| cdnjs.cloudflare.com/ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.css | 104.17.24.14 | 200 OK | 6.3 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.css IP104.17.24.14:443
Requested byhttps://nr34kj7p.fcyz.my.id/fvr/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
Hash0920ea34072683229e6ea8299345cd09 0903033a844336f7c78ed4abbbcd92cd3115a03e f37d6f502a5a961ac5c3f17c8d58685ff6b0dc0f69c2dcdd379ccabc96ec3bf2
GET /ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 04:57:18 GMT
content-type: text/css; charset=utf-8
content-length: 6252
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ed9-14d38"
last-modified: Mon, 04 May 2020 16:12:09 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 629768
expires: Tue, 08 Apr 2025 04:57:18 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pgQAVGvTLq4dtat4660lwQFESWR%2Fp0w8Pm6FHiCGLl9UNBhXgO0J5HeSYD4jHCg5uUc8vc5HjSGDyQJR%2BceVc8n4myBBVZOnvpfSWzJIH98WJ7vscdiTPauJv5C4lw8oVWBhlav6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 876212c01de2b509-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| nr34kj7p.fcyz.my.id/img/facebook_text.png | 188.114.96.1 | 200 OK | 29 kB |
URL GET HTTP/3nr34kj7p.fcyz.my.id/img/facebook_text.png IP188.114.96.1:443
Requested byhttps://nr34kj7p.fcyz.my.id/fvr/ CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typePNG image data, 604 x 158, 8-bit/color RGBA, non-interlaced Hash74190b93fc4f5d88f0c8e6411ba20bd8 89ce2ecb660a90b8e6ed1b335443d7767c59f28a 092a3cd5f86b3f039feefdeb86694cd16ae545af214cfda614bdbbe2d1bde401
Analyzer | Verdict | Alert | OpenPhish | phishing | Coda Payments |
GET /img/facebook_text.png HTTP/1.1
Host: nr34kj7p.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/fvr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 04:57:18 GMT
content-type: image/png
content-length: 28789
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 04:57:18 GMT
last-modified: Sun, 06 Feb 2022 18:31:28 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=adUipzxxptw%2F7exRM9FycPjXgMYHVdjMXwzpHAs2x1LYJAmjxezDn%2FbHBreEFVhaB8vsXxvDD6YqTsGczcDYAvVPZZzSwph%2BSfgWx6LQ2kbLkNpOfVomFPLBbfWsV489%2FOmLGNmF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876212c008470b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cdn1.codashop.com/S2/content/mobile/images/error-icon.20986d3fe0.png | 54.230.111.28 | 200 OK | 802 B |
URL GET HTTP/2cdn1.codashop.com/S2/content/mobile/images/error-icon.20986d3fe0.png IP54.230.111.28:443
Requested byhttps://nr34kj7p.fcyz.my.id/fvr/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typePNG image data, 38 x 38, 8-bit colormap, non-interlaced Hash20986d3fe0ddac454b9f46bc34ce8952 defb0e4158b8a9576e663b240336a9bbb28d3267 d7ece5222547615bcb5066478f209b6a3e7c3b3c88667972e937c8481688eed7
GET /S2/content/mobile/images/error-icon.20986d3fe0.png HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 802
last-modified: Tue, 14 Dec 2021 02:49:38 GMT
x-amz-version-id: yQvHZsqjV.2CRKMhv5iNVz5bc0xc5Mqc
accept-ranges: bytes
server: AmazonS3
date: Thu, 18 Apr 2024 04:57:18 GMT
etag: "20986d3fe0ddac454b9f46bc34ce8952"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: CSQl96SEAmuOQ_vz7HejSbjySsEeyTG8PznPYenX884pAN48lS0nZw==
age: 8660
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S/content/social-media-logo/36/socmed-youtube-H36.png | 54.230.111.28 | 200 OK | 2.2 kB |
URL GET HTTP/2cdn1.codashop.com/S/content/social-media-logo/36/socmed-youtube-H36.png IP54.230.111.28:443
Requested byhttps://nr34kj7p.fcyz.my.id/fvr/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typePNG image data, 51 x 36, 8-bit/color RGBA, non-interlaced Hash123c968b7d12fcf714b9d2af208d666a e81c6311be251ac7a4174d6a16c772e8ac78528e dcf5dc23bfca5d9b4b2a36c9db76f5375f51417bde2b33f1c60e3925c814d361
GET /S/content/social-media-logo/36/socmed-youtube-H36.png HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 2216
date: Thu, 18 Apr 2024 02:48:22 GMT
last-modified: Fri, 24 Apr 2020 04:39:27 GMT
etag: "123c968b7d12fcf714b9d2af208d666a"
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: sLIUfo9Puythzzh3dCO7WuR6jn6QzvIifNfFInGVpyOWkw7-pdv83w==
age: 7737
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S/content/social-media-logo/36/socmed-instagram-H36.png | 54.230.111.28 | 200 OK | 4.7 kB |
URL GET HTTP/2cdn1.codashop.com/S/content/social-media-logo/36/socmed-instagram-H36.png IP54.230.111.28:443
Requested byhttps://nr34kj7p.fcyz.my.id/fvr/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typePNG image data, 36 x 36, 8-bit/color RGBA, non-interlaced Hasha91be2e400b7f0dc66247427dfaffcf3 900e87486aa051659e114eb5b7a2980d75e7889a 62437412556a804293516df99c0970427549b1a50258462035410072f96dd093
GET /S/content/social-media-logo/36/socmed-instagram-H36.png HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 4678
last-modified: Fri, 24 Apr 2020 04:39:27 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Thu, 18 Apr 2024 04:57:18 GMT
etag: "a91be2e400b7f0dc66247427dfaffcf3"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: HPpZQ4O1yOIUy24DLiF_aCdwocHBIj_376JlVC_Bs8c204EBBrapRg==
age: 14996
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S/content/mobile/images/codashop-logo-new-3a.png | 54.230.111.28 | 200 OK | 9.9 kB |
URL GET HTTP/2cdn1.codashop.com/S/content/mobile/images/codashop-logo-new-3a.png IP54.230.111.28:443
Requested byhttps://nr34kj7p.fcyz.my.id/fvr/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typePNG image data, 636 x 140, 8-bit/color RGBA, non-interlaced Hash34c07d92a1940ff45b0c59875cba9815 b54b870ec327fe1ff53828cf3696fb48d6f151d7 ce568121eb1ecb0aae759a502d54ed5907d8e24778d9a6bd2c28cda62945952c
GET /S/content/mobile/images/codashop-logo-new-3a.png HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 9858
last-modified: Thu, 27 Oct 2022 07:27:13 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: rFQqGopZFLtORw_yVR3WdRQIxEHGV7Al
accept-ranges: bytes
server: AmazonS3
date: Thu, 18 Apr 2024 04:57:18 GMT
etag: "34c07d92a1940ff45b0c59875cba9815"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: XkejnTO9ehay2sbHwbtuu2cZydaw4yA3YlKLEqHUQaB8blK7gP5jTg==
age: 197
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S/content/common/images/denom-image/FreeFire/Freefire_diamonds.png | 54.230.111.28 | 200 OK | 5.1 kB |
URL GET HTTP/2cdn1.codashop.com/S/content/common/images/denom-image/FreeFire/Freefire_diamonds.png IP54.230.111.28:443
Requested byhttps://nr34kj7p.fcyz.my.id/fvr/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typePNG image data, 100 x 100, 8-bit colormap, non-interlaced Hash28380515fca2c6f9a34c8d63c84082ee 8f4e3f2a27ac7daf8d4ad527df869e3283280d2e 7c77ef25ab71668ce14480e52815e31bcf9e19f2409889048c0c00bde9716895
GET /S/content/common/images/denom-image/FreeFire/Freefire_diamonds.png HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 5052
