Report - nr34kj7p.fcyz.my.id/fvr/

Report Overview

Submitted URL
nr34kj7p.fcyz.my.id/fvr/
IP
188.114.96.1
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-18 04:57:45
Access
public
Website Title
Top Up Free Fire | Diamond Free Fire Murah | Codashop
Final URL
nr34kj7p.fcyz.my.id/fvr/
Tags
suspicious
urlquery detections
Suspicious - Anti-debugging code

Detections

urlquery
3
Network Intrusion Detection
0
Threat Detection Systems
14

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
icon-library.com	74653	2020-01-03	2020-01-09	2024-03-27	459 B	17 kB	172.67.68.224
ajax.googleapis.com	12905	2005-01-25	2013-08-16	2024-04-17	434 B	32 kB	142.250.74.42
cdn-www.bluestacks.com	248087	2010-10-27	2015-06-23	2024-04-09	476 B	105 kB	2.17.251.15
i.ibb.co	13485	2010-07-20	2018-11-25	2024-04-17	427 B	4.0 kB	162.19.58.157
www.gstatic.com	unknown	2008-02-11	2016-07-26	2024-04-17	488 B	204 kB	142.250.74.35
cdn1.codashop.com	218452	2014-09-15	2020-11-16	2024-04-13	18 kB	1.4 MB	54.230.111.28
nr34kj7p.fcyz.my.id	unknown	2024-03-26	2024-04-09	2024-04-18	2.7 kB	117 kB	188.114.96.1
d1qgcmfii0ptfa.cloudfront.net	unknown	2008-04-25	2016-07-28	2024-03-26	944 B	6.4 kB	143.204.42.138
script.tapfiliate.com	32485	2014-01-10	2018-06-18	2024-04-03	415 B	12 kB	54.230.111.74
www.google.com	7	1997-09-15	2015-05-10	2024-03-23	411 B	1.3 kB	142.250.74.164
stackpath.bootstrapcdn.com	2467	2012-05-25	2018-06-15	2024-04-17	498 B	32 kB	104.18.11.207
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17	2024-04-17	492 B	7.3 kB	104.17.24.14

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-04-02	medium	nr34kj7p.fcyz.my.id/	Coda Payments
2024-04-17	medium	nr34kj7p.fcyz.my.id/fvr/	Coda Payments
2024-04-02	medium	nr34kj7p.fcyz.my.id/	Coda Payments
2024-04-02	medium	nr34kj7p.fcyz.my.id/	Coda Payments
2024-04-02	medium	nr34kj7p.fcyz.my.id/	Coda Payments
2024-04-02	medium	nr34kj7p.fcyz.my.id/	Coda Payments

PhishTank

Scan Date	Severity	Indicator	Alert
2024-04-06	medium	nr34kj7p.fcyz.my.id/fvr/	Other

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (25)

	URL	Size	First Seen	Last Seen
	nr34kj7p.fcyz.my.id/fvr/	705 B	2024-02-25	2024-04-30
Pretty URL nr34kj7p.fcyz.my.id/fvr/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-02-25 18:55:10 Last Seen2024-04-30 19:37:41 Times Seen51 Hash 77603b50642268549f33e3516d2fd109 848a054138965c9441cc59885a14529e3d72ea15 b44dfb3aaa4bda49c4f780fb32881805d6ddd63df1e839b5b7174720aefeab02 Loading...

	cdn1.codashop.com/S2/content/common/js/faq.7a04e34b3d.js	824 B	2023-03-07	2024-04-30
Pretty URL cdn1.codashop.com/S2/content/common/js/faq.7a04e34b3d.js IP 54.230.111.28 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:50 Last Seen2024-04-30 19:37:41 Times Seen1471 Hash 7a04e34b3d63def624af82ba6df461ba 023f366b89c8f008ac2bde6246dd9774a21bccd4 0af099b192033202033bb4999ec904031c72f05ed158816144cb898423a3eb72 Loading...

	www.google.com/recaptcha/api.js	850 B	2024-04-04	2024-04-18
Pretty URL www.google.com/recaptcha/api.js IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-04 06:26:02 Last Seen2024-04-18 15:34:34 Times Seen915 Hash 1613f25e7a73976f440bd3c174bc1dc3 ffa5be6619ae6109c6e412186e0f12b8d8a73cd9 091a7de491da06df67c869b9905c1d028eb2816e68360c0b5b7a4fa8ce590322 Loading...

	unknown	946 B	2024-02-25	2024-04-30
Pretty Introduced by domTimer Embedded in HTML false Observations First Seen2024-02-25 18:55:10 Last Seen2024-04-30 19:37:41 Times Seen51 Hash 79096bdd040348bd8465854d927ece85 bb6c5ad3912f36d5e5b13b9abb18a75385d15c62 71626cb833fa6c3efa6fcf6b8170170a7bab29810793c53bf77423ce6ba6a3e1 Loading...

	cdn1.codashop.com/S/content/common/js/jquery.mask.min.js	7.4 kB	2023-03-07	2024-04-30
Pretty URL cdn1.codashop.com/S/content/common/js/jquery.mask.min.js IP 54.230.111.28 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:50 Last Seen2024-04-30 19:37:41 Times Seen886 Hash 35d9db48e3112f35d81e70b98457aa42 7baded3da3bae7598688ad6c89800b88cdb49fdd 5f8e21f061de1874e4af063f095a389187c40583c9033946e406a8bb825ca358 Loading...

	cdn1.codashop.com/S2/content/mobile/js/freefire.4a7a9740bc.js	520 B	2023-03-07	2024-04-30
Pretty URL cdn1.codashop.com/S2/content/mobile/js/freefire.4a7a9740bc.js IP 54.230.111.28 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:50 Last Seen2024-04-30 19:37:41 Times Seen1497 Hash 4a7a9740bcf8062898a69cb939b84746 948bbea618cae328d0acb4cea603023da671358c c636bd0ea30e4e99b8ef807c5561df5064f8c1bd84b08038cdad8bdf989c7822 Loading...

	nr34kj7p.fcyz.my.id/fvr/	222 B	2024-02-25	2024-04-30
Pretty URL nr34kj7p.fcyz.my.id/fvr/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-02-25 18:55:10 Last Seen2024-04-30 19:37:41 Times Seen51 Hash a53feaeee39b4fe0f46c27c1d64d6a9e 79d0be2422d899c6ac7d05a91a631a7e21bf6a27 186b187079b31e2e4d7a211856e9f9297b92a59cb81fed5cfc507dd82b536230 Loading...

	cdn1.codashop.com/S/content/common/js/xss.min.js	29 kB	2023-03-07	2024-04-30
Pretty URL cdn1.codashop.com/S/content/common/js/xss.min.js IP 54.230.111.28 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:50 Last Seen2024-04-30 19:37:42 Times Seen1446 Hash 4947ff982fb69173f95da79b538f254d 884db3bf10e92790cf6d9937731f70d59c87cc9f 0278b60e08b67fb8ae86c56dd80075e94e1d51113eb21ade41996147c601dfe6 Loading...

	nr34kj7p.fcyz.my.id/fvr/	2.8 kB	2024-02-25	2024-04-30
Pretty URL nr34kj7p.fcyz.my.id/fvr/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-02-25 18:55:10 Last Seen2024-04-30 19:37:41 Times Seen51 Hash 08c57b95fe3963de0be357379e012119 4921aef13a4fc84872cbbdc16e269a9e5bad851d d6019496a9fd7f8e5c83b27f765b75f3ec49c794aeafb47ee33b60c094f79a89 Loading...

	nr34kj7p.fcyz.my.id/fvr/	308 B	2024-02-25	2024-04-30
Pretty URL nr34kj7p.fcyz.my.id/fvr/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-02-25 18:55:10 Last Seen2024-04-30 19:37:41 Times Seen51 Hash 71a08f43a0cb91dcadc2115db81d2eec 95752e4931703c39bebf77803409e4e4888a9e83 330df3abd040dab29b4e7f7297e6bdbf14e41321a5ae3ec2c4ad295ba31e644c Loading...

	nr34kj7p.fcyz.my.id/fvr/	377 B	2024-02-25	2024-04-30
Pretty URL nr34kj7p.fcyz.my.id/fvr/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-02-25 18:55:10 Last Seen2024-04-30 19:37:41 Times Seen51 Hash d0cade7d585ecdc0e349a4158102f980 3384d67b8fb333228347d36c499140303c8766d7 89ff3775c18f3cbeb0b0aea0ad460b7853802f5185397d3f8c30dc1792602f67 Loading...

	cdn1.codashop.com/S2/content/common/js/infoBar.38acc407b3.js	2.1 kB	2023-03-07	2024-04-30
Pretty URL cdn1.codashop.com/S2/content/common/js/infoBar.38acc407b3.js IP 54.230.111.28 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:50 Last Seen2024-04-30 19:37:41 Times Seen761 Hash 38acc407b31daa48fafd99a877c64b5d 2d4ff63b5c01682308051b7c70c4d97861be9bc6 fd9e295b54bddbda076cb3b98f340699091fa8d67907462a3924b37ef061deb1 Loading...

	unknown	79 B	2023-04-11	2024-05-01
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:38:58 Last Seen2024-05-01 00:20:27 Times Seen125067 Hash aa049e2749b8531cb8f233c2f64fc2b2 b611a5a62c1813ae5b4763378b3a4a565556530a e52e51d5897d7a179089ddcf8f5de7aeb3ef4f27b054b63e937cf308b685c9e2 Loading...

	unknown	37 B	2023-04-11	2024-05-01
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:31:25 Last Seen2024-05-01 01:28:59 Times Seen233088 Hash 29d0c84b9d1d8da446a6062c6a840ad9 6d6b3a6065667c7c50d92f3889c85ed65a9ad784 3c3cbdb71d0d2c22f504f4d63d8a6ffe8d250cde7e58300619be35b6bbab26a1 Loading...

	ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js	90 kB	2023-03-07	2024-05-01
Pretty URL ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js IP 142.250.74.42 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-05-01 01:21:12 Times Seen140508 Hash dc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d Loading...

	cdn1.codashop.com/S2/content/common/js/payment-channel-suggestion.535f3c6f70.js	1.9 kB	2023-03-07	2024-04-30
Pretty URL cdn1.codashop.com/S2/content/common/js/payment-channel-suggestion.535f3c6f70.js IP 54.230.111.28 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:50 Last Seen2024-04-30 19:37:41 Times Seen743 Hash 535f3c6f7015dbae9e6b2a4987192e2b e356ddac477467b6d240894078fe01320bdfa950 250e11fdf553a784636f5a080fcd88f11f15e8d892c95be88dfc391c515662ca Loading...

	nr34kj7p.fcyz.my.id/fvr/	6.6 kB	2024-02-25	2024-04-30
Pretty URL nr34kj7p.fcyz.my.id/fvr/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-02-25 18:55:10 Last Seen2024-04-30 19:37:41 Times Seen51 Hash 133bb48e1c75491c4141ad05d1dd9708 5e834efb81b64715654d81462353bb261aeecba4 0e3288788706b120f2fd6b1fc0321bce08c1187d132b21a7162e209cad7d1c85 Loading...

	script.tapfiliate.com/tapfiliate.js	12 kB	2023-03-08	2024-04-30
Pretty URL script.tapfiliate.com/tapfiliate.js IP 54.230.111.74 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:46:13 Last Seen2024-04-30 19:37:42 Times Seen2106 Hash ddbb39a9e8e67d5067145f8aa76b938d 2f7cacfbcaaf8291a1a933898d1dff0b21edf1cb 44798a517a7c8d28c1e371a1b8b869bae1608bd48df7ed50800cbed8703612c1 Loading...

	cdn1.codashop.com/S2/content/common/js/third_party_common.0859f0e010.js	278 B	2023-03-07	2024-04-30
Pretty URL cdn1.codashop.com/S2/content/common/js/third_party_common.0859f0e010.js IP 54.230.111.28 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:50 Last Seen2024-04-30 19:37:41 Times Seen1496 Hash 0859f0e01014515a05f1738b1ad2975d 2ce5a8530a35a3df627384c63add94b4324ab222 d617f26025f9d24f380f09a7fa7bec6d0306163e75de36e17fc198f4d8450a5b Loading...

	nr34kj7p.fcyz.my.id/fvr/	386 B	2024-02-25	2024-04-30
Pretty URL nr34kj7p.fcyz.my.id/fvr/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-02-25 18:55:10 Last Seen2024-04-30 19:37:41 Times Seen51 Hash 90de37c7ff3eaf1075da82c7a8a99627 72283b3586dc747d8db253e2acbed1e3111f7af3 a16f2dda294beb18e9c6386e13ed167438d6bc1c2edcd2ec33c573769238a292 Loading...

	nr34kj7p.fcyz.my.id/fvr/	3.4 kB	2024-02-25	2024-04-30
Pretty URL nr34kj7p.fcyz.my.id/fvr/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-02-25 18:55:10 Last Seen2024-04-30 19:37:41 Times Seen51 Hash ccc71a85c0cf3bedbd320ee14336e317 a8bffb1dda93ec93d6d2ef16eebdaf6309b8fb51 f876fb7de616431db1610eca5dd684b1c15dfd74f60d2496ec9f00e1c50f0821 Loading...

	nr34kj7p.fcyz.my.id/fvr/	512 B	2024-02-25	2024-04-30
Pretty URL nr34kj7p.fcyz.my.id/fvr/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-02-25 18:55:10 Last Seen2024-04-30 19:37:41 Times Seen51 Hash c82fcc4c7c753c9fced1cf55c55e63b6 3b451c81ba91085f0f611e5a5006bd5ff8b88629 0e89a45a1316c24ba09bf683076494be01a0e33e8a4c39da3829f284aed948ab Loading...

	cdn1.codashop.com/S2/content/common/js/shop-topnav2.7e1fed6bdf.js	7.2 kB	2023-03-07	2024-04-30
Pretty URL cdn1.codashop.com/S2/content/common/js/shop-topnav2.7e1fed6bdf.js IP 54.230.111.28 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:50 Last Seen2024-04-30 19:37:41 Times Seen761 Hash 7e1fed6bdfc0657c0dedc6e6c19553fa 558908ad0be5bd05f13a8053c6cfde0341bc6c08 3674e598baf27dfcea3bddbc29783b85fd74934f69a34920a061139d2149d7ec Loading...

	nr34kj7p.fcyz.my.id/fvr/	243 B	2024-02-25	2024-04-30
Pretty URL nr34kj7p.fcyz.my.id/fvr/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-02-25 18:55:10 Last Seen2024-04-30 19:37:41 Times Seen51 Hash dbaf0ef0816980041e731f42ff8aab40 64201de74145f664db89eb754656ae60cf550d42 4af5c6457402e9a5daa6a8310fec912a99d2c4fc1e76ae7eeb865864e881ad9b Loading...

		Size	First Seen	Last Seen
	#1 Eval - 61fa153f2827c887a48a351ae3c6cfd3	8 B	2023-03-07	2024-04-30
Pretty Observations First Seen2023-03-07 01:03:50 Last Seen2024-04-30 22:21:41 Times Seen1098 Hash 61fa153f2827c887a48a351ae3c6cfd3 5fbd02245cf700ea94d638c8d76924ecca52d330 4c44d7c28ec0f6ca3e2624c6af1d3be324576d01ef6f6c2dc0af7e61664b8c2c Loading...

HTTP Transactions (54)

URL IP Response Size

cdnjs.cloudflare.com/ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.css

104.17.24.14

200 OK

6.3 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.css
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nr34kj7p.fcyz.my.id/fvr/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text
Size
6.3 kB (6252 bytes)
Hash
0920ea34072683229e6ea8299345cd09
0903033a844336f7c78ed4abbbcd92cd3115a03e
f37d6f502a5a961ac5c3f17c8d58685ff6b0dc0f69c2dcdd379ccabc96ec3bf2

HTTP Headers

GET /ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 18 Apr 2024 04:57:18 GMT
content-type: text/css; charset=utf-8
content-length: 6252
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ed9-14d38"
last-modified: Mon, 04 May 2020 16:12:09 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 629768
expires: Tue, 08 Apr 2025 04:57:18 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pgQAVGvTLq4dtat4660lwQFESWR%2Fp0w8Pm6FHiCGLl9UNBhXgO0J5HeSYD4jHCg5uUc8vc5HjSGDyQJR%2BceVc8n4myBBVZOnvpfSWzJIH98WJ7vscdiTPauJv5C4lw8oVWBhlav6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 876212c01de2b509-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

nr34kj7p.fcyz.my.id/img/facebook_text.png

188.114.96.1

200 OK

29 kB

URL GET HTTP/3
nr34kj7p.fcyz.my.id/img/facebook_text.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nr34kj7p.fcyz.my.id/fvr/
Certificate
IssuerGoogle Trust Services LLC
Subjectfcyz.my.id
Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25
ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT

File type
PNG image data, 604 x 158, 8-bit/color RGBA, non-interlaced
Size
29 kB (28789 bytes)
Hash
74190b93fc4f5d88f0c8e6411ba20bd8
89ce2ecb660a90b8e6ed1b335443d7767c59f28a
092a3cd5f86b3f039feefdeb86694cd16ae545af214cfda614bdbbe2d1bde401

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Coda Payments

HTTP Headers

GET /img/facebook_text.png HTTP/1.1
Host: nr34kj7p.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/fvr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 04:57:18 GMT
content-type: image/png
content-length: 28789
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 04:57:18 GMT
last-modified: Sun, 06 Feb 2022 18:31:28 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=adUipzxxptw%2F7exRM9FycPjXgMYHVdjMXwzpHAs2x1LYJAmjxezDn%2FbHBreEFVhaB8vsXxvDD6YqTsGczcDYAvVPZZzSwph%2BSfgWx6LQ2kbLkNpOfVomFPLBbfWsV489%2FOmLGNmF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876212c008470b69-OSL
alt-svc: h3=":443"; ma=86400

cdn1.codashop.com/S2/content/mobile/images/error-icon.20986d3fe0.png

54.230.111.28

200 OK

802 B

URL GET HTTP/2
cdn1.codashop.com/S2/content/mobile/images/error-icon.20986d3fe0.png
IP
54.230.111.28:443
ASN
#16509 AMAZON-02

Requested by
https://nr34kj7p.fcyz.my.id/fvr/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
PNG image data, 38 x 38, 8-bit colormap, non-interlaced
Size
802 B (802 bytes)
Hash
20986d3fe0ddac454b9f46bc34ce8952
defb0e4158b8a9576e663b240336a9bbb28d3267
d7ece5222547615bcb5066478f209b6a3e7c3b3c88667972e937c8481688eed7

HTTP Headers

GET /S2/content/mobile/images/error-icon.20986d3fe0.png HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 802
last-modified: Tue, 14 Dec 2021 02:49:38 GMT
x-amz-version-id: yQvHZsqjV.2CRKMhv5iNVz5bc0xc5Mqc
accept-ranges: bytes
server: AmazonS3
date: Thu, 18 Apr 2024 04:57:18 GMT
etag: "20986d3fe0ddac454b9f46bc34ce8952"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: CSQl96SEAmuOQ_vz7HejSbjySsEeyTG8PznPYenX884pAN48lS0nZw==
age: 8660
X-Firefox-Spdy: h2

cdn1.codashop.com/S/content/social-media-logo/36/socmed-youtube-H36.png

54.230.111.28

200 OK

2.2 kB

URL GET HTTP/2
cdn1.codashop.com/S/content/social-media-logo/36/socmed-youtube-H36.png
IP
54.230.111.28:443
ASN
#16509 AMAZON-02

Requested by
https://nr34kj7p.fcyz.my.id/fvr/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
PNG image data, 51 x 36, 8-bit/color RGBA, non-interlaced
Size
2.2 kB (2216 bytes)
Hash
123c968b7d12fcf714b9d2af208d666a
e81c6311be251ac7a4174d6a16c772e8ac78528e
dcf5dc23bfca5d9b4b2a36c9db76f5375f51417bde2b33f1c60e3925c814d361

HTTP Headers

GET /S/content/social-media-logo/36/socmed-youtube-H36.png HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 2216
date: Thu, 18 Apr 2024 02:48:22 GMT
last-modified: Fri, 24 Apr 2020 04:39:27 GMT
etag: "123c968b7d12fcf714b9d2af208d666a"
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: sLIUfo9Puythzzh3dCO7WuR6jn6QzvIifNfFInGVpyOWkw7-pdv83w==
age: 7737
X-Firefox-Spdy: h2

cdn1.codashop.com/S/content/social-media-logo/36/socmed-instagram-H36.png

54.230.111.28

200 OK

4.7 kB

URL GET HTTP/2
cdn1.codashop.com/S/content/social-media-logo/36/socmed-instagram-H36.png
IP
54.230.111.28:443
ASN
#16509 AMAZON-02

