www.ff.memberrs.garenei.com/qONQ9vVyadBsHJEbr3MUafgi4UhsV9x4zKZMQPSz7cRCV8H082bqQyp/
200 OK 726 B URL User Request GET HTTP/2 www.ff.memberrs.garenei.com/qONQ9vVyadBsHJEbr3MUafgi4UhsV9x4zKZMQPSz7cRCV8H082bqQyp/
IP
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Certificate IssuerLet's Encrypt
Subjectff.memberrs.garenei.com
FingerprintAA:C2:C7:06:4A:0C:7C:B5:A1:AA:1B:39:F2:53:90:2C:FB:CF:EB:90
ValidityThu, 12 Oct 2023 05:12:36 GMT - Wed, 10 Jan 2024 05:12:35 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 9b5409486a566e472d212d03cc670dae
1e5aff706be3af1ef603e744575f44a95abe1987
38476ec67a44a806b47d9553fd8679324fe6a4dbf8a3c8722e993d56a92f9b3c
Analyzer Verdict Alert OpenPhish phishing Garena
GET /qONQ9vVyadBsHJEbr3MUafgi4UhsV9x4zKZMQPSz7cRCV8H082bqQyp/ HTTP/1.1
Host: www.ff.memberrs.garenei.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
etag: "71e-63957ca6-123054;br"
last-modified: Sun, 11 Dec 2022 06:45:58 GMT
content-type: text/html
content-length: 726
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 05 Dec 2023 14:56:38 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/fancybox/3.4.1/jquery.fancybox.min.css
200 OK 2.9 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/fancybox/3.4.1/jquery.fancybox.min.css
IP
Requested by https://www.ff.memberrs.garenei.com/qONQ9vVyadBsHJEbr3MUafgi4UhsV9x4zKZMQPSz7cRCV8H082bqQyp/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (13924), with no line terminators
Hash d07226345cd00a4b9ad6e83d96e583a5
4f4d7e065aee9417c7d7c428e3606fd32adf5977
a02fd0f27a964a5a756e48b71edf6044259a7b0e67ebf1cd935d074f86845f8c
GET /ajax/libs/fancybox/3.4.1/jquery.fancybox.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ff.memberrs.garenei.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 14:57:40 GMT
content-type: text/css; charset=utf-8
content-length: 2912
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e58-3664"
last-modified: Mon, 04 May 2020 16:10:00 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 68588
expires: Sun, 24 Nov 2024 14:57:40 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2XSNg0bRth6Ez7tARJPX1h%2Fj23dPetcAkVgF%2Bxz0D0LbUtSzeDAZlT%2F2ajPpKnHxmOGcTgtdI9Va2g%2BFzvsFhIcHrHIYOjP%2BQVgk0goZGUxe8yD2gV4TuxuU%2Ff9FPkvXnn0Xk5mF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 830d24970a6056ae-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.ff.memberrs.garenei.com/qONQ9vVyadBsHJEbr3MUafgi4UhsV9x4zKZMQPSz7cRCV8H082bqQyp/login.css
200 OK 726 B URL GET HTTP/2 www.ff.memberrs.garenei.com/qONQ9vVyadBsHJEbr3MUafgi4UhsV9x4zKZMQPSz7cRCV8H082bqQyp/login.css
IP
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Requested by https://www.ff.memberrs.garenei.com/qONQ9vVyadBsHJEbr3MUafgi4UhsV9x4zKZMQPSz7cRCV8H082bqQyp/
Certificate IssuerLet's Encrypt
Subjectff.memberrs.garenei.com
FingerprintAA:C2:C7:06:4A:0C:7C:B5:A1:AA:1B:39:F2:53:90:2C:FB:CF:EB:90
ValidityThu, 12 Oct 2023 05:12:36 GMT - Wed, 10 Jan 2024 05:12:35 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 9b5409486a566e472d212d03cc670dae
1e5aff706be3af1ef603e744575f44a95abe1987
38476ec67a44a806b47d9553fd8679324fe6a4dbf8a3c8722e993d56a92f9b3c
Analyzer Verdict Alert OpenPhish phishing Garena
GET /qONQ9vVyadBsHJEbr3MUafgi4UhsV9x4zKZMQPSz7cRCV8H082bqQyp/login.css HTTP/1.1
Host: www.ff.memberrs.garenei.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ff.memberrs.garenei.com/qONQ9vVyadBsHJEbr3MUafgi4UhsV9x4zKZMQPSz7cRCV8H082bqQyp/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
etag: "71e-63957ca6-123054;br"
last-modified: Sun, 11 Dec 2022 06:45:58 GMT
content-type: text/html
content-length: 726
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 05 Dec 2023 14:56:38 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
www.ff.memberrs.garenei.com/css/app.b1f17912.css
200 OK 13 kB URL GET HTTP/2 www.ff.memberrs.garenei.com/css/app.b1f17912.css
IP
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Requested by https://www.ff.memberrs.garenei.com/qONQ9vVyadBsHJEbr3MUafgi4UhsV9x4zKZMQPSz7cRCV8H082bqQyp/
Certificate IssuerLet's Encrypt
Subjectff.memberrs.garenei.com
FingerprintAA:C2:C7:06:4A:0C:7C:B5:A1:AA:1B:39:F2:53:90:2C:FB:CF:EB:90
ValidityThu, 12 Oct 2023 05:12:36 GMT - Wed, 10 Jan 2024 05:12:35 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 5104c55a2b7a0dcaa22592709355e2ea
d9c4af0a71f261c2962bdb3e53ba0d629bf8def5
1d9ffe54b028da93632155c0341486c6899a372fb75a86c690a48473f85f92ac
