Report - rewardffcode.com/

Report Overview

Submitted URL
rewardffcode.com/
IP
172.67.158.17
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-17 17:05:31
Access
public
Website Title
Free Fire
Final URL
rewardffcode.com/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
code.jquery.com	634	2005-12-10	2012-05-21	2024-04-17	821 B	65 kB	151.101.130.137
upload.wikimedia.org	2215	2003-03-16	2012-05-21	2024-04-17	488 B	71 kB	185.15.59.240
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-04-17	1.0 kB	23 kB	216.58.207.227
cdn.freebiesupply.com	151804	2016-12-02	2018-04-11	2024-04-12	474 B	19 kB	104.131.67.145
freefiremobile-a.akamaihd.net	20326	2009-09-14	2017-11-25	2024-04-17	459 B	1.7 kB	23.36.76.115
rewardffcode.com	unknown	unknown	No data	No data	911 B	75 kB	172.67.158.17
rawcdn.githack.com	72170	2013-10-12	2016-07-04	2024-04-13	972 B	1.9 kB	104.21.234.231
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17	2024-04-17	1.8 kB	54 kB	104.17.24.14
cdn.jsdelivr.net	439	2012-05-16	2012-09-30	2024-04-17	924 B	62 kB	151.101.193.229
dlgarenanow-a.akamaihd.net	136059	2009-09-14	2018-02-13	2024-03-15	5.4 kB	446 kB	23.36.76.152
ajax.googleapis.com	12905	2005-01-25	2013-08-16	2024-04-17	862 B	61 kB	172.217.16.74
stackpath.bootstrapcdn.com	2467	2012-05-25	2018-06-15	2024-04-17	461 B	32 kB	104.18.11.207
api.gifan.id	unknown	2020-09-05	2021-06-15	2024-04-14	443 B	6.1 kB	104.21.234.35

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-04-17	medium	rewardffcode.com/	Garena
2024-04-17	medium	rewardffcode.com/	Garena

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (6)

	URL	Size	First Seen	Last Seen
	code.jquery.com/jquery-3.5.1.min.js	90 kB	2023-03-07	2024-04-30
Pretty URL code.jquery.com/jquery-3.5.1.min.js IP 151.101.130.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-04-30 13:05:19 Times Seen140392 Hash dc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d Loading...

	cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js	90 kB	2023-03-07	2024-04-30
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:13 Last Seen2024-04-30 12:43:40 Times Seen263485 Hash 8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e Loading...

	rewardffcode.com/	4.6 kB	2023-06-04	2024-04-17
Pretty URL rewardffcode.com/ IP 172.67.158.17 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-04 15:34:48 Last Seen2024-04-17 19:05:38 Times Seen4 Hash ee1fddcae8d87976f52439605df41b0e 93dc62e4e7c1fd8d27a8b5c6634aea68f9397ae3 eae81de78105ab04596375842f7f3045763cfabd20d809675368ecb4452cd915 Loading...

	code.jquery.com/jquery-1.10.2.min.js	93 kB	2023-03-07	2024-04-30
Pretty URL code.jquery.com/jquery-1.10.2.min.js IP 151.101.130.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-30 07:59:06 Times Seen10317 Hash 628072e7212db1e8cdacb22b21752cda 0511abe9863c2ea7084efa7e24d1d86c5b3974f1 0ba081f546084bd5097aa8a73c75931d5aa1fc4d6e846e53c21f98e6a1509988 Loading...

	ajax.googleapis.com/ajax/libs/jquery/2.1.1/jquery.min.js	84 kB	2023-03-07	2024-04-30
Pretty URL ajax.googleapis.com/ajax/libs/jquery/2.1.1/jquery.min.js IP 172.217.16.74 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-30 07:59:06 Times Seen13880 Hash e40ec2161fe7993196f23c8a07346306 afb90752e0a90c24b7f724faca86c5f3d15d1178 874706b2b1311a0719b5267f7d1cf803057e367e94ae1ff7bf78c5450d30f5d4 Loading...

	ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js	84 kB	2023-03-07	2024-04-30
Pretty URL ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js IP 172.217.16.74 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-30 07:59:06 Times Seen14239 Hash 32015dd42e9582a80a84736f5d9a44d7 41b4bfbaa96be6d1440db6e78004ade1c134e276 8af93bd675e1cfd9ecc850e862819fdac6e3ad1f5d761f970e409c7d9c63bdc3 Loading...

HTTP Transactions (32)

URL IP Response Size

rawcdn.githack.com/AlexHostX/all.asset/3ddd40ca064d997b6655739e7a0e8a65acc106e8/alex-vikontakte.css

104.21.234.231

404 Not Found

14 B

URL GET HTTP/2
rawcdn.githack.com/AlexHostX/all.asset/3ddd40ca064d997b6655739e7a0e8a65acc106e8/alex-vikontakte.css
IP
104.21.234.231:443
ASN
#13335 CLOUDFLARENET

Requested by
https://rewardffcode.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectgithack.com
FingerprintA4:13:2F:80:0A:C6:7C:8B:08:12:12:22:60:76:15:7D:40:80:70:54
ValidityFri, 01 Mar 2024 13:12:36 GMT - Thu, 30 May 2024 13:12:35 GMT

File type
ASCII text, with no line terminators
Size
14 B (14 bytes)
Hash
3be7b8b182ccd96e48989b4e57311193
78fb38f212fa49029aff24c669a39648d9b4e68b
d5558cd419c8d46bdc958064cb97f963d1ea793866414c025906ec15033512ed

