m.payquiz.xyz/img/Answer_pc_User-area.png
172.67.142.133200 OK 1.1 kB URL GET HTTP/3 m.payquiz.xyz/img/Answer_pc_User-area.png
IP 172.67.142.133:443
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGoogle Trust Services LLC
Subjectpayquiz.xyz
Fingerprint82:12:11:9B:0D:EF:CA:9B:64:30:9A:3A:18:50:44:39:01:28:A4:46
ValidityWed, 20 Mar 2024 12:10:07 GMT - Tue, 18 Jun 2024 12:10:06 GMT
File type PNG image data, 44 x 44, 8-bit colormap, non-interlaced
Hash 169da7dd2359a7338b078288b22a087a
8eb84e4fdb93abbaf1043405c838da69efb660e4
1ad7c05edd739e9b883d4945aa902497127f690184221e45476497250d66b4bc
GET /img/Answer_pc_User-area.png HTTP/1.1
Host: m.payquiz.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/signin.php
Cookie: loclang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:17:57 GMT
content-type: image/png
content-length: 1140
last-modified: Mon, 29 Nov 2021 06:38:58 GMT
etag: "61a47582-474"
expires: Sun, 26 May 2024 17:17:44 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 12
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jpGpOTo1p5%2BVc9K45Ijxg%2FURnqYOlCf0kWGrGH65bEjPXtYEMVzdC0JMPKq2TcfO9r8GtwabAfIn%2FzV9GbUQ5b9PvAt9Pf3xAjI62uWt4IagvzVZAzV7gc169hqB%2FMei"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a83ab0bc7e56ae-OSL
alt-svc: h3=":443"; ma=86400
m.payquiz.xyz/img/head.png
172.67.142.133200 OK 3.3 kB URL GET HTTP/3 m.payquiz.xyz/img/head.png
IP 172.67.142.133:443
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGoogle Trust Services LLC
Subjectpayquiz.xyz
Fingerprint82:12:11:9B:0D:EF:CA:9B:64:30:9A:3A:18:50:44:39:01:28:A4:46
ValidityWed, 20 Mar 2024 12:10:07 GMT - Tue, 18 Jun 2024 12:10:06 GMT
File type PNG image data, 147 x 147, 8-bit colormap, non-interlaced
Hash 9c7de4763367fed9c9b5ffe680622c2a
d433a88bcb000f5e98385c06b4c0bc6da22190be
cd483b84dad3747061d18c6173a36ef438200d66d0cac503404173eec4913027
GET /img/head.png HTTP/1.1
Host: m.payquiz.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/signin.php
Cookie: loclang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:17:57 GMT
content-type: image/png
content-length: 3330
last-modified: Mon, 29 Nov 2021 06:38:58 GMT
etag: "61a47582-d02"
expires: Sat, 11 May 2024 18:19:15 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 1292322
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CxSfY5sA%2F2kjNvlLkeuuTQdPqJFvYWZaYACajf9o1u4uRPuirWrFkAL5NovjmQ4zRc3j%2BmqTsQRb8jY6qh7JYCGdsqAWW7XslwmmIKaMo6JuDOqZjT18sUlU%2F%2BuNHWYz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a83ab0bc7a56ae-OSL
alt-svc: h3=":443"; ma=86400
m.payquiz.xyz/img/Answer_pc_Home.png
172.67.142.133200 OK 508 B URL GET HTTP/3 m.payquiz.xyz/img/Answer_pc_Home.png
IP 172.67.142.133:443
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGoogle Trust Services LLC
Subjectpayquiz.xyz
Fingerprint82:12:11:9B:0D:EF:CA:9B:64:30:9A:3A:18:50:44:39:01:28:A4:46
ValidityWed, 20 Mar 2024 12:10:07 GMT - Tue, 18 Jun 2024 12:10:06 GMT
File type PNG image data, 44 x 44, 8-bit colormap, non-interlaced
Hash 60be355f63ecbb781dda38ade7cc47b5
ea3627b8f993fb00b1da9b31b795431701c8fcbb
2589ee98f66272d8af6bdf3639505cc42ff3d8aee18973129f3341ac734cfa17
GET /img/Answer_pc_Home.png HTTP/1.1
Host: m.payquiz.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/signin.php
Cookie: loclang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:17:57 GMT
content-type: image/png
content-length: 508
last-modified: Mon, 29 Nov 2021 06:38:58 GMT
etag: "61a47582-1fc"
expires: Fri, 24 May 2024 03:55:27 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 220950
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eZEAp61Xa9A3weAbj2nP1IVFSKaanTaxPc0E0I0kFvgLYV0rUffqEgE1gjk4%2BOdZqUShNKsmCcxX%2FYJTWSh8IiaLifaDFu3HqtZkBoMja33YaeyTqA8U80FqNGy8j9Jc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a83ab0bc7c56ae-OSL
alt-svc: h3=":443"; ma=86400
m.payquiz.xyz/img/Answer_pc_Support.png
172.67.142.133200 OK 1.2 kB URL GET HTTP/3 m.payquiz.xyz/img/Answer_pc_Support.png