Analyzer Verdict Alert OpenPhish phishing Garena
GET /css/app.b1f17912.css HTTP/1.1
Host: www.ff.memberrs.garenei.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ff.memberrs.garenei.com/qONQ9vVyadBsHJEbr3MUafgi4UhsV9x4zKZMQPSz7cRCV8H082bqQyp/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 12 Dec 2023 14:56:38 GMT
etag: "1a331-63957ca0-123031;br"
last-modified: Sun, 11 Dec 2022 06:45:52 GMT
content-type: text/css
content-length: 12816
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 05 Dec 2023 14:56:38 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
www.ff.memberrs.garenei.com/css/chunk-vendors.737c64e5.css
200 OK 4.7 kB URL GET HTTP/2 www.ff.memberrs.garenei.com/css/chunk-vendors.737c64e5.css
IP
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Requested by https://www.ff.memberrs.garenei.com/qONQ9vVyadBsHJEbr3MUafgi4UhsV9x4zKZMQPSz7cRCV8H082bqQyp/
Certificate IssuerLet's Encrypt
Subjectff.memberrs.garenei.com
FingerprintAA:C2:C7:06:4A:0C:7C:B5:A1:AA:1B:39:F2:53:90:2C:FB:CF:EB:90
ValidityThu, 12 Oct 2023 05:12:36 GMT - Wed, 10 Jan 2024 05:12:35 GMT
File type ASCII text, with very long lines (65359), with CRLF line terminators
Hash c518eb2bccb1934516a6f3eabdacc263
46f1f2231fdb1366310effce7b3e3526ca06310e
296d948524904d247a03cb0bb5712751c5ad4c6102d745124bba32437b308642
Analyzer Verdict Alert OpenPhish phishing Garena
GET /css/chunk-vendors.737c64e5.css HTTP/1.1
Host: www.ff.memberrs.garenei.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ff.memberrs.garenei.com/qONQ9vVyadBsHJEbr3MUafgi4UhsV9x4zKZMQPSz7cRCV8H082bqQyp/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 12 Dec 2023 14:56:38 GMT
etag: "1183b-63957ca0-123033;br"
last-modified: Sun, 11 Dec 2022 06:45:52 GMT
content-type: text/css
content-length: 4717
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 05 Dec 2023 14:56:38 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
www.ff.memberrs.garenei.com/js/app.2a0a3444.js
200 OK 1.9 kB URL GET HTTP/2 www.ff.memberrs.garenei.com/js/app.2a0a3444.js
IP
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Requested by https://www.ff.memberrs.garenei.com/qONQ9vVyadBsHJEbr3MUafgi4UhsV9x4zKZMQPSz7cRCV8H082bqQyp/
Certificate IssuerLet's Encrypt
Subjectff.memberrs.garenei.com
FingerprintAA:C2:C7:06:4A:0C:7C:B5:A1:AA:1B:39:F2:53:90:2C:FB:CF:EB:90
ValidityThu, 12 Oct 2023 05:12:36 GMT - Wed, 10 Jan 2024 05:12:35 GMT
File type ASCII text, with very long lines (4404), with CRLF line terminators
Hash e0cc9473ae0330daff8f81dd804ce105
eb8cadee809ed5fd9afddd4fc0d0e004e174b764
fa727018e0b7888c4b0df6681a5ba88298c435b8687e77cd34f182fda668f927
Analyzer Verdict Alert OpenPhish phishing Garena
GET /js/app.2a0a3444.js HTTP/1.1
Host: www.ff.memberrs.garenei.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ff.memberrs.garenei.com/qONQ9vVyadBsHJEbr3MUafgi4UhsV9x4zKZMQPSz7cRCV8H082bqQyp/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 12 Dec 2023 14:56:38 GMT
etag: "115e-63957ca6-16ccd6;br"
last-modified: Sun, 11 Dec 2022 06:45:58 GMT
content-type: application/x-javascript
content-length: 1909
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 05 Dec 2023 14:56:38 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
www.ff.memberrs.garenei.com/js/chunk-vendors.af4be1be.js
200 OK 72 kB URL GET HTTP/2 www.ff.memberrs.garenei.com/js/chunk-vendors.af4be1be.js
IP
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Requested by https://www.ff.memberrs.garenei.com/qONQ9vVyadBsHJEbr3MUafgi4UhsV9x4zKZMQPSz7cRCV8H082bqQyp/
Certificate IssuerLet's Encrypt
Subjectff.memberrs.garenei.com
FingerprintAA:C2:C7:06:4A:0C:7C:B5:A1:AA:1B:39:F2:53:90:2C:FB:CF:EB:90
ValidityThu, 12 Oct 2023 05:12:36 GMT - Wed, 10 Jan 2024 05:12:35 GMT
File type Unicode text, UTF-8 text, with very long lines (60192), with CRLF line terminators
Hash 89dea640423a1344887137f04512a78c
8da9202dbf075f31b0d761f6be21d5b941d8ab0e
81e6a37cde5650c889f049b7641528f33c6f0315162880258e5abc79d4fbc37a
Analyzer Verdict Alert OpenPhish phishing Garena
GET /js/chunk-vendors.af4be1be.js HTTP/1.1
Host: www.ff.memberrs.garenei.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ff.memberrs.garenei.com/qONQ9vVyadBsHJEbr3MUafgi4UhsV9x4zKZMQPSz7cRCV8H082bqQyp/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 12 Dec 2023 14:56:38 GMT
etag: "34e7c-63957ca6-16ccd4;br"
last-modified: Sun, 11 Dec 2022 06:45:58 GMT
content-type: application/x-javascript