HTTP Headers

GET /AlexHostX/all.asset/3ddd40ca064d997b6655739e7a0e8a65acc106e8/alex-vikontakte.css HTTP/1.1
Host: rawcdn.githack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardffcode.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
date: Wed, 17 Apr 2024 17:05:06 GMT
content-length: 14
x-github-request-id: 9180:2F56E9:3C0621F:3F6C8DD:66200033
via: 1.1 varnish
x-served-by: cache-hel1410027-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1713373236.171259,VS0,VE171
vary: Authorization,Accept-Encoding,Origin
cross-origin-resource-policy: cross-origin
x-fastly-request-id: 334dacf7b0e26cb9e3a23df191e03656bb5a6301
source-age: 0
cache-control: max-age=60, public
x-githack-cache-status: HIT
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2kHlGh%2FfqkO4DoMsWvCnI5XrCQm7XwuGIV2hT9R%2F5B5hEgFe55DnicU5P5JE6kJRu3zywttpn5m%2BrxeMxVEohKHWS5fFXs2%2FuHk5oG%2BD8uy02oGU4E9D%2BPdwu9Dq2u9dmICK0n8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875dff7eddad71c2-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css

104.17.24.14

200 OK

5.8 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://rewardffcode.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
5.8 kB (5845 bytes)
Hash
e9365fe85b7e4db79a87015e52c3db6c
2e2b5eb6e08f0f3d11fe0ada97c962a23ba6a0d9
dec3e9f0190a504ed0c8f4a5e957c107206ba106cac4a1bbb6cbac6369a16d56

HTTP Headers

GET /ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardffcode.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 17 Apr 2024 17:05:06 GMT
content-type: text/css; charset=utf-8
content-length: 5845
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ed9-1149f"
last-modified: Mon, 04 May 2020 16:12:09 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 173710
expires: Mon, 07 Apr 2025 17:05:06 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZGoQuobcZSLnVWx8zboTDSXZvQa0q2FeadqpSQ0IkY1OakBxwW2EXWmPbtoaEUMVSO%2FDPqqWkJ8pVvr7RJJIJfiIjUgcsiMoWlPxU480Q2c7BDZtaRIPSEFOyWGZT7fsYrcHhS5%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 875dff7f2a1c10b5-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css

104.17.24.14

200 OK

5.6 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://rewardffcode.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (30837)
Size
5.6 kB (5631 bytes)
Hash
269550530cc127b6aa5a35925a7de6ce
512c7d79033e3028a9be61b540cf1a6870c896f8
799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd

HTTP Headers

GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardffcode.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 17 Apr 2024 17:05:06 GMT
content-type: text/css; charset=utf-8
content-length: 5631
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5f-7918"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 174898
expires: Mon, 07 Apr 2025 17:05:06 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WArNisnew4XqRJ2e%2F8AGhWLOTS9kDcYmFrf3MTg%2FrP4PLWbloilMvwl8deffsJmhFtKwA%2B%2FglxnrlVDUPoBsDtwsPIiyONV4LXMrKuxHaBHmv9%2FIaQTosDb%2FuZv8exylx8okAzi2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 875dff7f2a2510b5-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.2/css/all.min.css

104.17.24.14

200 OK

10 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.2/css/all.min.css
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://rewardffcode.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (59158)
Size
10 kB (10472 bytes)
Hash
c4af24ce595437830af0a401897698b2
06b7f92dd894a9edb0aeb9d040b489460ecff593
d1fb8d8337cd22568295b0ed998c85c58f0b4cd083af0b0db21cb0af80002f2d

HTTP Headers

GET /ajax/libs/font-awesome/5.15.2/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardffcode.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 17 Apr 2024 17:05:06 GMT
content-type: text/css; charset=utf-8
content-length: 10472
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5fff7431-e7d0"
last-modified: Wed, 13 Jan 2021 22:29:05 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 3103192
expires: Mon, 07 Apr 2025 17:05:06 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fHLYfJf%2BL6sOL9t5%2BYxM07k9FShraeg42JcDgy5LGeBIHcbtjONExeik2MmxSIZqycbxBCGe6gR2LAhJYnmbB7qCwGKF2ixxoxxe4QO9QHuTLxucNlCdI4qiqNk6OkzcUmgFw9lP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 875dff7f2a3510b5-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js

104.17.24.14

200 OK

28 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://rewardffcode.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
28 kB (27938 bytes)
Hash
8fb8fee4fcc3cc86ff6c724154c49c42
b82d238d4e31fdf618bae8ac11a6c812c03dd0d4
ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e

HTTP Headers

GET /ajax/libs/jquery/3.6.0/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rewardffcode.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 17 Apr 2024 17:05:06 GMT
content-type: application/javascript; charset=utf-8
content-length: 27938
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "603e8adc-15d9d"
last-modified: Tue, 02 Mar 2021 18:58:36 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 172975
expires: Mon, 07 Apr 2025 17:05:06 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3RonnlQmpiVa2%2BsX4YZSfIUDmxXIk8PKG8imyWVuUo7%2BScKruQhVZs%2BzXg7HYS8o%2B%2BuBF6xg7nOD7l7JZl0Jse%2BhG9eqKp3PWE1N0y0epac7QP738VGuXWcqcO46QWDJqGerz226"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 875dff7f3e1b92da-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

rawcdn.githack.com/AlexHostX/all.asset/1591ba04a57c11f4b18d2ebb39e03e4a81715c83/alex-google.css

104.21.234.231

404 Not Found

14 B

URL GET HTTP/2
rawcdn.githack.com/AlexHostX/all.asset/1591ba04a57c11f4b18d2ebb39e03e4a81715c83/alex-google.css
IP
104.21.234.231:443
ASN
#13335 CLOUDFLARENET

Requested by
https://rewardffcode.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectgithack.com
FingerprintA4:13:2F:80:0A:C6:7C:8B:08:12:12:22:60:76:15:7D:40:80:70:54
ValidityFri, 01 Mar 2024 13:12:36 GMT - Thu, 30 May 2024 13:12:35 GMT

File type
ASCII text, with no line terminators
Size
14 B (14 bytes)
Hash
3be7b8b182ccd96e48989b4e57311193
78fb38f212fa49029aff24c669a39648d9b4e68b
d5558cd419c8d46bdc958064cb97f963d1ea793866414c025906ec15033512ed

