 103.255.237.74:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash b1275e0fe2101037cad39c9983a3e684
7c203b34da0c8d04a2103946ee1c6881920b29ad
2be196a824bad62af6d7a0f7b26b36786d067e1c3d1b5d321992b6ff3f6775d0
Analyzer Verdict Alert openphish Garena
fortinet Phishing
quad9 Sinkholed
GET /theme/assets/frontend/plugins/jquery-cookie/jquery.cookie.js HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:54 GMT
Content-Type: application/javascript
Last-Modified: Fri, 22 Jan 2021 15:01:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"600ae8e4-cbd"
Expires: Sun, 23 Oct 2022 09:17:54 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
napffx5.com/theme/assets/frontend/css/style.css?tom=7967104
103.255.237.74200 OK 5.4 kB URL HTTP/1.1 napffx5.com/theme/assets/frontend/css/style.css?tom=7967104
IP 103.255.237.74:0
File type assembler source, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 2e2924e59a44240789d05578f9fc2512
719434878520c85a7305f7fdfb1f6cdbec08a977
5ddf3572e58e0d9c46183f66ae12ee351e83feb65a9dfac713eef843758f6de6
Analyzer Verdict Alert quad9 Sinkholed
GET /theme/assets/frontend/css/style.css?tom=7967104 HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:54 GMT
Content-Type: text/css
Last-Modified: Fri, 22 Jan 2021 15:03:30 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"600ae942-6504"
Expires: Sun, 23 Oct 2022 09:17:54 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
napffx5.com/theme/assets/frontend/css/util.css
103.255.237.74200 OK 13 kB URL HTTP/1.1 napffx5.com/theme/assets/frontend/css/util.css
IP 103.255.237.74:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash b4ddf3fb76ee7ae9a798577e1b57ec86
4bd2065f68457b4426215993d28014584949b211
99ed9b8b44e6ede27bf257d85352b4b96f3b5a9b440772fa7e4eef98fd9626da
Analyzer Verdict Alert openphish Garena
quad9 Sinkholed
GET /theme/assets/frontend/css/util.css HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:54 GMT
Content-Type: text/css
Last-Modified: Fri, 22 Jan 2021 15:03:32 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"600ae944-15497"
Expires: Sun, 23 Oct 2022 09:17:54 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
napffx5.com/theme/assets/frontend/theme/assets/plugins/jquery-migrate.min.js
103.255.237.74200 OK 4.0 kB URL HTTP/1.1 napffx5.com/theme/assets/frontend/theme/assets/plugins/jquery-migrate.min.js
IP 103.255.237.74:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (9959), with CRLF line terminators
Hash 26db7ef3c3192cf9ba269c6670e9c489
431aa6f700faa235172b0adbd7010a66ca9003d9
9d598f0b32c9d948788274aefab91232b5d69f1cb2ac279a96aee0dcce719ddd
Analyzer Verdict Alert openphish Garena
fortinet Phishing
quad9 Sinkholed
GET /theme/assets/frontend/theme/assets/plugins/jquery-migrate.min.js HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:54 GMT
Content-Type: application/javascript
Last-Modified: Fri, 22 Jan 2021 15:01:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"600ae8e4-2750"
Expires: Sun, 23 Oct 2022 09:17:54 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
napffx5.com/theme/assets/frontend/theme/assets/plugins/jquery.easing.min.js
103.255.237.74200 OK 1.8 kB URL HTTP/1.1 napffx5.com/theme/assets/frontend/theme/assets/plugins/jquery.easing.min.js
IP 103.255.237.74:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (3323), with CRLF line terminators
Hash 03fa5921855d1220f72c02e6cce5a683
5bc931999ba1d8f8758b6fd2ff8fc11516fb8c0d
461db480eb7875905d347cb549a9f79ec988994027a2779c7b481bb84a6c509f
Analyzer Verdict Alert openphish Garena
fortinet Phishing
quad9 Sinkholed
GET /theme/assets/frontend/theme/assets/plugins/jquery.easing.min.js HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:54 GMT
Content-Type: application/javascript
Last-Modified: Fri, 22 Jan 2021 15:01:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"600ae8e4-1433"
Expires: Sun, 23 Oct 2022 09:17:54 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
napffx5.com/theme/assets/frontend/theme/assets/demos/default/js/scripts/reveal-animate/reveal-animate.js
103.255.237.74200 OK 300 B URL HTTP/1.1 napffx5.com/theme/assets/frontend/theme/assets/demos/default/js/scripts/reveal-animate/reveal-animate.js
IP 103.255.237.74:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 2a5458d62eb7c9d2570452da1c27cd17
664380d6620da430b79d15c345da927ba0bc4066
81a0c60dc38f0bdc8c09da01ed4ffb73476955addc082197ba697eb07337f153
Analyzer Verdict Alert openphish Garena
fortinet Phishing
quad9 Sinkholed
GET /theme/assets/frontend/theme/assets/demos/default/js/scripts/reveal-animate/reveal-animate.js HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:54 GMT
Content-Type: application/javascript
Last-Modified: Fri, 22 Jan 2021 15:01:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"600ae8e4-1ea"
Expires: Sun, 23 Oct 2022 09:17:54 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
napffx5.com/theme/assets/frontend/theme/assets/plugins/reveal-animate/wow.js