Requested by
https://nr34kj7p.fcyz.my.id/fvr/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
PNG image data, 36 x 36, 8-bit/color RGBA, non-interlaced
Size
4.7 kB (4678 bytes)
Hash
a91be2e400b7f0dc66247427dfaffcf3
900e87486aa051659e114eb5b7a2980d75e7889a
62437412556a804293516df99c0970427549b1a50258462035410072f96dd093

HTTP Headers

GET /S/content/social-media-logo/36/socmed-instagram-H36.png HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 4678
last-modified: Fri, 24 Apr 2020 04:39:27 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Thu, 18 Apr 2024 04:57:18 GMT
etag: "a91be2e400b7f0dc66247427dfaffcf3"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: HPpZQ4O1yOIUy24DLiF_aCdwocHBIj_376JlVC_Bs8c204EBBrapRg==
age: 14996
X-Firefox-Spdy: h2

cdn1.codashop.com/S/content/mobile/images/codashop-logo-new-3a.png

54.230.111.28

200 OK

9.9 kB

URL GET HTTP/2
cdn1.codashop.com/S/content/mobile/images/codashop-logo-new-3a.png
IP
54.230.111.28:443
ASN
#16509 AMAZON-02

Requested by
https://nr34kj7p.fcyz.my.id/fvr/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
PNG image data, 636 x 140, 8-bit/color RGBA, non-interlaced
Size
9.9 kB (9858 bytes)
Hash
34c07d92a1940ff45b0c59875cba9815
b54b870ec327fe1ff53828cf3696fb48d6f151d7
ce568121eb1ecb0aae759a502d54ed5907d8e24778d9a6bd2c28cda62945952c

HTTP Headers

GET /S/content/mobile/images/codashop-logo-new-3a.png HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 9858
last-modified: Thu, 27 Oct 2022 07:27:13 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: rFQqGopZFLtORw_yVR3WdRQIxEHGV7Al
accept-ranges: bytes
server: AmazonS3
date: Thu, 18 Apr 2024 04:57:18 GMT
etag: "34c07d92a1940ff45b0c59875cba9815"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: XkejnTO9ehay2sbHwbtuu2cZydaw4yA3YlKLEqHUQaB8blK7gP5jTg==
age: 197
X-Firefox-Spdy: h2

cdn1.codashop.com/S/content/common/images/denom-image/FreeFire/Freefire_diamonds.png

54.230.111.28

200 OK

5.1 kB

URL GET HTTP/2
cdn1.codashop.com/S/content/common/images/denom-image/FreeFire/Freefire_diamonds.png
IP
54.230.111.28:443
ASN
#16509 AMAZON-02

Requested by
https://nr34kj7p.fcyz.my.id/fvr/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
PNG image data, 100 x 100, 8-bit colormap, non-interlaced
Size
5.1 kB (5052 bytes)
Hash
28380515fca2c6f9a34c8d63c84082ee
8f4e3f2a27ac7daf8d4ad527df869e3283280d2e
7c77ef25ab71668ce14480e52815e31bcf9e19f2409889048c0c00bde9716895

HTTP Headers

GET /S/content/common/images/denom-image/FreeFire/Freefire_diamonds.png HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 5052
last-modified: Wed, 16 Mar 2022 14:39:10 GMT
x-amz-version-id: M7elHFq6ZhRZdt3T0xX6NlAMaSWhq70l
accept-ranges: bytes
server: AmazonS3
date: Thu, 18 Apr 2024 04:20:52 GMT
etag: "28380515fca2c6f9a34c8d63c84082ee"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3Jt_PK7FNQ8amAzfW5bb2k1jkC9eeFMjOMoebr33Vy_IpceODlKJTg==
age: 2187
X-Firefox-Spdy: h2

cdn1.codashop.com/S/content/social-media-logo/36/socmed-facebook-msg-H36.png

54.230.111.28

200 OK

2.9 kB

URL GET HTTP/2
cdn1.codashop.com/S/content/social-media-logo/36/socmed-facebook-msg-H36.png
IP
54.230.111.28:443
ASN
#16509 AMAZON-02

Requested by
https://nr34kj7p.fcyz.my.id/fvr/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
PNG image data, 36 x 36, 8-bit/color RGBA, non-interlaced
Size
2.9 kB (2866 bytes)
Hash
e3443d0d8aea42fc61368b9792b6fdc3
6d0f867176171d6dd3fe1e052251b7fdc8c479ca
e6ff78cbc0e7a99c0243089cd0357f70d4432faea71e5b43ebfa466a166939d6

HTTP Headers

GET /S/content/social-media-logo/36/socmed-facebook-msg-H36.png HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 2866
last-modified: Fri, 24 Apr 2020 04:39:27 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Thu, 18 Apr 2024 01:36:16 GMT
etag: "e3443d0d8aea42fc61368b9792b6fdc3"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: cOVg1Z5dswPuKYi7dMnsJQ6WLKO23GI2c8r8SJq17dT3DY4FvxLnIg==
age: 12063
X-Firefox-Spdy: h2

cdn1.codashop.com/S2/content/common/js/third_party_common.0859f0e010.js

54.230.111.28

200 OK

278 B

URL GET HTTP/2
cdn1.codashop.com/S2/content/common/js/third_party_common.0859f0e010.js
IP
54.230.111.28:443
ASN
#16509 AMAZON-02

Requested by
https://nr34kj7p.fcyz.my.id/fvr/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with no line terminators
Size
278 B (278 bytes)
Hash
0859f0e01014515a05f1738b1ad2975d
2ce5a8530a35a3df627384c63add94b4324ab222
d617f26025f9d24f380f09a7fa7bec6d0306163e75de36e17fc198f4d8450a5b

HTTP Headers

GET /S2/content/common/js/third_party_common.0859f0e010.js HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
content-length: 278
last-modified: Tue, 16 Apr 2024 08:32:37 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: RfVIQpQSBHD2KEy0sToKfMPY5K3Yk5UR
accept-ranges: bytes
server: AmazonS3
date: Thu, 18 Apr 2024 04:52:03 GMT
etag: "0859f0e01014515a05f1738b1ad2975d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: tpunOWZ_wcGUkRFzyNTCNTvw0Hn9SfA3r2Wh7Odft5BD0mZ9crntbw==
age: 316
X-Firefox-Spdy: h2

cdn1.codashop.com/S/content/social-media-logo/36/socmed-facebook-H36.png

54.230.111.28

200 OK

2.9 kB

URL GET HTTP/2
cdn1.codashop.com/S/content/social-media-logo/36/socmed-facebook-H36.png
IP
54.230.111.28:443
ASN
#16509 AMAZON-02

Requested by
https://nr34kj7p.fcyz.my.id/fvr/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
PNG image data, 36 x 36, 8-bit/color RGBA, non-interlaced
Size
2.9 kB (2890 bytes)
Hash
cf9659fa3891add490cb7d0d099d72ac
85581945ff05f48b3a652ba3e90ae44d97b18cf1
76db9987bb4f902e6d4a6702577717a6d6afff1bef8eb6dfce62c5c69e8d707d

HTTP Headers

GET /S/content/social-media-logo/36/socmed-facebook-H36.png HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 2890
last-modified: Fri, 24 Apr 2020 04:39:27 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Thu, 18 Apr 2024 04:57:18 GMT
etag: "cf9659fa3891add490cb7d0d099d72ac"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: J53AaGF2RY4sHEoXA3t7jLoh6RWrP3CAhFWMmiv1OyXhRaw19rDzhg==
age: 8766
X-Firefox-Spdy: h2

cdn1.codashop.com/S/content/common/images/mno/CODACASH_ID_CHNL_LOGO.png

54.230.111.28

200 OK

4.1 kB

URL GET HTTP/2
cdn1.codashop.com/S/content/common/images/mno/CODACASH_ID_CHNL_LOGO.png
IP
54.230.111.28:443
ASN
#16509 AMAZON-02

Requested by
https://nr34kj7p.fcyz.my.id/fvr/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
PNG image data, 172 x 41, 8-bit/color RGBA, non-interlaced
Size
4.1 kB (4102 bytes)
Hash
486b3c9bb17c7a017c06a552430ba2f0
d95d8d56ba6f4cada2d2b28c8a05bcb5d221de64
03120ad80524a1f2cf812d7da99f09fc785b6d0c2be0cb6609b96c6387243f1a

HTTP Headers

GET /S/content/common/images/mno/CODACASH_ID_CHNL_LOGO.png HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 4102
last-modified: Thu, 06 Oct 2022 06:59:20 GMT
x-amz-version-id: izgilNgE1ZqfcZo.yXik2ML6.u6KpWah
accept-ranges: bytes
server: AmazonS3
date: Thu, 18 Apr 2024 04:22:42 GMT
etag: "486b3c9bb17c7a017c06a552430ba2f0"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 5Wv06cEaySb93NE0cwK0iR-Y3eO7zpgIlbkiv0RkOQEnbR0onQK0aw==
age: 2077
X-Firefox-Spdy: h2

cdn1.codashop.com/S/content/common/images/mno/freefire_new_640x241.jpg

54.230.111.28

200 OK

54 kB

URL GET HTTP/2
cdn1.codashop.com/S/content/common/images/mno/freefire_new_640x241.jpg
IP
54.230.111.28:443
ASN
#16509 AMAZON-02

Requested by
https://nr34kj7p.fcyz.my.id/fvr/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 640x241, components 3
Size
54 kB (53533 bytes)
Hash
8e5bb390d9e0f12905481edac5e46539
c9d5677d4d96847df61e41b8d1ce5fa750eb834f
5bebf695d8569b372a8b99bb7bd08bccf0158f0ce3400469cafe685f3971ba5d

HTTP Headers

GET /S/content/common/images/mno/freefire_new_640x241.jpg HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
content-length: 53533
last-modified: Fri, 01 Sep 2023 07:44:38 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: 0KBjyiuNH1PeQRH3zwi23nW4fDwvGvAM
accept-ranges: bytes
server: AmazonS3
date: Wed, 17 Apr 2024 04:57:43 GMT
etag: "8e5bb390d9e0f12905481edac5e46539"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: VVMWz-RYlN9dxBbyUv3NiX7ry34CP8INnf4_GObRKZKorvNWHlk41w==
age: 86376
X-Firefox-Spdy: h2

icon-library.com/images/vk-icon/vk-icon-28.jpg

172.67.68.224

200 OK

16 kB

URL GET HTTP/2
icon-library.com/images/vk-icon/vk-icon-28.jpg
IP
172.67.68.224:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nr34kj7p.fcyz.my.id/fvr/
Certificate
IssuerGoogle Trust Services LLC
Subjecticon-library.com
FingerprintA4:A9:B0:06:3C:55:29:F6:F4:F1:31:2C:16:EB:40:3D:5E:F1:B5:DD
ValidityMon, 18 Mar 2024 13:36:58 GMT - Sun, 16 Jun 2024 13:36:57 GMT