HTTP Headers

GET /AlexHostX/all.asset/1591ba04a57c11f4b18d2ebb39e03e4a81715c83/alex-google.css HTTP/1.1
Host: rawcdn.githack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardffcode.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
date: Wed, 17 Apr 2024 17:05:06 GMT
content-length: 14
x-github-request-id: F8EE:353C66:3B2556F:3E785B6:662000B1
via: 1.1 varnish
x-served-by: cache-hel1410029-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1713373361.379408,VS0,VE167
vary: Authorization,Accept-Encoding,Origin
cross-origin-resource-policy: cross-origin
x-fastly-request-id: fd64c418c341469aa384c8fa2726b2cb5eb2b9ab
source-age: 0
cache-control: max-age=60, public
x-githack-cache-status: HIT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RozX8dO5M7Fwbj9KL%2BJlX12GzsdDrPu4ETMaffI6RiHdZTo1%2FmENG6I381469vn2bBoxh3Q5yQo%2ByJtCodVZg4SoTHCtR5lz4KF58a9UapmOmcvUK9c0EWeMqVxR84ew7tXkN98%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875dff7f1dd971c2-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

code.jquery.com/jquery-1.10.2.min.js

151.101.130.137

200 OK

33 kB

URL GET HTTP/2
code.jquery.com/jquery-1.10.2.min.js
IP
151.101.130.137:443
ASN
#54113 FASTLY

Requested by
https://rewardffcode.com/
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (32072)
Size
33 kB (32788 bytes)
Hash
628072e7212db1e8cdacb22b21752cda
0511abe9863c2ea7084efa7e24d1d86c5b3974f1
0ba081f546084bd5097aa8a73c75931d5aa1fc4d6e846e53c21f98e6a1509988

HTTP Headers

GET /jquery-1.10.2.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardffcode.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-16bb3"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 17 Apr 2024 17:05:06 GMT
age: 18572901
x-served-by: cache-lga13622-LGA, cache-hel1410034-HEL
x-cache: HIT, HIT
x-cache-hits: 1, 12797
x-timer: S1713373506.476656,VS0,VE0
vary: Accept-Encoding
content-length: 32788
X-Firefox-Spdy: h2

code.jquery.com/jquery-3.5.1.min.js

151.101.130.137

200 OK

31 kB

URL GET HTTP/2
code.jquery.com/jquery-3.5.1.min.js
IP
151.101.130.137:443
ASN
#54113 FASTLY

Requested by
https://rewardffcode.com/
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
31 kB (30879 bytes)
Hash
dc5e7f18c8d36ac1d3d4753a87c98d0a
c8e1c8b386dc5b7a9184c763c88d19a346eb3342
f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d

HTTP Headers

GET /jquery-3.5.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardffcode.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-15d84"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 17 Apr 2024 17:05:06 GMT
age: 3330347
x-served-by: cache-lga21981-LGA, cache-hel1410034-HEL
x-cache: HIT, HIT
x-cache-hits: 36, 72879
x-timer: S1713373506.476649,VS0,VE0
vary: Accept-Encoding
content-length: 30879
X-Firefox-Spdy: h2

dlgarenanow-a.akamaihd.net/mgames/ffmhk/common/web_event/tweb-event/redemption/img/logo_small_foot.jpg

23.36.76.152

200 OK

3.5 kB

URL GET HTTP/2
dlgarenanow-a.akamaihd.net/mgames/ffmhk/common/web_event/tweb-event/redemption/img/logo_small_foot.jpg
IP
23.36.76.152:443
ASN
#20940 Akamai International B.V.

Requested by
https://rewardffcode.com/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
JPEG image data, baseline, precision 8, 51x51, components 3
Size
3.5 kB (3522 bytes)
Hash
c34038edcf4185b3e75a6b85f1cd3d4f
3aa218daacaef499d9ae080f36993228455dc814
3dec40957ccb5815562b06c0bcb1cb3fc09a5f0738aa0b9ec2d1390e4e30a346

HTTP Headers

GET /mgames/ffmhk/common/web_event/tweb-event/redemption/img/logo_small_foot.jpg HTTP/1.1
Host: dlgarenanow-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardffcode.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
etag: "c34038edcf4185b3e75a6b85f1cd3d4f:1646641687.19891"
last-modified: Mon, 07 Mar 2022 08:28:07 GMT
server: AkamaiNetStorage
content-length: 3522
date: Wed, 17 Apr 2024 17:05:06 GMT
alt-svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn.jsdelivr.net/gh/gowebid/assets@main/go_login/google.svg

151.101.193.229

200 OK

959 B

URL GET HTTP/2
cdn.jsdelivr.net/gh/gowebid/assets@main/go_login/google.svg
IP
151.101.193.229:443
ASN
#54113 FASTLY

Requested by
https://rewardffcode.com/
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type
SVG Scalable Vector Graphics image
Size
959 B (959 bytes)
Hash
848700651ce9c04987e04f292c598cba
976fc1619e149ed6161d834d5e3c3be7b7957669
f0562ef3624d99ef205211177586097eb7ebd8f5b31711d335a74d368c75ec27

HTTP Headers

GET /gh/gowebid/assets@main/go_login/google.svg HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardffcode.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: image/svg+xml
x-jsd-version: main
x-jsd-version-type: branch
etag: W/"7ea-l2/BYZ4UntYWHYNNXjw757eVdmk"
content-encoding: br
accept-ranges: bytes
age: 25091
date: Wed, 17 Apr 2024 17:05:06 GMT
x-served-by: cache-fra-eddf8230119-FRA, cache-hel1410025-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 959
X-Firefox-Spdy: h2

dlgarenanow-a.akamaihd.net/mgames/ffmhk/common/web_event/tweb-event/redemption/img/arrow.png

23.36.76.152

200 OK

449 B

URL GET HTTP/2
dlgarenanow-a.akamaihd.net/mgames/ffmhk/common/web_event/tweb-event/redemption/img/arrow.png
IP
23.36.76.152:443
ASN
#20940 Akamai International B.V.