content-length: 72104
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 05 Dec 2023 14:56:38 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
www.ff.memberrs.garenei.com/css/chunk-10a81ae2.ec7605e3.css
200 OK 130 B URL GET HTTP/3 www.ff.memberrs.garenei.com/css/chunk-10a81ae2.ec7605e3.css
IP
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Requested by https://www.ff.memberrs.garenei.com/qONQ9vVyadBsHJEbr3MUafgi4UhsV9x4zKZMQPSz7cRCV8H082bqQyp/
Certificate IssuerLet's Encrypt
Subjectff.memberrs.garenei.com
FingerprintAA:C2:C7:06:4A:0C:7C:B5:A1:AA:1B:39:F2:53:90:2C:FB:CF:EB:90
ValidityThu, 12 Oct 2023 05:12:36 GMT - Wed, 10 Jan 2024 05:12:35 GMT
File type ASCII text, with no line terminators
Hash 1661ce2be23160aa6611d3bb8312d94a
7ad7cbb5d82e2ea2206de59b41513e65b927ac01
2ace57a05e19c4307ccf2eab6efa1b038d24b8e725d2c22b3c896ddea6b0257c
Analyzer Verdict Alert OpenPhish phishing Garena
GET /css/chunk-10a81ae2.ec7605e3.css HTTP/1.1
Host: www.ff.memberrs.garenei.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ff.memberrs.garenei.com/qONQ9vVyadBsHJEbr3MUafgi4UhsV9x4zKZMQPSz7cRCV8H082bqQyp/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Tue, 12 Dec 2023 14:56:39 GMT
etag: "82-63957ca0-123030;;;"
last-modified: Sun, 11 Dec 2022 06:45:52 GMT
content-type: text/css
content-length: 130
accept-ranges: bytes
date: Tue, 05 Dec 2023 14:56:39 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
www.ff.memberrs.garenei.com/js/chunk-10a81ae2.aad79b3d.js
200 OK 27 kB URL GET HTTP/3 www.ff.memberrs.garenei.com/js/chunk-10a81ae2.aad79b3d.js
IP
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Requested by https://www.ff.memberrs.garenei.com/qONQ9vVyadBsHJEbr3MUafgi4UhsV9x4zKZMQPSz7cRCV8H082bqQyp/
Certificate IssuerLet's Encrypt
Subjectff.memberrs.garenei.com
FingerprintAA:C2:C7:06:4A:0C:7C:B5:A1:AA:1B:39:F2:53:90:2C:FB:CF:EB:90
ValidityThu, 12 Oct 2023 05:12:36 GMT - Wed, 10 Jan 2024 05:12:35 GMT
File type Unicode text, UTF-8 text, with very long lines (2478), with CRLF line terminators
Hash 2b2f6196d5dd7855b470947c3610bff6
c55707c7501bc09a25135b317a0fbbc29b7e3b62
c52dd3dcf2f5e1b907ea59d27d3e583ce1e6bd8baa5cbb7a949674ce30e81683
Analyzer Verdict Alert OpenPhish phishing Garena
GET /js/chunk-10a81ae2.aad79b3d.js HTTP/1.1
Host: www.ff.memberrs.garenei.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ff.memberrs.garenei.com/qONQ9vVyadBsHJEbr3MUafgi4UhsV9x4zKZMQPSz7cRCV8H082bqQyp/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Tue, 12 Dec 2023 14:56:39 GMT
etag: "24c29-63957ca6-16ccd5;br"
last-modified: Sun, 11 Dec 2022 06:45:58 GMT
content-type: application/x-javascript
content-length: 27313
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 05 Dec 2023 14:56:39 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
www.ff.memberrs.garenei.com/img/logout.29f7cada.png
200 OK 15 kB URL GET HTTP/3 www.ff.memberrs.garenei.com/img/logout.29f7cada.png
IP
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Requested by https://www.ff.memberrs.garenei.com/qONQ9vVyadBsHJEbr3MUafgi4UhsV9x4zKZMQPSz7cRCV8H082bqQyp/
Certificate IssuerLet's Encrypt
Subjectff.memberrs.garenei.com
FingerprintAA:C2:C7:06:4A:0C:7C:B5:A1:AA:1B:39:F2:53:90:2C:FB:CF:EB:90
ValidityThu, 12 Oct 2023 05:12:36 GMT - Wed, 10 Jan 2024 05:12:35 GMT
File type PNG image data, 152 x 46, 8-bit/color RGBA, non-interlaced\012- data
Hash 29f7cada758df884c437be190093b10e
6a187704a2e796ac9459dabd836d113006ef7a9b
168d31d28b3aa31247135234a8adb526f3b7f64cabd3120985b462ca21c58fa9
Analyzer Verdict Alert OpenPhish phishing Garena
GET /img/logout.29f7cada.png HTTP/1.1
Host: www.ff.memberrs.garenei.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ff.memberrs.garenei.com/qONQ9vVyadBsHJEbr3MUafgi4UhsV9x4zKZMQPSz7cRCV8H082bqQyp/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Tue, 12 Dec 2023 14:56:40 GMT
etag: "3a84-63957ca6-16ccea;;;"
last-modified: Sun, 11 Dec 2022 06:45:58 GMT
content-type: image/png
content-length: 14980
accept-ranges: bytes
date: Tue, 05 Dec 2023 14:56:40 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
www.ff.memberrs.garenei.com/images/spin-title.png
200 OK 726 B URL GET HTTP/3 www.ff.memberrs.garenei.com/images/spin-title.png
IP
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Requested by https://www.ff.memberrs.garenei.com/qONQ9vVyadBsHJEbr3MUafgi4UhsV9x4zKZMQPSz7cRCV8H082bqQyp/
Certificate IssuerLet's Encrypt