103.255.237.74200 OK 3.6 kB URL HTTP/1.1 napffx5.com/theme/assets/frontend/theme/assets/plugins/reveal-animate/wow.js
IP 103.255.237.74:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 9947fb9825be1e53b48267bda14bebaa
2435540c63b9b6c539afe740ad51f26f6e82c91a
f8e39cb92709c56a59073d5cd5bd3f6b26e9c447cf56ae53cf67614826ecc76e
Analyzer Verdict Alert openphish Garena
fortinet Phishing
quad9 Sinkholed
GET /theme/assets/frontend/theme/assets/plugins/reveal-animate/wow.js HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:54 GMT
Content-Type: application/javascript
Last-Modified: Fri, 22 Jan 2021 15:01:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"600ae8e4-3ec3"
Expires: Sun, 23 Oct 2022 09:17:54 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
napffx5.com/theme/assets/frontend/theme/assets/global/plugins/magnific/magnific.js
103.255.237.74200 OK 7.6 kB URL HTTP/1.1 napffx5.com/theme/assets/frontend/theme/assets/global/plugins/magnific/magnific.js
IP 103.255.237.74:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (22205), with CRLF line terminators
Hash 5e2538cd7dcfd528d73b16a3432e97b8
dcda9a25f57ed70bad5954ad11c8fb95f2fe9edb
7cfab43ecd2ce1c7b8481bd3ab2aa8a89fcc095ea7eab9e0108cbe7756932223
Analyzer Verdict Alert openphish Garena
fortinet Phishing
quad9 Sinkholed
GET /theme/assets/frontend/theme/assets/global/plugins/magnific/magnific.js HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:54 GMT
Content-Type: application/javascript
Last-Modified: Fri, 22 Jan 2021 15:01:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"600ae8e4-5749"
Expires: Sun, 23 Oct 2022 09:17:54 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
napffx5.com/theme/assets/frontend/theme/assets/plugins/cubeportfolio/js/jquery.cubeportfolio.min.js
103.255.237.74200 OK 18 kB URL HTTP/1.1 napffx5.com/theme/assets/frontend/theme/assets/plugins/cubeportfolio/js/jquery.cubeportfolio.min.js
IP 103.255.237.74:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (32172), with CRLF line terminators
Hash b47a8a83b2c8a2c2afdb96c0ff514015
597f4e931c1cb1d638669c63bbf11cfad4f947c7
c761c9b565c0eb616256720e423ab03faf7db791be084b03458afbd19ca0c381
Analyzer Verdict Alert openphish Garena
fortinet Phishing
quad9 Sinkholed
GET /theme/assets/frontend/theme/assets/plugins/cubeportfolio/js/jquery.cubeportfolio.min.js HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:54 GMT
Content-Type: application/javascript
Last-Modified: Fri, 22 Jan 2021 15:01:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"600ae8e4-1287f"
Expires: Sun, 23 Oct 2022 09:17:54 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
napffx5.com/theme/assets/frontend/theme/assets/plugins/counterup/jquery.counterup.min.js
103.255.237.74200 OK 590 B URL HTTP/1.1 napffx5.com/theme/assets/frontend/theme/assets/plugins/counterup/jquery.counterup.min.js
IP 103.255.237.74:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (904), with CRLF line terminators
Hash 22066f5f56aef51abe1e99fbd86f0cb4
79fcfbfaadd99914c6c512ea50356118a8bf1c9c
327aa8b8be455a52639e56a0896efaa6ef22c22b8237051ff309404514ee778f
Analyzer Verdict Alert openphish Garena
fortinet Phishing
quad9 Sinkholed
GET /theme/assets/frontend/theme/assets/plugins/counterup/jquery.counterup.min.js HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:54 GMT
Content-Type: application/javascript
Last-Modified: Fri, 22 Jan 2021 15:01:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"600ae8e4-430"
Expires: Sun, 23 Oct 2022 09:17:54 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
napffx5.com/theme/assets/frontend/theme/assets/plugins/counterup/jquery.waypoints.min.js
103.255.237.74200 OK 2.6 kB URL HTTP/1.1 napffx5.com/theme/assets/frontend/theme/assets/plugins/counterup/jquery.waypoints.min.js
IP 103.255.237.74:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (7808), with CRLF line terminators
Hash bfde5d550df8f1a37a7d2aa1a29ab7a3
63bf8ed9c1f2ca84132e39597d09f31be2c1fbba
8d38dbda50ea70c950943e3674c8632884d10563c44e9d216d129228d6752478
Analyzer Verdict Alert openphish Garena
fortinet Phishing
quad9 Sinkholed
GET /theme/assets/frontend/theme/assets/plugins/counterup/jquery.waypoints.min.js HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:54 GMT
Content-Type: application/javascript
Last-Modified: Fri, 22 Jan 2021 15:01:58 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"600ae8e6-1f7a"
Expires: Sun, 23 Oct 2022 09:17:54 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
napffx5.com/theme/assets/frontend/theme/assets/plugins/fancybox/jquery.fancybox.pack.js
103.255.237.74200 OK 8.7 kB URL HTTP/1.1 napffx5.com/theme/assets/frontend/theme/assets/plugins/fancybox/jquery.fancybox.pack.js
IP 103.255.237.74:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (645), with CRLF line terminators
Hash b6149ead53c4ac7fb1ba881a95f5b05c
a94a9d069d66dee5cb42cf63933a5f948e5167ff
678d770d3b5ea3b0aebf340adfd20fcf6fb9fed8006d6eb618565aa6bb288465