last-modified: Wed, 16 Mar 2022 14:39:10 GMT
x-amz-version-id: M7elHFq6ZhRZdt3T0xX6NlAMaSWhq70l
accept-ranges: bytes
server: AmazonS3
date: Thu, 18 Apr 2024 04:20:52 GMT
etag: "28380515fca2c6f9a34c8d63c84082ee"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3Jt_PK7FNQ8amAzfW5bb2k1jkC9eeFMjOMoebr33Vy_IpceODlKJTg==
age: 2187
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S/content/social-media-logo/36/socmed-facebook-msg-H36.png | 54.230.111.28 | 200 OK | 2.9 kB |
URL GET HTTP/2cdn1.codashop.com/S/content/social-media-logo/36/socmed-facebook-msg-H36.png IP54.230.111.28:443
Requested byhttps://nr34kj7p.fcyz.my.id/fvr/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typePNG image data, 36 x 36, 8-bit/color RGBA, non-interlaced Hashe3443d0d8aea42fc61368b9792b6fdc3 6d0f867176171d6dd3fe1e052251b7fdc8c479ca e6ff78cbc0e7a99c0243089cd0357f70d4432faea71e5b43ebfa466a166939d6
GET /S/content/social-media-logo/36/socmed-facebook-msg-H36.png HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 2866
last-modified: Fri, 24 Apr 2020 04:39:27 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Thu, 18 Apr 2024 01:36:16 GMT
etag: "e3443d0d8aea42fc61368b9792b6fdc3"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: cOVg1Z5dswPuKYi7dMnsJQ6WLKO23GI2c8r8SJq17dT3DY4FvxLnIg==
age: 12063
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S2/content/common/js/third_party_common.0859f0e010.js | 54.230.111.28 | 200 OK | 278 B |
URL GET HTTP/2cdn1.codashop.com/S2/content/common/js/third_party_common.0859f0e010.js IP54.230.111.28:443
Requested byhttps://nr34kj7p.fcyz.my.id/fvr/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with no line terminators Hash0859f0e01014515a05f1738b1ad2975d 2ce5a8530a35a3df627384c63add94b4324ab222 d617f26025f9d24f380f09a7fa7bec6d0306163e75de36e17fc198f4d8450a5b
GET /S2/content/common/js/third_party_common.0859f0e010.js HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
content-length: 278
last-modified: Tue, 16 Apr 2024 08:32:37 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: RfVIQpQSBHD2KEy0sToKfMPY5K3Yk5UR
accept-ranges: bytes
server: AmazonS3
date: Thu, 18 Apr 2024 04:52:03 GMT
etag: "0859f0e01014515a05f1738b1ad2975d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: tpunOWZ_wcGUkRFzyNTCNTvw0Hn9SfA3r2Wh7Odft5BD0mZ9crntbw==
age: 316
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S/content/social-media-logo/36/socmed-facebook-H36.png | 54.230.111.28 | 200 OK | 2.9 kB |
URL GET HTTP/2cdn1.codashop.com/S/content/social-media-logo/36/socmed-facebook-H36.png IP54.230.111.28:443
Requested byhttps://nr34kj7p.fcyz.my.id/fvr/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typePNG image data, 36 x 36, 8-bit/color RGBA, non-interlaced Hashcf9659fa3891add490cb7d0d099d72ac 85581945ff05f48b3a652ba3e90ae44d97b18cf1 76db9987bb4f902e6d4a6702577717a6d6afff1bef8eb6dfce62c5c69e8d707d
GET /S/content/social-media-logo/36/socmed-facebook-H36.png HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 2890
last-modified: Fri, 24 Apr 2020 04:39:27 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Thu, 18 Apr 2024 04:57:18 GMT
etag: "cf9659fa3891add490cb7d0d099d72ac"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: J53AaGF2RY4sHEoXA3t7jLoh6RWrP3CAhFWMmiv1OyXhRaw19rDzhg==
age: 8766
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S/content/common/images/mno/CODACASH_ID_CHNL_LOGO.png | 54.230.111.28 | 200 OK | 4.1 kB |
URL GET HTTP/2cdn1.codashop.com/S/content/common/images/mno/CODACASH_ID_CHNL_LOGO.png IP54.230.111.28:443
Requested byhttps://nr34kj7p.fcyz.my.id/fvr/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typePNG image data, 172 x 41, 8-bit/color RGBA, non-interlaced Hash486b3c9bb17c7a017c06a552430ba2f0 d95d8d56ba6f4cada2d2b28c8a05bcb5d221de64 03120ad80524a1f2cf812d7da99f09fc785b6d0c2be0cb6609b96c6387243f1a
GET /S/content/common/images/mno/CODACASH_ID_CHNL_LOGO.png HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 4102
last-modified: Thu, 06 Oct 2022 06:59:20 GMT
x-amz-version-id: izgilNgE1ZqfcZo.yXik2ML6.u6KpWah
accept-ranges: bytes
server: AmazonS3
date: Thu, 18 Apr 2024 04:22:42 GMT
etag: "486b3c9bb17c7a017c06a552430ba2f0"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 5Wv06cEaySb93NE0cwK0iR-Y3eO7zpgIlbkiv0RkOQEnbR0onQK0aw==
age: 2077
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S/content/common/images/mno/freefire_new_640x241.jpg | 54.230.111.28 | 200 OK | 54 kB |
URL GET HTTP/2cdn1.codashop.com/S/content/common/images/mno/freefire_new_640x241.jpg IP54.230.111.28:443
Requested byhttps://nr34kj7p.fcyz.my.id/fvr/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 640x241, components 3 Hash8e5bb390d9e0f12905481edac5e46539 c9d5677d4d96847df61e41b8d1ce5fa750eb834f 5bebf695d8569b372a8b99bb7bd08bccf0158f0ce3400469cafe685f3971ba5d
GET /S/content/common/images/mno/freefire_new_640x241.jpg HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 53533
last-modified: Fri, 01 Sep 2023 07:44:38 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: 0KBjyiuNH1PeQRH3zwi23nW4fDwvGvAM
accept-ranges: bytes
server: AmazonS3
date: Wed, 17 Apr 2024 04:57:43 GMT
etag: "8e5bb390d9e0f12905481edac5e46539"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: VVMWz-RYlN9dxBbyUv3NiX7ry34CP8INnf4_GObRKZKorvNWHlk41w==
age: 86376
X-Firefox-Spdy: h2
|
|
| icon-library.com/images/vk-icon/vk-icon-28.jpg | 172.67.68.224 | 200 OK | 16 kB |
URL GET HTTP/2icon-library.com/images/vk-icon/vk-icon-28.jpg IP172.67.68.224:443
Requested byhttps://nr34kj7p.fcyz.my.id/fvr/ CertificateIssuerGoogle Trust Services LLC Subjecticon-library.com FingerprintA4:A9:B0:06:3C:55:29:F6:F4:F1:31:2C:16:EB:40:3D:5E:F1:B5:DD ValidityMon, 18 Mar 2024 13:36:58 GMT - Sun, 16 Jun 2024 13:36:57 GMT
File typePNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced Hashb5af86a05a5a0ec827d4d9aa7a834a43 efe9a10ef6ff312c1bce1ed2dfa4bb75b9b176de d58e787f4eaa1bfee5c58b23535ad1082b7ebf8ddb95c42521839b5b3058e795
GET /images/vk-icon/vk-icon-28.jpg HTTP/1.1
Host: icon-library.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 04:57:18 GMT
content-type: image/jpeg
content-length: 16200
cf-bgj: h2pri
last-modified: Wed, 10 Jul 2019 13:13:10 GMT
strict-transport-security: max-age=31536000;
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CQwftv5PysFq3p7r06j5aVBvhJBvezGY1ZHXYRbfUTfTrqKP8u0IaRqNSv5jcuTw6CbwCTR2cNWOd1sfzFgqEYuqIWqWvs68ACLxBFk4lbJpi7sBF%2BupOCWtXszAHv1XpiQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876212c05d4f1bfe-OSL
X-Firefox-Spdy: h2
|
|
| ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js | 142.250.74.42 | 200 OK | 31 kB |
URL GET HTTP/2ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js IP142.250.74.42:443
Requested byhttps://nr34kj7p.fcyz.my.id/fvr/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