Subjectff.memberrs.garenei.com
FingerprintAA:C2:C7:06:4A:0C:7C:B5:A1:AA:1B:39:F2:53:90:2C:FB:CF:EB:90
ValidityThu, 12 Oct 2023 05:12:36 GMT - Wed, 10 Jan 2024 05:12:35 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 9b5409486a566e472d212d03cc670dae
1e5aff706be3af1ef603e744575f44a95abe1987
38476ec67a44a806b47d9553fd8679324fe6a4dbf8a3c8722e993d56a92f9b3c
Analyzer Verdict Alert OpenPhish phishing Garena
GET /images/spin-title.png HTTP/1.1
Host: www.ff.memberrs.garenei.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ff.memberrs.garenei.com/qONQ9vVyadBsHJEbr3MUafgi4UhsV9x4zKZMQPSz7cRCV8H082bqQyp/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
etag: "71e-63957ca6-123054;br"
last-modified: Sun, 11 Dec 2022 06:45:58 GMT
content-type: text/html
content-length: 726
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 05 Dec 2023 14:56:40 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
www.ff.memberrs.garenei.com/img/btn_history.c6c98836.png
200 OK 19 kB URL GET HTTP/3 www.ff.memberrs.garenei.com/img/btn_history.c6c98836.png
IP
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Requested by https://www.ff.memberrs.garenei.com/qONQ9vVyadBsHJEbr3MUafgi4UhsV9x4zKZMQPSz7cRCV8H082bqQyp/
Certificate IssuerLet's Encrypt
Subjectff.memberrs.garenei.com
FingerprintAA:C2:C7:06:4A:0C:7C:B5:A1:AA:1B:39:F2:53:90:2C:FB:CF:EB:90
ValidityThu, 12 Oct 2023 05:12:36 GMT - Wed, 10 Jan 2024 05:12:35 GMT
File type PNG image data, 242 x 46, 8-bit/color RGBA, non-interlaced\012- data
Hash c6c98836a1f61eed9e1704a80fff3452
b1fb786d62d1d1e85031a82aed81819cd2ec6105
93edab30fde28fbcb7cae59fbadc3bc77b9f47c1625a17ecc2f499bbf1f5afc9
Analyzer Verdict Alert OpenPhish phishing Garena
GET /img/btn_history.c6c98836.png HTTP/1.1
Host: www.ff.memberrs.garenei.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ff.memberrs.garenei.com/qONQ9vVyadBsHJEbr3MUafgi4UhsV9x4zKZMQPSz7cRCV8H082bqQyp/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Tue, 12 Dec 2023 14:56:40 GMT
etag: "4b86-63957ca2-16cce7;;;"
last-modified: Sun, 11 Dec 2022 06:45:54 GMT
content-type: image/png
content-length: 19334
accept-ranges: bytes
date: Tue, 05 Dec 2023 14:56:40 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
zerossl.ocsp.sectigo.com/
727 B URL zerossl.ocsp.sectigo.com/
IP
Hash b8008d62b126a1567ffc181c70a8c913
933f21fa7c6fdfb2383934f6949cb0de9c04a2a3
4e96ba34a6e558990a92965a2518dff392978ff65585f4d205c9c9bdc4bf492c
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 05 Dec 2023 14:57:42 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Mon, 04 Dec 2023 22:58:23 GMT
Expires: Mon, 11 Dec 2023 22:58:22 GMT
Etag: "933f21fa7c6fdfb2383934f6949cb0de9c04a2a3"
Cache-Control: max-age=547331,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 830d24a0c8c056bf-OSL
www.ff.memberrs.garenei.com/img/dob-title.b8c16371.png
200 OK 35 kB URL GET HTTP/3 www.ff.memberrs.garenei.com/img/dob-title.b8c16371.png
IP
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Requested by https://www.ff.memberrs.garenei.com/qONQ9vVyadBsHJEbr3MUafgi4UhsV9x4zKZMQPSz7cRCV8H082bqQyp/
Certificate IssuerLet's Encrypt
Subjectff.memberrs.garenei.com
FingerprintAA:C2:C7:06:4A:0C:7C:B5:A1:AA:1B:39:F2:53:90:2C:FB:CF:EB:90
ValidityThu, 12 Oct 2023 05:12:36 GMT - Wed, 10 Jan 2024 05:12:35 GMT
File type PNG image data, 394 x 54, 8-bit/color RGBA, non-interlaced\012- data
Hash b8c163711def158bbffae4c9f9ae147e
ac4391dbe38aa12d485a64d62678ec60fd8f4010
a229865cad68073c0190603cf6b158fb90822271c33a9ab4634bd0020a46fd7c
Analyzer Verdict Alert OpenPhish phishing Garena
GET /img/dob-title.b8c16371.png HTTP/1.1
Host: www.ff.memberrs.garenei.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ff.memberrs.garenei.com/qONQ9vVyadBsHJEbr3MUafgi4UhsV9x4zKZMQPSz7cRCV8H082bqQyp/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Tue, 12 Dec 2023 14:56:40 GMT
etag: "899d-63957ca6-16cce4;;;"
last-modified: Sun, 11 Dec 2022 06:45:58 GMT
content-type: image/png
content-length: 35229
accept-ranges: bytes
date: Tue, 05 Dec 2023 14:56:40 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
www.ff.memberrs.garenei.com/img/btn-bod-deactive.5810d0f4.png
200 OK 9.7 kB URL GET HTTP/3 www.ff.memberrs.garenei.com/img/btn-bod-deactive.5810d0f4.png
IP
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Requested by https://www.ff.memberrs.garenei.com/qONQ9vVyadBsHJEbr3MUafgi4UhsV9x4zKZMQPSz7cRCV8H082bqQyp/
Certificate IssuerLet's Encrypt
