| 146.190.84.212/?clickid=810620097273008128 | 146.190.84.212 | 200 OK | 4.6 kB |
URL User Request GET HTTP/2146.190.84.212/?clickid=810620097273008128 IP146.190.84.212:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerZeroSSL Subject146.190.84.212 Fingerprint6A:D5:7B:6E:A8:56:1A:E7:E4:7C:1E:D1:10:73:CC:CA:F5:3A:3B:A0 ValiditySat, 09 Mar 2024 00:00:00 GMT - Fri, 07 Jun 2024 23:59:59 GMT
File typeHTML document, Unicode text, UTF-8 text Hashd2f5a3647a4fe8e1f472a4a950dcaca0 947f86c633c82fbba4f7a94154cbe8865508b7df 2cdf849eca84f0ada01ddc8e953dcf2b7bb405272dad398695ec83d67bda0567
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /?clickid=810620097273008128 HTTP/1.1
Host: 146.190.84.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 14:42:59 GMT
content-type: text/html; charset=UTF-8
content-length: 4583
cache-control: max-age=0, s-maxage=2592000
expires: Sat, 04 May 2024 14:42:59 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| cdn.ampproject.org/v0/amp-anim-0.1.js | 216.58.207.193 | 200 OK | 2.5 kB |
URL GET HTTP/2cdn.ampproject.org/v0/amp-anim-0.1.js IP216.58.207.193:443
Requested byhttps://146.190.84.212/?clickid=810620097273008128 CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.google.com Fingerprint15:D1:F9:FD:F4:47:59:FF:66:C1:EB:18:18:71:8F:7D:9A:38:20:14 ValidityTue, 16 Apr 2024 03:24:35 GMT - Tue, 09 Jul 2024 03:24:34 GMT
File typeJavaScript source, ASCII text, with very long lines (6054) Hash663350d63eae51fae313dab8aa66e056 72491e6cbca8e974b8d54d41c30b0aa5bb5afd1d f9d3edef50684ca0ffa8ddd8bd6338a604543989570d0b39cae64617f09843f1
GET /v0/amp-anim-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://146.190.84.212/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 2474
date: Sat, 04 May 2024 14:42:59 GMT
expires: Sat, 04 May 2024 14:42:59 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "3384521943677ade"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn.ampproject.org/v0.js | 216.58.207.193 | 200 OK | 73 kB |
IP216.58.207.193:443
Requested byhttps://146.190.84.212/?clickid=810620097273008128 CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.google.com Fingerprint15:D1:F9:FD:F4:47:59:FF:66:C1:EB:18:18:71:8F:7D:9A:38:20:14 ValidityTue, 16 Apr 2024 03:24:35 GMT - Tue, 09 Jul 2024 03:24:34 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (64654) Hash86b80d7bd5cbbcb64d6352cebe49087a ddaa6d9bbbf6c21a6ebf5afd53321a53db3741d1 729cf39187bda4533a392944f2802d8f8b9e8a0048676ec6481bf35a98713a43
GET /v0.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://146.190.84.212/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 73092
date: Sat, 04 May 2024 14:42:59 GMT
expires: Sat, 04 May 2024 14:42:59 GMT
cache-control: private, max-age=3000, stale-while-revalidate=1206600
etag: "1e5bf2819ff421fa"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| kilat.digital/images/2024/01/20/2f67caf0c609a9cca17553633ada5cac.png | 188.114.97.1 | 200 OK | 1.4 MB |
URL GET HTTP/2kilat.digital/images/2024/01/20/2f67caf0c609a9cca17553633ada5cac.png IP188.114.97.1:443
Requested byhttps://146.190.84.212/?clickid=810620097273008128 CertificateIssuerLet's Encrypt Subjectkilat.digital Fingerprint71:56:AC:43:F6:D9:0E:08:A9:5E:B1:75:DB:31:20:3F:64:9E:B4:62 ValiditySat, 30 Mar 2024 15:47:11 GMT - Fri, 28 Jun 2024 15:47:10 GMT
File typePNG image data, 1920 x 1080, 8-bit/color RGBA, non-interlaced Size1.4 MB (1407106 bytes) Hash1c56ee9c8a6ad5da140b2c07c3ea4159 3bbd4351eba852cd364320f0485732bd79f7ed22 c1caf1ec4172bbd512e60dbc79f422dc0df497a8fcdbb90bde337af2293997da
GET /images/2024/01/20/2f67caf0c609a9cca17553633ada5cac.png HTTP/1.1
Host: kilat.digital
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://146.190.84.212/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 14:43:00 GMT
content-type: image/png
content-length: 1407106