File typeJavaScript source, ASCII text, with very long lines (65451) Hashdc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d
GET /ajax/libs/jquery/3.5.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31021
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 17 Apr 2024 10:51:04 GMT
expires: Thu, 17 Apr 2025 10:51:04 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Fri, 08 May 2020 07:05:03 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 65174
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S2/content/mobile/css/infoBar.662b8f1b5f.css | 54.230.111.28 | 200 OK | 960 B |
URL GET HTTP/2cdn1.codashop.com/S2/content/mobile/css/infoBar.662b8f1b5f.css IP54.230.111.28:443
Requested byhttps://nr34kj7p.fcyz.my.id/fvr/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typeASCII text, with very long lines (960), with no line terminators Hash662b8f1b5f919912c1df4b367bff2cc1 2be016ac1842ccd1c46f24f3908e0567916b3857 649336097b307d0d03ecf4b5625f62576ced687e627233bf62f73ea4c1375395
GET /S2/content/mobile/css/infoBar.662b8f1b5f.css HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 960
date: Thu, 18 Apr 2024 04:57:19 GMT
last-modified: Thu, 18 Apr 2024 02:16:31 GMT
etag: "662b8f1b5f919912c1df4b367bff2cc1"
x-amz-server-side-encryption: AES256
x-amz-version-id: g0mvnbH9AhjYcGdyb8uQXc8VJDrmHF3L
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: LXTORsTBpZ02bWrx40gVZYUQQI_5QdHgcuTyH7GewEl10vFtyH_vQQ==
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S2/content/common/js/faq.7a04e34b3d.js | 54.230.111.28 | 200 OK | 824 B |
URL GET HTTP/2cdn1.codashop.com/S2/content/common/js/faq.7a04e34b3d.js IP54.230.111.28:443
Requested byhttps://nr34kj7p.fcyz.my.id/fvr/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (824), with no line terminators Hash7a04e34b3d63def624af82ba6df461ba 023f366b89c8f008ac2bde6246dd9774a21bccd4 0af099b192033202033bb4999ec904031c72f05ed158816144cb898423a3eb72
GET /S2/content/common/js/faq.7a04e34b3d.js HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 824
date: Thu, 18 Apr 2024 04:57:19 GMT
last-modified: Fri, 04 Sep 2020 02:37:42 GMT
etag: "7a04e34b3d63def624af82ba6df461ba"
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: EDxUqQf_-fUddPV7pom7Wmhy3L6znD1VgIXhH5iDjfoebJa3tHGGRg==
X-Firefox-Spdy: h2
|
|
| | 188.114.96.1 | 200 OK | 74 kB |
URL User Request GET HTTP/2IP188.114.96.1:443
CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (652) Hash1029ff14bcd0a87c960a669c8cb17c85 5954957391778b0a69a5ea1c83dcde2d82ce2541 ad15618741819397bc67f1b945581e97bc56ff13bd64c1aa60e1e990ac66fc34
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - Anti-debugging code | OpenPhish | phishing | Coda Payments | PhishTank | phishing | Other |
GET /fvr/ HTTP/1.1
Host: nr34kj7p.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 04:57:17 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Mg3%2BV6SN%2BWX%2FUV5aEZm3Qnxjinbvmpv214TVdbFJY%2FnpYQMaw62f6fEVxXlOKOpyPhMai13u%2Fkajx01geyCyckmHV9dT1IVOujaGQV1by0hu1RpXMh%2FeySp0rXCHhMm0yxyL%2B%2FDt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876212be0d75b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S2/content/mobile/js/freefire.4a7a9740bc.js | 54.230.111.28 | 200 OK | 520 B |
URL GET HTTP/2cdn1.codashop.com/S2/content/mobile/js/freefire.4a7a9740bc.js IP54.230.111.28:443
Requested byhttps://nr34kj7p.fcyz.my.id/fvr/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (520), with no line terminators Hash4a7a9740bcf8062898a69cb939b84746 948bbea618cae328d0acb4cea603023da671358c c636bd0ea30e4e99b8ef807c5561df5064f8c1bd84b08038cdad8bdf989c7822
GET /S2/content/mobile/js/freefire.4a7a9740bc.js HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
content-length: 520
date: Thu, 18 Apr 2024 04:57:19 GMT
last-modified: Thu, 18 Apr 2024 02:16:32 GMT
etag: "4a7a9740bcf8062898a69cb939b84746"
x-amz-server-side-encryption: AES256
x-amz-version-id: Sbn79nztGypsCYDgGLlVI7JllBH1b9YJ
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: koRndalsMhIxGrdVrjl13KWXIOuxP1Cs9u5X2bQTWfEoGpjmEHMEow==
X-Firefox-Spdy: h2
|
|
| cdn-www.bluestacks.com/bs-images/69b5965b1c8f0d20f45be82f0522d88a6bfa2ba0.png | 2.17.251.15 | 200 OK | 104 kB |
URL GET HTTP/1.1cdn-www.bluestacks.com/bs-images/69b5965b1c8f0d20f45be82f0522d88a6bfa2ba0.png IP2.17.251.15:443 ASN#20940 Akamai International B.V.
Requested byhttps://nr34kj7p.fcyz.my.id/fvr/ CertificateIssuerDigiCert Inc Subject*.bluestacks.com Fingerprint6F:39:D8:89:B6:A0:49:A7:C7:FA:A6:D0:74:C1:EC:93:A6:61:C4:1B ValidityThu, 11 Apr 2024 00:00:00 GMT - Fri, 11 Apr 2025 23:59:59 GMT
File typePNG image data, 512 x 512, 8-bit colormap, non-interlaced Size104 kB (104257 bytes) Hashc3221b6f85d253041dd7a749046252b4 3c61d86b06e871c2c4ca2c4e2ecd99e396d81927 75b0515e2566cc4467be7033f6b62b384138c74aab296fb3a924fb4f6ccefa1e
GET /bs-images/69b5965b1c8f0d20f45be82f0522d88a6bfa2ba0.png HTTP/1.1
Host: cdn-www.bluestacks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: IDBjlki2beayMcs6O3HJ59SuyDozvsX6O/y3zd82AR/wisLT/SvbNt2mey1mP9SgtBfTKWPoX3U=
x-amz-request-id: HPASTHJ739VV5DD0
Last-Modified: Wed, 23 May 2018 17:39:54 GMT
ETag: "c3221b6f85d253041dd7a749046252b4"
x-amz-version-id: null
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 104257
Cache-Control: max-age=563010
Expires: Wed, 24 Apr 2024 17:20:48 GMT
Date: Thu, 18 Apr 2024 04:57:18 GMT
Alt-Svc: h3=":443"; ma=93600,h3-29=":443"; ma=93600,h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Connection: keep-alive
|
|
| i.ibb.co/jr5VL36/favicon.png | 162.19.58.157 | 200 OK | 3.7 kB |
URL GET HTTP/2i.ibb.co/jr5VL36/favicon.png IP162.19.58.157:443
Requested byhttps://nr34kj7p.fcyz.my.id/fvr/ CertificateIssuerLet's Encrypt Subjectibb.co Fingerprint47:33:B4:39:55:FC:BC:18:08:79:9C:6C:9D:F3:CF:3A:89:C4:99:62 ValidityWed, 07 Feb 2024 12:41:56 GMT - Tue, 07 May 2024 12:41:55 GMT
File typePNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced Hash036da5872428ec3279ad07f3074a8da7 d4bac7fce3fc291fc2452b6bc35b158c4ef309d1 d00bfe6cdff8e3c2370b458723c7db811efd563b36f1de3a02f28806db170981
GET /jr5VL36/favicon.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 04:57:19 GMT
content-type: image/png
content-length: 3677
last-modified: Fri, 10 Sep 2021 14:31:05 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S/content/common/images/promos/Community%20Banners/freefire_id_codaclub.jpeg | 54.230.111.28 | 200 OK | 29 kB |
URL GET HTTP/2cdn1.codashop.com/S/content/common/images/promos/Community%20Banners/freefire_id_codaclub.jpeg IP54.230.111.28:443
Requested byhttps://nr34kj7p.fcyz.my.id/fvr/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 641x242, components 3 Hashf93267a5b15f21f2c6f33e9bb893dfd1 3a88c25a20f79cf5fb6ebe3e34116678a43531ff c9952880919057304eec16200ccd3f7b373d3ba7192c936b4a79ffca9b62ed35