Subjectff.memberrs.garenei.com
FingerprintAA:C2:C7:06:4A:0C:7C:B5:A1:AA:1B:39:F2:53:90:2C:FB:CF:EB:90
ValidityThu, 12 Oct 2023 05:12:36 GMT - Wed, 10 Jan 2024 05:12:35 GMT
File type PNG image data, 152 x 46, 8-bit/color RGB, non-interlaced\012- data
Hash 5810d0f48cd4228f188de53b0b26a401
b55aae3f78329f78cee4eb01d578ee7a171e6fe5
466183461b2bcaa6068e573e538e4159243625a3fd6e59ec1b3b5e3dbbd3e542
Analyzer Verdict Alert OpenPhish phishing Garena
GET /img/btn-bod-deactive.5810d0f4.png HTTP/1.1
Host: www.ff.memberrs.garenei.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ff.memberrs.garenei.com/qONQ9vVyadBsHJEbr3MUafgi4UhsV9x4zKZMQPSz7cRCV8H082bqQyp/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Tue, 12 Dec 2023 14:56:40 GMT
etag: "25ea-63957ca2-16ccec;;;"
last-modified: Sun, 11 Dec 2022 06:45:54 GMT
content-type: image/png
content-length: 9706
accept-ranges: bytes
date: Tue, 05 Dec 2023 14:56:40 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
www.ff.memberrs.garenei.com/images/dob-bg.png
200 OK 66 kB URL GET HTTP/3 www.ff.memberrs.garenei.com/images/dob-bg.png
IP
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Requested by https://www.ff.memberrs.garenei.com/qONQ9vVyadBsHJEbr3MUafgi4UhsV9x4zKZMQPSz7cRCV8H082bqQyp/
Certificate IssuerLet's Encrypt
Subjectff.memberrs.garenei.com
FingerprintAA:C2:C7:06:4A:0C:7C:B5:A1:AA:1B:39:F2:53:90:2C:FB:CF:EB:90
ValidityThu, 12 Oct 2023 05:12:36 GMT - Wed, 10 Jan 2024 05:12:35 GMT
File type PNG image data, 1079 x 852, 8-bit/color RGB, non-interlaced\012- data
Hash ede8d79517267263b24f4629c5a20fcb
26776aaf21b2902e9088281e000a31be4a969c72
3ae09ef678cacb0fc6be8d17dc403c2b8049ffdb302e591189331ae71307b447
Analyzer Verdict Alert OpenPhish phishing Garena
GET /images/dob-bg.png HTTP/1.1
Host: www.ff.memberrs.garenei.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ff.memberrs.garenei.com/css/app.b1f17912.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Tue, 12 Dec 2023 14:56:40 GMT
etag: "1012b-63957ca2-16cce2;;;"
last-modified: Sun, 11 Dec 2022 06:45:54 GMT
content-type: image/png
content-length: 65835
accept-ranges: bytes
date: Tue, 05 Dec 2023 14:56:40 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
cdn.vn.garenanow.com/web/ff/fav.jpg
200 OK 10 kB URL GET HTTP/1.1 cdn.vn.garenanow.com/web/ff/fav.jpg
IP
ASN #38731 CHT Compamy Ltd
Requested by https://www.ff.memberrs.garenei.com/qONQ9vVyadBsHJEbr3MUafgi4UhsV9x4zKZMQPSz7cRCV8H082bqQyp/
Certificate IssuerZeroSSL
Subjectcdn.vn.garenanow.com
Fingerprint72:50:78:DE:44:CF:CC:5C:E4:62:F3:8B:B2:50:72:5F:3D:4C:F8:40
ValidityWed, 20 Sep 2023 00:00:00 GMT - Tue, 19 Dec 2023 23:59:59 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], progressive, precision 8, 200x200, components 3\012- data
Hash 78e23e9a864c3f5c9ca4049e7ccee8cb
0a635dcf9eade4c2d41f638c7c3a5bcc44dd9f14
d4b543fbd9ec68332b9d3af5f2253e02e7f262c41f87452fea20e4cbfc7e4a68
GET /web/ff/fav.jpg HTTP/1.1
Host: cdn.vn.garenanow.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ff.memberrs.garenei.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 05 Dec 2023 14:57:42 GMT
Content-Type: image/jpeg
Content-Length: 10025
Connection: keep-alive
Last-Modified: Fri, 04 May 2018 07:18:36 GMT
ETag: "5aec094c-2729"
X-Cache-Status: HIT
X-Handled-By: cdn-master
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
www.ff.memberrs.garenei.com/images/spin-bg.png
200 OK 598 kB URL GET HTTP/3 www.ff.memberrs.garenei.com/images/spin-bg.png
IP
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Requested by https://www.ff.memberrs.garenei.com/qONQ9vVyadBsHJEbr3MUafgi4UhsV9x4zKZMQPSz7cRCV8H082bqQyp/
Certificate IssuerLet's Encrypt
Subjectff.memberrs.garenei.com
FingerprintAA:C2:C7:06:4A:0C:7C:B5:A1:AA:1B:39:F2:53:90:2C:FB:CF:EB:90
ValidityThu, 12 Oct 2023 05:12:36 GMT - Wed, 10 Jan 2024 05:12:35 GMT
File type PNG image data, 1080 x 1109, 8-bit/color RGB, non-interlaced\012- data
Size 598 kB (597541 bytes)
Hash b83bae0d44a9310bbc30b8b3f59f64fd
b6d5446495bab1d7ec2ecf9dc1177cf89886f36c
78e2ca75fcafa1dd58eefb124e508648a756f1d3c7a83e42e5d46bf8df06c26c
Analyzer Verdict Alert OpenPhish phishing Garena
GET /images/spin-bg.png HTTP/1.1
Host: www.ff.memberrs.garenei.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ff.memberrs.garenei.com/css/app.b1f17912.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Tue, 12 Dec 2023 14:56:40 GMT
etag: "91e25-63957ca2-16ccde;;;"