last-modified: Sat, 20 Jan 2024 08:33:49 GMT
etag: "157882-60f5c74b2a826"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8H2C5kcPM8CNvrowv331QY3Wtb3fG%2BnhRBn52f8Vff9l5F32yF6eNmLw9B2Q5I5BOPAdKHkhb00BXycNeW09N39c3bRGm3h5HhqIF8wb%2BFMFejaRQmHC4YihxcrAJe4i"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e942b40ac1b4f3-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.ampproject.org/rtv/012404181825000/v0/amp-auto-lightbox-0.1.js | 216.58.207.193 | 200 OK | 3.0 kB |
URL GET HTTP/3cdn.ampproject.org/rtv/012404181825000/v0/amp-auto-lightbox-0.1.js IP216.58.207.193:443
Requested byhttps://146.190.84.212/?clickid=810620097273008128 CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.google.com Fingerprint15:D1:F9:FD:F4:47:59:FF:66:C1:EB:18:18:71:8F:7D:9A:38:20:14 ValidityTue, 16 Apr 2024 03:24:35 GMT - Tue, 09 Jul 2024 03:24:34 GMT
File typeJavaScript source, ASCII text, with very long lines (7690) Hash656bf7bf1304fab13624e0b2550c312e 25afd50fb250a09c7d5e89397173344db0530dc6 b765500a58cc93374829c9d2b1510d617fcc5aada2849d4efdd1f301a7253d8b
GET /rtv/012404181825000/v0/amp-auto-lightbox-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://146.190.84.212
DNT: 1
Connection: keep-alive
Referer: https://146.190.84.212/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 2974
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 18:28:12 GMT
expires: Fri, 02 May 2025 18:28:12 GMT
cache-control: public, max-age=31536000
etag: "663cf6dca8295d04"
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 159288
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| cdn.ampproject.org/rtv/012404181825000/v0/amp-loader-0.1.js | 216.58.207.193 | 200 OK | 3.9 kB |
URL GET HTTP/3cdn.ampproject.org/rtv/012404181825000/v0/amp-loader-0.1.js IP216.58.207.193:443
Requested byhttps://146.190.84.212/?clickid=810620097273008128 CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.google.com Fingerprint15:D1:F9:FD:F4:47:59:FF:66:C1:EB:18:18:71:8F:7D:9A:38:20:14 ValidityTue, 16 Apr 2024 03:24:35 GMT - Tue, 09 Jul 2024 03:24:34 GMT
File typeJavaScript source, ASCII text, with very long lines (12614) Hasha6b8d507d4704d2eda7a1c98ca5f37b8 d8670fc36c37041eef2eff1f5426d9dad26b5dd3 cb6fcadd038e03de5104bf1711a8084c485490bb563206db0a673d271e274987
GET /rtv/012404181825000/v0/amp-loader-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://146.190.84.212
DNT: 1
Connection: keep-alive
Referer: https://146.190.84.212/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 3942
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 23:17:14 GMT
expires: Fri, 02 May 2025 23:17:14 GMT
cache-control: public, max-age=31536000
etag: "5536cb3ac106fb0a"
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 141946
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| kilat.digital/images/2023/12/25/3df5cc85d540aa8968ac305d511fffaf.png | 188.114.97.1 | 200 OK | 30 kB |
URL GET HTTP/3kilat.digital/images/2023/12/25/3df5cc85d540aa8968ac305d511fffaf.png IP188.114.97.1:443
Requested byhttps://146.190.84.212/?clickid=810620097273008128 CertificateIssuerLet's Encrypt Subjectkilat.digital Fingerprint71:56:AC:43:F6:D9:0E:08:A9:5E:B1:75:DB:31:20:3F:64:9E:B4:62 ValiditySat, 30 Mar 2024 15:47:11 GMT - Fri, 28 Jun 2024 15:47:10 GMT
File typePNG image data, 195 x 195, 8-bit/color RGBA, non-interlaced Hashb5f8ba6f6ff81d95e11dc5af837cc639 5f09fda6a102c9fa52b32afa797e4806e7f89f51 41fe590020adbc52bdb72138740fa55c7afa967ff41c06db9cc568a72c1db447
GET /images/2023/12/25/3df5cc85d540aa8968ac305d511fffaf.png HTTP/1.1
Host: kilat.digital
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://146.190.84.212/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 14:43:00 GMT
content-type: image/png
content-length: 30103
last-modified: Mon, 25 Dec 2023 13:36:47 GMT
etag: "7597-60d55a84c3e32"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6820
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=X6qAUE5%2BqH%2FSzzihe2heIUw0jNIPG1uABo8vC7tfkI675F0EuWjVYevAQ0yrjc6Hmn4SNa6GYKvlHC37lCY5OzYB2z2S57B9xU7uc0paRhkkmVsuQMxnPuaH7fnsKFw6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e942b92f4756c6-OSL
alt-svc: h3=":443"; ma=86400
|
|
| dmwl0ca1bvnm.cloudfront.net/499/logo/logo.png | 54.230.241.13 | 200 OK | 38 kB |
URL GET HTTP/2dmwl0ca1bvnm.cloudfront.net/499/logo/logo.png IP54.230.241.13:443
Requested byhttps://146.190.84.212/?clickid=810620097273008128 CertificateIssuerAmazon Subject*.cloudfront.net FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52 ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File typePNG image data, 408 x 108, 8-bit/color RGBA, non-interlaced Hashbc1f1eddef7ae28d4ee132908a4e92c6 51a6bb7901ebdf94a45b2101a8ac23c4e629d043 5e63acfefeb0bda162ce3def07d33f454d6a6e4af9ae300fed4a26754d2e2e2a
GET /499/logo/logo.png HTTP/1.1
Host: dmwl0ca1bvnm.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://146.190.84.212/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
content-length: 37697
last-modified: Fri, 23 Jun 2023 08:17:38 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sat, 04 May 2024 14:43:00 GMT
etag: "bc1f1eddef7ae28d4ee132908a4e92c6"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: yuMJlquUSh--fzGPzPwR_oMoBxS9_1gAM9O0FWgEpVRR7Tg8cI3eLA==
age: 76547
X-Firefox-Spdy: h2
|
|
| kilat.digital/images/2023/12/13/fc60389f1f23bd5e0c1f38b1bf684ee1.jpg | 188.114.97.1 | 200 OK | 239 kB |
URL GET HTTP/3kilat.digital/images/2023/12/13/fc60389f1f23bd5e0c1f38b1bf684ee1.jpg IP188.114.97.1:443
Requested byhttps://146.190.84.212/?clickid=810620097273008128 CertificateIssuerLet's Encrypt Subjectkilat.digital Fingerprint71:56:AC:43:F6:D9:0E:08:A9:5E:B1:75:DB:31:20:3F:64:9E:B4:62 ValiditySat, 30 Mar 2024 15:47:11 GMT - Fri, 28 Jun 2024 15:47:10 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], baseline, precision 8, 840x473, components 3 Size239 kB (239324 bytes) Hashf61d1816d5cc3038eda9d032f66ae8e4 0389c55a00f60c96ce45a13f4d074199e06ddd99 e81b545f61c89dc4f7d6291c4cf12a7b1848090afb0e71c66ddf4f9de735b097
GET /images/2023/12/13/fc60389f1f23bd5e0c1f38b1bf684ee1.jpg HTTP/1.1
Host: kilat.digital
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://146.190.84.212/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 14:43:00 GMT
content-type: image/jpeg
content-length: 239324
last-modified: Wed, 13 Dec 2023 10:37:27 GMT
etag: "3a6dc-60c61c0dd9ab1"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tEJmP26Mvkn3SUyZP7YBwaf5Cdevi3VTWZ0tpqzYkiSTLfWeSqm2k9Nc8J58oD3Sh06xBCDovkXVl9KVG0J7Zq5jdY5wQpB1rRRz8IoD5tvk80L7kJ0f%2BlUKkFjyAh1Q"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e942b74cd656c6-OSL
alt-svc: h3=":443"; ma=86400
|
|
| sgp1.digitaloceanspaces.com/colokimage/IOS/GIF/GIF%20IOS.gif | 0.0.0.0 | | 0 B |
URL GET sgp1.digitaloceanspaces.com/colokimage/IOS/GIF/GIF%20IOS.gif IP0.0.0.0:0
Requested byhttps://146.190.84.212/?clickid=810620097273008128 CertificateIssuerDigiCert Inc Subject*.sgp1.digitaloceanspaces.com FingerprintA8:92:F3:D1:4B:84:DB:36:4C:05:F4:43:5A:A4:13:0B:34:0E:47:00 ValidityFri, 01 Dec 2023 00:00:00 GMT - Tue, 17 Dec 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /colokimage/IOS/GIF/GIF%20IOS.gif HTTP/1.1
Host: sgp1.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://146.190.84.212/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-length: 2897557
accept-ranges: bytes
last-modified: Wed, 13 Dec 2023 01:51:13 GMT
x-rgw-object-type: Normal
etag: "4f28cf8550a913d909f183ed45df9ef4"
x-amz-request-id: tx000007b540e32a991fa7d-0066364976-3bfb8894-sgp1b
content-type: image/gif
date: Sat, 04 May 2024 14:43:02 GMT
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-envoy-upstream-healthchecked-cluster:
X-Firefox-Spdy: h2
|
|