GET /S/content/common/images/promos/Community%20Banners/freefire_id_codaclub.jpeg HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 28559
date: Thu, 18 Apr 2024 04:57:19 GMT
last-modified: Wed, 20 Jan 2021 10:28:50 GMT
etag: "f93267a5b15f21f2c6f33e9bb893dfd1"
x-amz-meta-sha256: c9952880919057304eec16200ccd3f7b373d3ba7192c936b4a79ffca9b62ed35
x-amz-meta-s3b-last-modified: 20210120T102030Z
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: IbFGRHGqahyykBE9NHNIvX8VlHzWn5LaXhkAQnJL033op6qLSumdHg==
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S/content/common/css/flags32.png | 54.230.111.28 | 200 OK | 26 kB |
URL GET HTTP/2cdn1.codashop.com/S/content/common/css/flags32.png IP54.230.111.28:443
Requested byhttps://nr34kj7p.fcyz.my.id/fvr/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typePNG image data, 32 x 7904, 8-bit colormap, non-interlaced Hashee905aeea99aa287b3f5b569fedbd91e 0fd8e62c7b5240b5496dc1f2af99d45766c30b86 5ad678791b5d4839f74a625c1ff6d3f4a6bbfca6417ecb0133f1a60de77b415d
GET /S/content/common/css/flags32.png HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn1.codashop.com/S/content/common/css/flags.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 26399
last-modified: Thu, 20 Dec 2018 04:54:20 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Thu, 18 Apr 2024 04:57:21 GMT
etag: "ee905aeea99aa287b3f5b569fedbd91e"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: TDvfZXsRKjX-HPxZUBUo3Q-gVK9gEzo0yvUwwXHSaRk2ORchcBX1fg==
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S/content/fonts/Lato/Lato-Regular.woff2 | 54.230.111.28 | 200 OK | 28 kB |
URL GET HTTP/2cdn1.codashop.com/S/content/fonts/Lato/Lato-Regular.woff2 IP54.230.111.28:443
Requested byhttps://nr34kj7p.fcyz.my.id/fvr/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 28440, version 1.0 Hash1031840a9580bcc9b1b83a047f2282b4 92eb819b7183fe6b04774a1003216991342e3af5 386695f80ed730cc1a3108b4d91fab24e1db1d9e5f13caa1f95095fb6f1de147
GET /S/content/fonts/Lato/Lato-Regular.woff2 HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nr34kj7p.fcyz.my.id
DNT: 1
Connection: keep-alive
Referer: https://cdn1.codashop.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 28440
date: Thu, 18 Apr 2024 04:57:21 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST
last-modified: Thu, 09 Apr 2020 13:54:30 GMT
etag: "1031840a9580bcc9b1b83a047f2282b4"
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
vary: Origin
x-cache: Miss from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2A7-EtJ7Nr-TdXDpInENETJuLqJSt9yzU-WTQEhp1GPAztvxfJomIA==
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S/content/fonts/Lato/Lato-Semibold.woff2 | 54.230.111.28 | 200 OK | 213 kB |
URL GET HTTP/2cdn1.codashop.com/S/content/fonts/Lato/Lato-Semibold.woff2 IP54.230.111.28:443
Requested byhttps://nr34kj7p.fcyz.my.id/fvr/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 213284, version 1.0 Size213 kB (213284 bytes) Hash3b2be91477b04924b538786080ff371b 1a76b7ffe7ba478a6a34323e85aa219f85eb8842 8817bfe4ce3f5f0a9e3e6221a052e51c5baf38ad16dc65af6753a4c4c4e00b99
GET /S/content/fonts/Lato/Lato-Semibold.woff2 HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nr34kj7p.fcyz.my.id
DNT: 1
Connection: keep-alive
Referer: https://cdn1.codashop.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 213284
date: Thu, 18 Apr 2024 04:57:21 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST
last-modified: Thu, 09 Apr 2020 14:29:03 GMT
etag: "3b2be91477b04924b538786080ff371b"
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
vary: Origin
x-cache: Miss from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: gC1CFrpel7awOjcJP3V7F8LTcPOW9v6JJYV5QXCmDaZp3I-mfJ5b3g==
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S/content/fonts/Noto/NotoSans-Regular.woff2 | 54.230.111.28 | 200 OK | 118 kB |
URL GET HTTP/2cdn1.codashop.com/S/content/fonts/Noto/NotoSans-Regular.woff2 IP54.230.111.28:443
Requested byhttps://nr34kj7p.fcyz.my.id/fvr/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 117948, version 1.0 Size118 kB (117948 bytes) Hashe50c34178d20d5fa4ab3c1f6c67901a9 655dcb4d829e2bc75e9a7cf8a2aa08f6a4513634 5b43a0c0c7874410cd01de2ec8684785b550295350f5d92901f4c9090f1ab019
GET /S/content/fonts/Noto/NotoSans-Regular.woff2 HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nr34kj7p.fcyz.my.id
DNT: 1
Connection: keep-alive
Referer: https://cdn1.codashop.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 117948
date: Thu, 18 Apr 2024 04:57:21 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST
last-modified: Fri, 06 May 2022 11:41:27 GMT
etag: "e50c34178d20d5fa4ab3c1f6c67901a9"
cache-control: max-age=604800
x-amz-version-id: trEzvh6kI.WdcIb7.CUjjvIEEUDocBW7
accept-ranges: bytes
server: AmazonS3
vary: Origin
x-cache: Miss from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Ox4I6zaIcuRXbZ9H_V-6hnr097H7_anzrudkmrC9QLQijxTzyjac_g==
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S/content/fonts/Lato/Lato-Italic.woff2 | 54.230.111.28 | 200 OK | 232 kB |
URL GET HTTP/2cdn1.codashop.com/S/content/fonts/Lato/Lato-Italic.woff2 IP54.230.111.28:443
Requested byhttps://nr34kj7p.fcyz.my.id/fvr/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 231712, version 1.0 Size232 kB (231712 bytes) Hashfccd49e77f1d0fe7552d11ec3697a5c7 0314a4d1109fd76beb5ab8f28a402f920fc2a225 405dae7456bc82c5f43abde71fdddde1be42a759b1cc7db12756d3c119ae5457
GET /S/content/fonts/Lato/Lato-Italic.woff2 HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nr34kj7p.fcyz.my.id
DNT: 1
Connection: keep-alive
Referer: https://cdn1.codashop.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 231712
date: Thu, 18 Apr 2024 04:57:21 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST
last-modified: Thu, 09 Apr 2020 14:21:48 GMT
etag: "fccd49e77f1d0fe7552d11ec3697a5c7"
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
vary: Origin
x-cache: Miss from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: EVE6wOPL3VNVopCcK2M21JfDlM-sKJcmjgkvKq4CH4iYM9qTr-oipQ==
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S/content/fonts/Lato/Lato-Bold.woff2 | 54.230.111.28 | 200 OK | 211 kB |
URL GET HTTP/2cdn1.codashop.com/S/content/fonts/Lato/Lato-Bold.woff2 IP54.230.111.28:443
Requested byhttps://nr34kj7p.fcyz.my.id/fvr/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 211160, version 1.0 Size211 kB (211160 bytes) Hash743278852fdad61a73198bc74d529af8 d0f790e800b87b0db1edc0aedd9f3a82f88629cc 57b0c1d7bee3f753da5e6aa215a417abfa87dd9798ef2483f42585bfb08d64d9
GET /S/content/fonts/Lato/Lato-Bold.woff2 HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nr34kj7p.fcyz.my.id
DNT: 1
Connection: keep-alive
Referer: https://cdn1.codashop.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 211160
date: Thu, 18 Apr 2024 04:57:21 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST
last-modified: Thu, 09 Apr 2020 14:30:12 GMT