IP 172.67.142.133:443
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGoogle Trust Services LLC
Subjectpayquiz.xyz
Fingerprint82:12:11:9B:0D:EF:CA:9B:64:30:9A:3A:18:50:44:39:01:28:A4:46
ValidityWed, 20 Mar 2024 12:10:07 GMT - Tue, 18 Jun 2024 12:10:06 GMT
File type PNG image data, 44 x 44, 8-bit colormap, non-interlaced
Hash 92c8aacf76b31d3a08597a3849f0545e
2c74f1aed7b114f8d31565f530467ff373284380
e6b897df6a87f20bec1bb5f4689d122f67095992aae84b79e814a88a1f00fd81
GET /img/Answer_pc_Support.png HTTP/1.1
Host: m.payquiz.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/signin.php
Cookie: loclang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:17:57 GMT
content-type: image/png
content-length: 1194
last-modified: Mon, 29 Nov 2021 06:38:58 GMT
etag: "61a47582-4aa"
expires: Sat, 11 May 2024 18:19:16 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 1292321
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3Y2CVu9b38z%2FfhoC4onaVUEurdCwRA7FcJcW9wIM0B4FpBBTDf5kdOqN8fUlcABdWOPp%2BmWVKyr8f4dNF776eIkj8o6LE7D9dDo2Khbc4rGhxnMFgHN9S7hsHkD4LunC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a83ab0bc7f56ae-OSL
alt-svc: h3=":443"; ma=86400
m.payquiz.xyz/img/Answer_pc_F.A.Q.png
172.67.142.133200 OK 1.2 kB URL GET HTTP/3 m.payquiz.xyz/img/Answer_pc_F.A.Q.png
IP 172.67.142.133:443
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGoogle Trust Services LLC
Subjectpayquiz.xyz
Fingerprint82:12:11:9B:0D:EF:CA:9B:64:30:9A:3A:18:50:44:39:01:28:A4:46
ValidityWed, 20 Mar 2024 12:10:07 GMT - Tue, 18 Jun 2024 12:10:06 GMT
File type PNG image data, 44 x 44, 8-bit colormap, non-interlaced
Hash dcbdee5147e3caea028b18dc665c965d
82de1c17e9214503382c2aa01bed2eef72075dcb
548520c286521c9d0f7c38f16e0934211322bd8571c6764242a89662c3978d4c
GET /img/Answer_pc_F.A.Q.png HTTP/1.1
Host: m.payquiz.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/signin.php
Cookie: loclang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:17:57 GMT
content-type: image/png
content-length: 1208
last-modified: Mon, 29 Nov 2021 06:38:58 GMT
etag: "61a47582-4b8"
expires: Sat, 11 May 2024 18:19:16 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 1292320
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qfwTP4VkYrYR2eSfPiOQxbRQSAUnyuQytUdipwdXJ8bM9dleb8R2t7wj61p2z7F6fNge%2FYfXlKrAvPBd0hgQGp7ZFWJWM8U9ztNutqBan6Daqt5sLHvbsUFFEvqO3qhp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a83ab0bc8256ae-OSL
alt-svc: h3=":443"; ma=86400
m.payquiz.xyz/img/Answer_pc_Rules.png
172.67.142.133200 OK 455 B URL GET HTTP/3 m.payquiz.xyz/img/Answer_pc_Rules.png
IP 172.67.142.133:443
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGoogle Trust Services LLC
Subjectpayquiz.xyz
Fingerprint82:12:11:9B:0D:EF:CA:9B:64:30:9A:3A:18:50:44:39:01:28:A4:46
ValidityWed, 20 Mar 2024 12:10:07 GMT - Tue, 18 Jun 2024 12:10:06 GMT
File type PNG image data, 44 x 44, 8-bit colormap, non-interlaced
Hash 45420c3303ad8593b2ed7d2ae02530de
09392189c8e80f20950059ef721b2c799ab1d239
482355fa327e795e3114e335fa70f6c4ee352bbd66540d365c94c719cd3d7847
GET /img/Answer_pc_Rules.png HTTP/1.1
Host: m.payquiz.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/signin.php
Cookie: loclang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:17:57 GMT
content-type: image/png
content-length: 455
last-modified: Mon, 29 Nov 2021 06:38:58 GMT
etag: "61a47582-1c7"
expires: Sun, 26 May 2024 17:17:44 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 12
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3TwKjSPqohSwp7bo2wb6BTxNJM7tO126EnzkEnqjyJgZ%2BXmvQsZn8IHVcyxdYe4vvXqgBF9XfFwdy2g8x%2Bd2TYzPsv%2FaHbYS9otscs1fI%2BlZGHMlSD5Dj8iKd3ktaSZc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a83ab0bc9356ae-OSL
alt-svc: h3=":443"; ma=86400
m.payquiz.xyz/img/Answer_pc_Language.png
172.67.142.133200 OK 893 B URL GET HTTP/3 m.payquiz.xyz/img/Answer_pc_Language.png
IP 172.67.142.133:443
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGoogle Trust Services LLC