Requested by
https://rewardffcode.com/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
PNG image data, 18 x 18, 8-bit/color RGBA, non-interlaced
Size
449 B (449 bytes)
Hash
3303308c2aacb531af045e92a5d7101c
4fd4dfdcb5bdca226611ef1dddfdf7f6778982fd
756734c7de9dd01ffd9c75ccdfc48f08d51d774f75c6c453d9468812c5282861

HTTP Headers

GET /mgames/ffmhk/common/web_event/tweb-event/redemption/img/arrow.png HTTP/1.1
Host: dlgarenanow-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardffcode.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-type: image/png
etag: "3303308c2aacb531af045e92a5d7101c:1646641610.663508"
last-modified: Mon, 07 Mar 2022 08:26:50 GMT
server: AkamaiNetStorage
content-length: 449
date: Wed, 17 Apr 2024 17:05:06 GMT
alt-svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
access-control-allow-origin: *
X-Firefox-Spdy: h2

ajax.googleapis.com/ajax/libs/jquery/2.1.1/jquery.min.js

172.217.16.74

200 OK

30 kB

URL GET HTTP/2
ajax.googleapis.com/ajax/libs/jquery/2.1.1/jquery.min.js
IP
172.217.16.74:443
ASN
#15169 GOOGLE

Requested by
https://rewardffcode.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E
ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT

File type
JavaScript source, ASCII text, with very long lines (32061)
Size
30 kB (29671 bytes)
Hash
e40ec2161fe7993196f23c8a07346306
afb90752e0a90c24b7f724faca86c5f3d15d1178
874706b2b1311a0719b5267f7d1cf803057e367e94ae1ff7bf78c5450d30f5d4

HTTP Headers

GET /ajax/libs/jquery/2.1.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardffcode.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 29671
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 13 Apr 2024 06:57:02 GMT
expires: Sun, 13 Apr 2025 06:57:02 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 382084
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

upload.wikimedia.org/wikipedia/commons/thumb/2/21/VK.com-logo.svg/2048px-VK.com-logo.svg.png

185.15.59.240

200 OK

70 kB

URL GET HTTP/2
upload.wikimedia.org/wikipedia/commons/thumb/2/21/VK.com-logo.svg/2048px-VK.com-logo.svg.png
IP
185.15.59.240:443
ASN
#14907 WIKIMEDIA

Requested by
https://rewardffcode.com/
Certificate
IssuerDigiCert Inc
Subject*.wikipedia.org
Fingerprint48:3F:0C:71:F3:4A:E0:EA:30:D9:9B:D6:04:63:DC:DA:A8:F4:9D:FB
ValidityWed, 18 Oct 2023 00:00:00 GMT - Wed, 16 Oct 2024 23:59:59 GMT

File type
PNG image data, 2048 x 2048, 8-bit/color RGBA, non-interlaced
Size
70 kB (70177 bytes)
Hash
9cc99c5ef560585dc582414eafdf0be4
0c3a4bef378f6941aece25f6a61468c9f79a82bb
9df20fc5ae2305962f8a17d4d4067c262512229e4fb017cb01f7fc26de959e3c

HTTP Headers

GET /wikipedia/commons/thumb/2/21/VK.com-logo.svg/2048px-VK.com-logo.svg.png HTTP/1.1
Host: upload.wikimedia.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardffcode.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 17 Apr 2024 04:06:38 GMT
etag: 9cc99c5ef560585dc582414eafdf0be4
server: ATS/9.1.4
content-type: image/png
content-disposition: inline;filename*=UTF-8''VK.com-logo.svg.png
last-modified: Wed, 23 Aug 2023 03:31:46 GMT
content-length: 70177
age: 46708
x-cache: cp3078 miss, cp3078 hit/65
x-cache-status: hit-front
server-timing: cache;desc="hit-front", host;desc="cp3078"
strict-transport-security: max-age=106384710; includeSubDomains; preload
report-to: { "group": "wm_nel", "max_age": 604800, "endpoints": [{ "url": "https://intake-logging.wikimedia.org/v1/events?stream=w3c.reportingapi.network_error&schema_uri=/w3c/reportingapi/network_error/1.0.0" }] }
nel: { "report_to": "wm_nel", "max_age": 604800, "failure_fraction": 0.05, "success_fraction": 0.0}
x-client-ip: 91.90.42.154
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-expose-headers: Age, Date, Content-Length, Content-Range, X-Content-Duration, X-Cache
timing-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js

172.217.16.74

200 OK

30 kB

URL GET HTTP/2
ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js
IP
172.217.16.74:443
ASN
#15169 GOOGLE

Requested by
https://rewardffcode.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E
ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT

File type
JavaScript source, ASCII text, with very long lines (32180)
Size
30 kB (29707 bytes)
Hash
32015dd42e9582a80a84736f5d9a44d7
41b4bfbaa96be6d1440db6e78004ade1c134e276
8af93bd675e1cfd9ecc850e862819fdac6e3ad1f5d761f970e409c7d9c63bdc3

HTTP Headers

GET /ajax/libs/jquery/2.1.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardffcode.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 29707
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 05:43:46 GMT
expires: Wed, 16 Apr 2025 05:43:46 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 127280
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.jsdelivr.net/gh/gowebid/assets@main/go_login/FF%20-%20Illuminate.webp

151.101.193.229

200 OK

60 kB

URL GET HTTP/2
cdn.jsdelivr.net/gh/gowebid/assets@main/go_login/FF%20-%20Illuminate.webp
IP
151.101.193.229:443
ASN
#54113 FASTLY