Analyzer Verdict Alert openphish Garena
fortinet Phishing
quad9 Sinkholed
GET /theme/assets/frontend/theme/assets/plugins/fancybox/jquery.fancybox.pack.js HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:54 GMT
Content-Type: application/javascript
Last-Modified: Fri, 22 Jan 2021 15:01:58 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"600ae8e6-5a93"
Expires: Sun, 23 Oct 2022 09:17:54 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
napffx5.com/theme/assets/frontend/theme/assets/plugins/smooth-scroll/jquery.smooth-scroll.js
103.255.237.74200 OK 2.8 kB URL HTTP/1.1 napffx5.com/theme/assets/frontend/theme/assets/plugins/smooth-scroll/jquery.smooth-scroll.js
IP 103.255.237.74:0
File type HTML document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 579a22077bcb8fc55ebdaf01811fade9
b284fffc5eed95920e4f095558940a00b19ef270
81fc7b64dc3b6f470114ea7a4edda26271cc0af536aacdeb06311b335c8cf73e
Analyzer Verdict Alert openphish Garena
fortinet Phishing
quad9 Sinkholed
GET /theme/assets/frontend/theme/assets/plugins/smooth-scroll/jquery.smooth-scroll.js HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:54 GMT
Content-Type: application/javascript
Last-Modified: Fri, 22 Jan 2021 15:02:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"600ae8e8-240f"
Expires: Sun, 23 Oct 2022 09:17:54 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
napffx5.com/theme/assets/frontend/theme/assets/plugins/js-cookie/js.cookie.js
103.255.237.74200 OK 1.5 kB URL HTTP/1.1 napffx5.com/theme/assets/frontend/theme/assets/plugins/js-cookie/js.cookie.js
IP 103.255.237.74:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 28e1c627ff32c24289ed9c66207115f5
66366de2afb0740f29a0cf3a2e0af927e72fd6d9
ddcd1b7999d6dd004b2d5bfacb9223228c8165bd7b0f7740c9ef40c9a4ceecdd
Analyzer Verdict Alert openphish Garena
fortinet Phishing
quad9 Sinkholed
GET /theme/assets/frontend/theme/assets/plugins/js-cookie/js.cookie.js HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:54 GMT
Content-Type: application/javascript
Last-Modified: Fri, 22 Jan 2021 15:02:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"600ae8e8-fcc"
Expires: Sun, 23 Oct 2022 09:17:54 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
napffx5.com/theme/assets/frontend/theme/assets/base/js/components.js
103.255.237.74200 OK 5.9 kB URL HTTP/1.1 napffx5.com/theme/assets/frontend/theme/assets/base/js/components.js
IP 103.255.237.74:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash ef30ec8c9b7f2d856b0b0dd0c166023d
372f760ce7fb36672a191833cf53ceef47e5b53c
6d5aaed8f69db56f326a916dd800dd63b96fd92b56dc95d7a5d8f5836fd26c59
Analyzer Verdict Alert openphish Garena
fortinet Phishing
quad9 Sinkholed
GET /theme/assets/frontend/theme/assets/base/js/components.js HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:54 GMT
Content-Type: application/javascript
Last-Modified: Fri, 22 Jan 2021 15:02:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"600ae8e8-66fd"
Expires: Sun, 23 Oct 2022 09:17:54 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
napffx5.com/theme/assets/frontend/theme/assets/base/js/app.js
103.255.237.74200 OK 3.8 kB URL HTTP/1.1 napffx5.com/theme/assets/frontend/theme/assets/base/js/app.js
IP 103.255.237.74:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 09d930047c3fd06a4c8bc318f4356ccd
a31feff28fb3a70d38e451da922df1a751128452
c41192e8d41095468101210b8cc175fd94da657e99840f1833a8fa401970109e
Analyzer Verdict Alert openphish Garena
fortinet Phishing
quad9 Sinkholed
GET /theme/assets/frontend/theme/assets/base/js/app.js HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:54 GMT
Content-Type: application/javascript
Last-Modified: Fri, 22 Jan 2021 15:02:02 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"600ae8ea-3582"
Expires: Sun, 23 Oct 2022 09:17:54 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
napffx5.com/theme/assets/frontend/plugins/bootbox/bootbox.min.js
103.255.237.74200 OK 3.7 kB URL HTTP/1.1 napffx5.com/theme/assets/frontend/plugins/bootbox/bootbox.min.js
IP 103.255.237.74:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (9748), with CRLF line terminators
Hash f7860199c3f3248f17b6dbaa6aecdf47
25f302ff31fd147d6f29a84c14ce605762db369a
4ccf3795cbcb4698683d9021956ebbe4ea5828c6d39d1a250b23e41c8d70a78f
Analyzer Verdict Alert openphish Garena
fortinet Phishing
quad9 Sinkholed
GET /theme/assets/frontend/plugins/bootbox/bootbox.min.js HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:54 GMT
Content-Type: application/javascript
Last-Modified: Fri, 22 Jan 2021 15:02:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"600ae8ec-2700"
Expires: Sun, 23 Oct 2022 09:17:54 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
napffx5.com/theme/assets/frontend/theme/assets/plugins/moment.min.js
103.255.237.74200 OK 12 kB URL HTTP/1.1 napffx5.com/theme/assets/frontend/theme/assets/plugins/moment.min.js
IP 103.255.237.74:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (32005), with CRLF line terminators