Subjectpayquiz.xyz
Fingerprint82:12:11:9B:0D:EF:CA:9B:64:30:9A:3A:18:50:44:39:01:28:A4:46
ValidityWed, 20 Mar 2024 12:10:07 GMT - Tue, 18 Jun 2024 12:10:06 GMT
File type PNG image data, 44 x 44, 8-bit colormap, non-interlaced
Hash 9b034b5eb84e477e4c6e868baf9a42bf
b4ad7abdebcb0f12ca3e16a2e5ad6d1749322d3b
38fd90ebc3999035170310a5c38ddcf8745dce659edfcb0fafb72d0714f68d43
GET /img/Answer_pc_Language.png HTTP/1.1
Host: m.payquiz.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/signin.php
Cookie: loclang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:17:57 GMT
content-type: image/png
content-length: 893
last-modified: Mon, 29 Nov 2021 06:38:58 GMT
etag: "61a47582-37d"
expires: Sat, 18 May 2024 05:03:16 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 735281
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QTYsf4AkTyGu0vg8biXcaKgbJvtNHOLuzdJ9P4uXhkObxYZm%2FqtP0%2Bzjf82x48il9JDeYz4%2BUXvKwpa8ZgaxX%2FTa5ed0iWhogEoRNwwbTcP3c2x0%2F7xWEGliqnphZ%2F4P"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a83ab0bc9056ae-OSL
alt-svc: h3=":443"; ma=86400
m.payquiz.xyz/img/Answer_7.png
172.67.142.133200 OK 338 B URL GET HTTP/3 m.payquiz.xyz/img/Answer_7.png
IP 172.67.142.133:443
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGoogle Trust Services LLC
Subjectpayquiz.xyz
Fingerprint82:12:11:9B:0D:EF:CA:9B:64:30:9A:3A:18:50:44:39:01:28:A4:46
ValidityWed, 20 Mar 2024 12:10:07 GMT - Tue, 18 Jun 2024 12:10:06 GMT
File type PNG image data, 35 x 35, 8-bit colormap, non-interlaced
Hash d7ad748bd3ba01d43e3c09c705f1720d
8754bee0d330d3207c4ec04bee4ec29258a203d3
9a30cd63bb9af11a2bb36d7dcb6806cfd71cc2fef7362694d82059b2e644a307
GET /img/Answer_7.png HTTP/1.1
Host: m.payquiz.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/signin.php
Cookie: loclang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:17:57 GMT
content-type: image/png
content-length: 338
last-modified: Mon, 29 Nov 2021 06:38:58 GMT
etag: "61a47582-152"
expires: Sun, 26 May 2024 17:17:44 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 12
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=La5s0L2VPuZA1OUjaCgnZ1JEeX6oAZNdBd6DnrFa%2Fdrb4Fa%2FHyltdHPKt1QansXmPwduWUz97j69af45YQROou8gpNpam%2FfW8IaN3voLY7Hg9rnMKUoKlBbSx0SLrzyx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a83ab0bc9456ae-OSL
alt-svc: h3=":443"; ma=86400
m.payquiz.xyz/img/Answer_15.png
172.67.142.133200 OK 1.5 kB URL GET HTTP/3 m.payquiz.xyz/img/Answer_15.png
IP 172.67.142.133:443
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGoogle Trust Services LLC
Subjectpayquiz.xyz
Fingerprint82:12:11:9B:0D:EF:CA:9B:64:30:9A:3A:18:50:44:39:01:28:A4:46
ValidityWed, 20 Mar 2024 12:10:07 GMT - Tue, 18 Jun 2024 12:10:06 GMT
File type PNG image data, 482 x 270, 8-bit colormap, non-interlaced
Hash 4978bd85288fbbfed0278c0e7f625009
f37aa6532095f7d1248a186292c05062458d5c8e
8bd443af9e7ea126b3cd6839c67f16bade003a150eba9171b0bd7b114449fef8
GET /img/Answer_15.png HTTP/1.1
Host: m.payquiz.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/public/common.css?v=1025
Cookie: loclang=en; userInfo=%7B%22id%22%3A%221%22%2C%22name%22%3A%22test11%22%2C%22email%22%3A%22%22%2C%22head%22%3A%22./img/head.png%22%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:17:57 GMT
content-type: image/png
content-length: 1501
last-modified: Mon, 29 Nov 2021 06:38:58 GMT
etag: "61a47582-5dd"
expires: Sun, 26 May 2024 17:17:45 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 12
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UmvlasFu6Xwk28UVCv8t%2F7GSh9zhF5qhMskanLvaagw9Pxnl%2Fu6nfU8bREJBPtNHzvaNeSq1ZZtezSWOQzF8iOeVlXjEuGS6%2BboEZBf4Id7owGUPbJ%2BpJGtPeW%2Bu%2BcVx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a83ab1bdbe56ae-OSL
alt-svc: h3=":443"; ma=86400
m.payquiz.xyz/img/Answer_bg.jpg
172.67.142.133200 OK 9.2 kB URL GET HTTP/3 m.payquiz.xyz/img/Answer_bg.jpg
IP 172.67.142.133:443
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGoogle Trust Services LLC