last-modified: Sun, 11 Dec 2022 06:45:54 GMT
content-type: image/png
content-length: 597541
accept-ranges: bytes
date: Tue, 05 Dec 2023 14:56:40 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
www.ff.memberrs.garenei.com/images/red-bg-2.png
200 OK 39 kB URL GET HTTP/3 www.ff.memberrs.garenei.com/images/red-bg-2.png
IP
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Requested by https://www.ff.memberrs.garenei.com/qONQ9vVyadBsHJEbr3MUafgi4UhsV9x4zKZMQPSz7cRCV8H082bqQyp/
Certificate IssuerLet's Encrypt
Subjectff.memberrs.garenei.com
FingerprintAA:C2:C7:06:4A:0C:7C:B5:A1:AA:1B:39:F2:53:90:2C:FB:CF:EB:90
ValidityThu, 12 Oct 2023 05:12:36 GMT - Wed, 10 Jan 2024 05:12:35 GMT
File type PNG image data, 403 x 57, 8-bit/color RGBA, non-interlaced\012- data
Hash 9975ff17da66b0c03464a24c1eef1cc3
4be0849f8b0acd81859ad16a6f78728e5abc3631
54fff3ea08a8e931d301109e72a14b34d633fa9e1de77efd49ab5fc42a2eaebc
Analyzer Verdict Alert OpenPhish phishing Garena
GET /images/red-bg-2.png HTTP/1.1
Host: www.ff.memberrs.garenei.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ff.memberrs.garenei.com/css/app.b1f17912.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Tue, 12 Dec 2023 14:56:40 GMT
etag: "99c2-63957ca2-16ccd9;;;"
last-modified: Sun, 11 Dec 2022 06:45:54 GMT
content-type: image/png
content-length: 39362
accept-ranges: bytes
date: Tue, 05 Dec 2023 14:56:40 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
www.ff.memberrs.garenei.com/images/select-arr.png
200 OK 3.3 kB URL GET HTTP/3 www.ff.memberrs.garenei.com/images/select-arr.png
IP
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Requested by https://www.ff.memberrs.garenei.com/qONQ9vVyadBsHJEbr3MUafgi4UhsV9x4zKZMQPSz7cRCV8H082bqQyp/
Certificate IssuerLet's Encrypt
Subjectff.memberrs.garenei.com
FingerprintAA:C2:C7:06:4A:0C:7C:B5:A1:AA:1B:39:F2:53:90:2C:FB:CF:EB:90
ValidityThu, 12 Oct 2023 05:12:36 GMT - Wed, 10 Jan 2024 05:12:35 GMT
File type PNG image data, 30 x 23, 8-bit/color RGBA, non-interlaced\012- data
Hash 250baea960d1661d6109e84ad106f217
888228c160f53b6978683d5377f6892778046a06
668531f1515acd2c3e3503a7af0f9e6259ef91aef30c56f2485c0816c5648291
Analyzer Verdict Alert OpenPhish phishing Garena
GET /images/select-arr.png HTTP/1.1
Host: www.ff.memberrs.garenei.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ff.memberrs.garenei.com/css/app.b1f17912.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Tue, 12 Dec 2023 14:56:40 GMT
etag: "d05-63957ca2-16ccdb;;;"
last-modified: Sun, 11 Dec 2022 06:45:54 GMT
content-type: image/png
content-length: 3333
accept-ranges: bytes
date: Tue, 05 Dec 2023 14:56:40 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
www.ff.memberrs.garenei.com/qONQ9vVyadBsHJEbr3MUafgi4UhsV9x4zKZMQPSz7cRCV8H082bqQyp/images/fb_ico.png
200 OK 726 B URL GET HTTP/3 www.ff.memberrs.garenei.com/qONQ9vVyadBsHJEbr3MUafgi4UhsV9x4zKZMQPSz7cRCV8H082bqQyp/images/fb_ico.png
IP
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Requested by https://www.ff.memberrs.garenei.com/qONQ9vVyadBsHJEbr3MUafgi4UhsV9x4zKZMQPSz7cRCV8H082bqQyp/
Certificate IssuerLet's Encrypt
Subjectff.memberrs.garenei.com
FingerprintAA:C2:C7:06:4A:0C:7C:B5:A1:AA:1B:39:F2:53:90:2C:FB:CF:EB:90
ValidityThu, 12 Oct 2023 05:12:36 GMT - Wed, 10 Jan 2024 05:12:35 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 9b5409486a566e472d212d03cc670dae
1e5aff706be3af1ef603e744575f44a95abe1987
38476ec67a44a806b47d9553fd8679324fe6a4dbf8a3c8722e993d56a92f9b3c
Analyzer Verdict Alert OpenPhish phishing Garena
GET /qONQ9vVyadBsHJEbr3MUafgi4UhsV9x4zKZMQPSz7cRCV8H082bqQyp/images/fb_ico.png HTTP/1.1
Host: www.ff.memberrs.garenei.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ff.memberrs.garenei.com/qONQ9vVyadBsHJEbr3MUafgi4UhsV9x4zKZMQPSz7cRCV8H082bqQyp/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
etag: "71e-63957ca6-123054;br"
last-modified: Sun, 11 Dec 2022 06:45:58 GMT
content-type: text/html
content-length: 726
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 05 Dec 2023 14:56:40 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
www.ff.memberrs.garenei.com/images/yellow-bg.png
200 OK 7.5 kB URL GET HTTP/3 www.ff.memberrs.garenei.com/images/yellow-bg.png
IP
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Requested by https://www.ff.memberrs.garenei.com/qONQ9vVyadBsHJEbr3MUafgi4UhsV9x4zKZMQPSz7cRCV8H082bqQyp/
Certificate IssuerLet's Encrypt
Subjectff.memberrs.garenei.com