Hash 8dbc7a26c5913401c5b368a00159719d
7277d916fd82e0e555d36eabd542cc7925b13870
b0c86c7eef760e95263d2eb4e8baaff17cdc23d959e71ddccaaee43601b7d325
Analyzer Verdict Alert openphish Garena
fortinet Phishing
quad9 Sinkholed
GET /theme/assets/frontend/theme/assets/plugins/moment.min.js HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:54 GMT
Content-Type: application/javascript
Last-Modified: Fri, 22 Jan 2021 15:02:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"600ae8ec-8691"
Expires: Sun, 23 Oct 2022 09:17:54 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
napffx5.com/theme/assets/frontend/plugins/Inputmask/jquery.inputmask.bundle.js
103.255.237.74200 OK 29 kB URL HTTP/1.1 napffx5.com/theme/assets/frontend/plugins/Inputmask/jquery.inputmask.bundle.js
IP 103.255.237.74:0
File type Algol 68 source text\012- Pascal source, Unicode text, UTF-8 (with BOM) text, with very long lines (647), with CRLF line terminators
Hash 444ab17f633b66cf5f4670e54d4d28be
1a6953bb27695443922c787474907f8b89d3aa93
b8563b1afd3b0c4745818ae0bc4bb07c569415e4c003d6034a35320c76b74877
Analyzer Verdict Alert openphish Garena
fortinet Phishing
quad9 Sinkholed
GET /theme/assets/frontend/plugins/Inputmask/jquery.inputmask.bundle.js HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:54 GMT
Content-Type: application/javascript
Last-Modified: Fri, 22 Jan 2021 15:02:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"600ae8ec-291da"
Expires: Sun, 23 Oct 2022 09:17:54 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
napffx5.com/theme/assets/Scripts/bootstrap-filestyle.min.js
103.255.237.74200 OK 1.9 kB URL HTTP/1.1 napffx5.com/theme/assets/Scripts/bootstrap-filestyle.min.js
IP 103.255.237.74:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (6327), with CRLF, LF line terminators
Hash f5c9d2ecfbeccec4ea2f305ad28315eb
66eb32678a884b9c767f388b4dd094b9dad7b20f
ad03a3162161379120dd14b192138ff7df5923d247b4e28cfe99854c45ee5622
Analyzer Verdict Alert openphish Garena
fortinet Phishing
quad9 Sinkholed
GET /theme/assets/Scripts/bootstrap-filestyle.min.js HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:54 GMT
Content-Type: application/javascript
Last-Modified: Fri, 22 Jan 2021 15:02:06 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"600ae8ee-19bf"
Expires: Sun, 23 Oct 2022 09:17:54 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
napffx5.com/theme/assets/frontend/js/common.js
103.255.237.74200 OK 638 B URL HTTP/1.1 napffx5.com/theme/assets/frontend/js/common.js
IP 103.255.237.74:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 61e7c24cb5a68940ea5055962e08b6ca
ed71bfaf35e75b26d931f2631fdc8d9f04ab1e49
25ecb0940253c29004eea0e3f0689f9ab14b0a5e6fbe2d1e83e16cad4f36fde0
Analyzer Verdict Alert openphish Garena
fortinet Phishing
quad9 Sinkholed
GET /theme/assets/frontend/js/common.js HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:54 GMT
Content-Type: application/javascript
Last-Modified: Fri, 22 Jan 2021 15:02:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"600ae8ec-6aa"
Expires: Sun, 23 Oct 2022 09:17:54 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
napffx5.com/theme/assets/frontend/css/custom.css
103.255.237.74200 OK 249 B URL HTTP/1.1 napffx5.com/theme/assets/frontend/css/custom.css
IP 103.255.237.74:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 932c8979e8dd600f1f607996f2ad12c1
5808820f57ac113db006fea310dfef8b51b43b3e
5965d79e7f81cf9b0559b610234fcf9c737cef195933c0dceb8e62691f34a9c5
Analyzer Verdict Alert openphish Garena
quad9 Sinkholed
GET /theme/assets/frontend/css/custom.css HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:54 GMT
Content-Type: text/css
Last-Modified: Fri, 22 Jan 2021 15:03:32 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"600ae944-1ec"
Expires: Sun, 23 Oct 2022 09:17:54 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
napffx5.com/theme/assets/Scripts/rotate.js
103.255.237.74200 OK 3.2 kB URL HTTP/1.1 napffx5.com/theme/assets/Scripts/rotate.js
IP 103.255.237.74:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 34182482eebd300c25ed6c589fc44b20
9910e2ed39b841dd6a2c6235db926124ae811d60
544fc9d0a2381f5e3698a44965fb3f5496763287ec40bc06a934132df3078467
Analyzer Verdict Alert openphish Garena
fortinet Phishing
quad9 Sinkholed
GET /theme/assets/Scripts/rotate.js HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:54 GMT
Content-Type: application/javascript
Last-Modified: Fri, 22 Jan 2021 15:02:06 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"600ae8ee-2b9c"
Expires: Sun, 23 Oct 2022 09:17:54 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
napffx5.com/theme/Content/css/popup/conggame.css
103.255.237.74200 OK 543 B URL HTTP/1.1 napffx5.com/theme/Content/css/popup/conggame.css
IP 103.255.237.74:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF, LF line terminators
Hash de4b7c5ee5eb3def2fadcee3c70b9cfd
053f9bef202fcd54c017d68a27300828eddb90a1