Subjectpayquiz.xyz
Fingerprint82:12:11:9B:0D:EF:CA:9B:64:30:9A:3A:18:50:44:39:01:28:A4:46
ValidityWed, 20 Mar 2024 12:10:07 GMT - Tue, 18 Jun 2024 12:10:06 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 750x1625, components 3
Hash ae6d0f3d012f7e40e2663ac3b50ace02
9bdde67f3abe5abda16b3aad0183972557556b1a
29ba93cc464765da13bb0e3c31d0b55fe63709dd0deeab4d94f225f3f5930165
GET /img/Answer_bg.jpg HTTP/1.1
Host: m.payquiz.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/public/common.css?v=1025
Cookie: loclang=en; userInfo=%7B%22id%22%3A%221%22%2C%22name%22%3A%22test11%22%2C%22email%22%3A%22%22%2C%22head%22%3A%22./img/head.png%22%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:17:57 GMT
content-type: image/jpeg
content-length: 9223
last-modified: Mon, 29 Nov 2021 06:38:58 GMT
etag: "61a47582-2407"
expires: Fri, 24 May 2024 03:55:28 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 220949
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tIYaBH%2BnMCDjBwfHO4EuqJJV3%2FkCS4mPwpklG%2BJd6bNl3WWnfk3%2FbMQPq8fih8YRcH%2BAzEgLHV68AEqLKEMWXkcepVaKGYIgfNxZ9pMNKXUmtDacIk36sQCk0Y0wfa12"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a83ab1bdc156ae-OSL
alt-svc: h3=":443"; ma=86400
m.payquiz.xyz/img/Answer_1.png
172.67.142.133200 OK 9.7 kB URL GET HTTP/3 m.payquiz.xyz/img/Answer_1.png
IP 172.67.142.133:443
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGoogle Trust Services LLC
Subjectpayquiz.xyz
Fingerprint82:12:11:9B:0D:EF:CA:9B:64:30:9A:3A:18:50:44:39:01:28:A4:46
ValidityWed, 20 Mar 2024 12:10:07 GMT - Tue, 18 Jun 2024 12:10:06 GMT
File type PNG image data, 650 x 836, 8-bit colormap, non-interlaced
Hash d4a5980610579d23018ecf9a30c73967
ff28569ee1e381682e2bc4178614951955df537e
351af559d10c31589635d1e8911b59286638badf38c141826f7af5f95a356f09
GET /img/Answer_1.png HTTP/1.1
Host: m.payquiz.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/public/common.css?v=1025
Cookie: loclang=en; userInfo=%7B%22id%22%3A%221%22%2C%22name%22%3A%22test11%22%2C%22email%22%3A%22%22%2C%22head%22%3A%22./img/head.png%22%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:17:57 GMT
content-type: image/png
content-length: 9704
last-modified: Mon, 29 Nov 2021 06:38:58 GMT
etag: "61a47582-25e8"
expires: Fri, 24 May 2024 03:32:53 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 222304
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=R1X6KjjPqUEH%2BjOCWXyFLvLPNHkLoQ1hIQw1aRIv4kHx1W6wIGW6RHUDekCeCEeUX7UfBRSstmwUUw%2FVMrsWnSvkyputtcQLgofCs5l6dCX2nCnpDLrFo25BTOc4uCZz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a83ab1bdc256ae-OSL
alt-svc: h3=":443"; ma=86400
ulogin.ru/js/ulogin.js
95.163.118.168200 OK 19 kB IP 95.163.118.168:443
ASN #12695 LLC Digital Network
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerLet's Encrypt
Subjectulogin.ru
Fingerprint9B:19:52:DB:BA:EE:1E:EB:EC:62:1E:7F:67:75:1F:46:E8:A0:25:57
ValidityTue, 23 Apr 2024 22:04:41 GMT - Mon, 22 Jul 2024 22:04:40 GMT
File type JavaScript source, ASCII text, with very long lines (580)
Hash c9704bed2f73ce4d9c2cbf77bfad8fe3
2fc0f98804879c7c59290e478ec2236dd33fe851
b0f570ce375d2366bbbee496891a3f0efa62593305ef5fd82b4a4e8d21b00496
GET /js/ulogin.js HTTP/1.1
Host: ulogin.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 Apr 2024 17:17:58 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 14 Dec 2023 21:21:20 GMT
Set-Cookie: ulogin_token=u763ff4e8da231c0fa612d7cd40f1416d; expires=Tuesday, 12-Jan-2030 10:00:00 GMT; path=/
Expires: Mon, 29 Apr 2024 17:17:58 GMT
Cache-Control: max-age=259200
Content-Encoding: gzip
tj.657g.xyz/api/event
188.114.96.1202 Accepted 2 B IP 188.114.96.1:443
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGoogle Trust Services LLC
Subject657g.xyz
Fingerprint50:D6:E0:11:AD:45:D4:13:FA:D4:11:BC:81:A3:03:88:0B:91:49:F4
ValidityTue, 05 Mar 2024 08:51:58 GMT - Mon, 03 Jun 2024 08:51:57 GMT
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
Analyzer Verdict Alert OpenPhish phishing PayPal Inc.