Requested by
https://rewardffcode.com/
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type
RIFF (little-endian) data, Web/P image
Size
60 kB (59520 bytes)
Hash
3e74ec6400bc45c21df158f244788b3f
b349e8eedfb962c69f362b4c9ffb9a57a577e4c8
ad73b7948bf3b4030acf346e0e0a3e2a38274a9660ff3d2687ebd4f4ed84005f

HTTP Headers

GET /gh/gowebid/assets@main/go_login/FF%20-%20Illuminate.webp HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardffcode.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: image/webp
x-jsd-version: main
x-jsd-version-type: branch
etag: W/"e880-s0no7t+5YsafNitMn/uaV6V35Mg"
accept-ranges: bytes
date: Wed, 17 Apr 2024 17:05:06 GMT
age: 17664
x-served-by: cache-fra-eddf8230131-FRA, cache-hel1410025-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 59520
X-Firefox-Spdy: h2

dlgarenanow-a.akamaihd.net/mgames/ffmhk/common/web_event/tweb-event/redemption/img/apple.png

23.36.76.152

200 OK

9.1 kB

URL GET HTTP/2
dlgarenanow-a.akamaihd.net/mgames/ffmhk/common/web_event/tweb-event/redemption/img/apple.png
IP
23.36.76.152:443
ASN
#20940 Akamai International B.V.

Requested by
https://rewardffcode.com/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced
Size
9.1 kB (9069 bytes)
Hash
d72825e76a981573e800cb3983bff287
89d064915f45c31853eaa77a416843cb3d3dcc81
ac768dee11c223ac3fba06a7212fd0163c171e7986735b5cd04f9081504126b3

HTTP Headers

GET /mgames/ffmhk/common/web_event/tweb-event/redemption/img/apple.png HTTP/1.1
Host: dlgarenanow-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardffcode.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-type: image/png
etag: "d72825e76a981573e800cb3983bff287:1646641754.910995"
last-modified: Mon, 07 Mar 2022 08:29:14 GMT
server: AkamaiNetStorage
content-length: 9069
date: Wed, 17 Apr 2024 17:05:06 GMT
alt-svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
access-control-allow-origin: *
X-Firefox-Spdy: h2

dlgarenanow-a.akamaihd.net/mgames/ffmhk/common/web_event/tweb-event/redemption/img/twitter.png

23.36.76.152

200 OK

8.3 kB

URL GET HTTP/2
dlgarenanow-a.akamaihd.net/mgames/ffmhk/common/web_event/tweb-event/redemption/img/twitter.png
IP
23.36.76.152:443
ASN
#20940 Akamai International B.V.

Requested by
https://rewardffcode.com/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced
Size
8.3 kB (8338 bytes)
Hash
5fd28b6a86e0a141a3d1829cada96141
a19379a7b36a510aaa71fcf223b66b3ef61eb26f
3b72d1f882a004a422b19a96191b2ada8867293aee251f3b70e1741d410234f1

HTTP Headers

GET /mgames/ffmhk/common/web_event/tweb-event/redemption/img/twitter.png HTTP/1.1
Host: dlgarenanow-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardffcode.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-type: image/png
etag: "5fd28b6a86e0a141a3d1829cada96141:1696418715.772086"
last-modified: Wed, 04 Oct 2023 11:25:15 GMT
server: AkamaiNetStorage
content-length: 8338
date: Wed, 17 Apr 2024 17:05:06 GMT
alt-svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
access-control-allow-origin: *
X-Firefox-Spdy: h2

rewardffcode.com/

172.67.158.17

200 OK

4.9 kB

URL User Request GET HTTP/2
rewardffcode.com/
IP
172.67.158.17:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjectrewardffcode.com
FingerprintE8:2F:08:59:50:5E:F5:44:8D:A2:C4:E2:E7:07:46:0B:C1:8F:AB:C1
ValidityWed, 17 Apr 2024 01:27:11 GMT - Tue, 16 Jul 2024 01:27:10 GMT

File type
HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Size
4.9 kB (4894 bytes)
Hash
8f5d20602fe91ce546754c82c02d1df6
764696de76ab4a592cdb758692ccb2c49569f432
9665f926c214e679fdae397c1bcc0f6203d1fce3911982d7a3a6de2f802d3465

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Garena

HTTP Headers

GET / HTTP/1.1
Host: rewardffcode.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 17 Apr 2024 17:05:06 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=t3aWx9REbg6hyyfkW4rjQhJJAAhYliT%2FULNaZ6y%2BeqfwTQH8XTEPRXOVltksHGjYGdc4CPT2NBQY3s8q%2B5KsXmMbDTGzjhekL%2Fprq%2F5Qfil%2FVfmcKgRQJapiqHLIcpldIlwL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875dff71df30abd4-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

dlgarenanow-a.akamaihd.net/mgames/ffmhk/common/web_event/tweb-event/redemption/img/facebook.png

23.36.76.152

200 OK

9.2 kB

URL GET HTTP/2
dlgarenanow-a.akamaihd.net/mgames/ffmhk/common/web_event/tweb-event/redemption/img/facebook.png
IP
23.36.76.152:443
ASN
#20940 Akamai International B.V.

Requested by
https://rewardffcode.com/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced
Size
9.2 kB (9175 bytes)
Hash
e328a85faf3ec595e525860c98e34098
e60ea777c0f17e3091eda58a81a9b916fea47f56
94f92c2fa2a770888470701e4e9c0063d11bd846b52739d8b12a06b2dabd3be2

HTTP Headers

GET /mgames/ffmhk/common/web_event/tweb-event/redemption/img/facebook.png HTTP/1.1
Host: dlgarenanow-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardffcode.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-type: image/png
etag: "e328a85faf3ec595e525860c98e34098:1646641688.184041"
last-modified: Mon, 07 Mar 2022 08:28:08 GMT
server: AkamaiNetStorage
content-length: 9175
date: Wed, 17 Apr 2024 17:05:06 GMT
alt-svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
access-control-allow-origin: *
X-Firefox-Spdy: h2

dlgarenanow-a.akamaihd.net/mgames/ffmhk/common/web_event/tweb-event/redemption/img/huawei.png

23.36.76.152

200 OK

3.0 kB

URL GET HTTP/2
dlgarenanow-a.akamaihd.net/mgames/ffmhk/common/web_event/tweb-event/redemption/img/huawei.png
IP
23.36.76.152:443
ASN
#20940 Akamai International B.V.