5722d1143b31019d90156f184fb0df9ee019fd89d283ac8584d12b7722011921
Analyzer Verdict Alert openphish Garena
quad9 Sinkholed
GET /theme/Content/css/popup/conggame.css HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:54 GMT
Content-Type: text/css
Last-Modified: Fri, 22 Jan 2021 15:03:32 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"600ae944-5cd"
Expires: Sun, 23 Oct 2022 09:17:54 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
napffx5.com/theme/Content/css/bootstrap-select.min.css?v=3/25/2020%205:56:25%20AM
103.255.237.74200 OK 1.6 kB URL HTTP/1.1 napffx5.com/theme/Content/css/bootstrap-select.min.css?v=3/25/2020%205:56:25%20AM
IP 103.255.237.74:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (6344), with CRLF, LF line terminators
Hash 66e54e8acdca70006a5bf710b3704b0e
f5342e42e353b8488c739f58585c6e0735e014ce
fa8d779340474978e110e3d366a2b5664a0ce233c2505ddb043067f240e84dd5
Analyzer Verdict Alert openphish Garena
fortinet Phishing
quad9 Sinkholed
GET /theme/Content/css/bootstrap-select.min.css?v=3/25/2020%205:56:25%20AM HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:54 GMT
Content-Type: text/css
Last-Modified: Fri, 22 Jan 2021 15:04:38 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"600ae986-19ae"
Expires: Sun, 23 Oct 2022 09:17:54 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
napffx5.com/theme/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
103.255.237.74200 OK 669 B URL HTTP/1.1 napffx5.com/theme/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP 103.255.237.74:0
File type HTML document, Unicode text, UTF-8 (with BOM) text, with very long lines (1238), with CRLF, LF line terminators
Hash 1a486acecd90e91ceaf41bcff26de8e9
773be55e3e0d4f881ab81d35828cd0cd837f0f11
c5545176fefb4516f3397dca66fce4199e0fe40f89da1ee623f8fb8f100207ac
Analyzer Verdict Alert openphish Garena
fortinet Phishing
quad9 Sinkholed
GET /theme/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:54 GMT
Content-Type: application/javascript
Last-Modified: Fri, 22 Jan 2021 15:02:06 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"600ae8ee-4dc"
Expires: Sun, 23 Oct 2022 09:17:54 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
napffx5.com/theme/Content/js/bootstrap-select.js
103.255.237.74200 OK 15 kB URL HTTP/1.1 napffx5.com/theme/Content/js/bootstrap-select.js
IP 103.255.237.74:0
File type Unicode text, UTF-8 (with BOM) text
Hash 91fa3346322784d65d07b97da7a53266
ffd7b70be86f44c68fe4b9a8bcb368a8796462df
5ee3c99840b2659647ab8068f20f2df1cb72f91aa95ead881d02535f077fca62
Analyzer Verdict Alert openphish Garena
fortinet Phishing
quad9 Sinkholed
GET /theme/Content/js/bootstrap-select.js HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:54 GMT
Content-Type: application/javascript
Last-Modified: Fri, 22 Jan 2021 15:02:06 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"600ae8ee-10d2c"
Expires: Sun, 23 Oct 2022 09:17:54 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
napffx5.com/theme/Content/js/bootstrap.min.js
103.255.237.74200 OK 9.4 kB URL HTTP/1.1 napffx5.com/theme/Content/js/bootstrap.min.js
IP 103.255.237.74:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (32405), with CRLF, LF line terminators
Hash a72d587f59e96903cc1033ece699786b
2b2d4890ce54fced881315b7d94a696b20225640
31fe67dca9db4b65647c56e298a0e072ea1559075386eef0ab22a3e34a475eb8
Analyzer Verdict Alert openphish Garena
fortinet Phishing
quad9 Sinkholed
GET /theme/Content/js/bootstrap.min.js HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:54 GMT
Content-Type: application/javascript
Last-Modified: Fri, 22 Jan 2021 15:02:06 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"600ae8ee-8a84"
Expires: Sun, 23 Oct 2022 09:17:54 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
napffx5.com/theme/Content/js/owl.carousel.js
103.255.237.74200 OK 9.9 kB URL HTTP/1.1 napffx5.com/theme/Content/js/owl.carousel.js
IP 103.255.237.74:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF, LF line terminators
Hash e827ecde03a88cabec1e861cadc4cb1d
31c133fb4ee7fbad11fc2b6934f0757c301bd3cf
36bc36287b3a897b422435e790187005565ab91d4803d19522f5fc506f243081
Analyzer Verdict Alert openphish Garena
fortinet Phishing
quad9 Sinkholed
GET /theme/Content/js/owl.carousel.js HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:55 GMT
Content-Type: application/javascript
Last-Modified: Fri, 22 Jan 2021 15:02:08 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"600ae8f0-e280"
Expires: Sun, 23 Oct 2022 09:17:55 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
i.imgur.com/3yEHndV.gif
151.101.84.193200 OK 926 B IP 151.101.84.193:0
File type GIF image data, version 89a, 31 x 15\012- data
Hash b582de04ae02234a3f92c5fa7bb52c98
2838236c08a2dca516e3f9e5f568c7f4c7d38caa
aceefb0d9ded396d40b8c188e7114260c74f23b7ddabd53cf1b1bd9f3bda2486
GET /3yEHndV.gif HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Fri, 15 Feb 2019 16:57:48 GMT
etag: "b582de04ae02234a3f92c5fa7bb52c98"