POST /api/event HTTP/1.1
Host: tj.657g.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 79
Origin: https://m.payquiz.xyz
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 202 Accepted
date: Fri, 26 Apr 2024 17:17:57 GMT
content-type: text/plain; charset=utf-8
content-length: 2
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-expose-headers:
cache-control: max-age=0, private, must-revalidate
x-request-id: F8nkLEzllgqsKNsN3_YB
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eNmqI2s9m%2F1%2BIXFzhEtm63W3dVob4LQPYZSm8cIs5Cvda73cb7RRaHTVAk1uM18a8SVPCBqEvC8XtYTjm5kVtJtuy88Y6DVKQ044SFX02m5pcV5a5kKH9pNt8fDhPQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a83ab2fd1c5693-OSL
alt-svc: h3=":443"; ma=86400
ulogin.ru/version/3.0/img/providers-32-classic.png?version=img.3.0.2
95.163.118.168200 OK 37 kB URL GET HTTP/1.1 ulogin.ru/version/3.0/img/providers-32-classic.png?version=img.3.0.2
IP 95.163.118.168:443
ASN #12695 LLC Digital Network
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerLet's Encrypt
Subjectulogin.ru
Fingerprint9B:19:52:DB:BA:EE:1E:EB:EC:62:1E:7F:67:75:1F:46:E8:A0:25:57
ValidityTue, 23 Apr 2024 22:04:41 GMT - Mon, 22 Jul 2024 22:04:40 GMT
File type PNG image data, 32 x 816, 8-bit/color RGBA, non-interlaced
Hash deda48d7164be4bd370e4f4a842ef4c3
05779a81d5c22751d9fc3233e24dd39d863874b4
4101a0011295ffe856d6ed838c40acace8a110e03a4bd884f681de7a9354b320
GET /version/3.0/img/providers-32-classic.png?version=img.3.0.2 HTTP/1.1
Host: ulogin.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 Apr 2024 17:17:58 GMT
Content-Type: image/png
Content-Length: 37284
Last-Modified: Tue, 10 Aug 2021 18:31:03 GMT
Connection: keep-alive
ETag: "6112c5e7-91a4"
Expires: Mon, 29 Apr 2024 17:17:58 GMT
Cache-Control: max-age=259200, public
Accept-Ranges: bytes
ulogin.ru/stats.html?r=41994&type=panel&xdm_e=https%3A%2F%2Fm.payquiz.xyz&xdm_c=default4982&xdm_p=1
95.163.118.168200 OK 1.1 kB URL GET HTTP/1.1 ulogin.ru/stats.html?r=41994&type=panel&xdm_e=https%3A%2F%2Fm.payquiz.xyz&xdm_c=default4982&xdm_p=1
IP 95.163.118.168:443
ASN #12695 LLC Digital Network
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerLet's Encrypt
Subjectulogin.ru
Fingerprint9B:19:52:DB:BA:EE:1E:EB:EC:62:1E:7F:67:75:1F:46:E8:A0:25:57
ValidityTue, 23 Apr 2024 22:04:41 GMT - Mon, 22 Jul 2024 22:04:40 GMT
File type HTML document, ASCII text, with CRLF line terminators
Hash 172c9de95b5e09f3f3fb6788dc85e618
a0af500d47d229611d00a78a0bfbcdefedc6d519
0d35a0dfc59effaee55acbe08ff749792d5c5dee22ac7969a297bdbd3fc5b00b
GET /stats.html?r=41994&type=panel&xdm_e=https%3A%2F%2Fm.payquiz.xyz&xdm_c=default4982&xdm_p=1 HTTP/1.1
Host: ulogin.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 Apr 2024 17:17:59 GMT
Content-Type: text/html
Last-Modified: Tue, 10 Aug 2021 16:01:27 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
ulogin.ru/js/easyXDM.min.js?version=js.2.0.0
95.163.118.168200 OK 7.0 kB URL GET HTTP/1.1 ulogin.ru/js/easyXDM.min.js?version=js.2.0.0
IP 95.163.118.168:443
ASN #12695 LLC Digital Network
Requested by https://ulogin.ru/stats.html?r=41994&type=panel&xdm_e=https%3A%2F%2Fm.payquiz.xyz&xdm_c=default4982&xdm_p=1
Certificate IssuerLet's Encrypt
Subjectulogin.ru
Fingerprint9B:19:52:DB:BA:EE:1E:EB:EC:62:1E:7F:67:75:1F:46:E8:A0:25:57
ValidityTue, 23 Apr 2024 22:04:41 GMT - Mon, 22 Jul 2024 22:04:40 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (19804)
Hash 0cc34325f9c69f544cb67247c57fc48e
c6b3bf80233dcb3340e217fb16849eef4bf6e238
d00c673032c1444178a7cebc6cf988440d2e1ead769aea9470806bba9beab8a8
GET /js/easyXDM.min.js?version=js.2.0.0 HTTP/1.1
Host: ulogin.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ulogin.ru/stats.html?r=41994&type=panel&xdm_e=https%3A%2F%2Fm.payquiz.xyz&xdm_c=default4982&xdm_p=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 Apr 2024 17:17:59 GMT
Content-Type: application/x-javascript
Content-Length: 6980
Last-Modified: Wed, 08 Jun 2016 14:44:03 GMT
Connection: keep-alive
Vary: Accept-Encoding
ETag: "57582f33-1b44"
Content-Encoding: gzip
Expires: Mon, 29 Apr 2024 17:17:59 GMT
Cache-Control: max-age=259200, public
m.payquiz.xyz/question.php?pkid=40xp4cybbbs0./signin.php./signin.php./signin.php./signin.php./signin.php./signin.php./signin.php./signin.php./signin.php