Requested by
https://rewardffcode.com/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
PNG image data, 84 x 84, 8-bit colormap, non-interlaced
Size
3.0 kB (3010 bytes)
Hash
3fb518b7c5881ad6aeb6c6fda87627e9
e63323cdf22d2d6a3592e2190a4237dea2115a27
38e377481a3abf35890dbc9abd19fd4657ab4ea449d24299073da019da5b4281

HTTP Headers

GET /mgames/ffmhk/common/web_event/tweb-event/redemption/img/huawei.png HTTP/1.1
Host: dlgarenanow-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardffcode.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-type: image/png
etag: "3fb518b7c5881ad6aeb6c6fda87627e9:1646641608.964761"
last-modified: Mon, 07 Mar 2022 08:26:48 GMT
server: AkamaiNetStorage
content-length: 3010
date: Wed, 17 Apr 2024 17:05:06 GMT
alt-svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
access-control-allow-origin: *
X-Firefox-Spdy: h2

dlgarenanow-a.akamaihd.net/mgames/ffmhk/common/web_event/tweb-event/redemption/img/bg.jpg

23.36.76.152

200 OK

137 kB

URL GET HTTP/2
dlgarenanow-a.akamaihd.net/mgames/ffmhk/common/web_event/tweb-event/redemption/img/bg.jpg
IP
23.36.76.152:443
ASN
#20940 Akamai International B.V.

Requested by
https://rewardffcode.com/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 1x1, segment length 16, progressive, precision 8, 1920x965, components 3
Size
137 kB (136773 bytes)
Hash
57fd6fc58a09519be8012650efd9881d
bf24f16e0901ebef13336a3b4a6e13263ffb6279
ba96000a92f9d03cce2c34ab48fb9f1e67976be7b4233c1bd607a87e6e9af82d

HTTP Headers

GET /mgames/ffmhk/common/web_event/tweb-event/redemption/img/bg.jpg HTTP/1.1
Host: dlgarenanow-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardffcode.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
etag: "57fd6fc58a09519be8012650efd9881d:1710802872.771082"
last-modified: Mon, 18 Mar 2024 23:01:12 GMT
server: AkamaiNetStorage
content-length: 136773
date: Wed, 17 Apr 2024 17:05:07 GMT
alt-svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
access-control-allow-origin: *
X-Firefox-Spdy: h2

dlgarenanow-a.akamaihd.net/mgames/ffmhk/common/web_event/tweb-event/redemption/img/logo-new.png

23.36.76.152

200 OK

259 kB

URL GET HTTP/2
dlgarenanow-a.akamaihd.net/mgames/ffmhk/common/web_event/tweb-event/redemption/img/logo-new.png
IP
23.36.76.152:443
ASN
#20940 Akamai International B.V.

Requested by
https://rewardffcode.com/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
PNG image data, 18781 x 2663, 8-bit/color RGBA, non-interlaced
Size
259 kB (258949 bytes)
Hash
76697e9220e45c00a5fbaf78cc3d7553
8f0ef6ef5f7f23caf184e0de94cb7a4f80864f11
e5d1ff232a26bd3b8a702a52464d1bdf12992e9f166084da5cfad235d8f7b20e

HTTP Headers

GET /mgames/ffmhk/common/web_event/tweb-event/redemption/img/logo-new.png HTTP/1.1
Host: dlgarenanow-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardffcode.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-type: image/png
etag: "76697e9220e45c00a5fbaf78cc3d7553:1658219663.088581"
last-modified: Tue, 19 Jul 2022 08:34:23 GMT
server: AkamaiNetStorage
content-length: 258949
date: Wed, 17 Apr 2024 17:05:07 GMT
alt-svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
access-control-allow-origin: *
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2

216.58.207.227

200 OK

11 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://rewardffcode.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
Web Open Font Format (Version 2), TrueType, length 10748, version 1.0
Size
11 kB (10748 bytes)
Hash
ece6673e477b4d7aca12f04dace5ed60
f8ff7fbe231448a58d3989d84803dd66851b9988
4352380f92ce7f9a4a4a23306b992bed10055dbfffe90987cc72083e583fc280

HTTP Headers

GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://rewardffcode.com
DNT: 1
Connection: keep-alive
Referer: https://rewardffcode.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 17:33:58 GMT
expires: Fri, 11 Apr 2025 17:33:58 GMT
cache-control: public, max-age=31536000
age: 516669
last-modified: Mon, 16 Oct 2017 17:32:51 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

dlgarenanow-a.akamaihd.net/mgames/ffmhk/common/web_event/tweb-event/redemption/img/vk.png

23.36.76.152

200 OK

5.9 kB

URL GET HTTP/2
dlgarenanow-a.akamaihd.net/mgames/ffmhk/common/web_event/tweb-event/redemption/img/vk.png
IP
23.36.76.152:443
ASN
#20940 Akamai International B.V.