content-type: image/gif
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Fri, 23 Sep 2022 09:17:55 GMT
age: 0
x-served-by: cache-iad-kiad7000127-IAD, cache-bma1663-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1663924675.089489,VS0,VE145
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 926
X-Firefox-Spdy: h2
napffx5.com/theme/assets/Scripts/toastr/toastr.min.js
103.255.237.74200 OK 1.9 kB URL HTTP/1.1 napffx5.com/theme/assets/Scripts/toastr/toastr.min.js
IP 103.255.237.74:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (4918), with CRLF line terminators
Hash c11b6eb0e173fd68a37e7efac41f7779
d9502c3112c774db7e97287a4d567284be7e9dad
7c64c88fec319767182fb2d85061e7ce8af4e2e4f6d790d40ba07c1e9ac17306
Analyzer Verdict Alert openphish Garena
fortinet Phishing
quad9 Sinkholed
GET /theme/assets/Scripts/toastr/toastr.min.js HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:55 GMT
Content-Type: application/javascript
Last-Modified: Fri, 22 Jan 2021 15:02:08 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"600ae8f0-135f"
Expires: Sun, 23 Oct 2022 09:17:55 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
napffx5.com/assets/js/jquery.min.js
103.255.237.74404 Not Found 1.2 kB URL HTTP/1.1 napffx5.com/assets/js/jquery.min.js
IP 103.255.237.74:0
File type ASCII text, with CRLF, LF line terminators
Hash 855a8920aa1c686a2a5d77e71c14239e
fdb71e87c3ce5140fdd6907318ebef12ca7a18d7
e488d70f39623bf3655949257283d3331b62ecb77ab0b14920c49b531ca8ed72
Analyzer Verdict Alert openphish Garena
fortinet Phishing
quad9 Sinkholed
GET /assets/js/jquery.min.js HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Server: Apache
Date: Fri, 23 Sep 2022 09:17:55 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
Content-Encoding: gzip
napffx5.com/theme/images/logo_garena.png
103.255.237.74200 OK 13 kB URL HTTP/1.1 napffx5.com/theme/images/logo_garena.png
IP 103.255.237.74:0
File type PNG image data, 320 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash 49001578457a1e70183ce1fcab1927e9
ba5736c69537da347c9180abd052fca7df689d13
499825d57d392f79ec43d382a5cb594b6965d3a1e9fd54290fbf34a9f2656542
Analyzer Verdict Alert openphish Garena
quad9 Sinkholed
GET /theme/images/logo_garena.png HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:55 GMT
Content-Type: image/png
Content-Length: 12994
Last-Modified: Fri, 22 Jan 2021 15:01:50 GMT
Connection: keep-alive
ETag: "600ae8de-32c2"
Expires: Sun, 23 Oct 2022 09:17:55 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
napffx5.com/theme/Content/images/icon_app.png
103.255.237.74200 OK 1.7 kB URL HTTP/1.1 napffx5.com/theme/Content/images/icon_app.png
IP 103.255.237.74:0
File type PNG image data, 47 x 22, 8-bit/color RGBA, non-interlaced\012- data
Hash 3b3ad26521239ac5cf48fc9b9daefae5
f40e61dfd4653a1d35fd3ff85ee030239cf2acc1
b7e2c179239fbc16bac652ad3dddde44f99f14971bcf7babc90754312f5643d0
Analyzer Verdict Alert openphish Garena
quad9 Sinkholed
GET /theme/Content/images/icon_app.png HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:55 GMT
Content-Type: image/png
Content-Length: 1724
Last-Modified: Fri, 22 Jan 2021 15:01:52 GMT
Connection: keep-alive
ETag: "600ae8e0-6bc"
Expires: Sun, 23 Oct 2022 09:17:55 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
napffx5.com/theme/Content/images/icon_and.png
103.255.237.74200 OK 2.2 kB URL HTTP/1.1 napffx5.com/theme/Content/images/icon_and.png
IP 103.255.237.74:0
File type PNG image data, 81 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash ad43402c80cb539d5f347142e62932eb
1e2c6e2e863d2da3d6576f92fab2145eeb4697a0
669534c65c1fffce29310bf77e3e95300cec502ef316d729d904f45d2d7b9e00
Analyzer Verdict Alert openphish Garena
quad9 Sinkholed
GET /theme/Content/images/icon_and.png HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:55 GMT
Content-Type: image/png
Content-Length: 2162
Last-Modified: Fri, 22 Jan 2021 15:01:52 GMT
Connection: keep-alive
ETag: "600ae8e0-872"
Expires: Sun, 23 Oct 2022 09:17:55 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash edd6c63988b69a64a51433c3fd91b0ba
a0a41a5403a2c397d70cfa267c1d6407250df043
c9b1efff4ebf41ad54d3137ee7a93b688c66765df99e387ae730b39abe2f115f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 09:17:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash edd6c63988b69a64a51433c3fd91b0ba
a0a41a5403a2c397d70cfa267c1d6407250df043
c9b1efff4ebf41ad54d3137ee7a93b688c66765df99e387ae730b39abe2f115f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 09:17:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15700, version 1.0\012- data
Hash 3d7f7413fca69bff4d231ebdc50aaab0
cb18e7943b6a8a0e3672d7242197c19a226b92e8
6b4fac99c39b9ee2693d87a2508d0c7d4b4859072966616bd1f6e18c5b2f9d36
GET /s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://napffx5.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15700
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Sep 2022 16:04:44 GMT
expires: Sat, 16 Sep 2023 16:04:44 GMT