FingerprintAA:C2:C7:06:4A:0C:7C:B5:A1:AA:1B:39:F2:53:90:2C:FB:CF:EB:90
ValidityThu, 12 Oct 2023 05:12:36 GMT - Wed, 10 Jan 2024 05:12:35 GMT
File type PNG image data, 102 x 35, 8-bit/color RGB, non-interlaced\012- data
Hash 6bcd8e8f7a6d40eb79fec974ed9be56e
1d519eb77848275ce0c96349d7b4fda8a3d1f709
28e0bd6ab428b72bf9013b4423ce4fcc42bf4e894f37e1d5bb3f93ec729dbd5c
Analyzer Verdict Alert OpenPhish phishing Garena
GET /images/yellow-bg.png HTTP/1.1
Host: www.ff.memberrs.garenei.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ff.memberrs.garenei.com/css/app.b1f17912.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Tue, 12 Dec 2023 14:56:40 GMT
etag: "1d61-63957ca2-16ccdd;;;"
last-modified: Sun, 11 Dec 2022 06:45:54 GMT
content-type: image/png
content-length: 7521
accept-ranges: bytes
date: Tue, 05 Dec 2023 14:56:40 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
cdn.vn.garenanow.com/web/ff/ff_membership/item/Vip-Membership.jpg
200 OK 425 kB URL GET HTTP/1.1 cdn.vn.garenanow.com/web/ff/ff_membership/item/Vip-Membership.jpg
IP
ASN #38731 CHT Compamy Ltd
Requested by https://www.ff.memberrs.garenei.com/qONQ9vVyadBsHJEbr3MUafgi4UhsV9x4zKZMQPSz7cRCV8H082bqQyp/
Certificate IssuerZeroSSL
Subjectcdn.vn.garenanow.com
Fingerprint72:50:78:DE:44:CF:CC:5C:E4:62:F3:8B:B2:50:72:5F:3D:4C:F8:40
ValidityWed, 20 Sep 2023 00:00:00 GMT - Tue, 19 Dec 2023 23:59:59 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1080x397, components 3\012- data
Size 425 kB (425312 bytes)
Hash bea9fdacb877e6c636823faf682a221e
513a4e3f26a8a12f245e833101a6ab99b650049f
e71dfbb5eb4e822877c51d6b9a90610e19045f283ff0dacda0dc5c25ce91d372
GET /web/ff/ff_membership/item/Vip-Membership.jpg HTTP/1.1
Host: cdn.vn.garenanow.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ff.memberrs.garenei.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 05 Dec 2023 14:57:42 GMT
Content-Type: image/jpeg
Content-Length: 425312
Connection: keep-alive
Last-Modified: Wed, 09 Jan 2019 08:55:01 GMT
ETag: "5c35b6e5-67d60"
X-Cache-Status: HIT
X-Handled-By: cdn-master
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
www.ff.memberrs.garenei.com/css/chunk-10a81ae2.ec7605e3.css
200 OK 130 B URL GET HTTP/3 www.ff.memberrs.garenei.com/css/chunk-10a81ae2.ec7605e3.css
IP
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Requested by https://www.ff.memberrs.garenei.com/qONQ9vVyadBsHJEbr3MUafgi4UhsV9x4zKZMQPSz7cRCV8H082bqQyp/
Certificate IssuerLet's Encrypt
Subjectff.memberrs.garenei.com
FingerprintAA:C2:C7:06:4A:0C:7C:B5:A1:AA:1B:39:F2:53:90:2C:FB:CF:EB:90
ValidityThu, 12 Oct 2023 05:12:36 GMT - Wed, 10 Jan 2024 05:12:35 GMT
File type ASCII text, with no line terminators
Hash 1661ce2be23160aa6611d3bb8312d94a
7ad7cbb5d82e2ea2206de59b41513e65b927ac01
2ace57a05e19c4307ccf2eab6efa1b038d24b8e725d2c22b3c896ddea6b0257c
Analyzer Verdict Alert OpenPhish phishing Garena
GET /css/chunk-10a81ae2.ec7605e3.css HTTP/1.1
Host: www.ff.memberrs.garenei.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.ff.memberrs.garenei.com/qONQ9vVyadBsHJEbr3MUafgi4UhsV9x4zKZMQPSz7cRCV8H082bqQyp/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Tue, 12 Dec 2023 14:56:42 GMT
etag: "82-63957ca0-123030;;;"
last-modified: Sun, 11 Dec 2022 06:45:52 GMT
content-type: text/css
content-length: 130
accept-ranges: bytes
date: Tue, 05 Dec 2023 14:56:42 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
www.ff.memberrs.garenei.com/js/chunk-10a81ae2.aad79b3d.js
200 OK 27 kB URL GET HTTP/3 www.ff.memberrs.garenei.com/js/chunk-10a81ae2.aad79b3d.js
IP
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Requested by https://www.ff.memberrs.garenei.com/qONQ9vVyadBsHJEbr3MUafgi4UhsV9x4zKZMQPSz7cRCV8H082bqQyp/
Certificate IssuerLet's Encrypt
Subjectff.memberrs.garenei.com
FingerprintAA:C2:C7:06:4A:0C:7C:B5:A1:AA:1B:39:F2:53:90:2C:FB:CF:EB:90
ValidityThu, 12 Oct 2023 05:12:36 GMT - Wed, 10 Jan 2024 05:12:35 GMT
File type Unicode text, UTF-8 text, with very long lines (2478), with CRLF line terminators
Hash 2b2f6196d5dd7855b470947c3610bff6
c55707c7501bc09a25135b317a0fbbc29b7e3b62
c52dd3dcf2f5e1b907ea59d27d3e583ce1e6bd8baa5cbb7a949674ce30e81683
Analyzer Verdict Alert OpenPhish phishing Garena
GET /js/chunk-10a81ae2.aad79b3d.js HTTP/1.1
Host: www.ff.memberrs.garenei.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.ff.memberrs.garenei.com/qONQ9vVyadBsHJEbr3MUafgi4UhsV9x4zKZMQPSz7cRCV8H082bqQyp/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Tue, 12 Dec 2023 14:56:42 GMT