etag: "743278852fdad61a73198bc74d529af8"
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
vary: Origin
x-cache: Miss from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2f21prJdOQgNUTBgNcNnXaHClF9Ps8UDXJdpReRcHJ9CZzz0vMamjQ==
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S/content/fonts/Lato/Lato-Light.woff2 | 54.230.111.28 | 200 OK | 208 kB |
URL GET HTTP/2cdn1.codashop.com/S/content/fonts/Lato/Lato-Light.woff2 IP54.230.111.28:443
Requested byhttps://nr34kj7p.fcyz.my.id/fvr/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 207880, version 1.0 Size208 kB (207880 bytes) Hash01b5dcc68aff09201f8e83a5e1c568ee 59f494bd2df4ad954d32b8cae8b5800d4834d716 3d2b4deb945a2e8b4a4fd551bd5c41ce8719d34fa4caefb7385829cf85cb7590
GET /S/content/fonts/Lato/Lato-Light.woff2 HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nr34kj7p.fcyz.my.id
DNT: 1
Connection: keep-alive
Referer: https://cdn1.codashop.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 207880
date: Thu, 18 Apr 2024 04:57:21 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST
last-modified: Thu, 09 Apr 2020 14:21:48 GMT
etag: "01b5dcc68aff09201f8e83a5e1c568ee"
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
vary: Origin
x-cache: Miss from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: fnAk9BCEHXacvTwD3tocwos6BTqwF0neyHdkGIWW8Z8sNoIFvRXjOA==
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S2/content/mobile/images/app/codashop-ico-192x192.eda9c373cc.png | 54.230.111.28 | 200 OK | 5.1 kB |
URL GET HTTP/2cdn1.codashop.com/S2/content/mobile/images/app/codashop-ico-192x192.eda9c373cc.png IP54.230.111.28:443
Requested byhttps://nr34kj7p.fcyz.my.id/fvr/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typePNG image data, 192 x 192, 8-bit colormap, non-interlaced Hasheda9c373ccb4065459e0a9dd76c35348 03ac8f73f9d9f58a86db99aa4dd4947b481752e0 bac3a525d341ed1bde59059a94d6c04cacd69bba4aeb2768af781199c15f3ab6
GET /S2/content/mobile/images/app/codashop-ico-192x192.eda9c373cc.png HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 5067
date: Wed, 17 Apr 2024 05:21:27 GMT
last-modified: Tue, 16 Apr 2024 08:32:37 GMT
etag: "eda9c373ccb4065459e0a9dd76c35348"
x-amz-server-side-encryption: AES256
x-amz-version-id: sSwh4Q_izB27Ow7ZtKvfbvYRbAKIB1QX
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: AtVAguC5mkhsOBmOI3B2LyxhWC94s5HrLmw-bmwWhvgATPpq4wfXrA==
age: 84955
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S/content/common/images/reskin/favicon.ico | 54.230.111.28 | 200 OK | 2.2 kB |
URL GET HTTP/2cdn1.codashop.com/S/content/common/images/reskin/favicon.ico IP54.230.111.28:443
Requested byhttps://nr34kj7p.fcyz.my.id/fvr/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typePNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced Hash9141e5521105fb13c657480daf781484 1d0d577784430fce4badac4b6c8aa81bfbe45c8f 8af7dda580228d237c72eed44bce0912585241544a1feae96a464145efb542b2
GET /S/content/common/images/reskin/favicon.ico HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/x-icon
content-length: 2190
last-modified: Thu, 19 Aug 2021 08:47:21 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Thu, 18 Apr 2024 03:49:23 GMT
etag: "9141e5521105fb13c657480daf781484"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 57nFqJ-Q8CjGQa_-QkTyknaBAMWwx6w1yNUdhzEotR0jYONqxawQnQ==
age: 4079
X-Firefox-Spdy: h2
|
|
| d1qgcmfii0ptfa.cloudfront.net/S/content/mobile/images/google_play_coda.png | 143.204.42.138 | 200 OK | 2.6 kB |
URL GET HTTP/1.1d1qgcmfii0ptfa.cloudfront.net/S/content/mobile/images/google_play_coda.png IP143.204.42.138:443
Requested byhttps://nr34kj7p.fcyz.my.id/fvr/ CertificateIssuerAmazon Subject*.cloudfront.net FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52 ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File typePNG image data, 138 x 41, 8-bit colormap, non-interlaced Hashe7ebc6c74ec20ea3614970e178217c10 f667fbc525f046f8c6d7617541884c4d6ed52478 19c2b75fe23ae2238adbd7f34901396d4120605d9028c2fcc7bd3c010e27ef9a
GET /S/content/mobile/images/google_play_coda.png HTTP/1.1
Host: d1qgcmfii0ptfa.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 2631
Connection: keep-alive
Last-Modified: Mon, 17 Jul 2017 08:47:31 GMT
Content-Disposition: attachment
Accept-Ranges: bytes
Server: AmazonS3
Date: Thu, 18 Apr 2024 04:57:21 GMT
ETag: "e7ebc6c74ec20ea3614970e178217c10"
X-Cache: Hit from cloudfront
Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 0WtH3iIusJXWb8zVg_xXbrpXa5iahm-0hl2l4mJ8PXvg5t7R5yaH1A==
Age: 4080
|
|
| d1qgcmfii0ptfa.cloudfront.net/S/content/mobile/images/app_store_coda.png | 143.204.42.138 | 200 OK | 2.8 kB |
URL GET HTTP/1.1d1qgcmfii0ptfa.cloudfront.net/S/content/mobile/images/app_store_coda.png IP143.204.42.138:443
Requested byhttps://nr34kj7p.fcyz.my.id/fvr/ CertificateIssuerAmazon Subject*.cloudfront.net FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52 ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File typePNG image data, 138 x 41, 8-bit colormap, non-interlaced Hashcfd0f0cbf8aa1717324f64a438c378c5 deb76943cf9b96153b36c04c9de02996857a808b 6a69de99192160f4a77667679c5a985beb0758dd464c162f58e2f89b91d11011
GET /S/content/mobile/images/app_store_coda.png HTTP/1.1
Host: d1qgcmfii0ptfa.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 2799
Connection: keep-alive
Last-Modified: Mon, 17 Jul 2017 08:47:30 GMT
Content-Disposition: attachment
Accept-Ranges: bytes
Server: AmazonS3
Date: Thu, 18 Apr 2024 04:57:21 GMT
ETag: "cfd0f0cbf8aa1717324f64a438c378c5"
X-Cache: Hit from cloudfront
Via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: rgEJgruYIgTX01rmcD11zYwH9R0g3-cmaCnSFFlSHR8Ob54kSdRj3g==
Age: 3446
|
|
| cdn1.codashop.com/P/airtime/w/css/airtime_v1.0a.css | 54.230.111.28 | 200 OK | 1.5 kB |
URL GET HTTP/2cdn1.codashop.com/P/airtime/w/css/airtime_v1.0a.css IP54.230.111.28:443
Requested byhttps://nr34kj7p.fcyz.my.id/fvr/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typegzip compressed data, from Unix Hashe79e13a3b336a19105a3c6be43e8929c b9a2f0d23c7b39c3a6d506afa4e4b8e0bfac859c bf3b1f0c0b7bcb327ee30ebf27b0979ad1beb67e18e5f4f7bed080db010ae84b
GET /P/airtime/w/css/airtime_v1.0a.css HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/css
date: Thu, 18 Apr 2024 04:57:19 GMT
last-modified: Fri, 13 Mar 2020 03:56:02 GMT
etag: W/"753a330f95a906499abe488e677662d3"
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3eif8RAij9P-Yx-Gel4E91N_FwOLqyG29_p8SeYwHZMAuYgLyULmCw==
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js | 142.250.74.35 | 200 OK | 203 kB |
URL GET HTTP/2www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js IP142.250.74.35:443
Requested byhttps://nr34kj7p.fcyz.my.id/fvr/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeJavaScript source, ASCII text, with very long lines (554) Size203 kB (203369 bytes) Hashe9ccb3dbde79ba5ffdf9cad4b32d59fd 3a8cd67adc7c885bdf683f1e7f491e6a4a50679f 8f2c6777c7ccc01ab67290fa8acd5a4c4866be64129f39dfaeb9197dfa15e137
