| firefox.settings.services.mozilla.com/v1/ | 143.204.55.115 | 200 OK | 939 B |
URL HTTP/1.1firefox.settings.services.mozilla.com/v1/ IP143.204.55.115:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hashb593eb39329cfe060d55be5e4a5405e2 78e46c1028e9f94f8569303ad2d90d7df13a059a 08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 06 Sep 2022 03:45:15 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: f27jomZ8-xl-hc9Anvx8gRUmZRw8RCh8eatk4-mjp9c3EMjy7jU-_w==
Age: 2322
|
|
| spingratislucky.droplite1.my.id/ | 104.21.50.235 | 200 OK | 12 kB |
URL HTTP/1.1spingratislucky.droplite1.my.id/ IP104.21.50.235:0
File typeHTML document, ASCII text, with very long lines (65536), with no line terminators Hash4607f34b5c38a54f5a8c9674c6186cf4 1393245cc9d434bff8d538f67a1fb003896fd94a 755b0219539d099319977b92ea6f656ec26f2dbb59192b0854c7717731d05dd3
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET / HTTP/1.1
Host: spingratislucky.droplite1.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 04:23:57 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5bbMnWXPHQPF4D2K12T%2BMfuKNuq3GeapA4z5BZiS2Lkhr%2B%2FdnsQNWUYwy9wMCVDERLPng968UzFXvHQS%2BIt2plafyA9fjHQUbFbTYxfFfY6Cz%2F1rc%2B8mpZucgWmocwhuKLPY0tnJxxeM7NiqqrkqaKKp"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 74646ea63f1db529-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashd931e0142ef5ffe9cdb4c4c6bfcb9bc9 d9c4caf525e8926b042a14f38d374cc4033ed768 f610984fb0a75b3a31424faa860cbc8172c7f21804df1dc14fbb685b7c456f29
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F610984FB0A75B3A31424FAA860CBC8172C7F21804DF1DC14FBB685B7C456F29"
Last-Modified: Sat, 03 Sep 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7247
Expires: Tue, 06 Sep 2022 06:24:44 GMT
Date: Tue, 06 Sep 2022 04:23:57 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain | 143.204.55.35 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain IP143.204.55.35:0
File typePEM certificate\012- , ASCII text Hash742edb4038f38bc533514982f3d2e861 cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1 b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 06 Sep 2022 01:15:18 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: qolpu_6tgYNQxsUmmrDYnFsluu5hKoaG9yUv6JG0Qag0D-BJqqX6Yw==
age: 11320
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:23:57 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| spingratislucky.droplite1.my.id/css-zone/facebook.css | 104.21.50.235 | 200 OK | 769 B |
URL HTTP/1.1spingratislucky.droplite1.my.id/css-zone/facebook.css IP104.21.50.235:0
Hasha5a8cf4967c0f555128a955652f9f76b 1a4ee48ac9bcec903a87647ffcd3380323370fd7 fe1db8d09d31b7179aa877f4db2263c8a216549ff2a4a9a5a530f7c27b26e7b0
GET /css-zone/facebook.css HTTP/1.1
Host: spingratislucky.droplite1.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://spingratislucky.droplite1.my.id/
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 04:23:57 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 25 Jan 2021 12:38:26 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pID7lF1N1uGCDT1r5ukyJLmxgQyCaFUlsr0NqDwGIhP4Pgx42I4A12bWBWxiFllGFAM75pddZJEPwOp%2F8JVQC411bRO8WXLY2noqWGflqM4WAR0%2FHqsENjrRmMoB5pFwgSgfhXb1yUSre6Fm2Ljlrt7G"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74646ea878e3b529-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|
| spingratislucky.droplite1.my.id/css-zone/twitter.css | 104.21.50.235 | 200 OK | 584 B |
URL HTTP/1.1spingratislucky.droplite1.my.id/css-zone/twitter.css IP104.21.50.235:0
Hash9b66884b7c4e23a82516848a56c90a72 72ca5d69a5451279cb7ac50645fba4ed6371d9b3 f014bda45bb1b31777d3a1a04b742e7b800b1c3e8da9b0823a44b73f36e967eb
GET /css-zone/twitter.css HTTP/1.1
Host: spingratislucky.droplite1.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://spingratislucky.droplite1.my.id/
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 04:23:57 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 25 Jan 2021 12:38:26 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Xgy8Q5nmPgogS%2FwYYdi6zlcBhnZm%2FZqs1sU8na7%2BzxInz1zGE1sFqXw2ZChz599a9wGH2cWWCucXBTLcFdhFC7paQ17kY%2BOEmuU61R1FrqIZ94%2BjhwoQLUyGnLaoHIMCbLoZaoYXAyLVJzZd6LGOFZrD"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74646ea89a21b523-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|
| spingratislucky.droplite1.my.id/index_files/main-zone.js.download | 104.21.50.235 | 200 OK | 351 B |
URL HTTP/1.1spingratislucky.droplite1.my.id/index_files/main-zone.js.download IP104.21.50.235:0
File typeASCII text, with very long lines (316) Hashcbc8d84e7d64fd33e22c6c648014452a c74bce4d67a7f122589b33860835ab0629cfc446 73ad0a19d3c11e18b11cfc81e861d65463405f38aa1a035c0e98e4ec60572f00
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /index_files/main-zone.js.download HTTP/1.1
Host: spingratislucky.droplite1.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://spingratislucky.droplite1.my.id/
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 04:23:57 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 25 Jan 2021 12:38:28 GMT
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Gc2QtAMu9uai26cDiTglJ9YwJQSUbmUbGo0%2FsZ3o2rra%2Br3rhBLAY%2BCQKgNH0VMPgiLSzSuRdtWZ5spoLzVzo1fpct2uyM%2Fgtrlqjc%2F0SzqX%2Bh2YoX4B0TSyfuV%2FPBw4B2272Nkd0yxWgS7AvOdx4%2Bvv"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 74646ea8af080b51-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|
| spingratislucky.droplite1.my.id/js-zone/jquery.js | 104.21.50.235 | 200 OK | 451 B |
URL HTTP/1.1spingratislucky.droplite1.my.id/js-zone/jquery.js IP104.21.50.235:0
File typeexported SGML document, ASCII text, with very long lines (1757) Hash1abe5c025a16893ec52beb616bed7b16 9d69e05eeeecfb6f358bfa69e460168a7617f585 1dfae3417846d2cfbd7957679b81e8021a51949912e10b3101c71ca2f9d5dcb3
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /js-zone/jquery.js HTTP/1.1
Host: spingratislucky.droplite1.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://spingratislucky.droplite1.my.id/
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 04:23:57 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 25 Jan 2021 12:38:28 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=v6zANqDx8qK5rJk7wCfEpf9BeApRA1XVDz%2B73w26f4sK4TQGkDv4uWOwzxkP%2BI3kga6Yewu3cSNgS0e%2B3Dmu9AWNPOCJJodmmOOIelwti1EuAsCDcRpIb30hmG9JhtTR0Sj%2BqrNd64cJXMVhCNyBzVA%2B"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74646ea89e000afe-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|
| spingratislucky.droplite1.my.id/index_files/jquery.min.js.download | 104.21.50.235 | 200 OK | 30 kB |
URL HTTP/1.1spingratislucky.droplite1.my.id/index_files/jquery.min.js.download IP104.21.50.235:0
File typeASCII text, with very long lines (65451) Hash51211042ec68ea15234efe20281276a0 e85453512cf031025b33b2b1375fb4ddcc5e01e1 6653a5dae86bae4edd689c8b71072c18c15a6c0314788374d7e9d7ab6e91a40f
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /index_files/jquery.min.js.download HTTP/1.1
Host: spingratislucky.droplite1.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://spingratislucky.droplite1.my.id/
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 04:23:57 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 25 Jan 2021 12:38:28 GMT
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PR3N6lh6bnot8GkoSfdcmWq5syZ%2BgHq4ni5WPRZJBY04i042f8Bwb7THRU3wGRC%2FviPDb9Lm8yUyMS3dX37x3XO4Fh93OxwM19Gfbp1%2FnvuC43qKekx85Ej2%2Fz4Rh4z5UlOG0tD5NUAG2Bss4HO9bXZo"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 74646ea8d921b529-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash8b3fc7b78a1c498440023dbb6004e984 688d8686e183a4e84577e0f70550350622796e2e ac1f7b3d1c5bfc1888f50aa3a8e0498c11f7cce672e6de5c048bf31d4d3370c7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 04:23:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| spingratislucky.droplite1.my.id/index_files/slide-zone.js.download | 104.21.50.235 | 200 OK | 603 B |
URL HTTP/1.1spingratislucky.droplite1.my.id/index_files/slide-zone.js.download IP104.21.50.235:0
File typeexported SGML document, ASCII text, with very long lines (530) Hash4cf548f0e7e5b5976fd486a35ded4aa7 fcc728cbe2ffee89f0eb00cdcef5f02d9936c329 8d5d314b61419668faa06ed57523c98bea7309b991b9686bbfaaed2f93b8b4fa
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /index_files/slide-zone.js.download HTTP/1.1
Host: spingratislucky.droplite1.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://spingratislucky.droplite1.my.id/
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 04:23:57 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 25 Jan 2021 12:38:28 GMT
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KHJdAzifXflTaJ1R2IChb8u8WUt5vDJwMIa8AWt7An4qJeWL%2FlsvtVXVur%2BhHw9xcaAc%2B8Qvjci6dOm3cBqAkZb9Crd7RE9%2FbMvupMecKEamIoM9sgfy%2FSoe6FspwPRh6XKEfrxJKdbnfLexlV%2BY0KQC"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 74646ea90e3f0afe-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|
| spingratislucky.droplite1.my.id/index_files/css | 104.21.50.235 | 200 OK | 62 kB |
URL HTTP/1.1spingratislucky.droplite1.my.id/index_files/css IP104.21.50.235:0
File typeASCII text, with very long lines (1116) Hash755df17a408beddb747e36f27ae4dedc 53daa61ef477c0badec68fa8942cb5ffce0c38b0 a2db023c6c27693f044211498c952a94f002c75b80926bde95c24d5dbab187f4
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /index_files/css HTTP/1.1
Host: spingratislucky.droplite1.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://spingratislucky.droplite1.my.id/
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 04:23:57 GMT
Content-Length: 62268
Connection: keep-alive
Last-Modified: Mon, 25 Jan 2021 12:38:28 GMT
Accept-Ranges: bytes
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZpUHV8nID43umkPoEhkzUcw%2FwWR50TuzM5YnpUSYikCDmBMJHxM9z0F9PJQMLqfCZO%2BSn8N1SD3qp29Uw6Ogx%2BkBah87sRwb3GN1c04ikQon%2Fad3ccevyfb8wz5eNarYNeisLsp%2FMWIexFPqpC6lZ1wO"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 74646ea8ac50b521-OSL
alt-svc: h2=":443"; ma=60
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash8b3fc7b78a1c498440023dbb6004e984 688d8686e183a4e84577e0f70550350622796e2e ac1f7b3d1c5bfc1888f50aa3a8e0498c11f7cce672e6de5c048bf31d4d3370c7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 04:23:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| spingratislucky.droplite1.my.id/js-zone/main-zone.js | 104.21.50.235 | 200 OK | 345 B |
URL HTTP/1.1spingratislucky.droplite1.my.id/js-zone/main-zone.js IP104.21.50.235:0
File typeASCII text, with very long lines (316) Hashbbae78527e745cb146a632161f3012f4 c882ece393db1074d14ce6f7a31bbd1a75b063f2 c14640cd35d53dc1c450da2a35643dbcaf9877fc7818bc796580801c80c64922
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /js-zone/main-zone.js HTTP/1.1
Host: spingratislucky.droplite1.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://spingratislucky.droplite1.my.id/
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 04:23:57 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 25 Jan 2021 12:38:28 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mr3gplwRiB16mae1ncPIbI9%2F2AU%2FskSNudiheWilupBNx%2F1rkn0pHEXwbsK3eqp6omTsEXR7RYFDST3kbizMI8gww%2FGMC1Fdw8VyDKX2MlOFhHgZrTBkpF6cAncIduQurMsh7iYD41RMPN%2F7g0av4z%2FT"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74646ea898abfab4-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|
| i.ibb.co/Lx6KnZG/icon.png | 51.210.32.103 | 200 OK | 63 kB |
URL HTTP/2i.ibb.co/Lx6KnZG/icon.png IP51.210.32.103:0
File typePNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data Hash5ac009de997de64b65fac19d9073fed6 869d864448efd48629251b3a22721b2b239d43ca 342cc6fb3a28b52d8a292de4b417d91b4e6049e585ce3ec30db1d95316a2b68f
GET /Lx6KnZG/icon.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://spingratislucky.droplite1.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:23:57 GMT
content-type: image/png
content-length: 63077
last-modified: Sat, 09 Jan 2021 09:25:07 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 143.204.55.115 | 200 OK | 329 B |
URL HTTP/1.1firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP143.204.55.115:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Tue, 06 Sep 2022 03:38:18 GMT
Cache-Control: max-age=3600
Expires: Tue, 06 Sep 2022 04:29:22 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 8ehfLUbosnUdbQcQNaVhg_6I61-tFbXIQRIuXxq3P49YcUxE7TQF9w==
Age: 2740
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashb57a9dd04797bf34612c80361f1dffb3 56573166d8b9cd9b8dae19fd905e4f3293af306b b03552109f1e7d1e482aa14614ffb1e38fb53ae4951152aab307b927674dad98
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5311
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 04:23:58 GMT
Last-Modified: Tue, 06 Sep 2022 02:55:27 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
|
|
| www.pubgmobile.com/id/event/payload/images/btn_play.png | 23.36.76.250 | 200 OK | 4.1 kB |
URL HTTP/2www.pubgmobile.com/id/event/payload/images/btn_play.png IP23.36.76.250:0 ASN#20940 Akamai International B.V.
File typePNG image data, 154 x 154, 8-bit colormap, non-interlaced\012- data Hash3bd19a822722be9ed823b9b67dfbd64e 775234cfad5b7690d45d5dd049fe7bd15e860dc1 d0974c48d5688c2cc99cf147f181a1ec01a5fea35e23e75fc2ec54e6ebb9d9e2
GET /id/event/payload/images/btn_play.png HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://spingratislucky.droplite1.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/png
content-length: 4067
last-modified: Wed, 15 Sep 2021 06:40:50 GMT
etag: "61419572-fe3"
accept-ranges: bytes
cache-control: max-age=300
expires: Tue, 06 Sep 2022 04:28:58 GMT
date: Tue, 06 Sep 2022 04:23:58 GMT
X-Firefox-Spdy: h2
|
|
| push.services.mozilla.com/ | 54.148.77.40 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP54.148.77.40:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: y5qxb+vdC9n058yK22zl1A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: SJwj1FHLiMbeGbeNp9ZPwa88/OM=
|
|
| spingratislucky.droplite1.my.id/index_files/giftBundle.js | 104.21.50.235 | 200 OK | 653 B |
URL HTTP/1.1spingratislucky.droplite1.my.id/index_files/giftBundle.js IP104.21.50.235:0
Hash350f73bbd8be3c60f6f3e92291c46893 bcbc11906f02ef582d4cb47412503a5520af1ea9 93bd0463469c023cf77f16d8fbd094d748d94ec9f69f356b4d53649c1eee6b78
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /index_files/giftBundle.js HTTP/1.1
Host: spingratislucky.droplite1.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://spingratislucky.droplite1.my.id/
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 04:23:58 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 25 Jan 2021 12:38:28 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7Z0%2FRR5eRS%2BUjjwBbNlB9MhR8uNs%2BDvV9YWqtXpoqzszLr1L181rEbfULdz62FUA1XWGHUX9JhbtCELeL5RNNtUulZK%2BAGHomlLn5REGkgiFeXW5bzjLfDqV7YtH4sC7IaPbGaiqj4GkIrRd4YxxvRoN"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74646ea90a71b523-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashbc70b1691dd339e8120b92ba393ffb69 99118be3645b3182ccdc5f9da149a97c220a3929 da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2480
Expires: Tue, 06 Sep 2022 05:05:19 GMT
Date: Tue, 06 Sep 2022 04:23:59 GMT
Connection: keep-alive
|
|
| spingratislucky.droplite1.my.id/js-zone/slide-zone.js | 104.21.50.235 | 200 OK | 250 B |
URL HTTP/1.1spingratislucky.droplite1.my.id/js-zone/slide-zone.js IP104.21.50.235:0
File typeASCII text, with CRLF line terminators Hasha1d22d4da8fff9188a10d4be53b990c6 fd352710b6c3d2394950d49145ebdc7750e41df4 1bbb97947079853a28183dc9a9a030c5e57be9a41c524cd41ab330d1140f2f66
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /js-zone/slide-zone.js HTTP/1.1
Host: spingratislucky.droplite1.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://spingratislucky.droplite1.my.id/
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 04:23:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 25 Jan 2021 12:38:28 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bfpaTifQopUX54iSEEGPMw%2BwH6rkGQuCG%2B7OW6ULk2yWv3yGEm%2FACKkOX50P%2FoaBMYd%2Bcp0SbdzwJgYYF6021YpjpZuZujnRYMY8MfaR1qtNA8SavSQs%2FXJ7WvBpZksCZigwXDmuBXC5Vox4905Op2id"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74646ea90f3c0b51-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashbc70b1691dd339e8120b92ba393ffb69 99118be3645b3182ccdc5f9da149a97c220a3929 da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2480
Expires: Tue, 06 Sep 2022 05:05:19 GMT
Date: Tue, 06 Sep 2022 04:23:59 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashbc70b1691dd339e8120b92ba393ffb69 99118be3645b3182ccdc5f9da149a97c220a3929 da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2480
Expires: Tue, 06 Sep 2022 05:05:19 GMT
Date: Tue, 06 Sep 2022 04:23:59 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashbc70b1691dd339e8120b92ba393ffb69 99118be3645b3182ccdc5f9da149a97c220a3929 da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2480
Expires: Tue, 06 Sep 2022 05:05:19 GMT
Date: Tue, 06 Sep 2022 04:23:59 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7ad09c5e-a115-4ff7-9742-809e93046365.jpeg | 34.120.237.76 | 200 OK | 4.4 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7ad09c5e-a115-4ff7-9742-809e93046365.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashc81f3df885bdee8cac46ea9495e6b63b fc766bca874a352a4acb569577d4cf6527f4f074 e21473f88c613ca33ba6bbe1e0cab338274a06744cdcb088f14873c972445b36
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7ad09c5e-a115-4ff7-9742-809e93046365.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4426
x-amzn-requestid: b5b68557-e46d-41cd-9b11-d996aabc0de7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzfYTHHFIAMFjFw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631145ce-1d3504367cf6ef724a345564;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 23:52:46 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: GSRJIWisH465dPqbKyPj1iZk1jAu3RGrgwj1CX3X8A397zv9Nt0cHA==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 08:13:35 GMT
age: 72624
etag: "fc766bca874a352a4acb569577d4cf6527f4f074"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F228f042c-3a57-45c7-84c2-4aaaa1dd2f07.jpeg | 34.120.237.76 | 200 OK | 11 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F228f042c-3a57-45c7-84c2-4aaaa1dd2f07.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash19b452d6541a6028e7d3f90529477077 1c16eb50bc2490b4ebff6775ef611fdcb282f9f9 f4763a0f464067991c2c484c384df4fe791d7df6e3d6ad15650a954db537249f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F228f042c-3a57-45c7-84c2-4aaaa1dd2f07.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10694
x-amzn-requestid: c3d2f71c-927d-41f6-93ab-bf041374a9f1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAWsgHQOIAMFvSA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166b1c-5d2efd595cdf300972f4fb79;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:33:16 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: eikhT8BkN5e163S6QriQybdyPNTKDTf3BCsHifNwfBJfrWv7LqgL8Q==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 22:06:45 GMT
age: 22634
etag: "1c16eb50bc2490b4ebff6775ef611fdcb282f9f9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F106059e1-95ed-4ffb-b6d2-7b4f160333ed.jpeg | 34.120.237.76 | 200 OK | 13 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F106059e1-95ed-4ffb-b6d2-7b4f160333ed.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashec466c0d472e43c11d36bf6fce068205 720d3624a76d060b8e2699e9aa7a320e3efd4878 5553fc24713aae808f5ab81671551b0ae719435f3ced9f25df97d8edf6bfe86f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F106059e1-95ed-4ffb-b6d2-7b4f160333ed.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12683
x-amzn-requestid: 6127e5b6-72f6-40df-b400-41a1f147f6da
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xz8XmEe0IAMFQDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63117430-2b27a2683d2d320172cef32e;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 03:10:40 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Mj_IT5g7hGu2AunKK7mvierv5BQ8cAxhnbGaUNsL6hRNu6MRAzIBDw==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 05:19:01 GMT
age: 83098
etag: "720d3624a76d060b8e2699e9aa7a320e3efd4878"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13509ba4-185e-49da-89d8-908afb902ecf.jpeg | 34.120.237.76 | 200 OK | 8.2 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13509ba4-185e-49da-89d8-908afb902ecf.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash0dc7e957c4dae1e02302e8f981ac1d45 18b07456cbddb0345a3fe9e0ce498ae1302015d6 2d21c452de16e53108f739bf053403c19f4042eeb76448a9888cf7a4ea9bd257
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13509ba4-185e-49da-89d8-908afb902ecf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8152
x-amzn-requestid: 369bd0e8-47dc-40c2-ac7b-0a8daff48c61
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAY7THfOoAMFTVg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166eae-1501239a1ca4f77642cfe785;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:48:30 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: HtaGkNFQano4UWPIaJ_F_OJYSUR-gh58l9Qh0PhK9tEffDce9N5JWA==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:58:52 GMT
age: 23107
etag: "18b07456cbddb0345a3fe9e0ce498ae1302015d6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F247d15d7-00c1-43ea-98b5-65de7a4b684f.jpeg | 34.120.237.76 | 200 OK | 7.3 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F247d15d7-00c1-43ea-98b5-65de7a4b684f.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash5435a9ad697ed48da5dcc7d8718fb464 3add9a49d358f98761546c54ae6d58ad220586c2 6ea4ef9c631750c2f96610a5e0412ddea9fb5d60093b7d0594eaba1a1f0a50cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F247d15d7-00c1-43ea-98b5-65de7a4b684f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7324
x-amzn-requestid: bd86cacb-a324-4dd0-b097-492dddf4798d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAWt0H7PoAMFbdw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166b25-36d5a97644931b1b3802a588;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:33:25 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: wV5LqUpi94tVvzO5zfVbD11xRoBrHW4iETkmzWH2PF9_L74RBBX5AA==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:58:47 GMT
age: 23112
etag: "3add9a49d358f98761546c54ae6d58ad220586c2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa1a31159-2539-48f3-a417-78d00a149cfe.jpeg | 34.120.237.76 | 200 OK | 6.2 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa1a31159-2539-48f3-a417-78d00a149cfe.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashbc9a563730fb4169b5883ff84acf6f79 834038519e2249de90be0fe52899805663f9ee75 e7f587a281517b0eec1454b9c22031a4da7a82c315cc3c30ae6bec097844040d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa1a31159-2539-48f3-a417-78d00a149cfe.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6161
x-amzn-requestid: 6e6b9c9c-5446-4e79-9a67-d4d887d80f52
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAYfxGymoAMFxkQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166dfe-7fef31a6098d77c1613e74bd;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:45:34 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: HegykGV2xrZRknRCxguqholwj65B4GiD6W4RloqVXIlG06LMuemaog==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 22:03:39 GMT
age: 22820
etag: "834038519e2249de90be0fe52899805663f9ee75"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| spingratislucky.droplite1.my.id/img/header/1.jpg | 104.21.50.235 | 200 OK | 118 kB |
URL HTTP/1.1spingratislucky.droplite1.my.id/img/header/1.jpg IP104.21.50.235:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 1280x720, components 3\012- data Size118 kB (117523 bytes) Hash7944ad83a36f325f8edc86085521b32e a3812b777d216c5abbb186563af0dd3ab8ea5167 8b8682d50b7067ea1706979f278a081522a38c9b8c75fed33c54f0e17edcfb47
GET /img/header/1.jpg HTTP/1.1
Host: spingratislucky.droplite1.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://spingratislucky.droplite1.my.id/
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 04:23:59 GMT
Content-Type: image/jpeg
Content-Length: 117523
Connection: keep-alive
Last-Modified: Sun, 28 Feb 2021 04:49:56 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2pjpivRg6Vx74zFE9dNaX8OE3ik97B3mLLousfWXJYXcUZzwZ0C0jl3iYQPRyf50RvbD%2FClinXHh7v6mPxjP3GQT8hpRwO9VqX0RHw7iGgwaIC4pmCXmhmR1zU9tfryFzaw5zvDUceqzhcGZtjwPABk2"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74646ea9acf0b521-OSL
alt-svc: h2=":443"; ma=60
|
|
| spingratislucky.droplite1.my.id/img/header/3.jpg | 104.21.50.235 | 200 OK | 46 kB |
URL HTTP/1.1spingratislucky.droplite1.my.id/img/header/3.jpg IP104.21.50.235:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 739x415, components 3\012- data Hash6698b36908885af3807b7efb70ae4722 bde3c3025d296f9d9758637567f5d72199115464 bf9f601cc2d12bb63936267ec937c4925dc8e4d63f3422bb82551ca8da22d96e
GET /img/header/3.jpg HTTP/1.1
Host: spingratislucky.droplite1.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://spingratislucky.droplite1.my.id/
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 04:24:00 GMT
Content-Type: image/jpeg
Content-Length: 46260
Connection: keep-alive
Last-Modified: Sun, 28 Feb 2021 04:49:56 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EAMFjH0cQjwi6chuaa3MNDJM2yAjDjt9vIh%2BTuPRV7wpgystR7oUwPx4b3PzI0XI2yQ4s4D5nQVH14o3DYE%2BoqeNZAJ%2BqXWdfsKBx5lZxWmibXGAfOFLj3BfDw5%2F7CiOOqe1D%2BaCYhpN%2BWxNIdcS4iO%2B"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74646ea9a9a8b529-OSL
alt-svc: h2=":443"; ma=60
|
|
| spingratislucky.droplite1.my.id/img/header/2.jpg | 104.21.50.235 | 200 OK | 23 kB |
URL HTTP/1.1spingratislucky.droplite1.my.id/img/header/2.jpg IP104.21.50.235:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 739x415, components 3\012- data Hash4001052cca692675302bacf86eb58283 9f048505059dfc7a3377306958d79f1d6ca7a92b 0245a1860a6685e8a6e2b6ddf80eb19b79fb7bbc790cc6ad08c6d69fce9f545d
GET /img/header/2.jpg HTTP/1.1
Host: spingratislucky.droplite1.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://spingratislucky.droplite1.my.id/
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 04:24:00 GMT
Content-Type: image/jpeg
Content-Length: 23038
Connection: keep-alive
Last-Modified: Sun, 28 Feb 2021 04:49:56 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sTC%2BKqiOcloq%2FXZdSYCvJoSKN7NLeN4%2FVvgAWXBJqT9b08mCaQuNuRGq1REoTDflFXdxbMrXRtEV2KMzfUFxmrErWcOF%2FNQZeUgK7%2FZ9BZMPjSALzVJQQX2ce%2FDiYT%2FIjUQQdxZHeF3I7zyZPRMr5azO"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74646ea9aeb00afe-OSL
alt-svc: h2=":443"; ma=60
|
|
| spingratislucky.droplite1.my.id/img/header/4.jpg | 104.21.50.235 | 200 OK | 32 kB |
URL HTTP/1.1spingratislucky.droplite1.my.id/img/header/4.jpg IP104.21.50.235:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 739x415, components 3\012- data Hash1f74da6c54f750a40c8635a5438802b9 941e02f04fb4426ea60abd8c4c35a620e6bdbd4f 06e1f24755f9697f5af88d8848368668ff92f86138b03fa75b9389b4ada71b8a
GET /img/header/4.jpg HTTP/1.1
Host: spingratislucky.droplite1.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://spingratislucky.droplite1.my.id/
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 04:24:00 GMT
Content-Type: image/jpeg
Content-Length: 31967
Connection: keep-alive
Last-Modified: Sun, 28 Feb 2021 04:49:56 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZwayHwSqTzovG9eMNmIAAvE%2BUs4pvV76BotAqvMKCvjmjBj7PG9LzVtOc5cVXix9fRP7gZgpw272HVk1Ar%2Br3r1a2NRCC%2FqWvAsOsbRxMOy4uK%2BO2X3ITcgXEZvzVIO6XGTg1KZsM0iiBNz%2B6DGwTCdR"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74646ea9a8edfab4-OSL
alt-svc: h2=":443"; ma=60
|
|
| spingratislucky.droplite1.my.id/js-zone/alert-zone.js | 104.21.50.235 | 200 OK | 17 kB |
URL HTTP/1.1spingratislucky.droplite1.my.id/js-zone/alert-zone.js IP104.21.50.235:0
File typeASCII text, with very long lines (64301) Hashe8b74c6795976bb00b39192913be9a32 dda8e1b9a91bfe6ddca677812c4968291e28786a 00da874465ecd5632f1b7461cf7f65f9aa53bce8408b23775d70f08d6a963322
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /js-zone/alert-zone.js HTTP/1.1
Host: spingratislucky.droplite1.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://spingratislucky.droplite1.my.id/
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 04:24:00 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 25 Jan 2021 12:38:28 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IY2vTqgXl%2BTKnmZLikj7ru9JVnEgP48kGa6TVH1A5CpWmgZs7lkIGn4Bw8fGtYOel1fn8VcMR2l31VjE15f3PSoc65pU3brzfC0l5Ly6rJl4b5%2F90NJFm%2BabjNptUHkJJb8OMPLmzIT3ZgQWtremqW1K"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74646eb07876b523-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|
| spingratislucky.droplite1.my.id/js-zone/zero-zone.js | 104.21.50.235 | 200 OK | 360 B |
URL HTTP/1.1spingratislucky.droplite1.my.id/js-zone/zero-zone.js IP104.21.50.235:0
File typeexported SGML document, ASCII text, with very long lines (612) Hashf5f344af95f2ea78322ba0231c998ad2 2cba1787df5a060739fc914ce979b71ec649b038 b3c218d6b3ec189d95b6b97ec73d66f4665101a0cad0709753df919c520ba205
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /js-zone/zero-zone.js HTTP/1.1
Host: spingratislucky.droplite1.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://spingratislucky.droplite1.my.id/
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 04:24:00 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 25 Jan 2021 12:38:28 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=blPl1PCuZNUJG67R13kY6hO39tNp%2FEqU1IzbHalPF6yLSX65VGC2ag27%2BZMho6CaOveScw4urYsl1Q5XOp0sMJDWrohl0tU5j%2BB7d9K5VYHeHtI%2FVnxJ5IAyppABe0p3njALQOdAR6OM%2BK9w%2F0WCo03B"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74646eb5ad880b51-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|
| spingratislucky.droplite1.my.id/img/reward/bundle/4.jpg | 104.21.50.235 | 200 OK | 55 kB |
URL HTTP/1.1spingratislucky.droplite1.my.id/img/reward/bundle/4.jpg IP104.21.50.235:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 202x316, components 3\012- data Hashee81f52497f2c607f9ef6e9588076f7f 2bcf63b435ce4753a793077fb4ecfc938e4ab115 3c905a195eea87b073f5cd27e0377c674865275fe7c7b843e1ea1b51ad959eeb
GET /img/reward/bundle/4.jpg HTTP/1.1
Host: spingratislucky.droplite1.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://spingratislucky.droplite1.my.id/
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 04:24:01 GMT
Content-Type: image/jpeg
Content-Length: 55329
Connection: keep-alive
Last-Modified: Sun, 28 Feb 2021 04:49:56 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=916ISDyco9oBQJNqWEX83BK7ngYglIitAzEIbs84DfFWGpI0PXQs6u4V0gcuoj%2FjME0V9sCIsJV%2B7OWdRvkxpyKY5u5Dp2LJrT4nm%2BGiOrtsKanAd%2FaVpzU0kGP0lRUfZwFszccEZGEO9VQhXAIJx%2Fhk"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74646ebd48c1fab4-OSL
alt-svc: h2=":443"; ma=60
|
|
| spingratislucky.droplite1.my.id/img/reward/bundle/7.jpg | 104.21.50.235 | 200 OK | 189 kB |
URL HTTP/1.1spingratislucky.droplite1.my.id/img/reward/bundle/7.jpg IP104.21.50.235:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1440x1796, components 3\012- data Size189 kB (188812 bytes) Hash41cb81f07c05097b8c7adc9fcc25ab92 d045772f826251c043c4c8f50c616237fa595c42 be6fd9674a63c5cb8ffe1957ef47ce47f7b5127dc1e996aaff73fb321f99d80d
GET /img/reward/bundle/7.jpg HTTP/1.1
Host: spingratislucky.droplite1.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://spingratislucky.droplite1.my.id/
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 04:24:01 GMT
Content-Type: image/jpeg
Content-Length: 188812
Connection: keep-alive
Last-Modified: Sun, 28 Feb 2021 04:49:56 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nQAg2j5RX4JlhV4wvVkF1Ys%2B08emzIjoMppSMW7ryA7%2FObVyu3b0rBbLoqc9JVvp4oEhRfLjA671Jov9S89PEkxqHC%2Fan35hgc9TdjkpacCNVn0XRUZY%2BgZvYB0%2FxIQqy6G7IEQZycuZOdqAbJJ7qP63"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74646ebd4f01b529-OSL
alt-svc: h2=":443"; ma=60
|
|
| spingratislucky.droplite1.my.id/img/reward/bundle/9.jpg | 104.21.50.235 | 200 OK | 391 kB |
URL HTTP/1.1spingratislucky.droplite1.my.id/img/reward/bundle/9.jpg IP104.21.50.235:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1024x1280, components 3\012- data Size391 kB (391298 bytes) Hash26982ee9d60a9ce43a20f0a76606d216 de034b9751b4ddb4dc99e9152360e6383c5f44b5 5f047fdd4bf3ea2e7994115f284fb06c93a7c1c0333993db02cef24004527f51
GET /img/reward/bundle/9.jpg HTTP/1.1
Host: spingratislucky.droplite1.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://spingratislucky.droplite1.my.id/
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 04:24:01 GMT
Content-Type: image/jpeg
Content-Length: 391298
Connection: keep-alive
Last-Modified: Sun, 28 Feb 2021 04:49:56 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=X9pCyIvIdCNWXOihGwBrnFxgX3U7tlyhDB3ZMX3MFwrGa1NCEpgW1dZCtVEm0c6rjbxFrieYie302zIuIre6d709hWtXK0Gej4E1zeCMTUHkCLZ%2BucmgIJuAYGSYyKCR%2FiqFEMuCJ1zxc3Yjuvvf2sCL"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74646ebd4c140afe-OSL
alt-svc: h2=":443"; ma=60
|
|
| spingratislucky.droplite1.my.id/css-zone/zero-zone.css | 104.21.50.235 | 200 OK | 959 B |
URL HTTP/1.1spingratislucky.droplite1.my.id/css-zone/zero-zone.css IP104.21.50.235:0
Hashf3c1abad25bf4a41c7d938af9320ab2b 25726dfcfa619b4ce351dcbdefaa1d1714ea7ea7 4d7016d6f0ee719d2fb759185e293699684a66e213577c168e6c744adbc30c81
GET /css-zone/zero-zone.css HTTP/1.1
Host: spingratislucky.droplite1.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://spingratislucky.droplite1.my.id/
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 04:24:01 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 25 Jan 2021 12:38:26 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=S%2Frmvfu0Db1Ij2nLpfaBSdwU7uoCfouVhrMwk%2FbkMqnMNwt%2F6Q80mgHFzIsXsng%2BohxCED4urrrba7%2Bu4dkt9BeLxN6wf3IV%2BTBNPu9jnT4Xwe%2FlE7MG3zoxMlTeOZuRxTXKzmH2dgfgiW8dMgQhgDDl"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74646ec33b00b529-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|
| spingratislucky.droplite1.my.id/img/reward/bundle/10.jpg | 104.21.50.235 | 200 OK | 1.1 MB |
URL HTTP/1.1spingratislucky.droplite1.my.id/img/reward/bundle/10.jpg IP104.21.50.235:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 2629x3264, components 3\012- data Size1.1 MB (1146663 bytes) Hash3b33dd4f5ece6812a7694a15237b181c 99e1a3dd35d094c6d361eda927336281d377f553 7e0991295a27a9138bb97dff57c8b7680fefcecb6d9d67d65d8b270cc2bd1cfb
GET /img/reward/bundle/10.jpg HTTP/1.1
Host: spingratislucky.droplite1.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://spingratislucky.droplite1.my.id/
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 04:24:01 GMT
Content-Type: image/jpeg
Content-Length: 1146663
Connection: keep-alive
Last-Modified: Sun, 28 Feb 2021 04:49:56 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qgPh8bV5H4DZfd8Hd7dgcvOb2EJ7hkvDXLPOMKUw7e04txY2YApzG42JKfe2oY%2BG9P%2BJ4d90h8PH3yPRNePNCGBqRGe7ZooYlmYd3BWa0SRjDFh%2BUUKWeRr71PmMdkfdqicdphVUmzg7n2DS8ZxWbp1i"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74646ebd49050b51-OSL
alt-svc: h2=":443"; ma=60
|
|
| spingratislucky.droplite1.my.id/css-zone/style-zone.css | 104.21.50.235 | 200 OK | 2.5 kB |
URL HTTP/1.1spingratislucky.droplite1.my.id/css-zone/style-zone.css IP104.21.50.235:0
File typeASCII text, with very long lines (411), with CRLF line terminators Hash2560a68ca19d38bd027fdc2edd562377 37dfb267d8b1f300cdd2d69b7899bf6917abad6b e065044a874dabb94b5ef3fc36f9f6aff26680612f2ec4306b4055f062f5aa9f
GET /css-zone/style-zone.css HTTP/1.1
Host: spingratislucky.droplite1.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://spingratislucky.droplite1.my.id/
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 04:24:02 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 25 Jan 2021 12:38:26 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Q9yDb3a2rQPhvwiBjPw71S5TnNwVcVrfrqJbEA36UPBc7EI0RhWMQ5NwsecaoemXq%2Bi%2BdMzdOXlpwPEb77e1bPiyu3QOI0iChREcRzRXkd5CzUYRza3XrA03Za9WURIpRJvQZo%2FQM5ZRXuuunGO1emqX"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74646ec31abafab4-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|
| spingratislucky.droplite1.my.id/img/reward/bundle/6.jpg | 104.21.50.235 | 200 OK | 51 kB |
URL HTTP/1.1spingratislucky.droplite1.my.id/img/reward/bundle/6.jpg IP104.21.50.235:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 202x316, components 3\012- data Hash6acca6be0958b4780b8c9d26fa1f1981 a9b3ef6dc82ab1be9f6be53025a112c0ef6a19ba a2d81fbc6fbe867ae616d25f427095ce3dbc303f011b013a8958347cfeb55811
GET /img/reward/bundle/6.jpg HTTP/1.1
Host: spingratislucky.droplite1.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://spingratislucky.droplite1.my.id/
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 04:24:02 GMT
Content-Type: image/jpeg
Content-Length: 51116
Connection: keep-alive
Last-Modified: Sun, 28 Feb 2021 04:49:56 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rwxh%2Bo4e211XQqsWh6Ot6a6nEXTsxUDgOgXuKfI4hcfDpz92C7Q3jlPK0TJezXwMZMyusCKxxvmM5fQ%2FxlGcwKr2bUI2YaUuGPfyhlrnW%2BxOBA8mmtcuhGfy2B2okQvQosuQyy4U60oCMRfsDR69mIkH"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74646ebd4a9bb523-OSL
alt-svc: h2=":443"; ma=60
|
|
| spingratislucky.droplite1.my.id/img/reward/bundle/5.jpg | 104.21.50.235 | 200 OK | 50 kB |
URL HTTP/1.1spingratislucky.droplite1.my.id/img/reward/bundle/5.jpg IP104.21.50.235:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 202x316, components 3\012- data Hashdb42b82a135f320780613175f2c58232 61a0b9f6679253eefb631cd7750dc0729a703f18 91a2b03f598a230ff32957c4cd435592a5e04fcea97e9b81fb17ea8a890c9c05
GET /img/reward/bundle/5.jpg HTTP/1.1
Host: spingratislucky.droplite1.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://spingratislucky.droplite1.my.id/
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 04:24:02 GMT
Content-Type: image/jpeg
Content-Length: 50142
Connection: keep-alive
Last-Modified: Sun, 28 Feb 2021 04:49:56 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7eSp1ZIH6Dqd6EDLkqxdYYmsOuc9ivaV0mg4d0w4nbUAlZL%2B4reLuBCfK1YXzG3U54DV4potkngv8Nx%2Budbd%2FgL6%2FermOGHstzzPTgSzFAhpS6sgIrQZqNTxbydqFn6nzv5Nv3%2FBj3i2cW1YAd3K%2FZJq"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74646ebd4a7bb521-OSL
alt-svc: h2=":443"; ma=60
|
|
| i.ibb.co/RbdzN0z/booyahcoid-wallpaper-free-fire29.jpg | 51.210.32.103 | 200 OK | 89 kB |
URL HTTP/2i.ibb.co/RbdzN0z/booyahcoid-wallpaper-free-fire29.jpg IP51.210.32.103:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 576x1024, components 3\012- data Hashbd63cffc7844319c61b39ebd79aca03c 9f275847eb6776c2f8afec4411459de1a2a1b4c7 008f3709e1c2cd6db65f92fe3cfae57bb0fbd6a7d201b7e48bcbdde209911d27
GET /RbdzN0z/booyahcoid-wallpaper-free-fire29.jpg HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://spingratislucky.droplite1.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 04:24:02 GMT
content-type: image/jpeg
content-length: 88923
last-modified: Tue, 19 Jan 2021 18:27:45 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash0b9528d0aa584b0e7b8b95f31ec1c4ed 79afabc0856f6fb3c3e5a9f5675cb0a40ee08e54 2604edd5743acd1487c25665444019555a972492010c10bf3bd6aefeab4661eb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 04:24:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.gstatic.com/s/teko/v15/LYjNdG7kmE0gfaN9pQ.woff2 | 142.250.74.163 | 200 OK | 13 kB |
URL HTTP/2fonts.gstatic.com/s/teko/v15/LYjNdG7kmE0gfaN9pQ.woff2 IP142.250.74.163:0
File typeWeb Open Font Format (Version 2), TrueType, length 13324, version 1.0\012- data Hashb4082c888eefa2dca3fe2c9d46a87180 05aeb6c58175f659fe59eaca5a9d3735dd0530e3 352ad1513eeaeec51060f01d5bed32345862ec4d9c0802b81e0a47885951e4b6
GET /s/teko/v15/LYjNdG7kmE0gfaN9pQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://spingratislucky.droplite1.my.id
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13324
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 20:23:34 GMT
expires: Thu, 31 Aug 2023 20:23:34 GMT
cache-control: public, max-age=31536000
age: 460828
last-modified: Wed, 27 Apr 2022 17:05:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash0b9528d0aa584b0e7b8b95f31ec1c4ed 79afabc0856f6fb3c3e5a9f5675cb0a40ee08e54 2604edd5743acd1487c25665444019555a972492010c10bf3bd6aefeab4661eb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 04:24:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| spingratislucky.droplite1.my.id/img/header/7.jpg | 104.21.50.235 | 200 OK | 1.1 MB |
URL HTTP/1.1spingratislucky.droplite1.my.id/img/header/7.jpg IP104.21.50.235:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1898x1002, components 3\012- data Size1.1 MB (1133454 bytes) Hashbc9baeb2e1e1f5312d8f4b307e9fbdbe 929c0e30b424b74f9106072637cdb6456dc769f6 8e11d6337076e0660be5776103afd5a63455ac6cf30580bb390197d31ad287b7
GET /img/header/7.jpg HTTP/1.1
Host: spingratislucky.droplite1.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://spingratislucky.droplite1.my.id/
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 04:24:02 GMT
Content-Type: image/jpeg
Content-Length: 1133454
Connection: keep-alive
Last-Modified: Sun, 28 Feb 2021 04:49:56 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LHbvNxMJ%2B5r6DzhIQp2uaW0Rl4ulFpnU9S86aUe3h2G9h971FV8B8I1BOGxxLkmhGjVF75t3Ft2dBLmwIGL5ObIy0j4jOGDDmGkHNRz%2BBV7RDc32pj%2FSsIph%2BmbWU42nmM8UmdQazxf80tda9hqcOKii"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74646ec91a360afe-OSL
alt-svc: h2=":443"; ma=60
|
|
| spingratislucky.droplite1.my.id/img/reward/bundle/1.jpg | 104.21.50.235 | 200 OK | 254 kB |
URL HTTP/1.1spingratislucky.droplite1.my.id/img/reward/bundle/1.jpg IP104.21.50.235:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1030x1280, components 3\012- data Size254 kB (254218 bytes) Hash38c2167373508af3ac7bad3dc9728cff 01374d95469672eae980eb988333c04c4557eb8b 853319ab3894cabc9c76e5659cee027e8e7c22ea602b8bc483e286a74242e4d2
GET /img/reward/bundle/1.jpg HTTP/1.1
Host: spingratislucky.droplite1.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://spingratislucky.droplite1.my.id/
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 04:24:03 GMT
Content-Type: image/jpeg
Content-Length: 254218
Connection: keep-alive
Last-Modified: Sun, 28 Feb 2021 04:49:56 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tqEZCQ%2Fqh7ZnzsdRth%2FS%2FPhie6RqEscnCkTsveRBcTzBK5fegwtrDyUyA0jnL6bMbKpCwXkzWUn0%2F5lDWoRlZCBjCjifH5uyQRocrAdJnlAG0sF133IfAwO0bs8QTUNjDbRRw%2Bm9k8tXzdt2BlGRxz8X"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74646ec91f890b51-OSL
alt-svc: h2=":443"; ma=60
|
|
| spingratislucky.droplite1.my.id/img/001.png | 104.21.50.235 | 404 Not Found | 238 B |
URL HTTP/1.1spingratislucky.droplite1.my.id/img/001.png IP104.21.50.235:0
File typeHTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text Hashf5945c4d5e4298d818d50d70865f2857 f35c3593933af2db1933093809ef78f45b9b7144 d2a3f46998410a6fa09375f2813da63aa04bbc6caae20e770da12530ba881b38
GET /img/001.png HTTP/1.1
Host: spingratislucky.droplite1.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://spingratislucky.droplite1.my.id/
HTTP/1.1 404 Not Found
Date: Tue, 06 Sep 2022 04:24:03 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AA7xyagnmVQLob7IbyPQ8MjcTK9YbWWhEDG6GV461OQf67rGdESJMLfCzw0NhAUoQKfpv0YXM0qAzgYQbXrO7Eiaz3Gz%2B7S4oQS08wd5b2HalKGGl3TdWAr6PDGB14mJsvDjsPzNMV5gWVvsMRvjVpDx"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74646ec91eddb529-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|
| spingratislucky.droplite1.my.id/img/reward/bundle/3.jpg | 104.21.50.235 | 200 OK | 18 kB |
URL HTTP/1.1spingratislucky.droplite1.my.id/img/reward/bundle/3.jpg IP104.21.50.235:0
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=6, height=0, orientation=[*0*], datetime=2021:02:04 14:22:28, GPS-Data, width=0], baseline, precision 8, 170x220, components 3\012- data Hash74451e85bf438cdf0ee15b1cb8be2eb4 d176098256c2a87907dff31e35b7e72f9c82598d 9ad4319ed74440bd38a23497a6986edc97d7a974ab853315c8c035adc3181e59
GET /img/reward/bundle/3.jpg HTTP/1.1
Host: spingratislucky.droplite1.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://spingratislucky.droplite1.my.id/
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 04:24:03 GMT
Content-Type: image/jpeg
Content-Length: 17487
Connection: keep-alive
Last-Modified: Sun, 28 Feb 2021 04:49:56 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WXJnJG%2Fc6JOtuBbtEpabBlUX%2BuQPrCNTdUfkqdFq89GDwLYe63y8sqOolm2fY3r1MGWfRWnqGe2Jb1wFFyCz6VhvoLxjhaPIsqzyueAIDR8BfUKdA46B2UhwmPjmvChiTVrrxngz8xykCz2FR8PQVWdL"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74646ecfeb4db529-OSL
alt-svc: h2=":443"; ma=60
|
|
| spingratislucky.droplite1.my.id/img/reward/bundle/2.jpg | 104.21.50.235 | 200 OK | 344 kB |
URL HTTP/1.1spingratislucky.droplite1.my.id/img/reward/bundle/2.jpg IP104.21.50.235:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1026x1280, components 3\012- data Size344 kB (343904 bytes) Hashb47653fd21c33e689462290d26e4002a 2884ac74b715aab88cab9036df98146bb21faa5d d3553f3bffd7c77a065db6d02b5656d2dec0ceb0f117c702b5f50b2c73570f11
GET /img/reward/bundle/2.jpg HTTP/1.1
Host: spingratislucky.droplite1.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://spingratislucky.droplite1.my.id/
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 04:24:03 GMT
Content-Type: image/jpeg
Content-Length: 343904
Connection: keep-alive
Last-Modified: Sun, 28 Feb 2021 04:49:56 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=frjDEzTvpjJlPVm3iYkxM6ATfLT3KOb59LQVrdXUEaKGjXA%2B0Qk1CK%2BUYEB8B%2FAMfbtxiJ7ZfGdkCHp9tnox1MX5yW1JNK1hIX0tPSUB58LzS3SuXUBx6D%2BmAFVBEMUuyjdzegsjnIRNyAGJc0NqEcae"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74646ed05ba2b529-OSL
alt-svc: h2=":443"; ma=60
|
|
| freefiremobile-a.akamaihd.net/common/web_event/official/66e66c9a67a0bottom_bg.jpg | 23.36.76.90 | 200 OK | 100 kB |
URL HTTP/1.1freefiremobile-a.akamaihd.net/common/web_event/official/66e66c9a67a0bottom_bg.jpg IP23.36.76.90:0 ASN#20940 Akamai International B.V.
File typeJPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x330, components 3\012- data Hashd0abe038104a90d508c2541e10284e4b 9bd86b45ea443b9c4d9932868c4d6e4c1f14eef3 047409b2d67fddd354d14c3e4059e6257641601e0d8e82ab8a8afc84dcab2c87
GET /common/web_event/official/66e66c9a67a0bottom_bg.jpg HTTP/1.1
Host: freefiremobile-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://spingratislucky.droplite1.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: image/jpeg
ETag: "d0abe038104a90d508c2541e10284e4b:1582623959.055699"
Last-Modified: Tue, 25 Feb 2020 09:45:59 GMT
Server: AkamaiNetStorage
Content-Length: 99664
Date: Tue, 06 Sep 2022 04:24:03 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Access-Control-Allow-Origin: *
|
|
| d1490khl9dq1ow.cloudfront.net/sfx/mp3preview/wheel-spin_Gk0rCUV_.mp3 | 143.204.42.213 | 301 Moved Permanently | 1.0 kB |
URL HTTP/2d1490khl9dq1ow.cloudfront.net/sfx/mp3preview/wheel-spin_Gk0rCUV_.mp3 IP143.204.42.213:0
File typeJSON data\012- , ASCII text, with very long lines (1046), with no line terminators Hashd59595550e6313098eebb01bf8696a13 3d845dd81757838ff8f6f3875886b21502487791 7d35b957ef9e8bfe6ccf16e599f18fe76818935cd5fa18f9b113017fb43a9c42
GET /sfx/mp3preview/wheel-spin_Gk0rCUV_.mp3 HTTP/1.1
Host: d1490khl9dq1ow.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: http://spingratislucky.droplite1.my.id/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
content-type: application/json
content-length: 1046
location: https://dm0qx8t0i9gc9.cloudfront.net/watermarks/audio/BsTwCwBHBjzwub4i4/wheel-spin_Gk0rCUV__WM.mp3?
server: CloudFront
date: Mon, 05 Sep 2022 06:49:18 GMT
content-disposition: attachment
access-control-allow-origin: *
x-amz-apigw-id: X-VNUFxLIAMF7ZA=
cache-control: max-age=86400
cross-origin-resource-policy: cross-origin
x-amzn-trace-id: Root=1-63159bee-2fc241b639129e4713134868;Sampled=0
via: 1.1 bf5c0a6262f04cc4b9a69ef8d737ea96.cloudfront.net (CloudFront), 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amzn-requestid: c304003a-aedb-4a6d-a17c-db44c16561ae
x-cache: Hit from cloudfront
x-amz-cf-pop: FRA56-P6, OSL50-C1
x-amz-cf-id: lubMw6DKQG_S4rk3LH4jnnZuwgOYh-6axtsL2J4DiE2gQItA8B5_rw==
age: 77686
X-Firefox-Spdy: h2
|
|
| dm0qx8t0i9gc9.cloudfront.net/watermarks/audio/BsTwCwBHBjzwub4i4/wheel-spin_Gk0rCUV__WM.mp3? | 54.230.245.154 | 206 Partial Content | 65 kB |
URL HTTP/2dm0qx8t0i9gc9.cloudfront.net/watermarks/audio/BsTwCwBHBjzwub4i4/wheel-spin_Gk0rCUV__WM.mp3? IP54.230.245.154:0
File typeAudio file with ID3 version 2.4.0, contains: MPEG ADTS, layer III, v1, 64 kbps, 44.1 kHz, Stereo\012- data Hashdae4c980d2caf7c4fb5c85f0896a46c9 6339347763bf8343b382b630433e32d4982341a9 073078020f08a608e9d44790cae2932474de828460db511644e06c1036389f36
GET /watermarks/audio/BsTwCwBHBjzwub4i4/wheel-spin_Gk0rCUV__WM.mp3? HTTP/1.1
Host: dm0qx8t0i9gc9.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Range: bytes=0-
Referer: http://spingratislucky.droplite1.my.id/
Connection: keep-alive
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 206 Partial Content
content-type: audio/mpeg
content-length: 65156
x-amz-id-2: fZq77hYU+oABI8Kr0FjK2fDP2UnEKWzzk8rLNHspKndl5Uf9oj2oGdu13Enx/HSYPf8tvq4I89Y=
x-amz-request-id: YJA5WTKDTA2NB56Z
last-modified: Thu, 01 Jul 2021 20:58:38 GMT
x-amz-version-id: ouoq1gBldIQ3t4fd9gcLxPg04__gEaBd
accept-ranges: bytes
server: AmazonS3
cross-origin-resource-policy: cross-origin
date: Mon, 05 Sep 2022 13:16:19 GMT
etag: "dae4c980d2caf7c4fb5c85f0896a46c9"
vary: Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method,Origin
content-range: bytes 0-65155/65156
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: iwsD0Zj1Du-aZFm_SF6fUqq3naw5MUc7fQQ1LQHhJmfVEVYMOKQkWg==
age: 54466
X-Firefox-Spdy: h2
|
|
| spingratislucky.droplite1.my.id/img/reward/bundle/8.jpg | 104.21.50.235 | 200 OK | 342 kB |
URL HTTP/1.1spingratislucky.droplite1.my.id/img/reward/bundle/8.jpg IP104.21.50.235:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1031x1280, components 3\012- data Size342 kB (341458 bytes) Hasha8249e9cc7ebea4e409cf1602f38fb03 e2d5b6aa94c2bfb2d73ccf9d44ffe0cdcc199086 3fde121390bd9222fef9d613ac6ba91455b0bcda8e819f2bf4d3845e2fbcb8ce
GET /img/reward/bundle/8.jpg HTTP/1.1
Host: spingratislucky.droplite1.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://spingratislucky.droplite1.my.id/
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 04:24:04 GMT
Content-Type: image/jpeg
Content-Length: 341458
Connection: keep-alive
Last-Modified: Sun, 28 Feb 2021 04:49:56 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=m8bi%2F%2B%2FnRGvQFcWisGM0v47ZuinMaKh%2FxOnF4cl4s0b02yJaJJkhWXUpWfuxQeOAHgE4KPIy5DXFFXE6VRRvwE4V2AyTjzFlbKJ2Vx6vdh5lkwMFaTv4GL4VDcVfLSYqrHqr%2Bbwa9wxpXep7g77aSM3y"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74646ec91cd6fab4-OSL
alt-svc: h2=":443"; ma=60
|
|
| spingratislucky.droplite1.my.id/img/header/6.jpg | 104.21.50.235 | 200 OK | 1.1 MB |
URL HTTP/1.1spingratislucky.droplite1.my.id/img/header/6.jpg IP104.21.50.235:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1898x1002, components 3\012- data Size1.1 MB (1061896 bytes) Hash0ca1bd15331a42b8c24d77f1d32dbc59 41f249086a3d30ea413a6dd80a74c9e11299219e 70f8cd2eca5c87d543aaa3db61f95f84f2c8fbabbec83fdb20fae039528e2cbb
GET /img/header/6.jpg HTTP/1.1
Host: spingratislucky.droplite1.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://spingratislucky.droplite1.my.id/
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 04:24:04 GMT
Content-Type: image/jpeg
Content-Length: 1061896
Connection: keep-alive
Last-Modified: Sun, 28 Feb 2021 04:49:56 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=W9nBbZ%2BXqH2k9YTtBgVOyiip4V89EUTQLeePpRc8vbnJ0CEagbaDWP1h3%2FJRB0HA4WIPm56bco58A8d%2BB0QctRgXIlOJSAQVWgSjh5RFGMiR71WbgbhNsq5m8vc4Neg4IxorxcG%2Ff2a2VlaCorl8r3Ub"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74646ec97bc9b523-OSL
alt-svc: h2=":443"; ma=60
|
|
| spingratislucky.droplite1.my.id/img/header/5.jpg | 104.21.50.235 | 200 OK | 1.1 MB |
URL HTTP/1.1spingratislucky.droplite1.my.id/img/header/5.jpg IP104.21.50.235:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1898x1002, components 3\012- data Size1.1 MB (1078108 bytes) Hash6a870c83f5fde0ee889731f314ec0fbb f7333dcc9c69eede80fb8116010c7b3a03cd32d0 8e60f17c78b409bd243cb4abe9b3f6b795f53f9396bfd66a65ef37ada51d5cc1
GET /img/header/5.jpg HTTP/1.1
Host: spingratislucky.droplite1.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://spingratislucky.droplite1.my.id/
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 04:24:04 GMT
Content-Type: image/jpeg
Content-Length: 1078108
Connection: keep-alive
Last-Modified: Sun, 28 Feb 2021 04:49:56 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uWRzjgnrJko2Z%2FdRz0fajANxE2dUtK7GW%2Fa7MDWL%2BNz%2FylL7qnR3keOD5oFzCMyAMTzBiMFB6N9yrLkAO9YWXAuQEIMuzOzWLzJs6G58up%2Fru9Z2mq7hWpTs%2BoUlqENaZm9Q%2FR4e1N1AdDSd7VfS1E9l"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74646ec97b7bb521-OSL
alt-svc: h2=":443"; ma=60
|
|
| spingratislucky.droplite1.my.id/img/login/twitter_text.png | 104.21.50.235 | 200 OK | 153 kB |
URL HTTP/1.1spingratislucky.droplite1.my.id/img/login/twitter_text.png IP104.21.50.235:0
File typePNG image data, 4096 x 2389, 8-bit/color RGBA, non-interlaced\012- data Size153 kB (153153 bytes) Hashe7b12ef15df8cabc5926aa939440e4dd 81a98e5aeceebb57d088ef4041bfd70d1044945e a60cb343b78c10b956b3c6c1cf3968ced201fd9842b67a6ac4c6c75e1ebb3a54
GET /img/login/twitter_text.png HTTP/1.1
Host: spingratislucky.droplite1.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://spingratislucky.droplite1.my.id/
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 04:24:04 GMT
Content-Type: image/png
Content-Length: 153153
Connection: keep-alive
Last-Modified: Sun, 28 Feb 2021 04:49:56 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xIs3rtKWxwpUK8OEBNuG0Avt%2FWTDqiMC1zg5XGELg7R0d5MbravnVYojUzOwWnS4t2CMrPwdPyIYIj6GGGQvSVfjyXpMMS7qxT6ddXjxrX4kxMfTzotHZsvx4JXU0gVSq4t8B649spo%2FWtKuGTcV0UEZ"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74646ecaab010afe-OSL
alt-svc: h2=":443"; ma=60
|
|
| spingratislucky.droplite1.my.id/img/login/facebook_text.png | 104.21.50.235 | 200 OK | 29 kB |
URL HTTP/1.1spingratislucky.droplite1.my.id/img/login/facebook_text.png IP104.21.50.235:0
File typePNG image data, 604 x 158, 8-bit/color RGBA, non-interlaced\012- data Hash74190b93fc4f5d88f0c8e6411ba20bd8 89ce2ecb660a90b8e6ed1b335443d7767c59f28a 092a3cd5f86b3f039feefdeb86694cd16ae545af214cfda614bdbbe2d1bde401
GET /img/login/facebook_text.png HTTP/1.1
Host: spingratislucky.droplite1.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://spingratislucky.droplite1.my.id/
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 04:24:05 GMT
Content-Type: image/png
Content-Length: 28789
Connection: keep-alive
Last-Modified: Sun, 28 Feb 2021 04:49:56 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XiwAVQ48I6HdiwzLbF0RKOizFytQIjhXl4AkVPArKVIJmHxZo3kupmv2KSLh3zIXilEIcLRWaIX5MQ3U3EyKgK0Mp%2FaNKT6Mh29BW7YSWOSU3evOnnDXGGceUf3BRgd5yFS8zALYqeOernvhr5RczFR%2B"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74646ecfcb300b51-OSL
alt-svc: h2=":443"; ma=60
|
|
| freefiremobile-a.akamaihd.net/ffwebsite/images/freefire32-2.ico | 23.36.76.90 | 200 OK | 4.3 kB |
URL HTTP/1.1freefiremobile-a.akamaihd.net/ffwebsite/images/freefire32-2.ico IP23.36.76.90:0 ASN#20940 Akamai International B.V.
File typeMS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data Hash0d2f0e9b2281bf40f5964f6f79fba17a 6288c3d63579f1bf3822471f946e4022fb80ce97 ca80122571d6d7aea0a3c96b926fd53e5d53f7526c23b6a1f79396420bb08990
GET /ffwebsite/images/freefire32-2.ico HTTP/1.1
Host: freefiremobile-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://spingratislucky.droplite1.my.id/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: image/x-icon
ETag: "0d2f0e9b2281bf40f5964f6f79fba17a:1543299020.496687"
Last-Modified: Thu, 24 May 2018 05:14:51 GMT
Server: AkamaiNetStorage
Content-Length: 4286
Date: Tue, 06 Sep 2022 04:24:05 GMT
Connection: keep-alive
Access-Control-Allow-Origin: *
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33c890c7-3b18-4d4b-add0-8ff463600dac.jpeg | 34.120.237.76 | 200 OK | 9.2 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33c890c7-3b18-4d4b-add0-8ff463600dac.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash9dac1fe00cdfa4d93ac5a6faf3d4195e edef86e8f104c99ba7ce1b8da160d8aebfb3cfd3 244beec1db6210613017ea2e2a21740bb55b610017763f3581ffe8d6979356ff
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33c890c7-3b18-4d4b-add0-8ff463600dac.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9159
x-amzn-requestid: 083b5590-5f1d-40e5-be2f-d96709d4692b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAY4oEDgoAMFotw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166e9d-71e2ad492668fa600b64b417;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:48:13 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: VyOL6TQBerJk9OpOIVlqZLX5K3OrAh5gXUATkrRWSlkl_r2QsjNAWA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 22:03:39 GMT
age: 22827
etag: "edef86e8f104c99ba7ce1b8da160d8aebfb3cfd3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css | 104.18.10.207 | 200 OK | 0 B |
URL HTTP/2stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css IP104.18.10.207:0
GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://spingratislucky.droplite1.my.id
Connection: keep-alive
Referer: http://spingratislucky.droplite1.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 04:23:57 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"269550530cc127b6aa5a35925a7de6ce"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 08/20/2022 02:30:56
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 601
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: c2e21071310a8b3d0eb6a3e438926cf5
cdn-cache: HIT
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 74646ea88a18b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Teko&display=swap | 142.250.74.10 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css2?family=Teko&display=swap IP142.250.74.10:0
GET /css2?family=Teko&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://spingratislucky.droplite1.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 06 Sep 2022 04:23:57 GMT
date: Tue, 06 Sep 2022 04:23:57 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|