etag: "24c29-63957ca6-16ccd5;br"
last-modified: Sun, 11 Dec 2022 06:45:58 GMT
content-type: application/x-javascript
content-length: 27313
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 05 Dec 2023 14:56:42 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
www.ff.memberrs.garenei.com/js/chunk-ebcca810.0be768b5.js
200 OK 12 kB URL GET HTTP/3 www.ff.memberrs.garenei.com/js/chunk-ebcca810.0be768b5.js
IP
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Requested by https://www.ff.memberrs.garenei.com/qONQ9vVyadBsHJEbr3MUafgi4UhsV9x4zKZMQPSz7cRCV8H082bqQyp/
Certificate IssuerLet's Encrypt
Subjectff.memberrs.garenei.com
FingerprintAA:C2:C7:06:4A:0C:7C:B5:A1:AA:1B:39:F2:53:90:2C:FB:CF:EB:90
ValidityThu, 12 Oct 2023 05:12:36 GMT - Wed, 10 Jan 2024 05:12:35 GMT
File type Unicode text, UTF-8 text, with very long lines (36197), with CRLF line terminators
Hash 1d1ee51171930e903d1fd6e7a50854c2
53cf1d8139a30c7ca58abf0f102b7708af37e177
ecd392a577d8e37f2c570bb5891d26a7fb5d9a6b73bcdecaf51ac221d27b6abb
Analyzer Verdict Alert OpenPhish phishing Garena
GET /js/chunk-ebcca810.0be768b5.js HTTP/1.1
Host: www.ff.memberrs.garenei.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.ff.memberrs.garenei.com/qONQ9vVyadBsHJEbr3MUafgi4UhsV9x4zKZMQPSz7cRCV8H082bqQyp/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Tue, 12 Dec 2023 14:56:42 GMT
etag: "8e13-63957ca6-16ccd3;br"
last-modified: Sun, 11 Dec 2022 06:45:58 GMT
content-type: application/x-javascript
content-length: 12434
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 05 Dec 2023 14:56:42 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
stackpath.bootstrapcdn.com/bootstrap/4.1.3/css/bootstrap.min.css
200 OK 141 kB URL GET HTTP/2 stackpath.bootstrapcdn.com/bootstrap/4.1.3/css/bootstrap.min.css
IP
Requested by https://www.ff.memberrs.garenei.com/qONQ9vVyadBsHJEbr3MUafgi4UhsV9x4zKZMQPSz7cRCV8H082bqQyp/
Certificate IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint34:BC:91:5F:B9:EC:32:2C:D9:73:C7:88:C3:6C:FB:77:E7:70:8D:04
ValidityThu, 30 Nov 2023 00:15:17 GMT - Wed, 28 Feb 2024 00:15:16 GMT
File type ASCII text, with very long lines (65324)
Size 141 kB (140936 bytes)
Hash 04aca1f4cd3ec3c05a75a879f3be75a3
675fcf28f9fbf37139d3b2c0b676f96f601a4203
7928b5ab63c6e89ee0ee26f5ef201a58c72baf91abb688580a1aa26eb57b3c11
GET /bootstrap/4.1.3/css/bootstrap.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ff.memberrs.garenei.com
DNT: 1
Connection: keep-alive
Referer: https://www.ff.memberrs.garenei.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 14:57:40 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"04aca1f4cd3ec3c05a75a879f3be75a3"
last-modified: Mon, 25 Jan 2021 22:04:06 GMT
cdn-cachedat: 10/31/2023 18:48:38
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 756
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: b537e0e27d5ec8b8e4ed43297182e85d
cdn-cache: HIT
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 830d2496fa0756b5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.ff.memberrs.garenei.com/css/chunk-ebcca810.fc5c29f8.css
200 OK 230 B URL GET HTTP/3 www.ff.memberrs.garenei.com/css/chunk-ebcca810.fc5c29f8.css
IP
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Requested by https://www.ff.memberrs.garenei.com/qONQ9vVyadBsHJEbr3MUafgi4UhsV9x4zKZMQPSz7cRCV8H082bqQyp/
Certificate IssuerLet's Encrypt
Subjectff.memberrs.garenei.com
FingerprintAA:C2:C7:06:4A:0C:7C:B5:A1:AA:1B:39:F2:53:90:2C:FB:CF:EB:90
ValidityThu, 12 Oct 2023 05:12:36 GMT - Wed, 10 Jan 2024 05:12:35 GMT
File type ASCII text, with no line terminators
Hash a8187d8e21a3bb4d273f3485b6aba510
88210d3db5d964b2d8ed2c37f02bad6f4a810699
db3b82cac6603397423a91e5946fb452f8deab75f55eb23656917f0a1a2dfe83
Analyzer Verdict Alert OpenPhish phishing Garena
GET /css/chunk-ebcca810.fc5c29f8.css HTTP/1.1
Host: www.ff.memberrs.garenei.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.ff.memberrs.garenei.com/qONQ9vVyadBsHJEbr3MUafgi4UhsV9x4zKZMQPSz7cRCV8H082bqQyp/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Tue, 12 Dec 2023 14:56:42 GMT
etag: "e6-63957ca0-123032;gz"
last-modified: Sun, 11 Dec 2022 06:45:52 GMT
content-type: text/css
accept-ranges: bytes
date: Tue, 05 Dec 2023 14:56:42 GMT
server: LiteSpeed
content-encoding: gzip
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
14.225.207.65
104.17.24.14
172.64.149.23