GET /recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nr34kj7p.fcyz.my.id
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 203369
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 13 Apr 2024 02:30:15 GMT
expires: Sun, 13 Apr 2025 02:30:15 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 29 Mar 2024 04:30:36 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 440826
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S2/content/common/js/infoBar.38acc407b3.js | 54.230.111.28 | 200 OK | 2.1 kB |
URL GET HTTP/2cdn1.codashop.com/S2/content/common/js/infoBar.38acc407b3.js IP54.230.111.28:443
Requested byhttps://nr34kj7p.fcyz.my.id/fvr/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (2163), with no line terminators Hash61a5dda1acff787320fc2f4e36f1e4f4 779d0360b878d3772a1a8bd40c3b157165d1a7bf e342eed229c64a457df9aa7137b65139369bc15ada6b79eddec49449346b95fb
GET /S2/content/common/js/infoBar.38acc407b3.js HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Fri, 04 Sep 2020 02:37:42 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Thu, 18 Apr 2024 04:52:03 GMT
etag: W/"38acc407b31daa48fafd99a877c64b5d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Fwb9j-TNE09y2uzedHqmiVv5gHk5trZ006RT9kVEB_W5pGYTPCQ8iQ==
age: 316
X-Firefox-Spdy: h2
|
|
| script.tapfiliate.com/tapfiliate.js | 54.230.111.74 | 200 OK | 12 kB |
URL GET HTTP/2script.tapfiliate.com/tapfiliate.js IP54.230.111.74:443
Requested byhttps://nr34kj7p.fcyz.my.id/fvr/ CertificateIssuerAmazon Subjectbackend.tapfiliate.com Fingerprint08:49:72:00:4F:7E:51:98:05:55:F9:6A:56:27:5A:78:BD:99:57:C4 ValidityWed, 04 Oct 2023 00:00:00 GMT - Sat, 02 Nov 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (11592), with no line terminators Hashddbb39a9e8e67d5067145f8aa76b938d 2f7cacfbcaaf8291a1a933898d1dff0b21edf1cb 44798a517a7c8d28c1e371a1b8b869bae1608bd48df7ed50800cbed8703612c1
GET /tapfiliate.js HTTP/1.1
Host: script.tapfiliate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 12 Oct 2022 12:34:24 GMT
server: AmazonS3
content-encoding: gzip
date: Thu, 18 Apr 2024 01:49:37 GMT
etag: W/"ddbb39a9e8e67d5067145f8aa76b938d"
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ebCvIePVT447UTM4kNk_KQ7pFUV3W38P6eZVX8FSb4FvQLTI4b5xpw==
age: 60709
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S/content/common/images/grab.29dad06670f873936002ddb910253a4b.png | 54.230.111.28 | 200 OK | 62 kB |
URL GET HTTP/2cdn1.codashop.com/S/content/common/images/grab.29dad06670f873936002ddb910253a4b.png IP54.230.111.28:443
Requested byhttps://nr34kj7p.fcyz.my.id/fvr/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typePNG image data, 2000 x 800, 8-bit/color RGBA, non-interlaced Hash29dad06670f873936002ddb910253a4b 523ee4adf550df78348cf7528580171f0828f2b4 8871194dc3ae9035b5bb04c84aa7b82afa7442daf2bab5f1393a5751e6082a10
GET /S/content/common/images/grab.29dad06670f873936002ddb910253a4b.png HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
content-length: 61755
last-modified: Tue, 05 May 2020 03:32:54 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Thu, 18 Apr 2024 04:57:19 GMT
etag: "29dad06670f873936002ddb910253a4b"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Oa_6VvOVojZg9scWI0UosiqwK0BPbIBm3G_tDWhWhbxnWgbBGA6ZHA==
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S2/content/common/js/payment-channel-suggestion.535f3c6f70.js | 54.230.111.28 | 200 OK | 1.9 kB |
URL GET HTTP/2cdn1.codashop.com/S2/content/common/js/payment-channel-suggestion.535f3c6f70.js IP54.230.111.28:443
Requested byhttps://nr34kj7p.fcyz.my.id/fvr/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (1959), with no line terminators Hash4f04b352041bdea32f0207797a53970f 6d4bddeab49faa3cb3d3b35c737a3a14f7fd120b ccc96932a6384222d948362a27564274e2d33f8c70ce64ebd2a6c473b1719d06
GET /S2/content/common/js/payment-channel-suggestion.535f3c6f70.js HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Fri, 04 Sep 2020 02:37:42 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Thu, 18 Apr 2024 04:52:03 GMT
etag: W/"535f3c6f7015dbae9e6b2a4987192e2b"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: wWp4Bx3KDiztiow7bxHJmW3JW9yNqD4G0uQKPUb3Q2lLxkQC1sf-BQ==
age: 316
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S/content/common/js/xss.min.js | 54.230.111.28 | 200 OK | 29 kB |
URL GET HTTP/2cdn1.codashop.com/S/content/common/js/xss.min.js IP54.230.111.28:443
Requested byhttps://nr34kj7p.fcyz.my.id/fvr/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (28924), with no line terminators Hash4947ff982fb69173f95da79b538f254d 884db3bf10e92790cf6d9937731f70d59c87cc9f 0278b60e08b67fb8ae86c56dd80075e94e1d51113eb21ade41996147c601dfe6
GET /S/content/common/js/xss.min.js HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 12 Nov 2019 04:16:51 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Thu, 18 Apr 2024 01:36:15 GMT
etag: W/"4947ff982fb69173f95da79b538f254d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: H6FhcKRO9kvhg8P-AJLxBQKGZ2sJ0cpi_7hVx-7ZUuLdhRrrPD69JQ==
age: 12064
X-Firefox-Spdy: h2
|
|
| www.google.com/recaptcha/api.js | 142.250.74.164 | 200 OK | 850 B |
URL GET HTTP/2www.google.com/recaptcha/api.js IP142.250.74.164:443
Requested byhttps://nr34kj7p.fcyz.my.id/fvr/ CertificateIssuerGoogle Trust Services LLC Subjectwww.google.com FingerprintCC:CC:99:46:65:6C:77:0B:C8:AA:AD:5E:58:B6:2D:19:B2:C7:0B:06 ValidityMon, 04 Mar 2024 07:19:07 GMT - Mon, 27 May 2024 07:19:06 GMT
File typeJavaScript source, ASCII text, with very long lines (850), with no line terminators Hash1613f25e7a73976f440bd3c174bc1dc3 ffa5be6619ae6109c6e412186e0f12b8d8a73cd9 091a7de491da06df67c869b9905c1d028eb2816e68360c0b5b7a4fa8ce590322
GET /recaptcha/api.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
expires: Thu, 18 Apr 2024 04:57:18 GMT
date: Thu, 18 Apr 2024 04:57:18 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| nr34kj7p.fcyz.my.id/css/popupLogin.css | 188.114.96.1 | 200 OK | 2.2 kB |
URL GET HTTP/3nr34kj7p.fcyz.my.id/css/popupLogin.css IP188.114.96.1:443
Requested byhttps://nr34kj7p.fcyz.my.id/fvr/ CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeASCII text, with very long lines (2603), with no line terminators Hash132ae2b937805fb20662171424973d82 2cade27c0ecc7002b82117e92278b62c0f0f3122 2d4b6c88b764b6f6463b45f84209aa5af2f6972beff4a6f4fad284e3b032c05d
Analyzer | Verdict | Alert | OpenPhish | phishing | Coda Payments |
GET /css/popupLogin.css HTTP/1.1
Host: nr34kj7p.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/fvr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 04:57:18 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 00:27:34 GMT