172.67.142.133302 Found 4.3 kB URL User Request GET HTTP/2 m.payquiz.xyz/question.php?pkid=40xp4cybbbs0./signin.php./signin.php./signin.php./signin.php./signin.php./signin.php./signin.php./signin.php./signin.php
IP 172.67.142.133:443
Certificate IssuerGoogle Trust Services LLC
Subjectpayquiz.xyz
Fingerprint82:12:11:9B:0D:EF:CA:9B:64:30:9A:3A:18:50:44:39:01:28:A4:46
ValidityWed, 20 Mar 2024 12:10:07 GMT - Tue, 18 Jun 2024 12:10:06 GMT
Hash 8ec7ee0c7021c029bd1ace9959e59be8
218a38f0f066fa00d22536abbcf132ed0782e59b
b99ed4acafe41814e2a27d852dad18d3f1bb54302b868bb3d464ac2080339864
GET /question.php?pkid=40xp4cybbbs0./signin.php./signin.php./signin.php./signin.php./signin.php./signin.php./signin.php./signin.php./signin.php HTTP/1.1
Host: m.payquiz.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Fri, 26 Apr 2024 17:17:56 GMT
content-type: text/html;charset=utf-8
location: ./signin.php
set-cookie: loclang=en; expires=Mon, 29-Apr-2024 17:17:56 GMT; Max-Age=259200; path=/
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4GH9CR0Y1qbMadZelk1fGLem82hTFYzK%2FBC4BXmDcMB14NhqODm7cfzEApmG%2FV7rv9qyK4rrkS1b7ysboG3os2ZhxHpYF2sI3PutqcfRtKQvKUThjgSJDlf7Ia4orE8B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a83aac1a367128-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
m.payquiz.xyz/public/sweetalert-dev.js?v=1025
172.67.142.133200 OK 10 kB URL GET HTTP/3 m.payquiz.xyz/public/sweetalert-dev.js?v=1025
IP 172.67.142.133:443
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGoogle Trust Services LLC
Subjectpayquiz.xyz
Fingerprint82:12:11:9B:0D:EF:CA:9B:64:30:9A:3A:18:50:44:39:01:28:A4:46
ValidityWed, 20 Mar 2024 12:10:07 GMT - Tue, 18 Jun 2024 12:10:06 GMT
File type JavaScript source, ASCII text, with very long lines (482), with CRLF line terminators
Hash 57904bb2d29194cdeb977098ced0997d
c05fe82fb5d018c812cb485a33529c4de85fac8a
4012721763780fea2a700978f072c577cfa5ded57dd165919cec59e1677ee89b
GET /public/sweetalert-dev.js?v=1025 HTTP/1.1
Host: m.payquiz.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/signin.php
Cookie: loclang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:17:57 GMT
content-type: application/javascript
last-modified: Mon, 29 Nov 2021 06:38:58 GMT
vary: Accept-Encoding
etag: W/"61a47582-a8d9"
expires: Sat, 27 Apr 2024 05:17:44 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 12
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dEJEM8CsexmMG%2BCllFNt6ECYEqMw7fKGwdaza%2Baf1YXTpoJpmOJn7o7PZ2yFERLXcRsiN2NqN1yst3hYS76TulNSD2yNYRGBsKvwwYrcStEmfYOfr%2FkFlFCijwupvPIH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a83ab0ac7456ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
m.payquiz.xyz/public/jquery-3.6.0.min.js
172.67.142.133200 OK 39 kB URL GET HTTP/3 m.payquiz.xyz/public/jquery-3.6.0.min.js
IP 172.67.142.133:443
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGoogle Trust Services LLC
Subjectpayquiz.xyz
Fingerprint82:12:11:9B:0D:EF:CA:9B:64:30:9A:3A:18:50:44:39:01:28:A4:46
ValidityWed, 20 Mar 2024 12:10:07 GMT - Tue, 18 Jun 2024 12:10:06 GMT
File type JavaScript source, ASCII text, with very long lines (65447)
Hash 8fb8fee4fcc3cc86ff6c724154c49c42
b82d238d4e31fdf618bae8ac11a6c812c03dd0d4
ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e
GET /public/jquery-3.6.0.min.js HTTP/1.1
Host: m.payquiz.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/signin.php
Cookie: loclang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:17:57 GMT
content-type: application/javascript
last-modified: Mon, 29 Nov 2021 06:38:58 GMT
vary: Accept-Encoding
etag: W/"61a47582-15d9d"
expires: Sat, 27 Apr 2024 04:10:21 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 4056
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=88JBkJqYDjpfGfhNz0THW8WSrmvlGWFEeNbFcVzun%2FR6mv%2BLf3I4SNYoaknX65E8h8SguQH1ocUvbqR5ZZF0p5q%2BPpwI%2FOnLCZggSfjr63BrDyRDLbQlKSPqipBtqkfQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a83ab0ac6c56ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
m.payquiz.xyz/public/common.css?v=1025
172.67.142.133200 OK 9.9 kB URL GET HTTP/3 m.payquiz.xyz/public/common.css?v=1025
IP 172.67.142.133:443
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGoogle Trust Services LLC
Subjectpayquiz.xyz
Fingerprint82:12:11:9B:0D:EF:CA:9B:64:30:9A:3A:18:50:44:39:01:28:A4:46
ValidityWed, 20 Mar 2024 12:10:07 GMT - Tue, 18 Jun 2024 12:10:06 GMT
File type troff or preprocessor input, Unicode text, UTF-8 text