Requested by
https://rewardffcode.com/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced
Size
5.9 kB (5939 bytes)
Hash
2dd80363b81c8196f7f889e3b0d877fd
3c341d9f82692610da1b8cee2167afb236d76321
b66755701dc92b57f3d116a42fb1c4c573cb3d9b628125b61339277585018f90

HTTP Headers

GET /mgames/ffmhk/common/web_event/tweb-event/redemption/img/vk.png HTTP/1.1
Host: dlgarenanow-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardffcode.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-type: image/png
etag: "2dd80363b81c8196f7f889e3b0d877fd:1696418100.494525"
last-modified: Wed, 04 Oct 2023 11:15:00 GMT
server: AkamaiNetStorage
content-length: 5939
date: Wed, 17 Apr 2024 17:05:07 GMT
alt-svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
access-control-allow-origin: *
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmWUlfBBc4AMP6lQ.woff2

216.58.207.227

200 OK

11 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmWUlfBBc4AMP6lQ.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://rewardffcode.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
Web Open Font Format (Version 2), TrueType, length 10764, version 1.0
Size
11 kB (10764 bytes)
Hash
0b81348c81e06b7cb84c7856e13fdb4c
c9f02de10e9674ca82099e10aaf812ceeb39a8cf
1be216dbc059d96e288b0c1f399a1a80ee8c65e4c1272dbc4574bd6d23cf45d9

HTTP Headers

GET /s/roboto/v18/KFOlCnqEu92Fr1MmWUlfBBc4AMP6lQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://rewardffcode.com
DNT: 1
Connection: keep-alive
Referer: https://rewardffcode.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10764
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 02:45:33 GMT
expires: Fri, 11 Apr 2025 02:45:33 GMT
cache-control: public, max-age=31536000
age: 569974
last-modified: Mon, 16 Oct 2017 17:33:03 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.freebiesupply.com/images/large/2x/facebook-logo-white-full-transparent.png

104.131.67.145

200 OK

18 kB

URL GET HTTP/1.1
cdn.freebiesupply.com/images/large/2x/facebook-logo-white-full-transparent.png
IP
104.131.67.145:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://rewardffcode.com/
Certificate
IssuerLet's Encrypt
Subjectcdn.freebiesupply.com
Fingerprint55:F7:B2:30:0A:07:91:21:9D:FA:A9:E5:05:7D:F4:D9:1F:21:27:17
ValiditySun, 31 Mar 2024 10:07:20 GMT - Sat, 29 Jun 2024 10:07:19 GMT

File type
PNG image data, 2400 x 800, 8-bit colormap, non-interlaced
Size
18 kB (18409 bytes)
Hash
bde5e78647a5e021cf6e568431e8afbb
21678a4095257114c82ee161380d9be6699bb5a3
7ab12f8d411a4d6813084b6b9d6917bbe46ad5e5255ce3675de8606d1cb5c883

HTTP Headers

GET /images/large/2x/facebook-logo-white-full-transparent.png HTTP/1.1
Host: cdn.freebiesupply.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardffcode.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 17 Apr 2024 17:05:06 GMT
Content-Type: image/png
Content-Length: 18409
Connection: keep-alive
x-amz-id-2: Grzqt+nUXEEXdewDuhy6fu8A3eyfAhETtgDSo+qNW94Plll3C+M9bH0E9DcdZOnfyhe/9AN4wAk=
x-amz-request-id: 25EC3B61842B754F
Last-Modified: Sun, 25 Nov 2018 20:42:08 GMT
ETag: "bde5e78647a5e021cf6e568431e8afbb"
Expires: Mon, 14 Oct 2024 17:05:06 GMT
X-Cache-Status: HIT
Cache-Control: max-age=15552000, public, no-transform
Accept-Ranges: bytes

freefiremobile-a.akamaihd.net/ffwebsite/images/freefire16-2.ico

23.36.76.115

200 OK

1.2 kB

URL GET HTTP/1.1
freefiremobile-a.akamaihd.net/ffwebsite/images/freefire16-2.ico
IP
23.36.76.115:443
ASN
#20940 Akamai International B.V.

Requested by
https://rewardffcode.com/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel
Size
1.2 kB (1150 bytes)
Hash
ce89b8118878fce7e0b65318d77f9eba
c14d16d7157ba9ecb651c0afddfcd5625e3de79c
5913aad9d5853b7074edf8539d363b9b41179904289040127e1dc9b0ce6088dc

HTTP Headers

GET /ffwebsite/images/freefire16-2.ico HTTP/1.1
Host: freefiremobile-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardffcode.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: OBS
Content-Type: image/x-icon
Content-Length: 1150
x-obs-request-id: 0000018EEC41FAAC9013871504DB207E
Accept-Ranges: bytes
ETag: "ce89b8118878fce7e0b65318d77f9eba"
Last-Modified: Thu, 04 Aug 2022 12:38:52 GMT
x-obs-id-2: 32AAAQAAEAABAAAQAAEAABAAAQAAEAABCS9Ul32ITOZjw2Jw9kQVuCHZq9LTW6lH
Date: Wed, 17 Apr 2024 17:05:07 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Cache-Control: public, max-age=3600
Access-Control-Allow-Origin: *

dlgarenanow-a.akamaihd.net/mgames/ffmhk/common/web_event/tweb-event/redemption/img/google.png

23.36.76.152

200 OK

6.4 kB

URL GET HTTP/2
dlgarenanow-a.akamaihd.net/mgames/ffmhk/common/web_event/tweb-event/redemption/img/google.png
IP
23.36.76.152:443
ASN
#20940 Akamai International B.V.

Requested by
https://rewardffcode.com/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
PNG image data, 84 x 84, 8-bit/color RGBA, non-interlaced
Size
6.4 kB (6351 bytes)
Hash
fad350ab1b376d6e63f4e20880b7714d
ef197f20dc64df7432efd284ba8a0671f9758d1d
edefde11d13eb274cafd860dd219755352257187b374f313c810cb6a20f0a477

HTTP Headers

GET /mgames/ffmhk/common/web_event/tweb-event/redemption/img/google.png HTTP/1.1
Host: dlgarenanow-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardffcode.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-type: image/png
etag: "fad350ab1b376d6e63f4e20880b7714d:1646641687.797583"
last-modified: Mon, 07 Mar 2022 08:28:07 GMT
server: AkamaiNetStorage
content-length: 6351
date: Wed, 17 Apr 2024 17:05:08 GMT
alt-svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
access-control-allow-origin: *
X-Firefox-Spdy: h2

dlgarenanow-a.akamaihd.net/mgames/ffmhk/common/web_event/tweb-event/redemption/img/top_teeth-l.png

23.36.76.152

200 OK

144 B

URL GET HTTP/2
dlgarenanow-a.akamaihd.net/mgames/ffmhk/common/web_event/tweb-event/redemption/img/top_teeth-l.png
IP
23.36.76.152:443
ASN
#20940 Akamai International B.V.