last-modified: Sun, 06 Feb 2022 18:31:28 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 16184
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=W91iuzkMEK630pfMhEpZTBzB0JmHyjIUusev8HI27WeJ3HGLC2FRM2mX4JOigE5oeDVkGmU3v4eSYzvpHJIXZn%2FB85EUmE0ywhB%2BkkU6brTehZAGiv0FcYnebX0xkU%2FQvt2sQujG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876212bff8350b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdn1.codashop.com/S2/content/common/css/shared-shop-content.e6202b83de.css | 54.230.111.28 | 200 OK | 3.2 kB |
URL GET HTTP/2cdn1.codashop.com/S2/content/common/css/shared-shop-content.e6202b83de.css IP54.230.111.28:443
Requested byhttps://nr34kj7p.fcyz.my.id/fvr/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typeUnicode text, UTF-8 text, with very long lines (3225), with no line terminators Hash25fa185279e8f6803556a00a262f95c5 d932b37655b18e119aaf89ccbe833da32b1fe3a4 ab288c27611661da5d71e78e22a89c3180e1077fcbf2349417db3640c99a742c
GET /S2/content/common/css/shared-shop-content.e6202b83de.css HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
last-modified: Tue, 16 Apr 2024 08:32:37 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: vtuxqZ9LTNM5BJpsFKEthwShPqOoXvRU
server: AmazonS3
content-encoding: gzip
date: Wed, 17 Apr 2024 09:04:36 GMT
etag: W/"e6202b83defd6474350841e595260599"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9nrjkAYGuFWXZqFx9P98DmDBNygVHJAUuvQt-LZOtzAkIxenrLBSGw==
age: 71563
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S/content/common/js/jquery.mask.min.js | 54.230.111.28 | 200 OK | 7.4 kB |
URL GET HTTP/2cdn1.codashop.com/S/content/common/js/jquery.mask.min.js IP54.230.111.28:443
Requested byhttps://nr34kj7p.fcyz.my.id/fvr/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (7660), with no line terminators Hash6409d62d5717b9730b29269652900057 e3ee78cc51381e332376792b552da91391eb43ec 18945d2c761b9a1534e686ca2237bc2d6f7afc9687099e1cfead10e1269b20bb
GET /S/content/common/js/jquery.mask.min.js HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript
last-modified: Thu, 20 Dec 2018 08:04:35 GMT
content-disposition: attachment
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Thu, 18 Apr 2024 01:12:12 GMT
etag: W/"35d9db48e3112f35d81e70b98457aa42"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: rzYv6KjTFKyh279lT7bXQrY6vRmXkeNgZej9DUWfIZolpAq3nCv-Hg==
age: 13507
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S/content/common/css/flags.css | 54.230.111.28 | 200 OK | 12 kB |
URL GET HTTP/2cdn1.codashop.com/S/content/common/css/flags.css IP54.230.111.28:443
Requested byhttps://nr34kj7p.fcyz.my.id/fvr/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
Hash48625f4127086c12c9db05064a6bab03 25fb09d9048d67c7e0cdc6c02be8f34140a35082 f6a3220f393767077637471193f95bbde06a0928b0fe5fda70a0aa01cd2cb7b0
GET /S/content/common/css/flags.css HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
date: Thu, 18 Apr 2024 04:57:19 GMT
last-modified: Thu, 20 Dec 2018 04:54:20 GMT
etag: W/"48625f4127086c12c9db05064a6bab03"
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: A7LGoiVrYVFn1rXpnLi_-abVJwFVPvZBT6GVKrJ0CxyvQCOls6odJw==
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S2/content/common/css/shared-fontfaces.b6c83d3582.css | 54.230.111.28 | 200 OK | 2.8 kB |
URL GET HTTP/2cdn1.codashop.com/S2/content/common/css/shared-fontfaces.b6c83d3582.css IP54.230.111.28:443
Requested byhttps://nr34kj7p.fcyz.my.id/fvr/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typeASCII text, with very long lines (2784), with no line terminators Hashb6c83d3582430126098676cc14c0b7ae a117a8e06637487fabce45c1716e33ce4008e560 f1dc9f4f3addbfa08c795318bfa457a0bf60029d906c694e6aa46d5db79ab50f
GET /S2/content/common/css/shared-fontfaces.b6c83d3582.css HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
date: Thu, 18 Apr 2024 04:57:20 GMT
last-modified: Thu, 18 Apr 2024 02:16:31 GMT
etag: W/"b6c83d3582430126098676cc14c0b7ae"
x-amz-server-side-encryption: AES256
x-amz-version-id: J84eEGtj1oTbCxL98xiDMkiwSX8gz0TM
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: c_UZJj_8ilbo5lIDtUW9-ctU5C0du6OAjMtc4fnjl8qhLUByPhNBCQ==
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S2/content/common/css/shared-topnav2.5566e671b1.css | 54.230.111.28 | 200 OK | 6.9 kB |
URL GET HTTP/2cdn1.codashop.com/S2/content/common/css/shared-topnav2.5566e671b1.css IP54.230.111.28:443
Requested byhttps://nr34kj7p.fcyz.my.id/fvr/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typeASCII text, with very long lines (6861), with no line terminators Hash5566e671b1a56ed10ee4665797bca5ba 4e1268e9e8cc9b32d46d9e9b64052ca61cc0c688 bbf453aa757d9ee7314e68e9f134a58c34fac46d39bfbf282f9e8e03dbea7df0
GET /S2/content/common/css/shared-topnav2.5566e671b1.css HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
date: Thu, 18 Apr 2024 04:57:19 GMT
last-modified: Thu, 26 Nov 2020 09:41:30 GMT
etag: W/"5566e671b1a56ed10ee4665797bca5ba"
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: yhXzmx6iVoAi8kd7lDAcLSLGeHc8GluQ8WRRlj7oDahQYeN64jinKg==
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S2/content/common/js/shop-topnav2.7e1fed6bdf.js | 54.230.111.28 | 200 OK | 7.2 kB |
URL GET HTTP/2cdn1.codashop.com/S2/content/common/js/shop-topnav2.7e1fed6bdf.js IP54.230.111.28:443
Requested byhttps://nr34kj7p.fcyz.my.id/fvr/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (7489), with no line terminators Hash837ad2eb3ceaba97e69a5bc5907656bd db034dfdf9ad78e25abb924c437be76ce42af461 c77b7db6a323fa7dbe5f0c467d454b65fe161328e2b30d3d67699c4138632508
GET /S2/content/common/js/shop-topnav2.7e1fed6bdf.js HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 11 Apr 2024 08:06:07 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: M5ROpYbaY0vcXvByx9q_KAut826Xsmcs
server: AmazonS3
content-encoding: gzip
date: Wed, 17 Apr 2024 08:22:03 GMT
etag: W/"7e1fed6bdfc0657c0dedc6e6c19553fa"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: GjWsoSkBI5Dw-k0MiK_fPqrLCXSt_o97gmkUIZEREO7K97BsTRSDVw==
age: 74116
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S2/content/common/css/shared-footer2.2ce4d6e299.css | 54.230.111.28 | 200 OK | 3.7 kB |
URL GET HTTP/2cdn1.codashop.com/S2/content/common/css/shared-footer2.2ce4d6e299.css IP54.230.111.28:443
Requested byhttps://nr34kj7p.fcyz.my.id/fvr/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typeASCII text, with very long lines (3650), with no line terminators Hash2ce4d6e2994e655224b0aa48265ae15a e08c6461b3168581712b18d9c9bd9343422f7e14 cfdc96da2e956842b4cbea254d93c923a9c7d5f1443385996a0f2c80cc4b0f76
GET /S2/content/common/css/shared-footer2.2ce4d6e299.css HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
date: Thu, 18 Apr 2024 02:16:33 GMT
last-modified: Thu, 18 Apr 2024 02:16:31 GMT
etag: W/"2ce4d6e2994e655224b0aa48265ae15a"
x-amz-server-side-encryption: AES256