cache-control: public, max-age=31536000
age: 580391
last-modified: Tue, 19 Apr 2022 18:51:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19y7DRs5.woff2
142.250.74.163200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19y7DRs5.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 11816, version 1.0\012- data
Hash 7fa68490a833a8fa395e5f3bffafc052
1880e3743548106319713b937e7769eee6b1ce21
30fa70635379ae1b58491bc41572760c1f3c8445265436a5fec4c36a197e4121
GET /s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19y7DRs5.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://napffx5.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 20 Sep 2022 23:49:27 GMT
expires: Wed, 20 Sep 2023 23:49:27 GMT
cache-control: public, max-age=31536000
age: 206908
last-modified: Tue, 19 Apr 2022 18:52:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://napffx5.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:34:08 GMT
expires: Thu, 21 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 135827
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2
142.250.74.163200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 11872, version 1.0\012- data
Hash 87ace20058325aa069320aa4af875dff
b743548770c46d905ae1ba06310bc001c587fe8e
3c23eb02de6b34e30f18cfb7167abd81a2cedfd1da60dfcb71989517ab3fb431
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://napffx5.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11872
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:35:48 GMT
expires: Thu, 21 Sep 2023 19:35:48 GMT
cache-control: public, max-age=31536000
age: 135727
last-modified: Wed, 11 May 2022 19:25:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-1927DRs5.woff2
142.250.74.163200 OK 5.7 kB URL HTTP/2 fonts.gstatic.com/s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-1927DRs5.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 5696, version 1.0\012- data
Hash 85fc330e5d5f44827f71c9c87e20fc08
a12bad7ed537f664c3b4ec0c501b3cce2df55921
a443599b665cfcd9a13fc46056624c65f518c06ee47925c4a940c58164b1b799
GET /s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-1927DRs5.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://napffx5.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 5696
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 05:39:15 GMT
expires: Thu, 21 Sep 2023 05:39:15 GMT
cache-control: public, max-age=31536000
age: 185920
last-modified: Tue, 19 Apr 2022 18:51:59 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
napffx5.com/theme/images/unnamed.webp
103.255.237.74200 OK 62 kB URL HTTP/1.1 napffx5.com/theme/images/unnamed.webp
IP 103.255.237.74:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 8d5f083818ca4490a38e4b346b5f9df0
e52f868f086b4fcbd2f7b2e747e351e52bae8e9c
9a33fbe65ddce56528b55bcc39335981cac4087507ca749a39e3e7cc6a442fa9
Analyzer Verdict Alert openphish Garena
fortinet Phishing
quad9 Sinkholed
GET /theme/images/unnamed.webp HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:55 GMT
Content-Type: image/webp
Content-Length: 61586
Connection: keep-alive
cache-control: public, max-age=604800
expires: Fri, 30 Sep 2022 09:17:55 GMT
last-modified: Fri, 22 Jan 2021 15:01:50 GMT
accept-ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash edd6c63988b69a64a51433c3fd91b0ba
a0a41a5403a2c397d70cfa267c1d6407250df043
c9b1efff4ebf41ad54d3137ee7a93b688c66765df99e387ae730b39abe2f115f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 09:17:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash bb12d8049e6b06d6f51b3daa17217aef
2816919b2f4509f0f0183c8f3da864fe1d89a650
c860eff6b763d5e2afd0c911d5dfb5b64da84227a0da9e3f8e0645734a1d7c38
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 09:17:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7WxKOzY.woff2
142.250.74.163200 OK 5.6 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7WxKOzY.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 5560, version 1.0\012- data
Hash ca3b09b62fda648a4511700413313fd0
109cd4c5435bd6614391bb8722c47c287c96b2ec
77b24796a3d4ab521f66765651875338ed50cb9306cfe4603a3e79618e429cec
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu7WxKOzY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://napffx5.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 5560
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:36:26 GMT
expires: Thu, 21 Sep 2023 19:36:26 GMT
cache-control: public, max-age=31536000
age: 135689
last-modified: Wed, 11 May 2022 19:24:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19a7DRs5.woff2
142.250.74.163200 OK 9.7 kB URL HTTP/2 fonts.gstatic.com/s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19a7DRs5.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 9692, version 1.0\012- data
Hash d572b531f0823555818998b466028e08
788073fb7656c7b44a3d67468fc355ceb618290e
bddd7c9debeee9bccc8d6a0f0990743d3db200fe23fc08dbad9e60a007e52919
GET /s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19a7DRs5.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://napffx5.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9692
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 20 Sep 2022 23:14:13 GMT
expires: Wed, 20 Sep 2023 23:14:13 GMT
cache-control: public, max-age=31536000
age: 209022
last-modified: Tue, 19 Apr 2022 18:44:23 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
napffx5.com/ajax/comment.php
103.255.237.74200 OK 1.2 kB URL HTTP/1.1 napffx5.com/ajax/comment.php
IP 103.255.237.74:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (3721), with no line terminators
Hash 75565bf208babec1c60ac65a27b7e21d
5129b4b69fa4e0b774b6b93175f8224d64649456
7120ac887d7cd2a443f77fb89dd20241bda58c8a13cd1a647f922283833a5bb3
Analyzer Verdict Alert openphish Garena
fortinet Phishing
quad9 Sinkholed
GET /ajax/comment.php HTTP/1.1
Host: napffx5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://napffx5.com/
Cookie: PHPSESSID=ec611725b2af40c6accf700173b25cb4; _ga_Z2NG0B4NRP=GS1.1.1663924674.1.0.1663924674.0.0.0; _ga=GA1.1.1750543335.1663924675
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Fri, 23 Sep 2022 09:17:56 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 1242
Connection: keep-alive
content-encoding: br
region1.google-analytics.com/g/collect?v=2&tid=G-Z2NG0B4NRP>m=2oe9l0&_p=1879574166&cid=1750543335.1663924675&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663924674&sct=1&seg=0&dl=https%3A%2F%2Fnapffx5.com%2F&dt=Trung%20T%C3%A2m%20N%E1%BA%A1p%20th%E1%BA%BB%20FREE%20FIRE%20-%20NAPTHE.NEWS&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-Z2NG0B4NRP>m=2oe9l0&_p=1879574166&cid=1750543335.1663924675&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663924674&sct=1&seg=0&dl=https%3A%2F%2Fnapffx5.com%2F&dt=Trung%20T%C3%A2m%20N%E1%BA%A1p%20th%E1%BA%BB%20FREE%20FIRE%20-%20NAPTHE.NEWS&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-Z2NG0B4NRP>m=2oe9l0&_p=1879574166&cid=1750543335.1663924675&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663924674&sct=1&seg=0&dl=https%3A%2F%2Fnapffx5.com%2F&dt=Trung%20T%C3%A2m%20N%E1%BA%A1p%20th%E1%BA%BB%20FREE%20FIRE%20-%20NAPTHE.NEWS&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://napffx5.com
Connection: keep-alive
Referer: https://napffx5.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://napffx5.com
date: Fri, 23 Sep 2022 09:17:56 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/proxy/zOLNgN-13ZLOJRIVkEp5bbDgcK-W794ii3foOnG_ynR542LB23g4MwHQJ4vIOM1mccW2epCN0CRR84tSHyC9IunByqqebw=s0-d
142.250.74.1200 OK 1.0 kB URL HTTP/2 lh3.googleusercontent.com/proxy/zOLNgN-13ZLOJRIVkEp5bbDgcK-W794ii3foOnG_ynR542LB23g4MwHQJ4vIOM1mccW2epCN0CRR84tSHyC9IunByqqebw=s0-d
IP 142.250.74.1:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash aadc73afe28bd5cdb7b6b0fab984a909
f6a9e0f156f4ad059cbdb3b39e20a9b97b205ed0
04bf66874d07c20529e5ec772a6e51e5c37cbfae74db7a04960c1d1272df72f4
GET /proxy/zOLNgN-13ZLOJRIVkEp5bbDgcK-W794ii3foOnG_ynR542LB23g4MwHQJ4vIOM1mccW2epCN0CRR84tSHyC9IunByqqebw=s0-d HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Sat, 24 Sep 2022 09:17:56 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: attachment;filename="unnamed.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Fri, 23 Sep 2022 09:17:56 GMT
server: fife
content-length: 1000
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash bb12d8049e6b06d6f51b3daa17217aef
2816919b2f4509f0f0183c8f3da864fe1d89a650
c860eff6b763d5e2afd0c911d5dfb5b64da84227a0da9e3f8e0645734a1d7c38
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 09:17:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
unpkg.com/sweetalert/dist/sweetalert.min.js
104.16.126.175302 Found 0 B URL HTTP/2 unpkg.com/sweetalert/dist/sweetalert.min.js
IP 104.16.126.175:0
GET /sweetalert/dist/sweetalert.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 23 Sep 2022 09:17:53 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /sweetalert@2.1.2/dist/sweetalert.min.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GDMST24GDT5V5X43PQWDD26V-fra
cf-cache-status: HIT
age: 424
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74f230982b12b521-OSL
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:100,300,400,500,700&subset=vietnamese
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto:100,300,400,500,700&subset=vietnamese
IP 142.250.74.10:0
GET /css?family=Roboto:100,300,400,500,700&subset=vietnamese HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 23 Sep 2022 09:17:53 GMT
date: Fri, 23 Sep 2022 09:17:53 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto|Roboto+Condensed
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto|Roboto+Condensed
IP 142.250.74.10:0
GET /css?family=Roboto|Roboto+Condensed HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napffx5.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 23 Sep 2022 09:17:53 GMT
date: Fri, 23 Sep 2022 09:17:53 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2