Hash 5643d4a7bd96025d43a450ea9b1ed631
f907e2cea773c16b55be45e77a8932153a0d933b
f9bc6e2d009ca14a864dbcfdaa01ce3549ce408c1124a4bbecc993ca6a649cee
GET /public/common.css?v=1025 HTTP/1.1
Host: m.payquiz.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/signin.php
Cookie: loclang=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:17:57 GMT
content-type: text/css
last-modified: Mon, 08 Jan 2024 02:50:02 GMT
vary: Accept-Encoding
etag: W/"659b62da-612a"
expires: Sat, 27 Apr 2024 05:17:44 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 12
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RQtJQOn6ex4ExPgh3egbYnk9VlPk8J6QDC2IyZy%2Bv6O4Chbsb5Qxw0u4B%2BWkGWwQUBWIrL3IRcB78LQjoN3ovkeJYH4vtu5V3w0yqJm5VClPSX%2BCx1TihZrd2NIfUilK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a83ab0ac6956ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
m.payquiz.xyz/public/common.js?v=1025
172.67.142.133200 OK 11 kB URL GET HTTP/3 m.payquiz.xyz/public/common.js?v=1025
IP 172.67.142.133:443
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGoogle Trust Services LLC
Subjectpayquiz.xyz
Fingerprint82:12:11:9B:0D:EF:CA:9B:64:30:9A:3A:18:50:44:39:01:28:A4:46
ValidityWed, 20 Mar 2024 12:10:07 GMT - Tue, 18 Jun 2024 12:10:06 GMT
File type JavaScript source, ASCII text
Hash bc5538672592ffaec79fa6d8d867ca48
d634906013cf2b33a3c0a686f7430dc274495390
5b5c5192e4cd0430695a6aa793252effbfad68ae8940a06b630ea7df9221fbdf
GET /public/common.js?v=1025 HTTP/1.1
Host: m.payquiz.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/signin.php
Cookie: loclang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:17:57 GMT
content-type: application/javascript
last-modified: Wed, 20 Dec 2023 06:50:16 GMT
vary: Accept-Encoding
etag: W/"65828ea8-ffc"
expires: Sat, 27 Apr 2024 05:17:44 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 12
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yW0mrjLT1Fx9sZ9OYbGx54YV8BTmKfd3jJM3NxPWuzwk1koF1OyCAiB7okdhJAX%2F%2FQtBjQ5LY0Ae8gndmn9IXwGNaYlmNRs4pLS07NhFZbu12mtF45fBNPPRFqsfrhj1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a83ab0ac6e56ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
hm.baidu.com/hm.js?60c87f46b6c9bdadb204d78d0c8c690d
111.45.3.198200 OK 11 kB URL GET HTTP/1.1 hm.baidu.com/hm.js?60c87f46b6c9bdadb204d78d0c8c690d
IP 111.45.3.198:443
ASN #56040 China Mobile communications corporation
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type JavaScript source, ASCII text, with very long lines (620)
Hash f35182131efb7ac980cc743a49199af5
a2fb6c8fa0c1978a48cb73108b2e6a16906633e6
44d0be44d4c2c3c19cfa44874c355a37d12c788c21f02422596256ac63c95cd3
GET /hm.js?60c87f46b6c9bdadb204d78d0c8c690d HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11258
Content-Type: application/javascript
Date: Fri, 26 Apr 2024 17:17:59 GMT
Etag: fdf4f9a4ef23abfd836042062184e279
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=B5E715042A52B12A; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=2018881037&si=60c87f46b6c9bdadb204d78d0c8c690d&v=1.3.0&lv=1&sn=18420&r=0&ww=1280&u=https%3A%2F%2Fm.payquiz.xyz%2Fsignin.php&tt=Sign%20In
111.45.3.198200 OK 43 B URL GET HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=2018881037&si=60c87f46b6c9bdadb204d78d0c8c690d&v=1.3.0&lv=1&sn=18420&r=0&ww=1280&u=https%3A%2F%2Fm.payquiz.xyz%2Fsignin.php&tt=Sign%20In
IP 111.45.3.198:443
ASN #56040 China Mobile communications corporation
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=2018881037&si=60c87f46b6c9bdadb204d78d0c8c690d&v=1.3.0&lv=1&sn=18420&r=0&ww=1280&u=https%3A%2F%2Fm.payquiz.xyz%2Fsignin.php&tt=Sign%20In HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Fri, 26 Apr 2024 17:18:00 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=21183021B9D0273B; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
tj.657g.xyz/js/script.js
188.114.96.1200 OK 1.3 kB IP 188.114.96.1:443
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGoogle Trust Services LLC
Subject657g.xyz
Fingerprint50:D6:E0:11:AD:45:D4:13:FA:D4:11:BC:81:A3:03:88:0B:91:49:F4
ValidityTue, 05 Mar 2024 08:51:58 GMT - Mon, 03 Jun 2024 08:51:57 GMT
File type ASCII text, with very long lines (1384), with no line terminators
Hash 16cfd1982a40489c41a52add24d36b85
344f1896d895c5d0a7c4caecafcf1942603cd026
72073aacecd145e525b16c4c845c07bff5798e813eeed702dff748a18b6186ce
Analyzer Verdict Alert OpenPhish phishing PayPal Inc.
GET /js/script.js HTTP/1.1
Host: tj.657g.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 17:17:57 GMT
content-type: application/javascript
cf-bgj: minify
expires: Fri, 26 Apr 2024 18:48:21 GMT
vary: Accept-Encoding
x-cache: HIT
access-control-allow-origin: *
cache-control: max-age=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 37911
last-modified: Fri, 26 Apr 2024 06:46:06 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iaHTLNbLb43s43PNIYi9d2Drxey%2Bo6fDpnMQnSj%2BODc%2B7N79rUxeZP5OKBTdvOM54wt7XNhuXK5q1yoFYabh%2F3WMRbSVIqURS2jk%2BY%2FqPZWJfxW3r1le1uyedKUCsQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a83ab0ce72568e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
m.payquiz.xyz/public/sweetalert.css
172.67.142.133200 OK 24 kB URL GET HTTP/3 m.payquiz.xyz/public/sweetalert.css
IP 172.67.142.133:443
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGoogle Trust Services LLC
Subjectpayquiz.xyz
Fingerprint82:12:11:9B:0D:EF:CA:9B:64:30:9A:3A:18:50:44:39:01:28:A4:46
ValidityWed, 20 Mar 2024 12:10:07 GMT - Tue, 18 Jun 2024 12:10:06 GMT
File type ASCII text, with CRLF line terminators
Hash 9b8007e29ad2778d449264166a7892b7
47418efe84958fcf4a945cbf6c2f54d29967e79b
4513f34c44831aab38d5171e7d729e3fabeea39dfc7ffd06722b490d02f20a70
GET /public/sweetalert.css HTTP/1.1
Host: m.payquiz.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/signin.php
Cookie: loclang=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:17:57 GMT
content-type: text/css
last-modified: Mon, 29 Nov 2021 06:38:58 GMT
vary: Accept-Encoding
etag: W/"61a47582-5d03"
expires: Sat, 27 Apr 2024 04:10:21 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 4055
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cyUn4V52yBmWmdBeA1uRcPxpRbgvHbXT1jQAupQC%2BjlRQVPU%2Br2Y8p7rUFqcKIAeTrPChppLiYT06DiEJNSDVLyGRF1B1cB5F27%2FOe8yugPgFZFAA3hSEpgrSTKHZss3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a83ab0ac7756ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
m.payquiz.xyz/favicon.ico
172.67.142.133200 OK 4.3 kB URL GET HTTP/3 m.payquiz.xyz/favicon.ico
IP 172.67.142.133:443
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGoogle Trust Services LLC
Subjectpayquiz.xyz
Fingerprint82:12:11:9B:0D:EF:CA:9B:64:30:9A:3A:18:50:44:39:01:28:A4:46
ValidityWed, 20 Mar 2024 12:10:07 GMT - Tue, 18 Jun 2024 12:10:06 GMT
File type MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel
Hash 201e8d4ea8aee41c203c084f7d1c4e33
8613f3c329fce3f9211731e06ee6da330a11359e
75616a42ff4f96e6e7f3b1d3a74881d9148a46a276377bebab3a98b96c1cdb35
GET /favicon.ico HTTP/1.1
Host: m.payquiz.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/signin.php
Cookie: loclang=en; userInfo=%7B%22id%22%3A%221%22%2C%22name%22%3A%22test11%22%2C%22email%22%3A%22%22%2C%22head%22%3A%22./img/head.png%22%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:17:57 GMT
content-type: image/x-icon
last-modified: Sun, 24 Apr 2022 01:42:36 GMT
etag: W/"6264ab0c-10be"
cache-control: max-age=14400
cf-cache-status: HIT
age: 12
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3850iUR9faMBQLonVqqA%2BNnY3B%2BX1NtOWuz1SacmHTayIh4ZIGf%2BmCi1yvef4uZW4nYfmlrPlMcERyR1ryFPSb0YJishV76Jx0UefKXDftZBxHWKHBIOjJ%2FEZF1EYnn8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a83ab4390756ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
172.67.142.133200 OK 7.6 kB URL User Request GET HTTP/2 IP 172.67.142.133:443
Certificate IssuerGoogle Trust Services LLC
Subjectpayquiz.xyz
Fingerprint82:12:11:9B:0D:EF:CA:9B:64:30:9A:3A:18:50:44:39:01:28:A4:46
ValidityWed, 20 Mar 2024 12:10:07 GMT - Tue, 18 Jun 2024 12:10:06 GMT
File type HTML document, ASCII text, with very long lines (8142), with no line terminators
Hash 536262b3c2a9045f2a23a12f8f61e2b6
95c414744cd4091b5793bd020228332132cb7175
c17d141c70822fd625a7eca93599e88e11efd123f59dab12cd8755bd9716c543
GET /signin.php HTTP/1.1
Host: m.payquiz.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: loclang=en
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 17:17:56 GMT
content-type: text/html;charset=utf-8
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Yu6HcIt8jNMEOqgtIyg%2FMLn3OqmrU7bkU60pWSTaDc3yB7wsQUOctCcNGUPnTJvHpyWZa4ydVBXeG3KzWBXkScCS%2F47L5VRUtgh0exHxWMBKF6AIgIGCefyZHr2X4lmK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a83aadbc9c7128-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2