File type
PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced
Size
16 kB (16200 bytes)
Hash
b5af86a05a5a0ec827d4d9aa7a834a43
efe9a10ef6ff312c1bce1ed2dfa4bb75b9b176de
d58e787f4eaa1bfee5c58b23535ad1082b7ebf8ddb95c42521839b5b3058e795

HTTP Headers

GET /images/vk-icon/vk-icon-28.jpg HTTP/1.1
Host: icon-library.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 18 Apr 2024 04:57:18 GMT
content-type: image/jpeg
content-length: 16200
cf-bgj: h2pri
last-modified: Wed, 10 Jul 2019 13:13:10 GMT
strict-transport-security: max-age=31536000;
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CQwftv5PysFq3p7r06j5aVBvhJBvezGY1ZHXYRbfUTfTrqKP8u0IaRqNSv5jcuTw6CbwCTR2cNWOd1sfzFgqEYuqIWqWvs68ACLxBFk4lbJpi7sBF%2BupOCWtXszAHv1XpiQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876212c05d4f1bfe-OSL
X-Firefox-Spdy: h2

ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js

142.250.74.42

200 OK

31 kB

URL GET HTTP/2
ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js
IP
142.250.74.42:443
ASN
#15169 GOOGLE

Requested by
https://nr34kj7p.fcyz.my.id/fvr/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E
ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
31 kB (31021 bytes)
Hash
dc5e7f18c8d36ac1d3d4753a87c98d0a
c8e1c8b386dc5b7a9184c763c88d19a346eb3342
f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d

HTTP Headers

GET /ajax/libs/jquery/3.5.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31021
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 17 Apr 2024 10:51:04 GMT
expires: Thu, 17 Apr 2025 10:51:04 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Fri, 08 May 2020 07:05:03 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 65174
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn1.codashop.com/S2/content/mobile/css/infoBar.662b8f1b5f.css

54.230.111.28

200 OK

960 B

URL GET HTTP/2
cdn1.codashop.com/S2/content/mobile/css/infoBar.662b8f1b5f.css
IP
54.230.111.28:443
ASN
#16509 AMAZON-02

Requested by
https://nr34kj7p.fcyz.my.id/fvr/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (960), with no line terminators
Size
960 B (960 bytes)
Hash
662b8f1b5f919912c1df4b367bff2cc1
2be016ac1842ccd1c46f24f3908e0567916b3857
649336097b307d0d03ecf4b5625f62576ced687e627233bf62f73ea4c1375395

HTTP Headers

GET /S2/content/mobile/css/infoBar.662b8f1b5f.css HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: text/css
content-length: 960
date: Thu, 18 Apr 2024 04:57:19 GMT
last-modified: Thu, 18 Apr 2024 02:16:31 GMT
etag: "662b8f1b5f919912c1df4b367bff2cc1"
x-amz-server-side-encryption: AES256
x-amz-version-id: g0mvnbH9AhjYcGdyb8uQXc8VJDrmHF3L
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: LXTORsTBpZ02bWrx40gVZYUQQI_5QdHgcuTyH7GewEl10vFtyH_vQQ==
X-Firefox-Spdy: h2

cdn1.codashop.com/S2/content/common/js/faq.7a04e34b3d.js

54.230.111.28

200 OK

824 B

URL GET HTTP/2
cdn1.codashop.com/S2/content/common/js/faq.7a04e34b3d.js
IP
54.230.111.28:443
ASN
#16509 AMAZON-02

Requested by
https://nr34kj7p.fcyz.my.id/fvr/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (824), with no line terminators
Size
824 B (824 bytes)
Hash
7a04e34b3d63def624af82ba6df461ba
023f366b89c8f008ac2bde6246dd9774a21bccd4
0af099b192033202033bb4999ec904031c72f05ed158816144cb898423a3eb72

HTTP Headers

GET /S2/content/common/js/faq.7a04e34b3d.js HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 824
date: Thu, 18 Apr 2024 04:57:19 GMT
last-modified: Fri, 04 Sep 2020 02:37:42 GMT
etag: "7a04e34b3d63def624af82ba6df461ba"
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: EDxUqQf_-fUddPV7pom7Wmhy3L6znD1VgIXhH5iDjfoebJa3tHGGRg==
X-Firefox-Spdy: h2

nr34kj7p.fcyz.my.id/fvr/

188.114.96.1

200 OK

74 kB

URL User Request GET HTTP/2
nr34kj7p.fcyz.my.id/fvr/
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectfcyz.my.id
Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25
ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (652)
Size
74 kB (74283 bytes)
Hash
1029ff14bcd0a87c960a669c8cb17c85
5954957391778b0a69a5ea1c83dcde2d82ce2541
ad15618741819397bc67f1b945581e97bc56ff13bd64c1aa60e1e990ac66fc34

Detections

Analyzer	Verdict	Alert
urlquery	suspicious	Suspicious - Anti-debugging code
OpenPhish	phishing	Coda Payments
PhishTank	phishing	Other

HTTP Headers

GET /fvr/ HTTP/1.1
Host: nr34kj7p.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 18 Apr 2024 04:57:17 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Mg3%2BV6SN%2BWX%2FUV5aEZm3Qnxjinbvmpv214TVdbFJY%2FnpYQMaw62f6fEVxXlOKOpyPhMai13u%2Fkajx01geyCyckmHV9dT1IVOujaGQV1by0hu1RpXMh%2FeySp0rXCHhMm0yxyL%2B%2FDt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876212be0d75b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn1.codashop.com/S2/content/mobile/js/freefire.4a7a9740bc.js

54.230.111.28

200 OK

520 B

URL GET HTTP/2
cdn1.codashop.com/S2/content/mobile/js/freefire.4a7a9740bc.js
IP
54.230.111.28:443
ASN
#16509 AMAZON-02

Requested by
https://nr34kj7p.fcyz.my.id/fvr/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (520), with no line terminators
Size
520 B (520 bytes)
Hash
4a7a9740bcf8062898a69cb939b84746
948bbea618cae328d0acb4cea603023da671358c
c636bd0ea30e4e99b8ef807c5561df5064f8c1bd84b08038cdad8bdf989c7822

HTTP Headers

GET /S2/content/mobile/js/freefire.4a7a9740bc.js HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
content-length: 520
date: Thu, 18 Apr 2024 04:57:19 GMT
last-modified: Thu, 18 Apr 2024 02:16:32 GMT
etag: "4a7a9740bcf8062898a69cb939b84746"
x-amz-server-side-encryption: AES256
x-amz-version-id: Sbn79nztGypsCYDgGLlVI7JllBH1b9YJ
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: koRndalsMhIxGrdVrjl13KWXIOuxP1Cs9u5X2bQTWfEoGpjmEHMEow==
X-Firefox-Spdy: h2

cdn-www.bluestacks.com/bs-images/69b5965b1c8f0d20f45be82f0522d88a6bfa2ba0.png

2.17.251.15

200 OK

104 kB

URL GET HTTP/1.1
cdn-www.bluestacks.com/bs-images/69b5965b1c8f0d20f45be82f0522d88a6bfa2ba0.png
IP
2.17.251.15:443
ASN
#20940 Akamai International B.V.

Requested by
https://nr34kj7p.fcyz.my.id/fvr/
Certificate
IssuerDigiCert Inc
Subject*.bluestacks.com
Fingerprint6F:39:D8:89:B6:A0:49:A7:C7:FA:A6:D0:74:C1:EC:93:A6:61:C4:1B
ValidityThu, 11 Apr 2024 00:00:00 GMT - Fri, 11 Apr 2025 23:59:59 GMT

File type
PNG image data, 512 x 512, 8-bit colormap, non-interlaced
Size
104 kB (104257 bytes)
Hash
c3221b6f85d253041dd7a749046252b4
3c61d86b06e871c2c4ca2c4e2ecd99e396d81927
75b0515e2566cc4467be7033f6b62b384138c74aab296fb3a924fb4f6ccefa1e

HTTP Headers

GET /bs-images/69b5965b1c8f0d20f45be82f0522d88a6bfa2ba0.png HTTP/1.1
Host: cdn-www.bluestacks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: IDBjlki2beayMcs6O3HJ59SuyDozvsX6O/y3zd82AR/wisLT/SvbNt2mey1mP9SgtBfTKWPoX3U=
x-amz-request-id: HPASTHJ739VV5DD0
Last-Modified: Wed, 23 May 2018 17:39:54 GMT
ETag: "c3221b6f85d253041dd7a749046252b4"
x-amz-version-id: null
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 104257
Cache-Control: max-age=563010
Expires: Wed, 24 Apr 2024 17:20:48 GMT
Date: Thu, 18 Apr 2024 04:57:18 GMT
Alt-Svc: h3=":443"; ma=93600,h3-29=":443"; ma=93600,h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Connection: keep-alive

i.ibb.co/jr5VL36/favicon.png

162.19.58.157

200 OK

3.7 kB

URL GET HTTP/2
i.ibb.co/jr5VL36/favicon.png
IP
162.19.58.157:443
ASN
#16276 OVH SAS

Requested by
https://nr34kj7p.fcyz.my.id/fvr/
Certificate
IssuerLet's Encrypt
Subjectibb.co
Fingerprint47:33:B4:39:55:FC:BC:18:08:79:9C:6C:9D:F3:CF:3A:89:C4:99:62
ValidityWed, 07 Feb 2024 12:41:56 GMT - Tue, 07 May 2024 12:41:55 GMT

File type
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Size
3.7 kB (3677 bytes)
Hash
036da5872428ec3279ad07f3074a8da7
d4bac7fce3fc291fc2452b6bc35b158c4ef309d1
d00bfe6cdff8e3c2370b458723c7db811efd563b36f1de3a02f28806db170981

HTTP Headers

GET /jr5VL36/favicon.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 04:57:19 GMT
content-type: image/png
content-length: 3677
last-modified: Fri, 10 Sep 2021 14:31:05 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn1.codashop.com/S/content/common/images/promos/Community%20Banners/freefire_id_codaclub.jpeg

54.230.111.28

200 OK

29 kB

URL GET HTTP/2
cdn1.codashop.com/S/content/common/images/promos/Community%20Banners/freefire_id_codaclub.jpeg
IP
54.230.111.28:443
ASN
#16509 AMAZON-02

Requested by
https://nr34kj7p.fcyz.my.id/fvr/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 641x242, components 3
Size
29 kB (28559 bytes)
Hash
f93267a5b15f21f2c6f33e9bb893dfd1
3a88c25a20f79cf5fb6ebe3e34116678a43531ff
c9952880919057304eec16200ccd3f7b373d3ba7192c936b4a79ffca9b62ed35

HTTP Headers

GET /S/content/common/images/promos/Community%20Banners/freefire_id_codaclub.jpeg HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
content-length: 28559
date: Thu, 18 Apr 2024 04:57:19 GMT
last-modified: Wed, 20 Jan 2021 10:28:50 GMT
etag: "f93267a5b15f21f2c6f33e9bb893dfd1"
x-amz-meta-sha256: c9952880919057304eec16200ccd3f7b373d3ba7192c936b4a79ffca9b62ed35
x-amz-meta-s3b-last-modified: 20210120T102030Z
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: IbFGRHGqahyykBE9NHNIvX8VlHzWn5LaXhkAQnJL033op6qLSumdHg==
X-Firefox-Spdy: h2

cdn1.codashop.com/S/content/common/css/flags32.png

54.230.111.28

200 OK

26 kB

URL GET HTTP/2
cdn1.codashop.com/S/content/common/css/flags32.png
IP
54.230.111.28:443
ASN
#16509 AMAZON-02

Requested by
https://nr34kj7p.fcyz.my.id/fvr/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
PNG image data, 32 x 7904, 8-bit colormap, non-interlaced
Size
26 kB (26399 bytes)
Hash
ee905aeea99aa287b3f5b569fedbd91e
0fd8e62c7b5240b5496dc1f2af99d45766c30b86
5ad678791b5d4839f74a625c1ff6d3f4a6bbfca6417ecb0133f1a60de77b415d

HTTP Headers

GET /S/content/common/css/flags32.png HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn1.codashop.com/S/content/common/css/flags.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 26399
last-modified: Thu, 20 Dec 2018 04:54:20 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Thu, 18 Apr 2024 04:57:21 GMT
etag: "ee905aeea99aa287b3f5b569fedbd91e"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: TDvfZXsRKjX-HPxZUBUo3Q-gVK9gEzo0yvUwwXHSaRk2ORchcBX1fg==
X-Firefox-Spdy: h2

cdn1.codashop.com/S/content/fonts/Lato/Lato-Regular.woff2

54.230.111.28

200 OK

28 kB

URL GET HTTP/2
cdn1.codashop.com/S/content/fonts/Lato/Lato-Regular.woff2
IP
54.230.111.28:443
ASN
#16509 AMAZON-02

Requested by
https://nr34kj7p.fcyz.my.id/fvr/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 28440, version 1.0
Size
28 kB (28440 bytes)
Hash
1031840a9580bcc9b1b83a047f2282b4
92eb819b7183fe6b04774a1003216991342e3af5
386695f80ed730cc1a3108b4d91fab24e1db1d9e5f13caa1f95095fb6f1de147

HTTP Headers

GET /S/content/fonts/Lato/Lato-Regular.woff2 HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nr34kj7p.fcyz.my.id
DNT: 1
Connection: keep-alive
Referer: https://cdn1.codashop.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-length: 28440
date: Thu, 18 Apr 2024 04:57:21 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST
last-modified: Thu, 09 Apr 2020 13:54:30 GMT
etag: "1031840a9580bcc9b1b83a047f2282b4"
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
vary: Origin
x-cache: Miss from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2A7-EtJ7Nr-TdXDpInENETJuLqJSt9yzU-WTQEhp1GPAztvxfJomIA==
X-Firefox-Spdy: h2

cdn1.codashop.com/S/content/fonts/Lato/Lato-Semibold.woff2

54.230.111.28

200 OK

213 kB

URL GET HTTP/2
cdn1.codashop.com/S/content/fonts/Lato/Lato-Semibold.woff2
IP
54.230.111.28:443
ASN
#16509 AMAZON-02

Requested by
https://nr34kj7p.fcyz.my.id/fvr/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 213284, version 1.0
Size
213 kB (213284 bytes)
Hash
3b2be91477b04924b538786080ff371b
1a76b7ffe7ba478a6a34323e85aa219f85eb8842
8817bfe4ce3f5f0a9e3e6221a052e51c5baf38ad16dc65af6753a4c4c4e00b99

HTTP Headers

GET /S/content/fonts/Lato/Lato-Semibold.woff2 HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nr34kj7p.fcyz.my.id
DNT: 1
Connection: keep-alive
Referer: https://cdn1.codashop.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-length: 213284
date: Thu, 18 Apr 2024 04:57:21 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST
last-modified: Thu, 09 Apr 2020 14:29:03 GMT
etag: "3b2be91477b04924b538786080ff371b"
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
vary: Origin
x-cache: Miss from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: gC1CFrpel7awOjcJP3V7F8LTcPOW9v6JJYV5QXCmDaZp3I-mfJ5b3g==
X-Firefox-Spdy: h2

cdn1.codashop.com/S/content/fonts/Noto/NotoSans-Regular.woff2

54.230.111.28

200 OK

118 kB

URL GET HTTP/2
cdn1.codashop.com/S/content/fonts/Noto/NotoSans-Regular.woff2
IP
54.230.111.28:443
ASN
#16509 AMAZON-02

Requested by
https://nr34kj7p.fcyz.my.id/fvr/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 117948, version 1.0
Size
118 kB (117948 bytes)
Hash
e50c34178d20d5fa4ab3c1f6c67901a9
655dcb4d829e2bc75e9a7cf8a2aa08f6a4513634
5b43a0c0c7874410cd01de2ec8684785b550295350f5d92901f4c9090f1ab019

HTTP Headers

GET /S/content/fonts/Noto/NotoSans-Regular.woff2 HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nr34kj7p.fcyz.my.id
DNT: 1
Connection: keep-alive
Referer: https://cdn1.codashop.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 117948
date: Thu, 18 Apr 2024 04:57:21 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST
last-modified: Fri, 06 May 2022 11:41:27 GMT
etag: "e50c34178d20d5fa4ab3c1f6c67901a9"
cache-control: max-age=604800
x-amz-version-id: trEzvh6kI.WdcIb7.CUjjvIEEUDocBW7
accept-ranges: bytes
server: AmazonS3
vary: Origin
x-cache: Miss from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Ox4I6zaIcuRXbZ9H_V-6hnr097H7_anzrudkmrC9QLQijxTzyjac_g==
X-Firefox-Spdy: h2

cdn1.codashop.com/S/content/fonts/Lato/Lato-Italic.woff2

54.230.111.28

200 OK

232 kB

URL GET HTTP/2
cdn1.codashop.com/S/content/fonts/Lato/Lato-Italic.woff2
IP
54.230.111.28:443
ASN
#16509 AMAZON-02

Requested by
https://nr34kj7p.fcyz.my.id/fvr/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 231712, version 1.0
Size
232 kB (231712 bytes)
Hash
fccd49e77f1d0fe7552d11ec3697a5c7
0314a4d1109fd76beb5ab8f28a402f920fc2a225
405dae7456bc82c5f43abde71fdddde1be42a759b1cc7db12756d3c119ae5457

HTTP Headers

GET /S/content/fonts/Lato/Lato-Italic.woff2 HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nr34kj7p.fcyz.my.id
DNT: 1
Connection: keep-alive
Referer: https://cdn1.codashop.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-length: 231712
date: Thu, 18 Apr 2024 04:57:21 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST
last-modified: Thu, 09 Apr 2020 14:21:48 GMT
etag: "fccd49e77f1d0fe7552d11ec3697a5c7"
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
vary: Origin
x-cache: Miss from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: EVE6wOPL3VNVopCcK2M21JfDlM-sKJcmjgkvKq4CH4iYM9qTr-oipQ==
X-Firefox-Spdy: h2

cdn1.codashop.com/S/content/fonts/Lato/Lato-Bold.woff2

54.230.111.28

200 OK

211 kB

URL GET HTTP/2
cdn1.codashop.com/S/content/fonts/Lato/Lato-Bold.woff2
IP
54.230.111.28:443
ASN
#16509 AMAZON-02

Requested by
https://nr34kj7p.fcyz.my.id/fvr/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 211160, version 1.0
Size
211 kB (211160 bytes)
Hash
743278852fdad61a73198bc74d529af8
d0f790e800b87b0db1edc0aedd9f3a82f88629cc
57b0c1d7bee3f753da5e6aa215a417abfa87dd9798ef2483f42585bfb08d64d9

HTTP Headers

GET /S/content/fonts/Lato/Lato-Bold.woff2 HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nr34kj7p.fcyz.my.id
DNT: 1
Connection: keep-alive
Referer: https://cdn1.codashop.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-length: 211160
date: Thu, 18 Apr 2024 04:57:21 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST
last-modified: Thu, 09 Apr 2020 14:30:12 GMT
etag: "743278852fdad61a73198bc74d529af8"
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
vary: Origin
x-cache: Miss from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2f21prJdOQgNUTBgNcNnXaHClF9Ps8UDXJdpReRcHJ9CZzz0vMamjQ==
X-Firefox-Spdy: h2

cdn1.codashop.com/S/content/fonts/Lato/Lato-Light.woff2

54.230.111.28

200 OK

208 kB

URL GET HTTP/2
cdn1.codashop.com/S/content/fonts/Lato/Lato-Light.woff2
IP
54.230.111.28:443
ASN
#16509 AMAZON-02

Requested by
https://nr34kj7p.fcyz.my.id/fvr/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 207880, version 1.0
Size
208 kB (207880 bytes)
Hash
01b5dcc68aff09201f8e83a5e1c568ee
59f494bd2df4ad954d32b8cae8b5800d4834d716
3d2b4deb945a2e8b4a4fd551bd5c41ce8719d34fa4caefb7385829cf85cb7590

HTTP Headers

GET /S/content/fonts/Lato/Lato-Light.woff2 HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nr34kj7p.fcyz.my.id
DNT: 1
Connection: keep-alive
Referer: https://cdn1.codashop.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-length: 207880
date: Thu, 18 Apr 2024 04:57:21 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST
last-modified: Thu, 09 Apr 2020 14:21:48 GMT
etag: "01b5dcc68aff09201f8e83a5e1c568ee"
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
vary: Origin
x-cache: Miss from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: fnAk9BCEHXacvTwD3tocwos6BTqwF0neyHdkGIWW8Z8sNoIFvRXjOA==
X-Firefox-Spdy: h2

cdn1.codashop.com/S2/content/mobile/images/app/codashop-ico-192x192.eda9c373cc.png

54.230.111.28

200 OK

5.1 kB

URL GET HTTP/2
cdn1.codashop.com/S2/content/mobile/images/app/codashop-ico-192x192.eda9c373cc.png
IP
54.230.111.28:443
ASN
#16509 AMAZON-02

Requested by
https://nr34kj7p.fcyz.my.id/fvr/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
PNG image data, 192 x 192, 8-bit colormap, non-interlaced
Size
5.1 kB (5067 bytes)
Hash
eda9c373ccb4065459e0a9dd76c35348
03ac8f73f9d9f58a86db99aa4dd4947b481752e0
bac3a525d341ed1bde59059a94d6c04cacd69bba4aeb2768af781199c15f3ab6

HTTP Headers

GET /S2/content/mobile/images/app/codashop-ico-192x192.eda9c373cc.png HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 5067
date: Wed, 17 Apr 2024 05:21:27 GMT
last-modified: Tue, 16 Apr 2024 08:32:37 GMT
etag: "eda9c373ccb4065459e0a9dd76c35348"
x-amz-server-side-encryption: AES256
x-amz-version-id: sSwh4Q_izB27Ow7ZtKvfbvYRbAKIB1QX
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: AtVAguC5mkhsOBmOI3B2LyxhWC94s5HrLmw-bmwWhvgATPpq4wfXrA==
age: 84955
X-Firefox-Spdy: h2

cdn1.codashop.com/S/content/common/images/reskin/favicon.ico

54.230.111.28

200 OK

2.2 kB

URL GET HTTP/2
cdn1.codashop.com/S/content/common/images/reskin/favicon.ico
IP
54.230.111.28:443
ASN
#16509 AMAZON-02

Requested by
https://nr34kj7p.fcyz.my.id/fvr/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Size
2.2 kB (2190 bytes)
Hash
9141e5521105fb13c657480daf781484
1d0d577784430fce4badac4b6c8aa81bfbe45c8f
8af7dda580228d237c72eed44bce0912585241544a1feae96a464145efb542b2

HTTP Headers

GET /S/content/common/images/reskin/favicon.ico HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/x-icon
content-length: 2190
last-modified: Thu, 19 Aug 2021 08:47:21 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Thu, 18 Apr 2024 03:49:23 GMT
etag: "9141e5521105fb13c657480daf781484"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 57nFqJ-Q8CjGQa_-QkTyknaBAMWwx6w1yNUdhzEotR0jYONqxawQnQ==
age: 4079
X-Firefox-Spdy: h2

d1qgcmfii0ptfa.cloudfront.net/S/content/mobile/images/google_play_coda.png

143.204.42.138

200 OK

2.6 kB

URL GET HTTP/1.1
d1qgcmfii0ptfa.cloudfront.net/S/content/mobile/images/google_play_coda.png
IP
143.204.42.138:443
ASN
#16509 AMAZON-02

Requested by
https://nr34kj7p.fcyz.my.id/fvr/
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
PNG image data, 138 x 41, 8-bit colormap, non-interlaced
Size
2.6 kB (2631 bytes)
Hash
e7ebc6c74ec20ea3614970e178217c10
f667fbc525f046f8c6d7617541884c4d6ed52478
19c2b75fe23ae2238adbd7f34901396d4120605d9028c2fcc7bd3c010e27ef9a

HTTP Headers

GET /S/content/mobile/images/google_play_coda.png HTTP/1.1
Host: d1qgcmfii0ptfa.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 2631
Connection: keep-alive
Last-Modified: Mon, 17 Jul 2017 08:47:31 GMT
Content-Disposition: attachment
Accept-Ranges: bytes
Server: AmazonS3
Date: Thu, 18 Apr 2024 04:57:21 GMT
ETag: "e7ebc6c74ec20ea3614970e178217c10"
X-Cache: Hit from cloudfront
Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 0WtH3iIusJXWb8zVg_xXbrpXa5iahm-0hl2l4mJ8PXvg5t7R5yaH1A==
Age: 4080

d1qgcmfii0ptfa.cloudfront.net/S/content/mobile/images/app_store_coda.png

143.204.42.138

200 OK

2.8 kB

URL GET HTTP/1.1
d1qgcmfii0ptfa.cloudfront.net/S/content/mobile/images/app_store_coda.png
IP
143.204.42.138:443
ASN
#16509 AMAZON-02

Requested by
https://nr34kj7p.fcyz.my.id/fvr/
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
PNG image data, 138 x 41, 8-bit colormap, non-interlaced
Size
2.8 kB (2799 bytes)
Hash
cfd0f0cbf8aa1717324f64a438c378c5
deb76943cf9b96153b36c04c9de02996857a808b
6a69de99192160f4a77667679c5a985beb0758dd464c162f58e2f89b91d11011

HTTP Headers

GET /S/content/mobile/images/app_store_coda.png HTTP/1.1
Host: d1qgcmfii0ptfa.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 2799
Connection: keep-alive
Last-Modified: Mon, 17 Jul 2017 08:47:30 GMT
Content-Disposition: attachment
Accept-Ranges: bytes
Server: AmazonS3
Date: Thu, 18 Apr 2024 04:57:21 GMT
ETag: "cfd0f0cbf8aa1717324f64a438c378c5"
X-Cache: Hit from cloudfront
Via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: rgEJgruYIgTX01rmcD11zYwH9R0g3-cmaCnSFFlSHR8Ob54kSdRj3g==
Age: 3446

cdn1.codashop.com/P/airtime/w/css/airtime_v1.0a.css

54.230.111.28

200 OK

1.5 kB

URL GET HTTP/2
cdn1.codashop.com/P/airtime/w/css/airtime_v1.0a.css
IP
54.230.111.28:443
ASN
#16509 AMAZON-02

Requested by
https://nr34kj7p.fcyz.my.id/fvr/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
gzip compressed data, from Unix
Size
1.5 kB (1453 bytes)
Hash
e79e13a3b336a19105a3c6be43e8929c
b9a2f0d23c7b39c3a6d506afa4e4b8e0bfac859c
bf3b1f0c0b7bcb327ee30ebf27b0979ad1beb67e18e5f4f7bed080db010ae84b

HTTP Headers

GET /P/airtime/w/css/airtime_v1.0a.css HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: text/css
date: Thu, 18 Apr 2024 04:57:19 GMT
last-modified: Fri, 13 Mar 2020 03:56:02 GMT
etag: W/"753a330f95a906499abe488e677662d3"
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3eif8RAij9P-Yx-Gel4E91N_FwOLqyG29_p8SeYwHZMAuYgLyULmCw==
X-Firefox-Spdy: h2

www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js

142.250.74.35

200 OK

203 kB

URL GET HTTP/2
www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://nr34kj7p.fcyz.my.id/fvr/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
JavaScript source, ASCII text, with very long lines (554)
Size
203 kB (203369 bytes)
Hash
e9ccb3dbde79ba5ffdf9cad4b32d59fd
3a8cd67adc7c885bdf683f1e7f491e6a4a50679f
8f2c6777c7ccc01ab67290fa8acd5a4c4866be64129f39dfaeb9197dfa15e137

HTTP Headers

GET /recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nr34kj7p.fcyz.my.id
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 203369
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 13 Apr 2024 02:30:15 GMT
expires: Sun, 13 Apr 2025 02:30:15 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 29 Mar 2024 04:30:36 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 440826
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn1.codashop.com/S2/content/common/js/infoBar.38acc407b3.js

54.230.111.28

200 OK

2.1 kB

URL GET HTTP/2
cdn1.codashop.com/S2/content/common/js/infoBar.38acc407b3.js
IP
54.230.111.28:443
ASN
#16509 AMAZON-02

Requested by
https://nr34kj7p.fcyz.my.id/fvr/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (2163), with no line terminators
Size
2.1 kB (2106 bytes)
Hash
61a5dda1acff787320fc2f4e36f1e4f4
779d0360b878d3772a1a8bd40c3b157165d1a7bf
e342eed229c64a457df9aa7137b65139369bc15ada6b79eddec49449346b95fb

HTTP Headers

GET /S2/content/common/js/infoBar.38acc407b3.js HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
last-modified: Fri, 04 Sep 2020 02:37:42 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Thu, 18 Apr 2024 04:52:03 GMT
etag: W/"38acc407b31daa48fafd99a877c64b5d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Fwb9j-TNE09y2uzedHqmiVv5gHk5trZ006RT9kVEB_W5pGYTPCQ8iQ==
age: 316
X-Firefox-Spdy: h2

script.tapfiliate.com/tapfiliate.js

54.230.111.74

200 OK

12 kB

URL GET HTTP/2
script.tapfiliate.com/tapfiliate.js
IP
54.230.111.74:443
ASN
#16509 AMAZON-02

Requested by
https://nr34kj7p.fcyz.my.id/fvr/
Certificate
IssuerAmazon
Subjectbackend.tapfiliate.com
Fingerprint08:49:72:00:4F:7E:51:98:05:55:F9:6A:56:27:5A:78:BD:99:57:C4
ValidityWed, 04 Oct 2023 00:00:00 GMT - Sat, 02 Nov 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (11592), with no line terminators
Size
12 kB (11592 bytes)
Hash
ddbb39a9e8e67d5067145f8aa76b938d
2f7cacfbcaaf8291a1a933898d1dff0b21edf1cb
44798a517a7c8d28c1e371a1b8b869bae1608bd48df7ed50800cbed8703612c1

HTTP Headers

GET /tapfiliate.js HTTP/1.1
Host: script.tapfiliate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 12 Oct 2022 12:34:24 GMT
server: AmazonS3
content-encoding: gzip
date: Thu, 18 Apr 2024 01:49:37 GMT
etag: W/"ddbb39a9e8e67d5067145f8aa76b938d"
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ebCvIePVT447UTM4kNk_KQ7pFUV3W38P6eZVX8FSb4FvQLTI4b5xpw==
age: 60709
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2

cdn1.codashop.com/S/content/common/images/grab.29dad06670f873936002ddb910253a4b.png

54.230.111.28

200 OK

62 kB

URL GET HTTP/2
cdn1.codashop.com/S/content/common/images/grab.29dad06670f873936002ddb910253a4b.png
IP
54.230.111.28:443
ASN
#16509 AMAZON-02

Requested by
https://nr34kj7p.fcyz.my.id/fvr/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
PNG image data, 2000 x 800, 8-bit/color RGBA, non-interlaced
Size
62 kB (61755 bytes)
Hash
29dad06670f873936002ddb910253a4b
523ee4adf550df78348cf7528580171f0828f2b4
8871194dc3ae9035b5bb04c84aa7b82afa7442daf2bab5f1393a5751e6082a10

HTTP Headers

GET /S/content/common/images/grab.29dad06670f873936002ddb910253a4b.png HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
content-length: 61755
last-modified: Tue, 05 May 2020 03:32:54 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Thu, 18 Apr 2024 04:57:19 GMT
etag: "29dad06670f873936002ddb910253a4b"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Oa_6VvOVojZg9scWI0UosiqwK0BPbIBm3G_tDWhWhbxnWgbBGA6ZHA==
X-Firefox-Spdy: h2

cdn1.codashop.com/S2/content/common/js/payment-channel-suggestion.535f3c6f70.js

54.230.111.28

200 OK

1.9 kB

URL GET HTTP/2
cdn1.codashop.com/S2/content/common/js/payment-channel-suggestion.535f3c6f70.js
IP
54.230.111.28:443
ASN
#16509 AMAZON-02

Requested by
https://nr34kj7p.fcyz.my.id/fvr/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (1959), with no line terminators
Size
1.9 kB (1887 bytes)
Hash
4f04b352041bdea32f0207797a53970f
6d4bddeab49faa3cb3d3b35c737a3a14f7fd120b
ccc96932a6384222d948362a27564274e2d33f8c70ce64ebd2a6c473b1719d06

HTTP Headers

GET /S2/content/common/js/payment-channel-suggestion.535f3c6f70.js HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
last-modified: Fri, 04 Sep 2020 02:37:42 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Thu, 18 Apr 2024 04:52:03 GMT
etag: W/"535f3c6f7015dbae9e6b2a4987192e2b"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: wWp4Bx3KDiztiow7bxHJmW3JW9yNqD4G0uQKPUb3Q2lLxkQC1sf-BQ==
age: 316
X-Firefox-Spdy: h2

cdn1.codashop.com/S/content/common/js/xss.min.js

54.230.111.28

200 OK

29 kB

URL GET HTTP/2
cdn1.codashop.com/S/content/common/js/xss.min.js
IP
54.230.111.28:443
ASN
#16509 AMAZON-02

Requested by
https://nr34kj7p.fcyz.my.id/fvr/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (28924), with no line terminators
Size
29 kB (28924 bytes)
Hash
4947ff982fb69173f95da79b538f254d
884db3bf10e92790cf6d9937731f70d59c87cc9f
0278b60e08b67fb8ae86c56dd80075e94e1d51113eb21ade41996147c601dfe6

HTTP Headers

GET /S/content/common/js/xss.min.js HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 12 Nov 2019 04:16:51 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Thu, 18 Apr 2024 01:36:15 GMT
etag: W/"4947ff982fb69173f95da79b538f254d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: H6FhcKRO9kvhg8P-AJLxBQKGZ2sJ0cpi_7hVx-7ZUuLdhRrrPD69JQ==
age: 12064
X-Firefox-Spdy: h2

www.google.com/recaptcha/api.js

142.250.74.164

200 OK

850 B

URL GET HTTP/2
www.google.com/recaptcha/api.js
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://nr34kj7p.fcyz.my.id/fvr/
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintCC:CC:99:46:65:6C:77:0B:C8:AA:AD:5E:58:B6:2D:19:B2:C7:0B:06
ValidityMon, 04 Mar 2024 07:19:07 GMT - Mon, 27 May 2024 07:19:06 GMT

File type
JavaScript source, ASCII text, with very long lines (850), with no line terminators
Size
850 B (850 bytes)
Hash
1613f25e7a73976f440bd3c174bc1dc3
ffa5be6619ae6109c6e412186e0f12b8d8a73cd9
091a7de491da06df67c869b9905c1d028eb2816e68360c0b5b7a4fa8ce590322

HTTP Headers

GET /recaptcha/api.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
expires: Thu, 18 Apr 2024 04:57:18 GMT
date: Thu, 18 Apr 2024 04:57:18 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

nr34kj7p.fcyz.my.id/css/popupLogin.css

188.114.96.1

200 OK

2.2 kB

URL GET HTTP/3
nr34kj7p.fcyz.my.id/css/popupLogin.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nr34kj7p.fcyz.my.id/fvr/
Certificate
IssuerGoogle Trust Services LLC
Subjectfcyz.my.id
Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25
ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT

File type
ASCII text, with very long lines (2603), with no line terminators
Size
2.2 kB (2244 bytes)
Hash
132ae2b937805fb20662171424973d82
2cade27c0ecc7002b82117e92278b62c0f0f3122
2d4b6c88b764b6f6463b45f84209aa5af2f6972beff4a6f4fad284e3b032c05d

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Coda Payments

HTTP Headers

GET /css/popupLogin.css HTTP/1.1
Host: nr34kj7p.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/fvr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 18 Apr 2024 04:57:18 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 00:27:34 GMT
last-modified: Sun, 06 Feb 2022 18:31:28 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 16184
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=W91iuzkMEK630pfMhEpZTBzB0JmHyjIUusev8HI27WeJ3HGLC2FRM2mX4JOigE5oeDVkGmU3v4eSYzvpHJIXZn%2FB85EUmE0ywhB%2BkkU6brTehZAGiv0FcYnebX0xkU%2FQvt2sQujG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876212bff8350b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn1.codashop.com/S2/content/common/css/shared-shop-content.e6202b83de.css

54.230.111.28

200 OK

3.2 kB

URL GET HTTP/2
cdn1.codashop.com/S2/content/common/css/shared-shop-content.e6202b83de.css
IP
54.230.111.28:443
ASN
#16509 AMAZON-02

Requested by
https://nr34kj7p.fcyz.my.id/fvr/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (3225), with no line terminators
Size
3.2 kB (3237 bytes)
Hash
25fa185279e8f6803556a00a262f95c5
d932b37655b18e119aaf89ccbe833da32b1fe3a4
ab288c27611661da5d71e78e22a89c3180e1077fcbf2349417db3640c99a742c

HTTP Headers

GET /S2/content/common/css/shared-shop-content.e6202b83de.css HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
last-modified: Tue, 16 Apr 2024 08:32:37 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: vtuxqZ9LTNM5BJpsFKEthwShPqOoXvRU
server: AmazonS3
content-encoding: gzip
date: Wed, 17 Apr 2024 09:04:36 GMT
etag: W/"e6202b83defd6474350841e595260599"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9nrjkAYGuFWXZqFx9P98DmDBNygVHJAUuvQt-LZOtzAkIxenrLBSGw==
age: 71563
X-Firefox-Spdy: h2

cdn1.codashop.com/S/content/common/js/jquery.mask.min.js

54.230.111.28

200 OK

7.4 kB

URL GET HTTP/2
cdn1.codashop.com/S/content/common/js/jquery.mask.min.js
IP
54.230.111.28:443
ASN
#16509 AMAZON-02

Requested by
https://nr34kj7p.fcyz.my.id/fvr/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (7660), with no line terminators
Size
7.4 kB (7448 bytes)
Hash
6409d62d5717b9730b29269652900057
e3ee78cc51381e332376792b552da91391eb43ec
18945d2c761b9a1534e686ca2237bc2d6f7afc9687099e1cfead10e1269b20bb

HTTP Headers

GET /S/content/common/js/jquery.mask.min.js HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
last-modified: Thu, 20 Dec 2018 08:04:35 GMT
content-disposition: attachment
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Thu, 18 Apr 2024 01:12:12 GMT
etag: W/"35d9db48e3112f35d81e70b98457aa42"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: rzYv6KjTFKyh279lT7bXQrY6vRmXkeNgZej9DUWfIZolpAq3nCv-Hg==
age: 13507
X-Firefox-Spdy: h2

cdn1.codashop.com/S/content/common/css/flags.css

54.230.111.28

200 OK

12 kB

URL GET HTTP/2
cdn1.codashop.com/S/content/common/css/flags.css
IP
54.230.111.28:443
ASN
#16509 AMAZON-02

Requested by
https://nr34kj7p.fcyz.my.id/fvr/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
ASCII text
Size
12 kB (12399 bytes)
Hash
48625f4127086c12c9db05064a6bab03
25fb09d9048d67c7e0cdc6c02be8f34140a35082
f6a3220f393767077637471193f95bbde06a0928b0fe5fda70a0aa01cd2cb7b0

HTTP Headers

GET /S/content/common/css/flags.css HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
date: Thu, 18 Apr 2024 04:57:19 GMT
last-modified: Thu, 20 Dec 2018 04:54:20 GMT
etag: W/"48625f4127086c12c9db05064a6bab03"
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: A7LGoiVrYVFn1rXpnLi_-abVJwFVPvZBT6GVKrJ0CxyvQCOls6odJw==
X-Firefox-Spdy: h2

cdn1.codashop.com/S2/content/common/css/shared-fontfaces.b6c83d3582.css

54.230.111.28

200 OK

2.8 kB

URL GET HTTP/2
cdn1.codashop.com/S2/content/common/css/shared-fontfaces.b6c83d3582.css
IP
54.230.111.28:443
ASN
#16509 AMAZON-02

Requested by
https://nr34kj7p.fcyz.my.id/fvr/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (2784), with no line terminators
Size
2.8 kB (2784 bytes)
Hash
b6c83d3582430126098676cc14c0b7ae
a117a8e06637487fabce45c1716e33ce4008e560
f1dc9f4f3addbfa08c795318bfa457a0bf60029d906c694e6aa46d5db79ab50f

HTTP Headers

GET /S2/content/common/css/shared-fontfaces.b6c83d3582.css HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
date: Thu, 18 Apr 2024 04:57:20 GMT
last-modified: Thu, 18 Apr 2024 02:16:31 GMT
etag: W/"b6c83d3582430126098676cc14c0b7ae"
x-amz-server-side-encryption: AES256
x-amz-version-id: J84eEGtj1oTbCxL98xiDMkiwSX8gz0TM
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: c_UZJj_8ilbo5lIDtUW9-ctU5C0du6OAjMtc4fnjl8qhLUByPhNBCQ==
X-Firefox-Spdy: h2

cdn1.codashop.com/S2/content/common/css/shared-topnav2.5566e671b1.css

54.230.111.28

200 OK

6.9 kB

URL GET HTTP/2
cdn1.codashop.com/S2/content/common/css/shared-topnav2.5566e671b1.css
IP
54.230.111.28:443
ASN
#16509 AMAZON-02

Requested by
https://nr34kj7p.fcyz.my.id/fvr/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (6861), with no line terminators
Size
6.9 kB (6861 bytes)
Hash
5566e671b1a56ed10ee4665797bca5ba
4e1268e9e8cc9b32d46d9e9b64052ca61cc0c688
bbf453aa757d9ee7314e68e9f134a58c34fac46d39bfbf282f9e8e03dbea7df0

HTTP Headers

GET /S2/content/common/css/shared-topnav2.5566e671b1.css HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
date: Thu, 18 Apr 2024 04:57:19 GMT
last-modified: Thu, 26 Nov 2020 09:41:30 GMT
etag: W/"5566e671b1a56ed10ee4665797bca5ba"
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: yhXzmx6iVoAi8kd7lDAcLSLGeHc8GluQ8WRRlj7oDahQYeN64jinKg==
X-Firefox-Spdy: h2

cdn1.codashop.com/S2/content/common/js/shop-topnav2.7e1fed6bdf.js

54.230.111.28

200 OK

7.2 kB

URL GET HTTP/2
cdn1.codashop.com/S2/content/common/js/shop-topnav2.7e1fed6bdf.js
IP
54.230.111.28:443
ASN
#16509 AMAZON-02

Requested by
https://nr34kj7p.fcyz.my.id/fvr/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (7489), with no line terminators
Size
7.2 kB (7249 bytes)
Hash
837ad2eb3ceaba97e69a5bc5907656bd
db034dfdf9ad78e25abb924c437be76ce42af461
c77b7db6a323fa7dbe5f0c467d454b65fe161328e2b30d3d67699c4138632508

HTTP Headers

GET /S2/content/common/js/shop-topnav2.7e1fed6bdf.js HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 11 Apr 2024 08:06:07 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: M5ROpYbaY0vcXvByx9q_KAut826Xsmcs
server: AmazonS3
content-encoding: gzip
date: Wed, 17 Apr 2024 08:22:03 GMT
etag: W/"7e1fed6bdfc0657c0dedc6e6c19553fa"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: GjWsoSkBI5Dw-k0MiK_fPqrLCXSt_o97gmkUIZEREO7K97BsTRSDVw==
age: 74116
X-Firefox-Spdy: h2

cdn1.codashop.com/S2/content/common/css/shared-footer2.2ce4d6e299.css

54.230.111.28

200 OK

3.7 kB

URL GET HTTP/2
cdn1.codashop.com/S2/content/common/css/shared-footer2.2ce4d6e299.css
IP
54.230.111.28:443
ASN
#16509 AMAZON-02

Requested by
https://nr34kj7p.fcyz.my.id/fvr/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (3650), with no line terminators
Size
3.7 kB (3650 bytes)
Hash
2ce4d6e2994e655224b0aa48265ae15a
e08c6461b3168581712b18d9c9bd9343422f7e14
cfdc96da2e956842b4cbea254d93c923a9c7d5f1443385996a0f2c80cc4b0f76

HTTP Headers

GET /S2/content/common/css/shared-footer2.2ce4d6e299.css HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
date: Thu, 18 Apr 2024 02:16:33 GMT
last-modified: Thu, 18 Apr 2024 02:16:31 GMT
etag: W/"2ce4d6e2994e655224b0aa48265ae15a"
x-amz-server-side-encryption: AES256
x-amz-version-id: yv9.XMqn3v0qS4JCQBpVElKtsV47L8w9
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1-Me7sD1JU0tq9aOCBaIM52Rmv7dQD7mXD6yu1CnlCDsao3TutGlcg==
age: 9646
X-Firefox-Spdy: h2

stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css

104.18.11.207

200 OK

31 kB

URL GET HTTP/2
stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
IP
104.18.11.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nr34kj7p.fcyz.my.id/fvr/
Certificate
IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63
ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT

File type
ASCII text, with very long lines (30837)
Size
31 kB (31000 bytes)
Hash
269550530cc127b6aa5a35925a7de6ce
512c7d79033e3028a9be61b540cf1a6870c896f8
799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd

HTTP Headers

GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nr34kj7p.fcyz.my.id
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 18 Apr 2024 04:57:18 GMT
content-type: text/css; charset=utf-8
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31919000
content-encoding: br
etag: W/"269550530cc127b6aa5a35925a7de6ce"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 03/18/2024 12:28:12
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1078
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 863dbe42d45a549635492052e9970fd7
cdn-cache: HIT
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 876212c01f5a5687-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn1.codashop.com/S/content/common/css/jquery-ui-1.12.1.css

54.230.111.28

200 OK

36 kB

URL GET HTTP/2
cdn1.codashop.com/S/content/common/css/jquery-ui-1.12.1.css
IP
54.230.111.28:443
ASN
#16509 AMAZON-02

Requested by
https://nr34kj7p.fcyz.my.id/fvr/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (2363)
Size
36 kB (35973 bytes)
Hash
c4a88ec0cb998929a670c0c58d7dc526
03135a88e8dbc36020dd453d1e7407ce9a3a2cc2
44f8a56d427917b5fa0dd7933ba545679be5e6b3b93099e64a4e29c2159f57c0

HTTP Headers

GET /S/content/common/css/jquery-ui-1.12.1.css HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
date: Thu, 18 Apr 2024 02:16:33 GMT
last-modified: Thu, 20 Dec 2018 07:52:04 GMT
etag: W/"c4a88ec0cb998929a670c0c58d7dc526"
content-disposition: attachment
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 5gVYBep4G42IpmvzIqAP735pi34ToK-tTu5RA9YRdZH-sR7SKsvCvA==
age: 9646
X-Firefox-Spdy: h2

nr34kj7p.fcyz.my.id/css/twitter.css

188.114.96.1

200 OK

1.9 kB

URL GET HTTP/3
nr34kj7p.fcyz.my.id/css/twitter.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nr34kj7p.fcyz.my.id/fvr/
Certificate
IssuerGoogle Trust Services LLC
Subjectfcyz.my.id
Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25
ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT

File type
ASCII text, with very long lines (2108), with no line terminators
Size
1.9 kB (1896 bytes)
Hash
ed1ca2901a80d551b062ee62367f974c
d4a0ac67459b72ee1a9217c4feae0d18052f387b
547014d6772b63fdc807bfe1a71788a75a4b41735e4cf75c7c2736ebb7b94c9a

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Coda Payments

HTTP Headers

GET /css/twitter.css HTTP/1.1
Host: nr34kj7p.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/fvr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 18 Apr 2024 04:57:18 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 00:27:34 GMT
last-modified: Sun, 06 Feb 2022 18:31:28 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 16184
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YQwjv9Q0%2F2IJ0YqWdJhhXWnpTnAYrRBxspXJbrOQAKnZj9nJx6r2xEn0A5tU8bBMkAEvG9H2VL38bRir%2FqrwmVPScrfs47%2FqVEHg6wCLQtBc3nWywHZS5Wk9yVRSzMQ%2BChRaoqVb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876212bff8380b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

nr34kj7p.fcyz.my.id/css/spinner.58144.css

188.114.96.1

200 OK

2.2 kB

URL GET HTTP/3
nr34kj7p.fcyz.my.id/css/spinner.58144.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nr34kj7p.fcyz.my.id/fvr/
Certificate
IssuerGoogle Trust Services LLC
Subjectfcyz.my.id
Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25
ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT

File type
ASCII text, with very long lines (2460), with no line terminators
Size
2.2 kB (2236 bytes)
Hash
ee824601116a720609b935eff142581d
17e6b55baec1ca23273589b72c222b4cbfbdeaed
4be7ac29546a8f58a9ae8749cf83b7ee8b0f38a21d6edb78b98e1dcc178dd2d1

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Coda Payments

HTTP Headers

GET /css/spinner.58144.css HTTP/1.1
Host: nr34kj7p.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/fvr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 18 Apr 2024 04:57:18 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 00:27:35 GMT
last-modified: Sun, 06 Feb 2022 18:31:28 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 16183
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gDdwcwpFTf09GgWD9stjbvNQhIQ2TDI7X%2BrghyXoa%2FJs5tut8z92y8vvcsg5y1XNO%2BfhLeXK48sS53iztmooufrkYDRgleDjedVFW5GN3OjAEgfaliSHN%2BU6xmK4%2FjSatGc4D04Y"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876212bff83a0b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn1.codashop.com/S2/content/mobile/css/productPage/responsive-product-page2.7ec2b81ede.css

54.230.111.28

200 OK

27 kB

URL GET HTTP/2
cdn1.codashop.com/S2/content/mobile/css/productPage/responsive-product-page2.7ec2b81ede.css
IP
54.230.111.28:443
ASN
#16509 AMAZON-02

Requested by
https://nr34kj7p.fcyz.my.id/fvr/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (26941), with no line terminators
Size
27 kB (26941 bytes)
Hash
7ec2b81ede93e59a3c985e6656b87427
1492b90f5361149a1d84d0870a5fcb15e1a9f60f
8225b86ace7fec322a3bcfb3549603351fef4111b98595a617499a69c8d6269b

HTTP Headers

GET /S2/content/mobile/css/productPage/responsive-product-page2.7ec2b81ede.css HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
last-modified: Fri, 04 Sep 2020 02:37:43 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Thu, 18 Apr 2024 02:31:11 GMT
etag: W/"7ec2b81ede93e59a3c985e6656b87427"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: HmTaErFvWOe-ODJH1lFCmYLYv4jSRMmU2O1FEZQdCTU8S5DHM1NKGQ==
age: 8768
X-Firefox-Spdy: h2

nr34kj7p.fcyz.my.id/css/facebook.css

188.114.96.1

200 OK

3.3 kB

URL GET HTTP/3
nr34kj7p.fcyz.my.id/css/facebook.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nr34kj7p.fcyz.my.id/fvr/
Certificate
IssuerGoogle Trust Services LLC
Subjectfcyz.my.id
Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25
ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT

File type
ASCII text, with very long lines (3652), with no line terminators
Size
3.3 kB (3292 bytes)
Hash
cf40acbd99bff687c6b0ead7b5149a8a
feee1d79f66a0a47216f9c1bdfca2cde0da0b4c9
321f3512a8cf477d7129ecd68653261383d91d29204f9119061311c26a7f3133

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Coda Payments

HTTP Headers

GET /css/facebook.css HTTP/1.1
Host: nr34kj7p.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/fvr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 18 Apr 2024 04:57:18 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 00:27:34 GMT
last-modified: Sun, 06 Feb 2022 18:31:28 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 16184
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=x7Jxu4P4uThvtBdS2FMGQaTmGbjKCe4ShvxBPox9tn%2B31orm5qjny3%2FDppQAVsElO%2F8VJEPmGvsAbrDPGfJzFp5CIbpVsCNkghm4Mc6Cc1n6z27YxXsFdQpENauHXAxcXaJZLaZ4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876212bff8360b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (25)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL