GET ffkipas.my.id/panel/assets/img/ffkipas.png
200 OK 1.1 MB URL
ffkipas.my.id/panel/assets/img/ffkipas.png
IP / ASN
172.67.218.170
#13335 CLOUDFLARENET
Requested by https://ffkipas.my.id/panel/
Resource Info
File type PNG image data, 1024 x 1024, 8-bit/color RGB, non-interlaced
First Seen 2025-06-14
Last Seen 2025-06-14
Times Seen 1
Size 1.1 MB (1096160 bytes)
MD5 862d48f64afd167746602513582271a6
SHA1 b3270e3dc78aa8b08fcec4dab83b1a2a8ffe11a4
SHA256 f263e28de325ef81fbf8e206d0b92df2ac864687e43d71a3d5167928267b21ff
Certificate Info
Issuer Google Trust Services
Subject ffkipas.my.id
Fingerprint 26:B0:07:B1:9A:45:01:AE:7E:A5:0D:1A:12:7E:32:9E:B7:78:9D:DF
Validity Wed, 14 May 2025 03:07:06 GMT - Tue, 12 Aug 2025 03:52:13 GMT
GET /panel/assets/img/ffkipas.png HTTP/1.1
Host: ffkipas.my.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ffkipas.my.id/panel/
Cookie: PHPSESSID=5e7f5bbadcd5b58c45bdc55bb25ae0d7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 14 Jun 2025 04:32:57 GMT
content-type: image/png
content-length: 1096160
server: cloudflare
last-modified: Fri, 30 May 2025 16:14:12 GMT
accept-ranges: bytes
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
cache-control: max-age=14400
cf-cache-status: MISS
speculation-rules: "/cdn-cgi/speculation"
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Ry%2F0Vfshe12qsDmgCBxZ5FAke4KPsMfHCqdH%2BMCyKtYbw6IK7H8USqoJvCo2B%2BZ4G1Cu5V85JgJN6PQI0wbwYS4jwLbOiNmcIJTw"}]}
cf-ray: 94f71b55eb435685-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET ffkipas.my.id/cf-fonts/s/poppins/5.0.11/latin/400/normal.woff2
200 OK 7.9 kB URL
ffkipas.my.id/cf-fonts/s/poppins/5.0.11/latin/400/normal.woff2
IP / ASN
172.67.218.170
#13335 CLOUDFLARENET
Requested by https://ffkipas.my.id/panel/
Resource Info
File type Web Open Font Format (Version 2), TrueType, length 7884, version 1.0
First Seen 2023-04-05
Last Seen 2025-08-03
Times Seen 104153
Size 7.9 kB (7884 bytes)
MD5 9212f6f9860f9fc6c69b02fedf6db8c3
SHA1 ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
SHA256 7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
Certificate Info
Issuer Google Trust Services
Subject ffkipas.my.id
Fingerprint 26:B0:07:B1:9A:45:01:AE:7E:A5:0D:1A:12:7E:32:9E:B7:78:9D:DF
Validity Wed, 14 May 2025 03:07:06 GMT - Tue, 12 Aug 2025 03:52:13 GMT
GET /cf-fonts/s/poppins/5.0.11/latin/400/normal.woff2 HTTP/1.1
Host: ffkipas.my.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ffkipas.my.id/panel/
Cookie: PHPSESSID=5e7f5bbadcd5b58c45bdc55bb25ae0d7
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 14 Jun 2025 04:32:58 GMT
content-type: font/woff2
content-length: 7884
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=myfCgNDG4UeTTJo9HvHOZMcC1lPYGTOjkDiizRSFZEd3y1cDk06%2FkDRWHH%2BXoON3B4vfCD0x1YdlKtPgiuxyWZmwTnLNp0dwU2QOw%2BjIRCj8Q7Th55Ecj6R%2FsNZLSDxT"}],"group":"cf-nel","max_age":604800}
cf-cache-status: HIT
cache-control: public, max-age=31536000, immutable
cf-ray: 94f71b5b2c9156ca-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2492&min_rtt=557&rtt_var=1678&sent=210&recv=245&lost=0&retrans=0&sent_bytes=23021&recv_bytes=14265&delivery_rate=580937&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=12000&unsent_bytes=0&cid=801f9fe86f440d44&ts=1101&inflight_dur=34&x=80"
GET cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0/webfonts/fa-solid-900.woff2
200 OK 127 kB URL
cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0/webfonts/fa-solid-900.woff2
IP / ASN
104.17.24.14
#13335 CLOUDFLARENET
Requested by https://ffkipas.my.id/panel/
Resource Info
File type Web Open Font Format (Version 2), TrueType, length 126828, version 768.256
First Seen 2023-04-10
Last Seen 2025-08-02
Times Seen 1734
Size 127 kB (126828 bytes)
MD5 297973a488f688271dd223d542ba2697
SHA1 ed99d812e4c88826335f93acede3fad85c90fb54
SHA256 1b099f88c06ed0869872561c157f0ec9cbe133a0939d9ece4ee1e1f54bd4683d
Certificate Info
Issuer Google Trust Services
Subject cdnjs.cloudflare.com
Fingerprint 4B:06:E9:E2:47:47:F5:3C:33:58:F8:2A:95:70:22:5E:23:19:03:77
Validity Thu, 22 May 2025 14:38:44 GMT - Wed, 20 Aug 2025 15:38:38 GMT
GET /ajax/libs/font-awesome/6.0.0/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ffkipas.my.id
DNT: 1
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 14 Jun 2025 04:32:58 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 126828
cf-ray: 94f71b5b7a910b51-OSL
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "620188b3-1ef6c"
last-modified: Mon, 07 Feb 2022 21:01:39 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 26030
expires: Thu, 04 Jun 2026 04:32:58 GMT
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cTIdjUHP9lwcIUm8EH26lQCcPdp7nhPu5m17FM%2FC91UGWEVvhAVR489ucoy%2F840G9bO2M1XUgoj%2FHi4EuHCaOen5bwnHgNW9W8vUkYD4w%2B9bqUanbQAQbYvFbKOP0pveoMGYJtx1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET ffkipas.my.id/cf-fonts/s/poppins/5.0.11/latin/500/normal.woff2
200 OK 7.7 kB URL
ffkipas.my.id/cf-fonts/s/poppins/5.0.11/latin/500/normal.woff2
IP / ASN
172.67.218.170
#13335 CLOUDFLARENET
Requested by https://ffkipas.my.id/panel/
Resource Info
File type Web Open Font Format (Version 2), TrueType, length 7748, version 1.0
First Seen 2023-04-05
Last Seen 2025-08-03
Times Seen 55778
Size 7.7 kB (7748 bytes)
MD5 a09f2fccfee35b7247b08a1a266f0328
SHA1 0da2d17e738f46d2a09e6fb7969da451719a9820
SHA256 cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446
Certificate Info
Issuer Google Trust Services
Subject ffkipas.my.id
Fingerprint 26:B0:07:B1:9A:45:01:AE:7E:A5:0D:1A:12:7E:32:9E:B7:78:9D:DF
Validity Wed, 14 May 2025 03:07:06 GMT - Tue, 12 Aug 2025 03:52:13 GMT
GET /cf-fonts/s/poppins/5.0.11/latin/500/normal.woff2 HTTP/1.1
Host: ffkipas.my.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ffkipas.my.id/panel/
Cookie: PHPSESSID=5e7f5bbadcd5b58c45bdc55bb25ae0d7
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 14 Jun 2025 04:32:58 GMT
content-type: font/woff2
content-length: 7748
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0mQ4y6APAv7hTr3zUV28g%2BhTWmGrq8tAEm99gV8x0SD5CaBULwzgYwM9%2F%2FO6XUTUgcklD5IlgzZiOyUAS5i%2Bjj20bH2WxOrt8AQPwfIKB2jzZEBySDTWvt1LcaPKAP7O"}],"group":"cf-nel","max_age":604800}
cf-cache-status: HIT
cache-control: public, max-age=31536000, immutable
cf-ray: 94f71b5b3c9356ca-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2492&min_rtt=557&rtt_var=1678&sent=213&recv=245&lost=0&retrans=0&sent_bytes=26105&recv_bytes=14265&delivery_rate=580937&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=12000&unsent_bytes=0&cid=801f9fe86f440d44&ts=1102&inflight_dur=35&x=80"
GET recordedthereby.com/sfp.js
200 OK 85 kB URL
recordedthereby.com/sfp.js
IP / ASN
185.196.197.72
#39572 DataWeb Global Group B.V.
Requested by https://ffkipas.my.id/panel/
Resource Info
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
First Seen 2025-01-25
Last Seen 2025-06-27
Times Seen 2209
Size 85 kB (85380 bytes)
MD5 108625937affa4b38bb17cea65510d72
SHA1 2c0f48e9efa3fb5554d1fa393b28d74d5339f9ee
SHA256 c84263fcf6b091998dd37f5f600b3bfea92ac1d31cbf9631bb87fa411124a9e0
Certificate Info
Issuer Let's Encrypt
Subject recordedthereby.com
Fingerprint 43:76:D8:56:43:66:8A:49:51:DC:E6:8E:5A:E9:35:93:29:07:37:C1
Validity Mon, 05 May 2025 21:20:39 GMT - Sun, 03 Aug 2025 21:20:38 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /sfp.js HTTP/1.1
Host: recordedthereby.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ffkipas.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 14 Jun 2025 04:32:58 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 28255
Connection: keep-alive
Content-Encoding: gzip
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Vary: Accept-Encoding
Host: recordedthereby.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 9748346c584279b69d42f7585f099d34
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
GET praystakeinstinct.com/sbar.json?key=a2c6c77dde0f47e335c307a84b4f8205
200 OK 6.6 kB URL
praystakeinstinct.com/sbar.json?key=a2c6c77dde0f47e335c307a84b4f8205
IP / ASN
172.240.127.234
#7979 SERVERS-COM
Requested by https://ffkipas.my.id/panel/
Resource Info
File type JSON text data
First Seen 2025-06-14
Last Seen 2025-06-14
Times Seen 1
Size 6.6 kB (6642 bytes)
MD5 4b1099ffa942c5bcbef9fa3adbf4c70b
SHA1 0927c8ff77906eacff4ebfaea15431e217970172
SHA256 a7429c35e55b36f271da204a694bdb7e29461ec9b906bc56fbe74e8dd37e53d1
Certificate Info
Issuer Let's Encrypt
Subject praystakeinstinct.com
Fingerprint EB:32:11:47:9B:33:13:C9:D7:C7:F1:D3:1F:81:A6:05:E1:9D:89:CC
Validity Tue, 29 Apr 2025 22:08:44 GMT - Mon, 28 Jul 2025 22:08:43 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /sbar.json?key=a2c6c77dde0f47e335c307a84b4f8205 HTTP/1.1
Host: praystakeinstinct.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ffkipas.my.id
DNT: 1
Connection: keep-alive
Referer: https://ffkipas.my.id/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 14 Jun 2025 04:32:59 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
accept-ch: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
custom-referer: https://ffkipas.my.id
access-control-allow-origin: https://ffkipas.my.id
access-control-allow-credentials: true
set-cookie: pdhtkv=true; expires=Sun, 15 Jun 2025 04:32:59 GMT; path=/; secure; SameSite=None
uncs=1; expires=Sun, 15 Jun 2025 04:32:59 GMT; path=/; secure; SameSite=None
pdhtkv29=true; expires=Sun, 15 Jun 2025 04:32:59 GMT; path=/; secure; SameSite=None
uncs29=1; expires=Sun, 15 Jun 2025 04:32:59 GMT; path=/; secure; SameSite=None
u_pl26535179=1; expires=Sun, 15 Jun 2025 04:32:59 GMT; path=/; secure; SameSite=None
x-envoy-upstream-service-time: 157
Host: praystakeinstinct.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 78953d22680a01951fa97ba8422d271a
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET cdn.creative-stat1.com/sb/ssp/interstitial/center_banner/2/css/animate.css
200 OK 79 kB URL
cdn.creative-stat1.com/sb/ssp/interstitial/center_banner/2/css/animate.css
IP / ASN
172.67.133.15
#13335 CLOUDFLARENET
Requested by https://ffkipas.my.id/panel/
Resource Info
File type ASCII text
First Seen 2024-02-12
Last Seen 2025-08-03
Times Seen 2116
Size 79 kB (78693 bytes)
MD5 5982c5377696d20476871062646b253f
SHA1 8bf2c93fa9ccc908f7df0fb7abb911bbac3e4242
SHA256 4e23a6449e6ef4614f0107cecf5c9eda75d2041c7c71f4a55d45f2a7e75450f4
Certificate Info
Issuer Google Trust Services
Subject creative-stat1.com
Fingerprint EA:78:8B:9D:53:DF:84:5F:BA:B0:1B:CB:77:59:D8:9B:CC:8C:CC:86
Validity Wed, 11 Jun 2025 22:34:34 GMT - Tue, 09 Sep 2025 23:32:59 GMT
GET /sb/ssp/interstitial/center_banner/2/css/animate.css HTTP/1.1
Host: cdn.creative-stat1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ffkipas.my.id
DNT: 1
Connection: keep-alive
Referer: https://ffkipas.my.id/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 14 Jun 2025 04:33:00 GMT
content-type: text/css
server: cloudflare
last-modified: Fri, 19 Jan 2024 14:19:45 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
etag: W/"65aa8501-13365"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
cf-cache-status: MISS
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=rsJpMZMxmNvuGV0c%2BQD5ases8BM1pMBztQBiQUWyaYToVXHw5lyQ9fOcwPbTATB7CH5sPnEqsNBqB7MCEfpKZF%2BEDp1jMCH7TQRPG%2Brfs0n%2FHcRC"}]}
cf-ray: 94f71b66ac900b55-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015
200 OK 20 kB URL
static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015
IP / ASN
104.16.79.73
#13335 CLOUDFLARENET
Requested by https://ffkipas.my.id/panel/
Resource Info
File type JavaScript source, ASCII text, with very long lines (19948), with no line terminators
First Seen 2024-06-07
Last Seen 2025-08-03
Times Seen 102198
Size 20 kB (19948 bytes)
MD5 ec18af6d41f6f278b6aed3bdabffa7bc
SHA1 62c9e2cab76b888829f3c5335e91c320b22329ae
SHA256 8a18d13015336bc184819a5a768447462202ef3105ec511bf42ed8304a7ed94f
Certificate Info
Issuer Google Trust Services
Subject cloudflareinsights.com
Fingerprint EA:C7:0D:68:3A:45:CB:AD:C5:33:41:B6:DF:F1:60:64:E1:0F:52:6A
Validity Sun, 27 Apr 2025 18:18:02 GMT - Sat, 26 Jul 2025 19:17:55 GMT
GET /beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ffkipas.my.id
DNT: 1
Connection: keep-alive
Referer: https://ffkipas.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 14 Jun 2025 04:32:57 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/"2024.6.1"
last-modified: Thu, 06 Jun 2024 15:52:56 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 94f71b561d8256a2-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
POST ffkipas.my.id/cdn-cgi/rum?
204 No Content 0 B URL
ffkipas.my.id/cdn-cgi/rum?
IP / ASN
172.67.218.170
#13335 CLOUDFLARENET
Requested by https://ffkipas.my.id/panel/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-03
Times Seen 5619464
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject ffkipas.my.id
Fingerprint 26:B0:07:B1:9A:45:01:AE:7E:A5:0D:1A:12:7E:32:9E:B7:78:9D:DF
Validity Wed, 14 May 2025 03:07:06 GMT - Tue, 12 Aug 2025 03:52:13 GMT
POST /cdn-cgi/rum? HTTP/1.1
Host: ffkipas.my.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 1390
Origin: https://ffkipas.my.id
DNT: 1
Connection: keep-alive
Referer: https://ffkipas.my.id/panel/
Cookie: PHPSESSID=5e7f5bbadcd5b58c45bdc55bb25ae0d7; cf_clearance=iZe4wU8jSCtfn5bcUu.YIbNvq5sRR6HL4ruZ0sp5_x0-1749875578-1.2.1.1-YUDuKymN0PJJ65sHw.JoLXWSWuOpH2lPkK9HA0QrchhHAWEypCgFPVplSldYwto03_YjXr4UVF6WbpCLYGlSFv79SCMrxpSLWtX3DuOKfudvXwdwIbXPrUOi3ouqefbGtxk2FpeZQFWfO5873aYI9QYg8.3ob826kvKG7FdVddTMutXbiqrqIRSAM78NXXdXT97IQOPwgsvbKg.fOhFu.r_bULo72QoD324aTnKYiXlB0l53s4f064lUmrn6O_pCSkPbWOJl5qFr73gWgNHKd8lL4i0HmUFWFUpjExZ1KokLz44Bz1DMfgbmi2NiuNgvk14J4R14xFcalLquk_0.GSuWlThfLaJtg56cCJr_2LA; pp_main_c682d9ff6dbef6bb1bfedefd79455e86=1; sb_main_a2c6c77dde0f47e335c307a84b4f8205=1; sb_count_a2c6c77dde0f47e335c307a84b4f8205=1; dom3ic8zudi28v8lr6fgphwffqoz0j6c=677565be-fa39-4714-9bff-c51fb1f3333f%3A3%3A1; pbpr0tpuw4isk85t8yg3jb2lj5vqf=praystakeinstinct.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 204 No Content
date: Sat, 14 Jun 2025 04:32:59 GMT
x-content-type-options: nosniff
access-control-allow-origin: https://ffkipas.my.id
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 94f71b63ecac56ca-OSL
x-frame-options: DENY
GET praystakeinstinct.com/impr.gif?sid=H4sIAAAAAAAC_1RSv28cRRSetdOlQET8KBBoSyLIZe927bvDhYVJDFaMY5IgS0EUszOz5-F2d5aZ_XE-NxaWUOguEgXl-js7FiGgUFEhoTMShSUklsoScRPxDwSJhgbd-STDk-a9N_O9GX3ve_P5XnZKPGT0ZP191ZdhSK_O1Rz79Q0Zc1UYe-2OXXdqzoK9IeN5b8HujZ3O36q7Xs25bL8rWFddbTh1x6k7dXtZahGo3tUJCpk8atdrbafmNWr1OQ89_f-9ySwYaoHnp-QSJK-eexp8BMlGiKPH14Tppip583qUhTRVGjk__DDuxqqIEZ2ngbYQxIfTaihTEfLVDFR8OO0AKt8fdwBfVmTmpSfw48MpTfj5wRlTP4SI4fOLKPIRRDiCpCMwtQvJfyMA41i7iTh6sKZ0QbfOUDpGK3Lh778gi4pcePIC4ui7pVD27NsqzFKpYoNeUEL2RpCdEZLsCGl_BrI4Aks_g-S_Eufli4ijh--pXHbtXOguJC8nGshghFAMQI2FbLykhSywkCUWIn5ie07LY3XqzgdtzpqORz2PC99ptxqOQ9usiYyNCQ6QJgOwcACmd5DoHXTl_YpYs39AZz_BbJYw3IJJK2J9sIOclygEQWEICkpQSIIiJSjy8oCHpmHKBzw0mV-fxsY0uuVQpZ09eqDSjogJqB5A83JfJp-aXbB0dtgPDB-qsaN-Wg6pz8u95JQ8PxbR-vLPi-iKE5s22DxrNjkXTuA1hevOMddp0pbne0Gr4czByBLSzExU6cuK3LgyQiIrcvmN1-DTI5jwCEy-CJq9ClqUoJsl-vG3QdCVCTW1aKsmObgqkaQXkG5Ze-EpeWUyx7vbX0Cw48Wn7sTAdIlEl_hE_kzQCe8Nb6mC7N9ShSHf30xSGck-Hc_4dkpTMfvwhtgqlOYr18zg67fZGBinj-4Ik67SmMu4Y8g3S5JzoZeVZoL8uGI2hL-emc2lTMdZsrr-zvJKlGhhjFTxCFRWxHqmwWRFLv1yMvm_7pWPIfUIOisRZcdkapBqBJbswCTn_I0i0OF5jZ9YKLJyqBv--WEoK7KRXUcojhcfP9v-YYHfBfVLGPGfi-f5UNPxC1SWe-YeOtoCTXcRRyVyXSIPS9BwAJPNDtNEHy_-PqXih9bQD7W174c6vH8mtZEnduCKBnOcVnO-7rYCUXc9zoK5ltfm89RxXYHUVJur_2z_GwAA__93lUK2pQQAAA==
200 OK 0 B URL
praystakeinstinct.com/impr.gif?sid=H4sIAAAAAAAC_1RSv28cRRSetdOlQET8KBBoSyLIZe927bvDhYVJDFaMY5IgS0EUszOz5-F2d5aZ_XE-NxaWUOguEgXl-js7FiGgUFEhoTMShSUklsoScRPxDwSJhgbd-STDk-a9N_O9GX3ve_P5XnZKPGT0ZP191ZdhSK_O1Rz79Q0Zc1UYe-2OXXdqzoK9IeN5b8HujZ3O36q7Xs25bL8rWFddbTh1x6k7dXtZahGo3tUJCpk8atdrbafmNWr1OQ89_f-9ySwYaoHnp-QSJK-eexp8BMlGiKPH14Tppip583qUhTRVGjk__DDuxqqIEZ2ngbYQxIfTaihTEfLVDFR8OO0AKt8fdwBfVmTmpSfw48MpTfj5wRlTP4SI4fOLKPIRRDiCpCMwtQvJfyMA41i7iTh6sKZ0QbfOUDpGK3Lh778gi4pcePIC4ui7pVD27NsqzFKpYoNeUEL2RpCdEZLsCGl_BrI4Aks_g-S_Eufli4ijh--pXHbtXOguJC8nGshghFAMQI2FbLykhSywkCUWIn5ie07LY3XqzgdtzpqORz2PC99ptxqOQ9usiYyNCQ6QJgOwcACmd5DoHXTl_YpYs39AZz_BbJYw3IJJK2J9sIOclygEQWEICkpQSIIiJSjy8oCHpmHKBzw0mV-fxsY0uuVQpZ09eqDSjogJqB5A83JfJp-aXbB0dtgPDB-qsaN-Wg6pz8u95JQ8PxbR-vLPi-iKE5s22DxrNjkXTuA1hevOMddp0pbne0Gr4czByBLSzExU6cuK3LgyQiIrcvmN1-DTI5jwCEy-CJq9ClqUoJsl-vG3QdCVCTW1aKsmObgqkaQXkG5Ze-EpeWUyx7vbX0Cw48Wn7sTAdIlEl_hE_kzQCe8Nb6mC7N9ShSHf30xSGck-Hc_4dkpTMfvwhtgqlOYr18zg67fZGBinj-4Ik67SmMu4Y8g3S5JzoZeVZoL8uGI2hL-emc2lTMdZsrr-zvJKlGhhjFTxCFRWxHqmwWRFLv1yMvm_7pWPIfUIOisRZcdkapBqBJbswCTn_I0i0OF5jZ9YKLJyqBv--WEoK7KRXUcojhcfP9v-YYHfBfVLGPGfi-f5UNPxC1SWe-YeOtoCTXcRRyVyXSIPS9BwAJPNDtNEHy_-PqXih9bQD7W174c6vH8mtZEnduCKBnOcVnO-7rYCUXc9zoK5ltfm89RxXYHUVJur_2z_GwAA__93lUK2pQQAAA==
IP / ASN
172.240.127.234
#7979 SERVERS-COM
Requested by https://ffkipas.my.id/panel/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-03
Times Seen 5619464
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject praystakeinstinct.com
Fingerprint EB:32:11:47:9B:33:13:C9:D7:C7:F1:D3:1F:81:A6:05:E1:9D:89:CC
Validity Tue, 29 Apr 2025 22:08:44 GMT - Mon, 28 Jul 2025 22:08:43 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /impr.gif?sid=H4sIAAAAAAAC_1RSv28cRRSetdOlQET8KBBoSyLIZe927bvDhYVJDFaMY5IgS0EUszOz5-F2d5aZ_XE-NxaWUOguEgXl-js7FiGgUFEhoTMShSUklsoScRPxDwSJhgbd-STDk-a9N_O9GX3ve_P5XnZKPGT0ZP191ZdhSK_O1Rz79Q0Zc1UYe-2OXXdqzoK9IeN5b8HujZ3O36q7Xs25bL8rWFddbTh1x6k7dXtZahGo3tUJCpk8atdrbafmNWr1OQ89_f-9ySwYaoHnp-QSJK-eexp8BMlGiKPH14Tppip583qUhTRVGjk__DDuxqqIEZ2ngbYQxIfTaihTEfLVDFR8OO0AKt8fdwBfVmTmpSfw48MpTfj5wRlTP4SI4fOLKPIRRDiCpCMwtQvJfyMA41i7iTh6sKZ0QbfOUDpGK3Lh778gi4pcePIC4ui7pVD27NsqzFKpYoNeUEL2RpCdEZLsCGl_BrI4Aks_g-S_Eufli4ijh--pXHbtXOguJC8nGshghFAMQI2FbLykhSywkCUWIn5ie07LY3XqzgdtzpqORz2PC99ptxqOQ9usiYyNCQ6QJgOwcACmd5DoHXTl_YpYs39AZz_BbJYw3IJJK2J9sIOclygEQWEICkpQSIIiJSjy8oCHpmHKBzw0mV-fxsY0uuVQpZ09eqDSjogJqB5A83JfJp-aXbB0dtgPDB-qsaN-Wg6pz8u95JQ8PxbR-vLPi-iKE5s22DxrNjkXTuA1hevOMddp0pbne0Gr4czByBLSzExU6cuK3LgyQiIrcvmN1-DTI5jwCEy-CJq9ClqUoJsl-vG3QdCVCTW1aKsmObgqkaQXkG5Ze-EpeWUyx7vbX0Cw48Wn7sTAdIlEl_hE_kzQCe8Nb6mC7N9ShSHf30xSGck-Hc_4dkpTMfvwhtgqlOYr18zg67fZGBinj-4Ik67SmMu4Y8g3S5JzoZeVZoL8uGI2hL-emc2lTMdZsrr-zvJKlGhhjFTxCFRWxHqmwWRFLv1yMvm_7pWPIfUIOisRZcdkapBqBJbswCTn_I0i0OF5jZ9YKLJyqBv--WEoK7KRXUcojhcfP9v-YYHfBfVLGPGfi-f5UNPxC1SWe-YeOtoCTXcRRyVyXSIPS9BwAJPNDtNEHy_-PqXih9bQD7W174c6vH8mtZEnduCKBnOcVnO-7rYCUXc9zoK5ltfm89RxXYHUVJur_2z_GwAA__93lUK2pQQAAA== HTTP/1.1
Host: praystakeinstinct.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ffkipas.my.id/
Cookie: pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; u_pl26535179=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 14 Jun 2025 04:33:00 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
accept-ch: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
x-envoy-upstream-service-time: 1
Host: praystakeinstinct.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: a149f81cf28088b84081e9c0c8ce32ad
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
GET fonts.gstatic.com/s/roboto/v48/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2
200 OK 40 kB URL
fonts.gstatic.com/s/roboto/v48/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2
IP / ASN
142.250.74.35
#15169 GOOGLE
Requested by https://ffkipas.my.id/panel/
Resource Info
File type Web Open Font Format (Version 2), TrueType, length 40128, version 1.0
First Seen 2025-01-08
Last Seen 2025-08-03
Times Seen 98140
Size 40 kB (40128 bytes)
MD5 9a01b69183a9604ab3a439e388b30501
SHA1 8ed1d59003d0dbe6360481017b44665153665fbe
SHA256 20b535fa80c8189e3b87d1803038389960203a886d502bc2ef1857affc2f38d2
Certificate Info
Issuer Google Trust Services
Subject *.gstatic.com
Fingerprint E1:0C:8D:E3:24:8F:B1:9F:BA:8E:CF:BE:4B:8F:D6:6A:39:8A:9D:7A
Validity Mon, 19 May 2025 08:42:51 GMT - Mon, 11 Aug 2025 08:42:50 GMT
GET /s/roboto/v48/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ffkipas.my.id
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 40128
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 10 Jun 2025 02:38:52 GMT
expires: Wed, 10 Jun 2026 02:38:52 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 29 May 2025 23:30:55 GMT
content-type: font/woff2
age: 352449
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET ffkipas.my.id/panel/assets/css/control.css
200 OK 25 kB URL
ffkipas.my.id/panel/assets/css/control.css
IP / ASN
172.67.218.170
#13335 CLOUDFLARENET
Requested by https://ffkipas.my.id/panel/
Resource Info
File type ASCII text, with CRLF line terminators
First Seen 2025-06-14
Last Seen 2025-06-14
Times Seen 1
Size 25 kB (25409 bytes)
MD5 fac0f0f0c6bfaca8fac72e2fb1fa6323
SHA1 5fadc82eecf5e05bfafafc01c14535142f8c9fcd
SHA256 9e8ce079ea595e12eec73df7550448860fc49f8698b943574e3f8c21a5fa16ef
Certificate Info
Issuer Google Trust Services
Subject ffkipas.my.id
Fingerprint 26:B0:07:B1:9A:45:01:AE:7E:A5:0D:1A:12:7E:32:9E:B7:78:9D:DF
Validity Wed, 14 May 2025 03:07:06 GMT - Tue, 12 Aug 2025 03:52:13 GMT
GET /panel/assets/css/control.css HTTP/1.1
Host: ffkipas.my.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ffkipas.my.id/panel/
Cookie: PHPSESSID=5e7f5bbadcd5b58c45bdc55bb25ae0d7
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 14 Jun 2025 04:32:57 GMT
content-type: text/css
server: cloudflare
last-modified: Sun, 01 Jun 2025 22:11:14 GMT
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=QJIB%2B5CJLdaM050cXDy1LbwbVqCuPmWtBpGdvDR%2BMjwYUWpy4m51hbHbczFo0eB0rPNp3hxWPkmAMRHbzTFoOfdgUxP94AbKPwas"}]}
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
cache-control: max-age=14400
cf-cache-status: MISS
speculation-rules: "/cdn-cgi/speculation"
vary: accept-encoding
content-encoding: br
cf-ray: 94f71b55db405685-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET ffkipas.my.id/panel/assets/css/login.css
200 OK 4.3 kB URL
ffkipas.my.id/panel/assets/css/login.css
IP / ASN
172.67.218.170
#13335 CLOUDFLARENET
Requested by https://ffkipas.my.id/panel/
Resource Info
File type ASCII text, with CRLF line terminators
First Seen 2025-06-14
Last Seen 2025-06-14
Times Seen 1
Size 4.3 kB (4306 bytes)
MD5 ef0c2bbabed1caf8a1a0d88ee27587a9
SHA1 dd308db4c51084c688af46815d9c208c11286dd2
SHA256 a37fe05a9d6175567a6f3e38631150b60439c4fe56f6eda9850cb21a33838af4
Certificate Info
Issuer Google Trust Services
Subject ffkipas.my.id
Fingerprint 26:B0:07:B1:9A:45:01:AE:7E:A5:0D:1A:12:7E:32:9E:B7:78:9D:DF
Validity Wed, 14 May 2025 03:07:06 GMT - Tue, 12 Aug 2025 03:52:13 GMT
GET /panel/assets/css/login.css HTTP/1.1
Host: ffkipas.my.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ffkipas.my.id/panel/
Cookie: PHPSESSID=5e7f5bbadcd5b58c45bdc55bb25ae0d7
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 14 Jun 2025 04:32:57 GMT
content-type: text/css
server: cloudflare
last-modified: Fri, 30 May 2025 16:12:40 GMT
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=X3rQMrNnWDR%2Blu8DqR2xuqovkV%2F%2BRpoiN3QX7ddJAKv1O49SmcR%2BTLaJuQy1VS%2F6ZvL03waQleTBriqDkoKS8dI7HQCicSOF85mF"}]}
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
cache-control: max-age=14400
cf-cache-status: MISS
speculation-rules: "/cdn-cgi/speculation"
vary: accept-encoding
content-encoding: br
cf-ray: 94f71b55eb425685-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET praystakeinstinct.com/ren.gif?sid=H4sIAAAAAAAC_1RSz4scRRSu3s0tBzH44yBKHw2aSc90zy9zCMYkumTdrElkIeKhuqt6tpzurraqf8zOXhYXJN4m4MFj7Te7WYxR4smTILOChwXB9rRg9hL8ByJ48SIzO7D6oN57Vd-r4nvfq8938mPiIadHq-_LoYgierFZc-zX10TCZKntlTt23ak5l-w1kbS8S_Zg6lTxVt31as55-10e9OXFhlN3nLpTt68LxUM5uDhDIdJH3Xqt69S8Rq3e9DBQ_9_r3IKmFlhxTM5BsOq5p-FHEMEESfz4Ktf9TKZvXovziGZSoWD7Hyb9RJYJ4tM0VBbCZH9eDakrQr5agEz25x1AFrvTDuCLiiy89AR-sj-nCb_YO2HqR-AJfHYWZTEBjyYQdIJAbkOw3wgQMKzcRBI_WJGqpBsnKJ2iFTnz918QZUXOPHkBSfzdlUgM7NsyyjMhE41BaCAGE4jeBGl-gGy4AFEeIMg-g2C_Eufls0jih-_JQvTtgqs-BDMzDUQ4QcRHoNpCPl3CQh5ayFMLMTuyPafjBXXqtsIuC9qORz2Pcd_pdhqOQ7tBG3kwJThClo4QRCMEagup2kJf3K-ItfgHVP4T9LqBZhZ0VhHrgy0UzKDkBKUmKClBKQjKjKAszB6LdEObByzSuV-fx8Y8umYss94O3ZNZjycEVI2gmNkV6ad6G0G2OB6Gmo3l1FE_M2PqM7OTHpPnpyJaX_55Fn1-ZNNG0Arabca4E3pt7rrNwHXatOP5XthpOE1oYSD0wkyVoajIjQsTpKIi5994DT49gI4OEIgXQfNXQUsDum4wTL4Nw75Iqa7FGzXBwKRBmp1BtmHtRMfkldkc725-AR4cXn7qzgyBMkiVwSfiZ4JedG98S5Zk95YsNfn-ZpqJWAzpdMa3M5rxxYc3-EYpFVu6qkdfvx1MgWn66A7X2TJNmEh6mnxzRTDG1XWpAk5-XNJr3F_N9fqVXCV5urz6zvWlOFVcayGTCaioiPVMIRAVOffL0ez_uhc-hlATqNwgzg_J3CDkBEG6BZ2e8teSQEWnNX5qoczNWDX808NIVGQtv4aIH15-_Gzzh0vsLqhvoPl_Lp7mY0WnL1BhdvQ99JQFmm0jiQ0KZVBEBjQaQeeL4yxVh5d_n1PxI2vsR8ra9SMV3T-RWosju9nw3Van0-Jhi4Uucxsu6zYd3vVot-V1vSYyXa0v_7P5bwAAAP__i_3SaKUEAAA=
200 OK 0 B URL
praystakeinstinct.com/ren.gif?sid=H4sIAAAAAAAC_1RSz4scRRSu3s0tBzH44yBKHw2aSc90zy9zCMYkumTdrElkIeKhuqt6tpzurraqf8zOXhYXJN4m4MFj7Te7WYxR4smTILOChwXB9rRg9hL8ByJ48SIzO7D6oN57Vd-r4nvfq8938mPiIadHq-_LoYgierFZc-zX10TCZKntlTt23ak5l-w1kbS8S_Zg6lTxVt31as55-10e9OXFhlN3nLpTt68LxUM5uDhDIdJH3Xqt69S8Rq3e9DBQ_9_r3IKmFlhxTM5BsOq5p-FHEMEESfz4Ktf9TKZvXovziGZSoWD7Hyb9RJYJ4tM0VBbCZH9eDakrQr5agEz25x1AFrvTDuCLiiy89AR-sj-nCb_YO2HqR-AJfHYWZTEBjyYQdIJAbkOw3wgQMKzcRBI_WJGqpBsnKJ2iFTnz918QZUXOPHkBSfzdlUgM7NsyyjMhE41BaCAGE4jeBGl-gGy4AFEeIMg-g2C_Eufls0jih-_JQvTtgqs-BDMzDUQ4QcRHoNpCPl3CQh5ayFMLMTuyPafjBXXqtsIuC9qORz2Pcd_pdhqOQ7tBG3kwJThClo4QRCMEagup2kJf3K-ItfgHVP4T9LqBZhZ0VhHrgy0UzKDkBKUmKClBKQjKjKAszB6LdEObByzSuV-fx8Y8umYss94O3ZNZjycEVI2gmNkV6ad6G0G2OB6Gmo3l1FE_M2PqM7OTHpPnpyJaX_55Fn1-ZNNG0Arabca4E3pt7rrNwHXatOP5XthpOE1oYSD0wkyVoajIjQsTpKIi5994DT49gI4OEIgXQfNXQUsDum4wTL4Nw75Iqa7FGzXBwKRBmp1BtmHtRMfkldkc725-AR4cXn7qzgyBMkiVwSfiZ4JedG98S5Zk95YsNfn-ZpqJWAzpdMa3M5rxxYc3-EYpFVu6qkdfvx1MgWn66A7X2TJNmEh6mnxzRTDG1XWpAk5-XNJr3F_N9fqVXCV5urz6zvWlOFVcayGTCaioiPVMIRAVOffL0ez_uhc-hlATqNwgzg_J3CDkBEG6BZ2e8teSQEWnNX5qoczNWDX808NIVGQtv4aIH15-_Gzzh0vsLqhvoPl_Lp7mY0WnL1BhdvQ99JQFmm0jiQ0KZVBEBjQaQeeL4yxVh5d_n1PxI2vsR8ra9SMV3T-RWosju9nw3Van0-Jhi4Uucxsu6zYd3vVot-V1vSYyXa0v_7P5bwAAAP__i_3SaKUEAAA=
IP / ASN
172.240.127.234
#7979 SERVERS-COM
Requested by https://ffkipas.my.id/panel/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-03
Times Seen 5619464
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject praystakeinstinct.com
Fingerprint EB:32:11:47:9B:33:13:C9:D7:C7:F1:D3:1F:81:A6:05:E1:9D:89:CC
Validity Tue, 29 Apr 2025 22:08:44 GMT - Mon, 28 Jul 2025 22:08:43 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC_1RSz4scRRSu3s0tBzH44yBKHw2aSc90zy9zCMYkumTdrElkIeKhuqt6tpzurraqf8zOXhYXJN4m4MFj7Te7WYxR4smTILOChwXB9rRg9hL8ByJ48SIzO7D6oN57Vd-r4nvfq8938mPiIadHq-_LoYgierFZc-zX10TCZKntlTt23ak5l-w1kbS8S_Zg6lTxVt31as55-10e9OXFhlN3nLpTt68LxUM5uDhDIdJH3Xqt69S8Rq3e9DBQ_9_r3IKmFlhxTM5BsOq5p-FHEMEESfz4Ktf9TKZvXovziGZSoWD7Hyb9RJYJ4tM0VBbCZH9eDakrQr5agEz25x1AFrvTDuCLiiy89AR-sj-nCb_YO2HqR-AJfHYWZTEBjyYQdIJAbkOw3wgQMKzcRBI_WJGqpBsnKJ2iFTnz918QZUXOPHkBSfzdlUgM7NsyyjMhE41BaCAGE4jeBGl-gGy4AFEeIMg-g2C_Eufls0jih-_JQvTtgqs-BDMzDUQ4QcRHoNpCPl3CQh5ayFMLMTuyPafjBXXqtsIuC9qORz2Pcd_pdhqOQ7tBG3kwJThClo4QRCMEagup2kJf3K-ItfgHVP4T9LqBZhZ0VhHrgy0UzKDkBKUmKClBKQjKjKAszB6LdEObByzSuV-fx8Y8umYss94O3ZNZjycEVI2gmNkV6ad6G0G2OB6Gmo3l1FE_M2PqM7OTHpPnpyJaX_55Fn1-ZNNG0Arabca4E3pt7rrNwHXatOP5XthpOE1oYSD0wkyVoajIjQsTpKIi5994DT49gI4OEIgXQfNXQUsDum4wTL4Nw75Iqa7FGzXBwKRBmp1BtmHtRMfkldkc725-AR4cXn7qzgyBMkiVwSfiZ4JedG98S5Zk95YsNfn-ZpqJWAzpdMa3M5rxxYc3-EYpFVu6qkdfvx1MgWn66A7X2TJNmEh6mnxzRTDG1XWpAk5-XNJr3F_N9fqVXCV5urz6zvWlOFVcayGTCaioiPVMIRAVOffL0ez_uhc-hlATqNwgzg_J3CDkBEG6BZ2e8teSQEWnNX5qoczNWDX808NIVGQtv4aIH15-_Gzzh0vsLqhvoPl_Lp7mY0WnL1BhdvQ99JQFmm0jiQ0KZVBEBjQaQeeL4yxVh5d_n1PxI2vsR8ra9SMV3T-RWosju9nw3Van0-Jhi4Uucxsu6zYd3vVot-V1vSYyXa0v_7P5bwAAAP__i_3SaKUEAAA= HTTP/1.1
Host: praystakeinstinct.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ffkipas.my.id/
Cookie: pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; u_pl26535179=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 14 Jun 2025 04:32:59 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
accept-ch: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
x-envoy-upstream-service-time: 0
Host: praystakeinstinct.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 9068b00230c48a854ff9e69f0239491b
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
GET unseenreport.com/pxf.gif?uuid=677565be-fa39-4714-9bff-c51fb1f3333f&eb=56a3745424804a23b12899170f9076de&te=9c9b2bc1fcb866fe34b4078d4dc2b749&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0)%20Gecko%2F20100101%20Firefox%2F134.0&dev=e&res=14.3095&b_frame=0&pk=c682d9ff6dbef6bb1bfedefd79455e86&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=4
200 OK 0 B URL
unseenreport.com/pxf.gif?uuid=677565be-fa39-4714-9bff-c51fb1f3333f&eb=56a3745424804a23b12899170f9076de&te=9c9b2bc1fcb866fe34b4078d4dc2b749&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0)%20Gecko%2F20100101%20Firefox%2F134.0&dev=e&res=14.3095&b_frame=0&pk=c682d9ff6dbef6bb1bfedefd79455e86&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=4
IP / ASN
192.243.59.12
#39572 DataWeb Global Group B.V.
Requested by https://ffkipas.my.id/panel/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-03
Times Seen 5619464
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject *.unseenreport.com
Fingerprint 70:62:DC:6C:0A:F4:AA:56:4E:74:DC:EF:DA:CC:60:5A:C4:34:CE:F2
Validity Sat, 17 May 2025 22:34:21 GMT - Fri, 15 Aug 2025 22:34:20 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pxf.gif?uuid=677565be-fa39-4714-9bff-c51fb1f3333f&eb=56a3745424804a23b12899170f9076de&te=9c9b2bc1fcb866fe34b4078d4dc2b749&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0)%20Gecko%2F20100101%20Firefox%2F134.0&dev=e&res=14.3095&b_frame=0&pk=c682d9ff6dbef6bb1bfedefd79455e86&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=4 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ffkipas.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 14 Jun 2025 04:33:00 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Host: unseenreport.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 039384c73884bec3695ad26dd6a9ca60
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
GET fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
200 OK 17 kB URL
fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
IP / ASN
142.250.178.106
#15169 GOOGLE
Requested by https://ffkipas.my.id/panel/
Resource Info
File type ASCII text, with very long lines (1572)
First Seen 2025-06-02
Last Seen 2025-08-03
Times Seen 2399
Size 17 kB (16755 bytes)
MD5 e9d2e14beb088f37fae98294940a9dcd
SHA1 1dafc3c55550249c8c2d782d5616c7b445c8e005
SHA256 f2e491cc46d3fcba81f729065d622bd722751d4a2e7f80b479aa64a92c17b5c7
Certificate Info
Issuer Google Trust Services
Subject upload.video.google.com
Fingerprint FF:78:1F:2C:E7:6A:27:90:8B:25:07:97:DD:25:4A:FA:6F:1F:0F:31
Validity Mon, 19 May 2025 08:42:52 GMT - Mon, 11 Aug 2025 08:42:51 GMT
GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 14 Jun 2025 04:33:00 GMT
date: Sat, 14 Jun 2025 04:33:00 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET praystakeinstinct.com/pixel/sbls?bv=&tmpl=482&u=https%3A%2F%2Fcdn.creative-stat1.com%2Fsb%2Fssp%2Finterstitial%2Fcenter_banner%2F2%2Fcss%2Fanimate.css&l=78693&fd=553
200 OK 0 B URL
praystakeinstinct.com/pixel/sbls?bv=&tmpl=482&u=https%3A%2F%2Fcdn.creative-stat1.com%2Fsb%2Fssp%2Finterstitial%2Fcenter_banner%2F2%2Fcss%2Fanimate.css&l=78693&fd=553
IP / ASN
172.240.127.234
#7979 SERVERS-COM
Requested by https://ffkipas.my.id/panel/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-03
Times Seen 5619464
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject praystakeinstinct.com
Fingerprint EB:32:11:47:9B:33:13:C9:D7:C7:F1:D3:1F:81:A6:05:E1:9D:89:CC
Validity Tue, 29 Apr 2025 22:08:44 GMT - Mon, 28 Jul 2025 22:08:43 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pixel/sbls?bv=&tmpl=482&u=https%3A%2F%2Fcdn.creative-stat1.com%2Fsb%2Fssp%2Finterstitial%2Fcenter_banner%2F2%2Fcss%2Fanimate.css&l=78693&fd=553 HTTP/1.1
Host: praystakeinstinct.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ffkipas.my.id/
Cookie: pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; u_pl26535179=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 14 Jun 2025 04:33:00 GMT
Content-Length: 0
Connection: keep-alive
Host: praystakeinstinct.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
GET praystakeinstinct.com/pixel/sbs?c=1
200 OK 0 B URL
praystakeinstinct.com/pixel/sbs?c=1
IP / ASN
192.243.61.225
#39572 DataWeb Global Group B.V.
Requested by https://ffkipas.my.id/panel/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-03
Times Seen 5619464
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject praystakeinstinct.com
Fingerprint EB:32:11:47:9B:33:13:C9:D7:C7:F1:D3:1F:81:A6:05:E1:9D:89:CC
Validity Tue, 29 Apr 2025 22:08:44 GMT - Mon, 28 Jul 2025 22:08:43 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pixel/sbs?c=1 HTTP/1.1
Host: praystakeinstinct.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ffkipas.my.id/
Cookie: pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; u_pl26535179=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 14 Jun 2025 04:33:00 GMT
Content-Length: 0
Connection: keep-alive
Host: praystakeinstinct.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
GET greaseguts.com/c6/82/d9/c682d9ff6dbef6bb1bfedefd79455e86.js
200 OK 104 kB URL
greaseguts.com/c6/82/d9/c682d9ff6dbef6bb1bfedefd79455e86.js
IP / ASN
192.243.59.20
#39572 DataWeb Global Group B.V.
Requested by https://ffkipas.my.id/panel/
Resource Info
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
First Seen 2025-06-14
Last Seen 2025-06-14
Times Seen 1
Size 104 kB (104402 bytes)
MD5 0e72744b3886bece1a9abba9e7d233c0
SHA1 c2798de9b4dea7bf182786333d9cb167f67f6d24
SHA256 635d722314c92634c0e5fe11168ef3fbe543aa29fa5ec6d9542e850a90d3d75c
Certificate Info
Issuer Let's Encrypt
Subject greaseguts.com
Fingerprint 26:D0:43:82:48:8C:96:0C:24:54:FB:89:28:77:C1:AE:10:EE:61:3B
Validity Mon, 12 May 2025 10:56:07 GMT - Sun, 10 Aug 2025 10:56:06 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /c6/82/d9/c682d9ff6dbef6bb1bfedefd79455e86.js HTTP/1.1
Host: greaseguts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ffkipas.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 14 Jun 2025 04:32:57 GMT
Content-Type: application/javascript
Content-Length: 32711
Connection: keep-alive
Content-Encoding: gzip
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: greaseguts.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 57cc3973f7408760b7c779cc1c8150cd
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
GET ffkipas.my.id/cdn-cgi/challenge-platform/h/b/scripts/jsd/f9574c83b4d7/main.js?
200 OK 10 kB URL
ffkipas.my.id/cdn-cgi/challenge-platform/h/b/scripts/jsd/f9574c83b4d7/main.js?
IP / ASN
172.67.218.170
#13335 CLOUDFLARENET
Requested by https://ffkipas.my.id/panel/
Resource Info
File type JavaScript source, ASCII text, with very long lines (9975), with no line terminators
First Seen 2025-06-14
Last Seen 2025-06-14
Times Seen 2
Size 10 kB (9975 bytes)
MD5 3f566f5baefacca88c3cb80961d46a7e
SHA1 d02c75e528994cb60b9015a30d2857e476d605de
SHA256 b160fe5414d52caa437ab2328430a243f0dfdfbf5eb9f79d006305e364ad0572
Certificate Info
Issuer Google Trust Services
Subject ffkipas.my.id
Fingerprint 26:B0:07:B1:9A:45:01:AE:7E:A5:0D:1A:12:7E:32:9E:B7:78:9D:DF
Validity Wed, 14 May 2025 03:07:06 GMT - Tue, 12 Aug 2025 03:52:13 GMT
GET /cdn-cgi/challenge-platform/h/b/scripts/jsd/f9574c83b4d7/main.js? HTTP/1.1
Host: ffkipas.my.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=5e7f5bbadcd5b58c45bdc55bb25ae0d7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 14 Jun 2025 04:32:58 GMT
content-type: application/javascript; charset=UTF-8
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mKj9dklpjRH5maW38GM193I72dqgWHi%2FeIBanN86RyJ6cbsUCIWGhjPcPZsQENA7%2BpDTBOLBFIDu5XdPX67if54XzPFN1NiFkPZYWWp9tWZP%2FVZHTjDmOtxrzsZY6uoz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cache-control: max-age=14400, stale-if-error=10800, stale-while-revalidate=10800, public
x-content-type-options: nosniff
content-encoding: br
cf-ray: 94f71b5c3c9556ca-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2521&min_rtt=557&rtt_var=1257&sent=229&recv=249&lost=0&retrans=0&sent_bytes=41204&recv_bytes=14947&delivery_rate=5532141&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=24000&unsent_bytes=0&cid=801f9fe86f440d44&ts=1251&inflight_dur=64&x=80"
GET capaciousdrewreligion.com/advertisers.js
200 OK 0 B URL
capaciousdrewreligion.com/advertisers.js
IP / ASN
185.196.197.72
#39572 DataWeb Global Group B.V.
Requested by https://ffkipas.my.id/panel/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-03
Times Seen 5619464
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject capaciousdrewreligion.com
Fingerprint 4C:9A:D1:39:AD:B4:C8:D5:6E:A1:5A:54:6F:88:D5:0F:D1:C6:5A:06
Validity Fri, 02 May 2025 21:09:09 GMT - Thu, 31 Jul 2025 21:09:08 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /advertisers.js HTTP/1.1
Host: capaciousdrewreligion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ffkipas.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 14 Jun 2025 04:32:58 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: aa80505aab6657fa6b2b71fa5b4996c2
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
POST ffkipas.my.id/cdn-cgi/challenge-platform/h/b/jsd/r/0.27021422804359885:1749874230:aCx3hmiVO6TpkPaS3CxVNZHwUh3paOGpdrb7xILV-vM/94f71b5038a85685
200 OK 0 B URL
ffkipas.my.id/cdn-cgi/challenge-platform/h/b/jsd/r/0.27021422804359885:1749874230:aCx3hmiVO6TpkPaS3CxVNZHwUh3paOGpdrb7xILV-vM/94f71b5038a85685
IP / ASN
172.67.218.170
#13335 CLOUDFLARENET
Requested by https://ffkipas.my.id/panel/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-03
Times Seen 5619464
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject ffkipas.my.id
Fingerprint 26:B0:07:B1:9A:45:01:AE:7E:A5:0D:1A:12:7E:32:9E:B7:78:9D:DF
Validity Wed, 14 May 2025 03:07:06 GMT - Tue, 12 Aug 2025 03:52:13 GMT
POST /cdn-cgi/challenge-platform/h/b/jsd/r/0.27021422804359885:1749874230:aCx3hmiVO6TpkPaS3CxVNZHwUh3paOGpdrb7xILV-vM/94f71b5038a85685 HTTP/1.1
Host: ffkipas.my.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 12079
Origin: https://ffkipas.my.id
DNT: 1
Connection: keep-alive
Referer: https://ffkipas.my.id/panel/
Cookie: PHPSESSID=5e7f5bbadcd5b58c45bdc55bb25ae0d7
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 14 Jun 2025 04:32:58 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=urKf3p8OEeFQMKi5QcwNc09uuiRsNO2Ui2r9i%2FXtEucMUiVYhbtyxpDtwFj4U%2Frk4qzJYJ%2Bs4f9GISGblqRfnGWLcZeQ7BUsRKVi91Xt539wew6VI%2BXJ%2BLR9fUtkTUXp"}],"group":"cf-nel","max_age":604800}
set-cookie: cf_clearance=iZe4wU8jSCtfn5bcUu.YIbNvq5sRR6HL4ruZ0sp5_x0-1749875578-1.2.1.1-YUDuKymN0PJJ65sHw.JoLXWSWuOpH2lPkK9HA0QrchhHAWEypCgFPVplSldYwto03_YjXr4UVF6WbpCLYGlSFv79SCMrxpSLWtX3DuOKfudvXwdwIbXPrUOi3ouqefbGtxk2FpeZQFWfO5873aYI9QYg8.3ob826kvKG7FdVddTMutXbiqrqIRSAM78NXXdXT97IQOPwgsvbKg.fOhFu.r_bULo72QoD324aTnKYiXlB0l53s4f064lUmrn6O_pCSkPbWOJl5qFr73gWgNHKd8lL4i0HmUFWFUpjExZ1KokLz44Bz1DMfgbmi2NiuNgvk14J4R14xFcalLquk_0.GSuWlThfLaJtg56cCJr_2LA; HttpOnly; SameSite=None; Partitioned; Secure; Path=/; Domain=ffkipas.my.id; Expires=Sun, 14 Jun 2026 04:32:58 GMT
cf-ray: 94f71b5e9c9f56ca-OSL
server: cloudflare
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2361&min_rtt=557&rtt_var=1262&sent=241&recv=260&lost=0&retrans=0&sent_bytes=46830&recv_bytes=27867&delivery_rate=5532141&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=24000&unsent_bytes=0&cid=801f9fe86f440d44&ts=1632&inflight_dur=66&x=80"
GET unseenreport.com/pxf.gif?uuid=677565be-fa39-4714-9bff-c51fb1f3333f&eb=56a3745424804a23b12899170f9076de&te=9c9b2bc1fcb866fe34b4078d4dc2b749&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0)%20Gecko%2F20100101%20Firefox%2F134.0&dev=e&res=14.3095&b_frame=0&pk=a2c6c77dde0f47e335c307a84b4f8205&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=4
200 OK 0 B URL
unseenreport.com/pxf.gif?uuid=677565be-fa39-4714-9bff-c51fb1f3333f&eb=56a3745424804a23b12899170f9076de&te=9c9b2bc1fcb866fe34b4078d4dc2b749&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0)%20Gecko%2F20100101%20Firefox%2F134.0&dev=e&res=14.3095&b_frame=0&pk=a2c6c77dde0f47e335c307a84b4f8205&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=4
IP / ASN
192.243.59.12
#39572 DataWeb Global Group B.V.
Requested by https://ffkipas.my.id/panel/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-03
Times Seen 5619464
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject *.unseenreport.com
Fingerprint 70:62:DC:6C:0A:F4:AA:56:4E:74:DC:EF:DA:CC:60:5A:C4:34:CE:F2
Validity Sat, 17 May 2025 22:34:21 GMT - Fri, 15 Aug 2025 22:34:20 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pxf.gif?uuid=677565be-fa39-4714-9bff-c51fb1f3333f&eb=56a3745424804a23b12899170f9076de&te=9c9b2bc1fcb866fe34b4078d4dc2b749&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0)%20Gecko%2F20100101%20Firefox%2F134.0&dev=e&res=14.3095&b_frame=0&pk=a2c6c77dde0f47e335c307a84b4f8205&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=4 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ffkipas.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 14 Jun 2025 04:33:00 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Host: unseenreport.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: a65f9fbd464e70d18cf185d8e099d9f4
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
GET cdn.creative-stat1.com/sb/ssp/interstitial/center_banner/2/js/jquery.min.js
200 OK 84 kB URL
cdn.creative-stat1.com/sb/ssp/interstitial/center_banner/2/js/jquery.min.js
IP / ASN
172.67.133.15
#13335 CLOUDFLARENET
Requested by https://ffkipas.my.id/panel/
Resource Info
File type JavaScript source, ASCII text, with very long lines (32025), with CRLF line terminators
First Seen 2023-03-07
Last Seen 2025-08-03
Times Seen 2469
Size 84 kB (84384 bytes)
MD5 6326c600df01e3bfb9b40e1aa08176f8
SHA1 6b4fb754d29b297b539bf62ba9b4eaf0f33f314a
SHA256 df34524351c5fabc921a89183b5da5667aebd7b9e9a1c52255c76ff722935ea3
Certificate Info
Issuer Google Trust Services
Subject creative-stat1.com
Fingerprint EA:78:8B:9D:53:DF:84:5F:BA:B0:1B:CB:77:59:D8:9B:CC:8C:CC:86
Validity Wed, 11 Jun 2025 22:34:34 GMT - Tue, 09 Sep 2025 23:32:59 GMT
GET /sb/ssp/interstitial/center_banner/2/js/jquery.min.js HTTP/1.1
Host: cdn.creative-stat1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 14 Jun 2025 04:33:00 GMT
content-type: application/javascript
content-length: 84384
server: cloudflare
last-modified: Fri, 19 Jan 2024 14:19:45 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
etag: "65aa8501-149a0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
accept-ranges: bytes
age: 388725
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=CQGeoC4UjZknDKHI2mv3xVr%2BS9cP4tb73g756hbR8EuCCs8zd27Fo67cEWCt3pVOIm8IKYsHfokKPqykD%2FwUfQ8u0b5vWzi%2B3aW0D8NYNeljHPp7"}]}
cf-ray: 94f71b672cc00b55-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
200 OK 11 kB IP / ASN
172.67.218.170
#13335 CLOUDFLARENET
Resource Info
File type HTML document, ASCII text, with very long lines (2564), with CRLF, LF line terminators
First Seen 2025-06-14
Last Seen 2025-06-14
Times Seen 1
Size 11 kB (11179 bytes)
MD5 8fa768a0f260ec8cb11bcd5c8f366d62
SHA1 ea3dea48d44c7748839fc73a7220b2adfea921c3
SHA256 f118ffb890755b0174e214749db1284f526e10a46400357ce612c980fc8257e4
Certificate Info
Issuer Google Trust Services
Subject ffkipas.my.id
Fingerprint 26:B0:07:B1:9A:45:01:AE:7E:A5:0D:1A:12:7E:32:9E:B7:78:9D:DF
Validity Wed, 14 May 2025 03:07:06 GMT - Tue, 12 Aug 2025 03:52:13 GMT
GET /panel/ HTTP/1.1
Host: ffkipas.my.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 14 Jun 2025 04:32:57 GMT
content-type: text/html; charset=UTF-8
content-encoding: br
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=5e7f5bbadcd5b58c45bdc55bb25ae0d7; path=/
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9inrxQIVvz9cSBNtiY5Kbpkaohnp7Jjd3pYZZcfEsURBhucDp6pqJf7XjZd%2BO2IH60Je0PxEfpJ9Ml%2F4hyLlELwFmuj2puFCx%2BHA3Tsj6UxOOTs%2FfdywsXCiTlGutAxS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
speculation-rules: "/cdn-cgi/speculation"
server: cloudflare
cf-ray: 94f71b5038a85685-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfCacheStatus;desc="DYNAMIC", cfOrigin;dur=651,cfEdge;dur=21, cfL4;desc="?proto=TCP&rtt=6674&min_rtt=467&rtt_var=12189&sent=7&recv=11&lost=0&retrans=0&sent_bytes=3278&recv_bytes=1254&delivery_rate=7541666&cwnd=254&unsent_bytes=0&cid=02a1673e93f68750&ts=714&x=0"
X-Firefox-Spdy: h2
GET invadedisheartentrail.com/pixel/purst?dl=0&th=0&sc=0&rs=1509&rd=1509&fd=557&bv=25.5.2579&tmpl=70
200 OK 0 B URL
invadedisheartentrail.com/pixel/purst?dl=0&th=0&sc=0&rs=1509&rd=1509&fd=557&bv=25.5.2579&tmpl=70
IP / ASN
192.243.61.225
#39572 DataWeb Global Group B.V.
Requested by https://ffkipas.my.id/panel/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-03
Times Seen 5619464
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject invadedisheartentrail.com
Fingerprint 95:61:8E:B5:87:C3:51:FF:61:D7:15:A0:D3:84:2F:F7:62:3D:AF:A5
Validity Tue, 29 Apr 2025 21:47:10 GMT - Mon, 28 Jul 2025 21:47:09 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pixel/purst?dl=0&th=0&sc=0&rs=1509&rd=1509&fd=557&bv=25.5.2579&tmpl=70 HTTP/1.1
Host: invadedisheartentrail.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ffkipas.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 14 Jun 2025 04:32:58 GMT
Content-Length: 0
Connection: keep-alive
Host: invadedisheartentrail.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
GET experttrafficcounter.com/stats
200 OK 40 B URL
experttrafficcounter.com/stats
IP / ASN
52.28.37.107
#16509 AMAZON-02
Requested by https://ffkipas.my.id/panel/
Resource Info
File type ASCII text, with no line terminators
First Seen 2025-06-14
Last Seen 2025-06-14
Times Seen 1
Size 40 B (40 bytes)
MD5 4031c6f3c0dc1d4ace176746ef7fb1ba
SHA1 ad95e63753ba644ff6d6088da77f279850cf5823
SHA256 9db4789fd989db762fe688fe84ab28ad384cbeb2b88abf37d0e98554e1b15630
Certificate Info
Issuer Amazon
Subject experttrafficcounter.com
Fingerprint CE:93:F6:82:20:C2:20:51:6E:53:85:EC:03:9C:48:F0:13:0B:67:D7
Validity Tue, 29 Apr 2025 00:00:00 GMT - Thu, 28 May 2026 23:59:59 GMT
GET /stats HTTP/1.1
Host: experttrafficcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ffkipas.my.id
DNT: 1
Connection: keep-alive
Referer: https://ffkipas.my.id/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 14 Jun 2025 04:32:58 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://ffkipas.my.id
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=677565be-fa39-4714-9bff-c51fb1f3333f:3:1; expires=Tue, 12 Jun 2035 04:32:58 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
GET cdn.show-sb.com/sb/au/bb/09/20/bb0920e920b04fdebd2119739150c93c/1698574651.html
200 OK 1.8 kB URL
cdn.show-sb.com/sb/au/bb/09/20/bb0920e920b04fdebd2119739150c93c/1698574651.html
IP / ASN
104.21.95.140
#13335 CLOUDFLARENET
Requested by https://ffkipas.my.id/panel/
Resource Info
File type HTML document, ASCII text
First Seen 2023-12-11
Last Seen 2025-08-03
Times Seen 386
Size 1.8 kB (1777 bytes)
MD5 072e8db4074dbdb5f907708ecde5b3cd
SHA1 9cff59558d4a4b945754478a04738e744b7ffc2a
SHA256 5b5f0e9d8303aec59181cdf6f6b9de9c2e0001007349840246b9f8ab286b82a0
Certificate Info
Issuer Google Trust Services
Subject show-sb.com
Fingerprint DF:A8:5A:11:E9:7E:8B:0E:2E:08:20:FB:02:FE:C4:E3:E7:97:E8:3A
Validity Thu, 12 Jun 2025 07:26:41 GMT - Wed, 10 Sep 2025 08:25:04 GMT
GET /sb/au/bb/09/20/bb0920e920b04fdebd2119739150c93c/1698574651.html HTTP/1.1
Host: cdn.show-sb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ffkipas.my.id
DNT: 1
Connection: keep-alive
Referer: https://ffkipas.my.id/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 14 Jun 2025 04:32:59 GMT
content-type: text/html
server: cloudflare
last-modified: Sun, 29 Oct 2023 10:17:36 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: accept-encoding
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-expose-headers: Date
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=ulwONOBoCIOYv5IhkjIW8RbLhTN%2Fw7wK07COqG0SDiEIRYi1jqU5VkQRMRHmy6uZNLCvJUFW%2Bh8Tm3TRDi3Hud%2B83b8IzVfKQVR4A0k%3D"}]}
cf-cache-status: DYNAMIC
content-encoding: br
cf-ray: 94f71b630e3956c0-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET fonts.gstatic.com/s/roboto/v48/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2
200 OK 40 kB URL
fonts.gstatic.com/s/roboto/v48/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2
IP / ASN
142.250.74.35
#15169 GOOGLE
Requested by https://ffkipas.my.id/panel/
Resource Info
File type Web Open Font Format (Version 2), TrueType, length 40128, version 1.0
First Seen 2025-01-08
Last Seen 2025-08-03
Times Seen 98140
Size 40 kB (40128 bytes)
MD5 9a01b69183a9604ab3a439e388b30501
SHA1 8ed1d59003d0dbe6360481017b44665153665fbe
SHA256 20b535fa80c8189e3b87d1803038389960203a886d502bc2ef1857affc2f38d2
Certificate Info
Issuer Google Trust Services
Subject *.gstatic.com
Fingerprint E1:0C:8D:E3:24:8F:B1:9F:BA:8E:CF:BE:4B:8F:D6:6A:39:8A:9D:7A
Validity Mon, 19 May 2025 08:42:51 GMT - Mon, 11 Aug 2025 08:42:50 GMT
GET /s/roboto/v48/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ffkipas.my.id
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 40128
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 10 Jun 2025 02:38:52 GMT
expires: Wed, 10 Jun 2026 02:38:52 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 29 May 2025 23:30:55 GMT
content-type: font/woff2
age: 352449
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0/css/all.min.css
200 OK 89 kB URL
cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0/css/all.min.css
IP / ASN
104.17.24.14
#13335 CLOUDFLARENET
Requested by https://ffkipas.my.id/panel/
Resource Info
File type ASCII text, with very long lines (65317)
First Seen 2023-04-06
Last Seen 2025-08-03
Times Seen 2043
Size 89 kB (89220 bytes)
MD5 dfb8fc36e102730fddf78b5494eb0035
SHA1 b513d9a39af2ee145f12c1ba03f9982960c47029
SHA256 8d321d88cb97fdedc3189506c25de9292c6e73a60ebaab496243346c6404480e
Certificate Info
Issuer Google Trust Services
Subject cdnjs.cloudflare.com
Fingerprint 4B:06:E9:E2:47:47:F5:3C:33:58:F8:2A:95:70:22:5E:23:19:03:77
Validity Thu, 22 May 2025 14:38:44 GMT - Wed, 20 Aug 2025 15:38:38 GMT
GET /ajax/libs/font-awesome/6.0.0/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ffkipas.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 14 Jun 2025 04:32:57 GMT
content-type: text/css; charset=utf-8
content-length: 15248
cf-ray: 94f71b560fff5691-OSL
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "620188b3-3b90"
last-modified: Mon, 07 Feb 2022 21:01:39 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 111231
expires: Thu, 04 Jun 2026 04:32:57 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EDIz5xzyjBewRm0sTSUgSm4pB5Mop9d7VvvGnPzuWYn5hwvs8Xpf9URtxs49FgUIfeNl528Hhg7ZbNU%2BfCkMcbbOaRgT8S4EBbAWwwH3CQy5RikIzyMlO1TuqYf9zyTRWlKf4aaQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET greaseguts.com/a2/c6/c7/a2c6c77dde0f47e335c307a84b4f8205.js
200 OK 65 kB URL
greaseguts.com/a2/c6/c7/a2c6c77dde0f47e335c307a84b4f8205.js
IP / ASN
192.243.59.20
#39572 DataWeb Global Group B.V.
Requested by https://ffkipas.my.id/panel/
Resource Info
File type JavaScript source, ASCII text, with very long lines (64885), with no line terminators
First Seen 2025-06-14
Last Seen 2025-06-14
Times Seen 1
Size 65 kB (64885 bytes)
MD5 f9059eb9108640af4b3c72a8683a2495
SHA1 386b524dae88c221f792384f9405df97002dfdb6
SHA256 80d1407d51ba60dcd473deafb94a398e7c770c95d3ba769c4f85d7ed0d8c3cd7
Certificate Info
Issuer Let's Encrypt
Subject greaseguts.com
Fingerprint 26:D0:43:82:48:8C:96:0C:24:54:FB:89:28:77:C1:AE:10:EE:61:3B
Validity Mon, 12 May 2025 10:56:07 GMT - Sun, 10 Aug 2025 10:56:06 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /a2/c6/c7/a2c6c77dde0f47e335c307a84b4f8205.js HTTP/1.1
Host: greaseguts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ffkipas.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 14 Jun 2025 04:32:57 GMT
Content-Type: application/javascript
Content-Length: 23593
Connection: keep-alive
Content-Encoding: gzip
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: greaseguts.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: b39b9842770ef2ab19cfd8e1b23a8be0
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
GET cdn.creative-stat1.com/sb/ssp/interstitial/center_banner/2/img/close.svg
200 OK 2.5 kB URL
cdn.creative-stat1.com/sb/ssp/interstitial/center_banner/2/img/close.svg
IP / ASN
172.67.133.15
#13335 CLOUDFLARENET
Requested by https://ffkipas.my.id/panel/
Resource Info
File type SVG Scalable Vector Graphics image
First Seen 2023-12-05
Last Seen 2025-08-03
Times Seen 479
Size 2.5 kB (2503 bytes)
MD5 1b6231336753101ab916ff3bc2644225
SHA1 9e0ebaf400b0cdc45a1d40523ea5479205fdd2b2
SHA256 4d6367626004a96e47e82fddaf52a5ee39c7ec20e34d493d6e01c275bb9e3772
Certificate Info
Issuer Google Trust Services
Subject creative-stat1.com
Fingerprint EA:78:8B:9D:53:DF:84:5F:BA:B0:1B:CB:77:59:D8:9B:CC:8C:CC:86
Validity Wed, 11 Jun 2025 22:34:34 GMT - Tue, 09 Sep 2025 23:32:59 GMT
GET /sb/ssp/interstitial/center_banner/2/img/close.svg HTTP/1.1
Host: cdn.creative-stat1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 14 Jun 2025 04:33:00 GMT
content-type: image/svg+xml
content-length: 2503
server: cloudflare
last-modified: Fri, 19 Jan 2024 14:19:45 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
etag: "65aa8501-9c7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
accept-ranges: bytes
age: 388726
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=4bZfj9QuQyCQyH%2F9RpMJnFroDkpyZyGBu%2B%2BILZ9Czspc9bxnIix7yZH1mm%2Bw3%2F4cmRJ4kNJD6cME2y8ZYPcuRZh%2BfZSftPavS9juoHqA%2F7ANgKnX"}]}
cf-ray: 94f71b671cbd0b55-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET praystakeinstinct.com/pixel/sbls?bv=&tmpl=482&u=https%3A%2F%2Fcdn.creative-stat1.com%2Fsb%2Fssp%2Finterstitial%2Fcenter_banner%2F2%2Fjs%2Fscript.js&l=975&fd=488
200 OK 0 B URL
praystakeinstinct.com/pixel/sbls?bv=&tmpl=482&u=https%3A%2F%2Fcdn.creative-stat1.com%2Fsb%2Fssp%2Finterstitial%2Fcenter_banner%2F2%2Fjs%2Fscript.js&l=975&fd=488
IP / ASN
172.240.127.234
#7979 SERVERS-COM
Requested by https://ffkipas.my.id/panel/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-03
Times Seen 5619464
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject praystakeinstinct.com
Fingerprint EB:32:11:47:9B:33:13:C9:D7:C7:F1:D3:1F:81:A6:05:E1:9D:89:CC
Validity Tue, 29 Apr 2025 22:08:44 GMT - Mon, 28 Jul 2025 22:08:43 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pixel/sbls?bv=&tmpl=482&u=https%3A%2F%2Fcdn.creative-stat1.com%2Fsb%2Fssp%2Finterstitial%2Fcenter_banner%2F2%2Fjs%2Fscript.js&l=975&fd=488 HTTP/1.1
Host: praystakeinstinct.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ffkipas.my.id/
Cookie: pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; u_pl26535179=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 14 Jun 2025 04:33:00 GMT
Content-Length: 0
Connection: keep-alive
Host: praystakeinstinct.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
GET recordedthereby.com/sfp.js
200 OK 85 kB URL
recordedthereby.com/sfp.js
IP / ASN
185.196.197.72
#39572 DataWeb Global Group B.V.
Requested by https://ffkipas.my.id/panel/
Resource Info
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
First Seen 2025-01-25
Last Seen 2025-06-27
Times Seen 2209
Size 85 kB (85380 bytes)
MD5 108625937affa4b38bb17cea65510d72
SHA1 2c0f48e9efa3fb5554d1fa393b28d74d5339f9ee
SHA256 c84263fcf6b091998dd37f5f600b3bfea92ac1d31cbf9631bb87fa411124a9e0
Certificate Info
Issuer Let's Encrypt
Subject recordedthereby.com
Fingerprint 43:76:D8:56:43:66:8A:49:51:DC:E6:8E:5A:E9:35:93:29:07:37:C1
Validity Mon, 05 May 2025 21:20:39 GMT - Sun, 03 Aug 2025 21:20:38 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /sfp.js HTTP/1.1
Host: recordedthereby.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ffkipas.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 14 Jun 2025 04:32:58 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 28255
Connection: keep-alive
Content-Encoding: gzip
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Vary: Accept-Encoding
Host: recordedthereby.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 299a4c4d283cafc2a792db128ffe60f0
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
GET experttrafficcounter.com/stats
200 OK 40 B URL
experttrafficcounter.com/stats
IP / ASN
52.28.37.107
#16509 AMAZON-02
Requested by https://ffkipas.my.id/panel/
Resource Info
File type ASCII text, with no line terminators
First Seen 2025-06-14
Last Seen 2025-06-14
Times Seen 1
Size 40 B (40 bytes)
MD5 8bd02ebcf31fdf0a5528411d7de66d2e
SHA1 7693eaf553f92b61f8bcc8633df3eb0187b11765
SHA256 2c7b36572289e932800d8b3c4ac29b4d6a58f8f22c94002289f2ea1b802d8727
Certificate Info
Issuer Amazon
Subject experttrafficcounter.com
Fingerprint CE:93:F6:82:20:C2:20:51:6E:53:85:EC:03:9C:48:F0:13:0B:67:D7
Validity Tue, 29 Apr 2025 00:00:00 GMT - Thu, 28 May 2026 23:59:59 GMT
GET /stats HTTP/1.1
Host: experttrafficcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ffkipas.my.id
DNT: 1
Connection: keep-alive
Referer: https://ffkipas.my.id/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 14 Jun 2025 04:32:58 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://ffkipas.my.id
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=6c349a11-8506-4636-9557-25dceadbd7fc:1:1; expires=Tue, 12 Jun 2035 04:32:58 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
GET praystakeinstinct.com/pixel/sbls?bv=&tmpl=482&u=https%3A%2F%2Fcdn.show-sb.com%2Fsb%2Fau%2Fbb%2F09%2F20%2Fbb0920e920b04fdebd2119739150c93c%2F1698574651.html&l=1777&fd=528
200 OK 0 B URL
praystakeinstinct.com/pixel/sbls?bv=&tmpl=482&u=https%3A%2F%2Fcdn.show-sb.com%2Fsb%2Fau%2Fbb%2F09%2F20%2Fbb0920e920b04fdebd2119739150c93c%2F1698574651.html&l=1777&fd=528
IP / ASN
172.240.127.234
#7979 SERVERS-COM
Requested by https://ffkipas.my.id/panel/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-03
Times Seen 5619464
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject praystakeinstinct.com
Fingerprint EB:32:11:47:9B:33:13:C9:D7:C7:F1:D3:1F:81:A6:05:E1:9D:89:CC
Validity Tue, 29 Apr 2025 22:08:44 GMT - Mon, 28 Jul 2025 22:08:43 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pixel/sbls?bv=&tmpl=482&u=https%3A%2F%2Fcdn.show-sb.com%2Fsb%2Fau%2Fbb%2F09%2F20%2Fbb0920e920b04fdebd2119739150c93c%2F1698574651.html&l=1777&fd=528 HTTP/1.1
Host: praystakeinstinct.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ffkipas.my.id/
Cookie: pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; u_pl26535179=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 14 Jun 2025 04:32:59 GMT
Content-Length: 0
Connection: keep-alive
Host: praystakeinstinct.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
GET cdn.creative-stat1.com/sb/ssp/interstitial/center_banner/2/css/style.css
200 OK 4.3 kB URL
cdn.creative-stat1.com/sb/ssp/interstitial/center_banner/2/css/style.css
IP / ASN
172.67.133.15
#13335 CLOUDFLARENET
Requested by https://ffkipas.my.id/panel/
Resource Info
File type ASCII text
First Seen 2024-03-12
Last Seen 2025-08-03
Times Seen 295
Size 4.3 kB (4256 bytes)
MD5 082401cb43723850f7fb48dc7f8d4af6
SHA1 d7a312aee231235ac7ee7a5f4497d919009f747b
SHA256 aac90d87fe360b313922abbb3baa5ce9b67edf5c468764f7e165485af508bc5c
Certificate Info
Issuer Google Trust Services
Subject creative-stat1.com
Fingerprint EA:78:8B:9D:53:DF:84:5F:BA:B0:1B:CB:77:59:D8:9B:CC:8C:CC:86
Validity Wed, 11 Jun 2025 22:34:34 GMT - Tue, 09 Sep 2025 23:32:59 GMT
GET /sb/ssp/interstitial/center_banner/2/css/style.css HTTP/1.1
Host: cdn.creative-stat1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ffkipas.my.id
DNT: 1
Connection: keep-alive
Referer: https://ffkipas.my.id/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 14 Jun 2025 04:33:00 GMT
content-type: text/css
server: cloudflare
last-modified: Fri, 19 Jan 2024 14:19:45 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
etag: W/"65aa8501-10a0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
cf-cache-status: MISS
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=d04Tcp8QO%2B1Zl3IgwGmDRyXJyY%2F3YPkqPxCeyHwOdDSPnGwg4fM%2FMVjJV1NdfHFTou862dYmfGi6mTIfB2v2fb2hklqDaTv%2BkP1%2F3%2FVGXB7j%2BlPx"}]}
cf-ray: 94f71b66bc930b55-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET cdn.storageimagedisplay.com/si/d9/00/89/d90089da48b102b32e93dd9b6d740f49/1701651794.png
200 OK 14 kB URL
cdn.storageimagedisplay.com/si/d9/00/89/d90089da48b102b32e93dd9b6d740f49/1701651794.png
IP / ASN
45.133.44.1
#39572 DataWeb Global Group B.V.
Requested by https://ffkipas.my.id/panel/
Resource Info
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced
First Seen 2023-12-04
Last Seen 2025-08-03
Times Seen 1032
Size 14 kB (14496 bytes)
MD5 962ac416cce3fad636d4904386c8d3d4
SHA1 811166fceb971353dc6a9ea3a153367f20b47592
SHA256 ec6c8e1c030499a846897265d0c1f66dedc6ece17c1ea6006b700faf37e73555
Certificate Info
Issuer Let's Encrypt
Subject cdn.storageimagedisplay.com
Fingerprint 7C:BD:B0:48:37:0F:A4:22:46:5F:09:F9:77:FA:07:FF:25:25:52:76
Validity Sun, 11 May 2025 02:32:51 GMT - Sat, 09 Aug 2025 02:32:50 GMT
GET /si/d9/00/89/d90089da48b102b32e93dd9b6d740f49/1701651794.png HTTP/1.1
Host: cdn.storageimagedisplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 14 Jun 2025 04:33:00 GMT
content-type: image/png
content-length: 14496
server: nginx/1.21.6
last-modified: Mon, 04 Dec 2023 01:03:23 GMT
etag: "656d255b-38a0"
expires: Mon, 16 Jun 2025 04:33:00 GMT
cache-control: max-age=172800
x-cdn-host-id: ah0543
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET praystakeinstinct.com/pixel/sbls?bv=&tmpl=482&u=https%3A%2F%2Fcdn.creative-stat1.com%2Fsb%2Fssp%2Finterstitial%2Fcenter_banner%2F2%2Fcss%2Fstyle.css&l=4256&fd=549
200 OK 0 B URL
praystakeinstinct.com/pixel/sbls?bv=&tmpl=482&u=https%3A%2F%2Fcdn.creative-stat1.com%2Fsb%2Fssp%2Finterstitial%2Fcenter_banner%2F2%2Fcss%2Fstyle.css&l=4256&fd=549
IP / ASN
172.240.127.234
#7979 SERVERS-COM
Requested by https://ffkipas.my.id/panel/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-03
Times Seen 5619464
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject praystakeinstinct.com
Fingerprint EB:32:11:47:9B:33:13:C9:D7:C7:F1:D3:1F:81:A6:05:E1:9D:89:CC
Validity Tue, 29 Apr 2025 22:08:44 GMT - Mon, 28 Jul 2025 22:08:43 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pixel/sbls?bv=&tmpl=482&u=https%3A%2F%2Fcdn.creative-stat1.com%2Fsb%2Fssp%2Finterstitial%2Fcenter_banner%2F2%2Fcss%2Fstyle.css&l=4256&fd=549 HTTP/1.1
Host: praystakeinstinct.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ffkipas.my.id/
Cookie: pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; u_pl26535179=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 14 Jun 2025 04:33:00 GMT
Content-Length: 0
Connection: keep-alive
Host: praystakeinstinct.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
GET ffkipas.my.id/cf-fonts/s/poppins/5.0.11/latin/600/normal.woff2
200 OK 8.0 kB URL
ffkipas.my.id/cf-fonts/s/poppins/5.0.11/latin/600/normal.woff2
IP / ASN
172.67.218.170
#13335 CLOUDFLARENET
Requested by https://ffkipas.my.id/panel/
Resource Info
File type Web Open Font Format (Version 2), TrueType, length 8000, version 1.0
First Seen 2023-04-05
Last Seen 2025-08-03
Times Seen 57758
Size 8.0 kB (8000 bytes)
MD5 72993dddf88a63e8f226656f7de88e57
SHA1 179f97ec0275f09603a8db94d4380eb584d81cd5
SHA256 f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149
Certificate Info
Issuer Google Trust Services
Subject ffkipas.my.id
Fingerprint 26:B0:07:B1:9A:45:01:AE:7E:A5:0D:1A:12:7E:32:9E:B7:78:9D:DF
Validity Wed, 14 May 2025 03:07:06 GMT - Tue, 12 Aug 2025 03:52:13 GMT
GET /cf-fonts/s/poppins/5.0.11/latin/600/normal.woff2 HTTP/1.1
Host: ffkipas.my.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ffkipas.my.id/panel/
Cookie: PHPSESSID=5e7f5bbadcd5b58c45bdc55bb25ae0d7
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 14 Jun 2025 04:32:58 GMT
content-type: font/woff2
content-length: 8000
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hzJYdHbQevQrQZhV8cM0g5n14x9Y8U9aXV%2F9UxVvlJtBkDEofzZS4dFZsPfXYtkHYOvSDG8XRqBpJ4YLCtTqerw6TkVE%2BYsfVbSfXsufT9c67NMBetYLI2grM9ALZHUt"}],"group":"cf-nel","max_age":604800}
cf-cache-status: HIT
cache-control: public, max-age=31536000, immutable
cf-ray: 94f71b5b2c9256ca-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2492&min_rtt=557&rtt_var=1678&sent=202&recv=245&lost=0&retrans=0&sent_bytes=14105&recv_bytes=14265&delivery_rate=580937&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=12000&unsent_bytes=0&cid=801f9fe86f440d44&ts=1100&inflight_dur=34&x=80"
GET ffkipas.my.id/cdn-cgi/challenge-platform/scripts/jsd/main.js
302 Found 10 kB URL
ffkipas.my.id/cdn-cgi/challenge-platform/scripts/jsd/main.js
IP / ASN
172.67.218.170
#13335 CLOUDFLARENET
Requested by https://ffkipas.my.id/panel/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-03
Times Seen 5619464
Size 10 kB (9975 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject ffkipas.my.id
Fingerprint 26:B0:07:B1:9A:45:01:AE:7E:A5:0D:1A:12:7E:32:9E:B7:78:9D:DF
Validity Wed, 14 May 2025 03:07:06 GMT - Tue, 12 Aug 2025 03:52:13 GMT
GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: ffkipas.my.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=5e7f5bbadcd5b58c45bdc55bb25ae0d7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 302 Found
date: Sat, 14 Jun 2025 04:32:58 GMT
content-length: 0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qthQtrxW4KkdgrPV0A1ylnzvN8jNwmvc0Bl7PQ2O%2FuGbmCld5Bc66IhmzHntC4w35TGkx1oIR%2Bo79HbCqofYD9hmAnc%2Bh5nx%2BOUO9%2FjXpBG0MViuDc2pa40%2BUgjyFIkT"}],"group":"cf-nel","max_age":604800}
location: /cdn-cgi/challenge-platform/h/b/scripts/jsd/f9574c83b4d7/main.js?
cache-control: max-age=300, stale-if-error=10800, stale-while-revalidate=10800, public
access-control-allow-origin: *
cf-ray: 94f71b5c0c9456ca-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2350&min_rtt=557&rtt_var=1218&sent=227&recv=248&lost=0&retrans=0&sent_bytes=40444&recv_bytes=14641&delivery_rate=5532141&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=24000&unsent_bytes=0&cid=801f9fe86f440d44&ts=1220&inflight_dur=40&x=80"
GET ffkipas.my.id/favicon.ico
404 Not Found 11 kB URL
ffkipas.my.id/favicon.ico
IP / ASN
172.67.218.170
#13335 CLOUDFLARENET
Requested by https://ffkipas.my.id/panel/
Resource Info
File type HTML document, Unicode text, UTF-8 text, with very long lines (4070)
First Seen 2025-06-14
Last Seen 2025-06-14
Times Seen 1
Size 11 kB (10603 bytes)
MD5 afb9f162d69b2c88525798e9e9c1da45
SHA1 0b1404bc2e90621c6b704936d8a9305cb0880102
SHA256 1e686981b8983e4a7576a7908943b398bbc5777b853ce6e4a9dcab16496c02e9
Certificate Info
Issuer Google Trust Services
Subject ffkipas.my.id
Fingerprint 26:B0:07:B1:9A:45:01:AE:7E:A5:0D:1A:12:7E:32:9E:B7:78:9D:DF
Validity Wed, 14 May 2025 03:07:06 GMT - Tue, 12 Aug 2025 03:52:13 GMT
GET /favicon.ico HTTP/1.1
Host: ffkipas.my.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ffkipas.my.id/panel/
Cookie: PHPSESSID=5e7f5bbadcd5b58c45bdc55bb25ae0d7; cf_clearance=iZe4wU8jSCtfn5bcUu.YIbNvq5sRR6HL4ruZ0sp5_x0-1749875578-1.2.1.1-YUDuKymN0PJJ65sHw.JoLXWSWuOpH2lPkK9HA0QrchhHAWEypCgFPVplSldYwto03_YjXr4UVF6WbpCLYGlSFv79SCMrxpSLWtX3DuOKfudvXwdwIbXPrUOi3ouqefbGtxk2FpeZQFWfO5873aYI9QYg8.3ob826kvKG7FdVddTMutXbiqrqIRSAM78NXXdXT97IQOPwgsvbKg.fOhFu.r_bULo72QoD324aTnKYiXlB0l53s4f064lUmrn6O_pCSkPbWOJl5qFr73gWgNHKd8lL4i0HmUFWFUpjExZ1KokLz44Bz1DMfgbmi2NiuNgvk14J4R14xFcalLquk_0.GSuWlThfLaJtg56cCJr_2LA; pp_main_c682d9ff6dbef6bb1bfedefd79455e86=1; sb_main_a2c6c77dde0f47e335c307a84b4f8205=1; sb_count_a2c6c77dde0f47e335c307a84b4f8205=1; dom3ic8zudi28v8lr6fgphwffqoz0j6c=677565be-fa39-4714-9bff-c51fb1f3333f%3A3%3A1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Sat, 14 Jun 2025 04:32:59 GMT
content-type: text/html; charset=UTF-8
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WhWIEZxGd4PlHM0zPPw4oYEWRRi92B6L9K5KQKZNS9Zb4JiqdbEjqj2bgjRj8668Tb29XeUWKP%2FcB%2BJ2zVE0HPAL2g8bUi12NSH6DhZRh38h3W%2BcYiYnItE6pqc7hmXT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
cache-control: max-age=14400
cf-cache-status: MISS
content-encoding: br
cf-ray: 94f71b601ca756ca-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2305&min_rtt=557&rtt_var=1059&sent=245&recv=264&lost=0&retrans=0&sent_bytes=47949&recv_bytes=31018&delivery_rate=5532141&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=24000&unsent_bytes=0&cid=801f9fe86f440d44&ts=2474&inflight_dur=88&x=80"
GET cdn.storageimagedisplay.com/si/7f/17/f2/7f17f20c98bfa8f6cd90c49d9d891401/1709778628.png
200 OK 143 kB URL
cdn.storageimagedisplay.com/si/7f/17/f2/7f17f20c98bfa8f6cd90c49d9d891401/1709778628.png
IP / ASN
45.133.44.1
#39572 DataWeb Global Group B.V.
Requested by https://ffkipas.my.id/panel/
Resource Info
File type PNG image data, 720 x 480, 8-bit/color RGBA, non-interlaced
First Seen 2024-08-20
Last Seen 2025-08-03
Times Seen 221
Size 143 kB (143192 bytes)
MD5 2647cc6464889a41cbb2759f26b81137
SHA1 773a2f2a15067e56da559cc9671700af97333ec2
SHA256 c975a5e5f6ab6f42564b4ef601b6aa8004bc5d17c2e75fe3c8e2927095488a1f
Certificate Info
Issuer Let's Encrypt
Subject cdn.storageimagedisplay.com
Fingerprint 7C:BD:B0:48:37:0F:A4:22:46:5F:09:F9:77:FA:07:FF:25:25:52:76
Validity Sun, 11 May 2025 02:32:51 GMT - Sat, 09 Aug 2025 02:32:50 GMT
GET /si/7f/17/f2/7f17f20c98bfa8f6cd90c49d9d891401/1709778628.png HTTP/1.1
Host: cdn.storageimagedisplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 14 Jun 2025 04:33:00 GMT
content-type: image/png
content-length: 143192
server: nginx/1.21.6
last-modified: Thu, 07 Mar 2024 02:30:36 GMT
etag: "65e926cc-22f58"
expires: Mon, 16 Jun 2025 04:33:00 GMT
cache-control: max-age=172800
x-cdn-host-id: ah0543
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET cdn.creative-stat1.com/sb/ssp/interstitial/center_banner/2/js/script.js
200 OK 975 B URL
cdn.creative-stat1.com/sb/ssp/interstitial/center_banner/2/js/script.js
IP / ASN
172.67.133.15
#13335 CLOUDFLARENET
Requested by https://ffkipas.my.id/panel/
Resource Info
File type ASCII text
First Seen 2023-12-05
Last Seen 2025-08-03
Times Seen 389
Size 975 B (975 bytes)
MD5 bfd47b5dfff6e6feac7624980fe9f680
SHA1 b437c81b3addc9d7154b96f495b2eb82148e5101
SHA256 b53d941e5ec9ce3482ce722008c8dfdae35f630aa4a7cb7c4bdd0e7342fc63fb
Certificate Info
Issuer Google Trust Services
Subject creative-stat1.com
Fingerprint EA:78:8B:9D:53:DF:84:5F:BA:B0:1B:CB:77:59:D8:9B:CC:8C:CC:86
Validity Wed, 11 Jun 2025 22:34:34 GMT - Tue, 09 Sep 2025 23:32:59 GMT
GET /sb/ssp/interstitial/center_banner/2/js/script.js HTTP/1.1
Host: cdn.creative-stat1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ffkipas.my.id
DNT: 1
Connection: keep-alive
Referer: https://ffkipas.my.id/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 14 Jun 2025 04:33:00 GMT
content-type: application/javascript
content-length: 975
server: cloudflare
last-modified: Fri, 19 Jan 2024 14:19:45 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
etag: "65aa8501-3cf"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
accept-ranges: bytes
cf-cache-status: MISS
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=dKE0eMLwlQ1m4JgSW5doXBzSWUup8CZfgHnHmg%2F95Rqo9MiTkDxgpbXJDdTtwn6%2Fzy9CUPX2%2FXbif%2BCOz4xoLAvSzz6qPe272sfIz5Ia2EZbJZZD"}]}
cf-ray: 94f71b67bcfc0b55-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