x-amz-version-id: yv9.XMqn3v0qS4JCQBpVElKtsV47L8w9
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1-Me7sD1JU0tq9aOCBaIM52Rmv7dQD7mXD6yu1CnlCDsao3TutGlcg==
age: 9646
X-Firefox-Spdy: h2
|
|
| stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css | 104.18.11.207 | 200 OK | 31 kB |
URL GET HTTP/2stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css IP104.18.11.207:443
Requested byhttps://nr34kj7p.fcyz.my.id/fvr/ CertificateIssuerGoogle Trust Services LLC Subjectbootstrapcdn.com Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63 ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT
File typeASCII text, with very long lines (30837) Hash269550530cc127b6aa5a35925a7de6ce 512c7d79033e3028a9be61b540cf1a6870c896f8 799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nr34kj7p.fcyz.my.id
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 04:57:18 GMT
content-type: text/css; charset=utf-8
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31919000
content-encoding: br
etag: W/"269550530cc127b6aa5a35925a7de6ce"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 03/18/2024 12:28:12
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1078
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 863dbe42d45a549635492052e9970fd7
cdn-cache: HIT
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 876212c01f5a5687-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S/content/common/css/jquery-ui-1.12.1.css | 54.230.111.28 | 200 OK | 36 kB |
URL GET HTTP/2cdn1.codashop.com/S/content/common/css/jquery-ui-1.12.1.css IP54.230.111.28:443
Requested byhttps://nr34kj7p.fcyz.my.id/fvr/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typeASCII text, with very long lines (2363) Hashc4a88ec0cb998929a670c0c58d7dc526 03135a88e8dbc36020dd453d1e7407ce9a3a2cc2 44f8a56d427917b5fa0dd7933ba545679be5e6b3b93099e64a4e29c2159f57c0
GET /S/content/common/css/jquery-ui-1.12.1.css HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
date: Thu, 18 Apr 2024 02:16:33 GMT
last-modified: Thu, 20 Dec 2018 07:52:04 GMT
etag: W/"c4a88ec0cb998929a670c0c58d7dc526"
content-disposition: attachment
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 5gVYBep4G42IpmvzIqAP735pi34ToK-tTu5RA9YRdZH-sR7SKsvCvA==
age: 9646
X-Firefox-Spdy: h2
|
|
| nr34kj7p.fcyz.my.id/css/twitter.css | 188.114.96.1 | 200 OK | 1.9 kB |
URL GET HTTP/3nr34kj7p.fcyz.my.id/css/twitter.css IP188.114.96.1:443
Requested byhttps://nr34kj7p.fcyz.my.id/fvr/ CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeASCII text, with very long lines (2108), with no line terminators Hashed1ca2901a80d551b062ee62367f974c d4a0ac67459b72ee1a9217c4feae0d18052f387b 547014d6772b63fdc807bfe1a71788a75a4b41735e4cf75c7c2736ebb7b94c9a
Analyzer | Verdict | Alert | OpenPhish | phishing | Coda Payments |
GET /css/twitter.css HTTP/1.1
Host: nr34kj7p.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/fvr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 04:57:18 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 00:27:34 GMT
last-modified: Sun, 06 Feb 2022 18:31:28 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 16184
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YQwjv9Q0%2F2IJ0YqWdJhhXWnpTnAYrRBxspXJbrOQAKnZj9nJx6r2xEn0A5tU8bBMkAEvG9H2VL38bRir%2FqrwmVPScrfs47%2FqVEHg6wCLQtBc3nWywHZS5Wk9yVRSzMQ%2BChRaoqVb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876212bff8380b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| nr34kj7p.fcyz.my.id/css/spinner.58144.css | 188.114.96.1 | 200 OK | 2.2 kB |
URL GET HTTP/3nr34kj7p.fcyz.my.id/css/spinner.58144.css IP188.114.96.1:443
Requested byhttps://nr34kj7p.fcyz.my.id/fvr/ CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeASCII text, with very long lines (2460), with no line terminators Hashee824601116a720609b935eff142581d 17e6b55baec1ca23273589b72c222b4cbfbdeaed 4be7ac29546a8f58a9ae8749cf83b7ee8b0f38a21d6edb78b98e1dcc178dd2d1
Analyzer | Verdict | Alert | OpenPhish | phishing | Coda Payments |
GET /css/spinner.58144.css HTTP/1.1
Host: nr34kj7p.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/fvr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 04:57:18 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 00:27:35 GMT
last-modified: Sun, 06 Feb 2022 18:31:28 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 16183
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gDdwcwpFTf09GgWD9stjbvNQhIQ2TDI7X%2BrghyXoa%2FJs5tut8z92y8vvcsg5y1XNO%2BfhLeXK48sS53iztmooufrkYDRgleDjedVFW5GN3OjAEgfaliSHN%2BU6xmK4%2FjSatGc4D04Y"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876212bff83a0b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdn1.codashop.com/S2/content/mobile/css/productPage/responsive-product-page2.7ec2b81ede.css | 54.230.111.28 | 200 OK | 27 kB |
URL GET HTTP/2cdn1.codashop.com/S2/content/mobile/css/productPage/responsive-product-page2.7ec2b81ede.css IP54.230.111.28:443
Requested byhttps://nr34kj7p.fcyz.my.id/fvr/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typeASCII text, with very long lines (26941), with no line terminators Hash7ec2b81ede93e59a3c985e6656b87427 1492b90f5361149a1d84d0870a5fcb15e1a9f60f 8225b86ace7fec322a3bcfb3549603351fef4111b98595a617499a69c8d6269b
GET /S2/content/mobile/css/productPage/responsive-product-page2.7ec2b81ede.css HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
last-modified: Fri, 04 Sep 2020 02:37:43 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Thu, 18 Apr 2024 02:31:11 GMT
etag: W/"7ec2b81ede93e59a3c985e6656b87427"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: HmTaErFvWOe-ODJH1lFCmYLYv4jSRMmU2O1FEZQdCTU8S5DHM1NKGQ==
age: 8768
X-Firefox-Spdy: h2
|
|
| nr34kj7p.fcyz.my.id/css/facebook.css | 188.114.96.1 | 200 OK | 3.3 kB |
URL GET HTTP/3nr34kj7p.fcyz.my.id/css/facebook.css IP188.114.96.1:443
Requested byhttps://nr34kj7p.fcyz.my.id/fvr/ CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeASCII text, with very long lines (3652), with no line terminators Hashcf40acbd99bff687c6b0ead7b5149a8a feee1d79f66a0a47216f9c1bdfca2cde0da0b4c9 321f3512a8cf477d7129ecd68653261383d91d29204f9119061311c26a7f3133
Analyzer | Verdict | Alert | OpenPhish | phishing | Coda Payments |
GET /css/facebook.css HTTP/1.1
Host: nr34kj7p.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nr34kj7p.fcyz.my.id/fvr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 04:57:18 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 00:27:34 GMT
last-modified: Sun, 06 Feb 2022 18:31:28 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 16184
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=x7Jxu4P4uThvtBdS2FMGQaTmGbjKCe4ShvxBPox9tn%2B31orm5qjny3%2FDppQAVsElO%2F8VJEPmGvsAbrDPGfJzFp5CIbpVsCNkghm4Mc6Cc1n6z27YxXsFdQpENauHXAxcXaJZLaZ4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876212bff8360b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|