Requested by
https://rewardffcode.com/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
PNG image data, 350 x 9, 8-bit/color RGBA, non-interlaced
Size
144 B (144 bytes)
Hash
fe98481dd3ffad514594309ceb2ef4ba
0fcc8e2afec22a1abcbf7de83624504919da9a13
42fcead125ad8660c031f3b763fd048fd06b4a70a7a48cf17bc03073fb255fae

HTTP Headers

GET /mgames/ffmhk/common/web_event/tweb-event/redemption/img/top_teeth-l.png HTTP/1.1
Host: dlgarenanow-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardffcode.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-length: 144
content-type: image/png
etag: "fe98481dd3ffad514594309ceb2ef4ba:1646641607.0753"
last-modified: Mon, 07 Mar 2022 08:26:47 GMT
server: AkamaiNetStorage
date: Wed, 17 Apr 2024 17:05:06 GMT
alt-svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
access-control-allow-origin: *
X-Firefox-Spdy: h2

stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css

104.18.11.207

200 OK

31 kB

URL GET HTTP/2
stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
IP
104.18.11.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://rewardffcode.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63
ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT

File type
ASCII text, with very long lines (30837)
Size
31 kB (31000 bytes)
Hash
269550530cc127b6aa5a35925a7de6ce
512c7d79033e3028a9be61b540cf1a6870c896f8
799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd

HTTP Headers

GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardffcode.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 17 Apr 2024 17:05:06 GMT
content-type: text/css; charset=utf-8
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31919000
content-encoding: br
etag: W/"269550530cc127b6aa5a35925a7de6ce"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 03/18/2024 12:28:12
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1078
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 9e01696f4dd85a48838a9ea9ee82ef4a
cdn-cache: HIT
cf-cache-status: HIT
age: 567596
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 875dff7f2a7f1d22-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

rewardffcode.com/alexFrontEnd/style-AlexHost.css

172.67.158.17

200 OK

69 kB

URL GET HTTP/3
rewardffcode.com/alexFrontEnd/style-AlexHost.css
IP
172.67.158.17:443
ASN
#13335 CLOUDFLARENET

Requested by
https://rewardffcode.com/
Certificate
IssuerLet's Encrypt
Subjectrewardffcode.com
FingerprintE8:2F:08:59:50:5E:F5:44:8D:A2:C4:E2:E7:07:46:0B:C1:8F:AB:C1
ValidityWed, 17 Apr 2024 01:27:11 GMT - Tue, 16 Jul 2024 01:27:10 GMT

File type
ASCII text, with very long lines (537)
Size
69 kB (68662 bytes)
Hash
ff2fb4dd92b232ba395a760148ce14c3
a12f25b0dd1ee3ee3b550890b11e8e112675c539
5d5e6cdbc4df3cd0bf116e6f2bec1b93f08023a262862a3e683fdcf0d09bd1c3

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Garena

HTTP Headers

GET /alexFrontEnd/style-AlexHost.css HTTP/1.1
Host: rewardffcode.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardffcode.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:05:06 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 12:10:42 GMT
last-modified: Sun, 07 May 2023 14:27:11 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 17663
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LitLTyOdRihWwZxK0F2b7MI6pZrLSmdZDfMXAhAvdE2lS%2BdSnln9cXmKqeTO66ZpsHYYdnhO1aSHGsyfFIwm9QCCiLYi47or%2BMHdGL9726WcnToC4ZawFrtOtPqLx0JnZur3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875dff7e6d348f53-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

api.gifan.id/files/20231110_facebookJwoWnsdkWhuj.css

104.21.234.35

200 OK

5.2 kB

URL GET HTTP/2
api.gifan.id/files/20231110_facebookJwoWnsdkWhuj.css
IP
104.21.234.35:443
ASN
#13335 CLOUDFLARENET

Requested by
https://rewardffcode.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectgifan.id
Fingerprint65:21:CF:78:C6:F3:9C:82:42:72:2D:29:CC:E1:28:F9:68:C7:DA:50
ValidityTue, 26 Mar 2024 02:33:24 GMT - Mon, 24 Jun 2024 02:33:23 GMT

File type
ASCII text, with very long lines (5644), with no line terminators
Size
5.2 kB (5185 bytes)
Hash
6c6eede9c902bf0866eeddd6e031b122
25ae33158196270672483a1e0dbda68509485a5f
80b152572eaf6ad6ebc58b3983d99fede9df16c73de5d0e9bf4a8857bcce7201

HTTP Headers

GET /files/20231110_facebookJwoWnsdkWhuj.css HTTP/1.1
Host: api.gifan.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardffcode.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 17 Apr 2024 17:05:06 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 13:15:13 GMT
last-modified: Fri, 10 Nov 2023 16:37:37 GMT
vary: Accept-Encoding,User-Agent
x-powered-by: Niagahoster
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
access-control-allow-origin: *
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 13793
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=avJMpQXsONvJ5CeCWvXk2z2CvPOW6%2FWkNWCUT7kbBLM%2F1kd8nSiCRPb03HORlQftxzvHGI7EEwG8oxIElPV26s0rHpXZn6Oaijq%2BfU5YZPEitYKX784TIgMR3RYGYAs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875dff7f5ec39486-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (6)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (32)

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP