spin.pubg.nnewevent.skom.id/
194.233.70.182200 OK 28 kB URL User Request GET HTTP/1.1 spin.pubg.nnewevent.skom.id/
IP 194.233.70.182:443
ASN #141995 Contabo Asia Private Limited
Certificate IssuerLet's Encrypt
Subjectspin.pubg.nnewevent.skom.id
Fingerprint10:FB:E4:CB:4C:84:D0:B0:7F:A9:D0:BE:69:8C:C3:82:BD:3F:BD:F0
ValidityFri, 26 May 2023 08:20:22 GMT - Thu, 24 Aug 2023 08:20:21 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- assembler source text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8912), with CRLF line terminators
Hash fb200d4136b5de56fcbd9f335ae9378a
9e2aba9998ae866a27daeeca7397687869dbc857
db19c2eacf5f2fda287a13626099dd77def070a002f73b42c1b62a57d9d1b941
Analyzer Verdict Alert openphish Tencent
fortinet Phishing
quad9 Sinkholed
GET / HTTP/1.1
Host: spin.pubg.nnewevent.skom.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 19:43:05 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cdnjs.cloudflare.com/ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css
104.17.24.14200 OK 5.8 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css
IP 104.17.24.14:443
Requested by https://spin.pubg.nnewevent.skom.id/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA9:11:71:07:07:92:48:7E:A9:3C:E8:32:25:3F:EB:AC:7D:51:7E:8F
ValidityWed, 03 Aug 2022 00:00:00 GMT - Wed, 02 Aug 2023 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash e9365fe85b7e4db79a87015e52c3db6c
2e2b5eb6e08f0f3d11fe0ada97c962a23ba6a0d9
dec3e9f0190a504ed0c8f4a5e957c107206ba106cac4a1bbb6cbac6369a16d56
GET /ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spin.pubg.nnewevent.skom.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 May 2023 19:43:05 GMT
content-type: text/css; charset=utf-8
content-length: 5845
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ed9-1149f"
last-modified: Mon, 04 May 2020 16:12:09 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 101622
expires: Wed, 15 May 2024 19:43:05 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2aD5jZ%2Fqcf1WuPBQqKPTF37B2FJmLTygVsQCIoBkmnJsJBFTii4d3cado%2B6FiMZfkVUaoeSywXMv5inZKFjs4XWf%2BNZozcKAnuwrDoT7vBdS9LdLPXWwSZdNlqRSfgOpfmhUIFeu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7cd8814dcb790b69-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 8fdba15b1e036bbb416fbd6c272e5543
20193b9d3ced059164358e60bad68a0ea1bc87b9
1d3d0b81779aae77441b81abe782f4a37a1b88fd2863360de0865784279a7438
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 19:43:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
code.jquery.com/jquery-1.10.2.min.js
69.16.175.10200 OK 33 kB URL GET HTTP/2 code.jquery.com/jquery-1.10.2.min.js
IP 69.16.175.10:443
Requested by https://spin.pubg.nnewevent.skom.id/
Certificate IssuerSectigo Limited
Subject*.jquery.com
Fingerprint64:50:4C:BB:DF:F3:1D:70:CC:5D:9E:B7:BE:80:91:84:03:C1:D1:83
ValidityWed, 03 Aug 2022 00:00:00 GMT - Fri, 14 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (32072)
Hash 628072e7212db1e8cdacb22b21752cda
0511abe9863c2ea7084efa7e24d1d86c5b3974f1
0ba081f546084bd5097aa8a73c75931d5aa1fc4d6e846e53c21f98e6a1509988
GET /jquery-1.10.2.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spin.pubg.nnewevent.skom.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 May 2023 19:43:05 GMT
content-encoding: gzip
content-length: 32788
content-type: application/javascript; charset=utf-8
last-modified: Wed, 16 Feb 2022 10:50:39 GMT
accept-ranges: bytes
server: nginx
etag: W/"620cd6ff-16bb3"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1685130185.dop211.sk1.t,1685130185.cds017.sk1.hn,1685130185.cds243.sk1.c
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 8fdba15b1e036bbb416fbd6c272e5543
20193b9d3ced059164358e60bad68a0ea1bc87b9
1d3d0b81779aae77441b81abe782f4a37a1b88fd2863360de0865784279a7438
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 19:43:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
spin.pubg.nnewevent.skom.id/css/style.css
194.233.70.182200 OK 19 kB URL GET HTTP/1.1 spin.pubg.nnewevent.skom.id/css/style.css
IP 194.233.70.182:443
ASN #141995 Contabo Asia Private Limited
Requested by https://spin.pubg.nnewevent.skom.id/
Certificate IssuerLet's Encrypt
Subjectspin.pubg.nnewevent.skom.id
Fingerprint10:FB:E4:CB:4C:84:D0:B0:7F:A9:D0:BE:69:8C:C3:82:BD:3F:BD:F0
ValidityFri, 26 May 2023 08:20:22 GMT - Thu, 24 Aug 2023 08:20:21 GMT
File type assembler source, ASCII text
Hash d531245e081f3a2b5e12995b2397377a
62c3be06f3e3be0d002dcf66897bbd947b37af8e
1761d3bc0e631bbb412d2bda8c7bf346ffa03e5c9fdb7e6ef44eaa8548f873cc
Analyzer Verdict Alert openphish Tencent
quad9 Sinkholed
GET /css/style.css HTTP/1.1
Host: spin.pubg.nnewevent.skom.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spin.pubg.nnewevent.skom.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 19:43:05 GMT
Content-Type: text/css
Content-Length: 18971
Connection: keep-alive
Last-Modified: Wed, 18 Jan 2023 12:41:46 GMT
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash eabef916764564262ad985fd27284a97
42a72e12642fe4249aa5bd8e1cc9e9db07fd7943
ffa5c8a67b8ebba1ce4e464bc7e831e998c830a78d78880f09702afae02a9d70
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 19:43:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash eabef916764564262ad985fd27284a97
42a72e12642fe4249aa5bd8e1cc9e9db07fd7943
ffa5c8a67b8ebba1ce4e464bc7e831e998c830a78d78880f09702afae02a9d70
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 19:43:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/jquery/2.1.1/jquery.min.js
142.250.74.138200 OK 30 kB URL GET HTTP/2 ajax.googleapis.com/ajax/libs/jquery/2.1.1/jquery.min.js
IP 142.250.74.138:443
Requested by https://spin.pubg.nnewevent.skom.id/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT
File type ASCII text, with very long lines (32061)
Hash e40ec2161fe7993196f23c8a07346306
afb90752e0a90c24b7f724faca86c5f3d15d1178
874706b2b1311a0719b5267f7d1cf803057e367e94ae1ff7bf78c5450d30f5d4
GET /ajax/libs/jquery/2.1.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spin.pubg.nnewevent.skom.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 29671
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 14:43:15 GMT
expires: Wed, 22 May 2024 14:43:15 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 277191
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js
142.250.74.138200 OK 30 kB URL GET HTTP/2 ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js
IP 142.250.74.138:443
Requested by https://spin.pubg.nnewevent.skom.id/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT
File type ASCII text, with very long lines (32180)
Hash 32015dd42e9582a80a84736f5d9a44d7
41b4bfbaa96be6d1440db6e78004ade1c134e276
8af93bd675e1cfd9ecc850e862819fdac6e3ad1f5d761f970e409c7d9c63bdc3
GET /ajax/libs/jquery/2.1.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spin.pubg.nnewevent.skom.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 29707
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 May 2023 16:11:44 GMT
expires: Tue, 21 May 2024 16:11:44 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 358282
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash eabef916764564262ad985fd27284a97
42a72e12642fe4249aa5bd8e1cc9e9db07fd7943
ffa5c8a67b8ebba1ce4e464bc7e831e998c830a78d78880f09702afae02a9d70
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 19:43:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
spin.pubg.nnewevent.skom.id/css/facebook.css
194.233.70.182200 OK 3.8 kB URL GET HTTP/1.1 spin.pubg.nnewevent.skom.id/css/facebook.css
IP 194.233.70.182:443
ASN #141995 Contabo Asia Private Limited
Requested by https://spin.pubg.nnewevent.skom.id/
Certificate IssuerLet's Encrypt
Subjectspin.pubg.nnewevent.skom.id
Fingerprint10:FB:E4:CB:4C:84:D0:B0:7F:A9:D0:BE:69:8C:C3:82:BD:3F:BD:F0
ValidityFri, 26 May 2023 08:20:22 GMT - Thu, 24 Aug 2023 08:20:21 GMT
Hash dcba42d7ea50a7706ca4446348e7695c
047682d0bd797f82e3c84b7de82fa10c75873c38
8d64eab0c3ffcdcbb10224d6562060dc6bf87c3f5d2e93e489308d8af702479e
Analyzer Verdict Alert openphish Tencent
quad9 Sinkholed
GET /css/facebook.css HTTP/1.1
Host: spin.pubg.nnewevent.skom.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spin.pubg.nnewevent.skom.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 19:43:06 GMT
Content-Type: text/css
Content-Length: 3767
Connection: keep-alive
Last-Modified: Wed, 18 Jan 2023 12:41:46 GMT
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 8fdba15b1e036bbb416fbd6c272e5543
20193b9d3ced059164358e60bad68a0ea1bc87b9
1d3d0b81779aae77441b81abe782f4a37a1b88fd2863360de0865784279a7438
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 19:43:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
spin.pubg.nnewevent.skom.id/css/twitter.css
194.233.70.182200 OK 2.6 kB URL GET HTTP/1.1 spin.pubg.nnewevent.skom.id/css/twitter.css
IP 194.233.70.182:443
ASN #141995 Contabo Asia Private Limited
Requested by https://spin.pubg.nnewevent.skom.id/
Certificate IssuerLet's Encrypt
Subjectspin.pubg.nnewevent.skom.id
Fingerprint10:FB:E4:CB:4C:84:D0:B0:7F:A9:D0:BE:69:8C:C3:82:BD:3F:BD:F0
ValidityFri, 26 May 2023 08:20:22 GMT - Thu, 24 Aug 2023 08:20:21 GMT
Hash 64004572888c6842dcffc7b533ea7f9e
a45dc63c0dfb591d1c7cffa95ee249b03bdfc8fe
a0230d527e732f2f1e69225ee5b1a54f8c2056b4865acbfa93a6632ea71b222b
Analyzer Verdict Alert openphish Tencent
quad9 Sinkholed
GET /css/twitter.css HTTP/1.1
Host: spin.pubg.nnewevent.skom.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spin.pubg.nnewevent.skom.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 19:43:06 GMT
Content-Type: text/css
Content-Length: 2583
Connection: keep-alive
Last-Modified: Wed, 18 Jan 2023 12:41:46 GMT
Accept-Ranges: bytes
spin.pubg.nnewevent.skom.id/js/showHide.js
194.233.70.182200 OK 1.1 kB URL GET HTTP/1.1 spin.pubg.nnewevent.skom.id/js/showHide.js
IP 194.233.70.182:443
ASN #141995 Contabo Asia Private Limited
Requested by https://spin.pubg.nnewevent.skom.id/
Certificate IssuerLet's Encrypt
Subjectspin.pubg.nnewevent.skom.id
Fingerprint10:FB:E4:CB:4C:84:D0:B0:7F:A9:D0:BE:69:8C:C3:82:BD:3F:BD:F0
ValidityFri, 26 May 2023 08:20:22 GMT - Thu, 24 Aug 2023 08:20:21 GMT
File type ASCII text, with CRLF line terminators
Hash d3e46c4a7d95270da519489746521b1a
5f5a383b6a1a635695e2c72aace79363708f82be
8023fc37af7de956061342860b38dd1646ce1f1fa7ecc2ce703e2b544b2bd283
Analyzer Verdict Alert openphish Tencent
fortinet Phishing
quad9 Sinkholed
GET /js/showHide.js HTTP/1.1
Host: spin.pubg.nnewevent.skom.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spin.pubg.nnewevent.skom.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 19:43:06 GMT
Content-Type: application/javascript
Content-Length: 1075
Connection: keep-alive
Last-Modified: Wed, 18 Jan 2023 12:41:46 GMT
Accept-Ranges: bytes
spin.pubg.nnewevent.skom.id/index_files/jquery.min.js.download
194.233.70.182404 Not Found 315 B URL GET HTTP/1.1 spin.pubg.nnewevent.skom.id/index_files/jquery.min.js.download
IP 194.233.70.182:443
ASN #141995 Contabo Asia Private Limited
Requested by https://spin.pubg.nnewevent.skom.id/
Certificate IssuerLet's Encrypt
Subjectspin.pubg.nnewevent.skom.id
Fingerprint10:FB:E4:CB:4C:84:D0:B0:7F:A9:D0:BE:69:8C:C3:82:BD:3F:BD:F0
ValidityFri, 26 May 2023 08:20:22 GMT - Thu, 24 Aug 2023 08:20:21 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert openphish Tencent
fortinet Phishing
quad9 Sinkholed
GET /index_files/jquery.min.js.download HTTP/1.1
Host: spin.pubg.nnewevent.skom.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spin.pubg.nnewevent.skom.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Server: nginx
Date: Fri, 26 May 2023 19:43:06 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 315
Connection: keep-alive
spin.pubg.nnewevent.skom.id/js/kadalxswip.js
194.233.70.182200 OK 2.0 kB URL GET HTTP/1.1 spin.pubg.nnewevent.skom.id/js/kadalxswip.js
IP 194.233.70.182:443
ASN #141995 Contabo Asia Private Limited
Requested by https://spin.pubg.nnewevent.skom.id/
Certificate IssuerLet's Encrypt
Subjectspin.pubg.nnewevent.skom.id
Fingerprint10:FB:E4:CB:4C:84:D0:B0:7F:A9:D0:BE:69:8C:C3:82:BD:3F:BD:F0
ValidityFri, 26 May 2023 08:20:22 GMT - Thu, 24 Aug 2023 08:20:21 GMT
Hash 1cf442c55cb341b98dc9c2c647abfe46
eb3e2cde99a352c6c76576d20d5569f80531ecc2
c067bdd5aae410b53bcfbdc0740bcc5b86dcf9c7a3b433c0acaddd86c2610a41
Analyzer Verdict Alert openphish Tencent
fortinet Phishing
quad9 Sinkholed
GET /js/kadalxswip.js HTTP/1.1
Host: spin.pubg.nnewevent.skom.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spin.pubg.nnewevent.skom.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 19:43:06 GMT
Content-Type: application/javascript
Content-Length: 1951
Connection: keep-alive
Last-Modified: Wed, 18 Jan 2023 12:41:46 GMT
Accept-Ranges: bytes
spin.pubg.nnewevent.skom.id/js/slidernotif.js
194.233.70.182200 OK 405 B URL GET HTTP/1.1 spin.pubg.nnewevent.skom.id/js/slidernotif.js
IP 194.233.70.182:443
ASN #141995 Contabo Asia Private Limited
Requested by https://spin.pubg.nnewevent.skom.id/
Certificate IssuerLet's Encrypt
Subjectspin.pubg.nnewevent.skom.id
Fingerprint10:FB:E4:CB:4C:84:D0:B0:7F:A9:D0:BE:69:8C:C3:82:BD:3F:BD:F0
ValidityFri, 26 May 2023 08:20:22 GMT - Thu, 24 Aug 2023 08:20:21 GMT
Hash 03f6029516392f1ce262df03393de901
d88548c8d6c92e84646efe7e605f73cac7ca136c
7f0e1993cf5d96d6068606888b26fa168840e8028395c818db1ab4c584eb8775
Analyzer Verdict Alert openphish Tencent
fortinet Phishing
quad9 Sinkholed
GET /js/slidernotif.js HTTP/1.1
Host: spin.pubg.nnewevent.skom.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spin.pubg.nnewevent.skom.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 19:43:06 GMT
Content-Type: application/javascript
Content-Length: 405
Connection: keep-alive
Last-Modified: Wed, 18 Jan 2023 12:41:46 GMT
Accept-Ranges: bytes
spin.pubg.nnewevent.skom.id/js/sliders.js
194.233.70.182200 OK 520 B URL GET HTTP/1.1 spin.pubg.nnewevent.skom.id/js/sliders.js
IP 194.233.70.182:443
ASN #141995 Contabo Asia Private Limited
Requested by https://spin.pubg.nnewevent.skom.id/
Certificate IssuerLet's Encrypt
Subjectspin.pubg.nnewevent.skom.id
Fingerprint10:FB:E4:CB:4C:84:D0:B0:7F:A9:D0:BE:69:8C:C3:82:BD:3F:BD:F0
ValidityFri, 26 May 2023 08:20:22 GMT - Thu, 24 Aug 2023 08:20:21 GMT
File type ASCII text, with CRLF line terminators
Hash 6ed1a9c922d3f5e466c2137c34ab1bb1
dcd4c5a92671db9114baf3c0f25281ddfc6fd2c2
a490dc446aa73f827e330a2edc3392f0ada309507d38c0c2e6633bbfba039e72
Analyzer Verdict Alert openphish Tencent
fortinet Phishing
quad9 Sinkholed
GET /js/sliders.js HTTP/1.1
Host: spin.pubg.nnewevent.skom.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spin.pubg.nnewevent.skom.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 19:43:06 GMT
Content-Type: application/javascript
Content-Length: 520
Connection: keep-alive
Last-Modified: Wed, 18 Jan 2023 12:41:46 GMT
Accept-Ranges: bytes
spin.pubg.nnewevent.skom.id/css/animate.css
194.233.70.182200 OK 78 kB URL GET HTTP/1.1 spin.pubg.nnewevent.skom.id/css/animate.css
IP 194.233.70.182:443
ASN #141995 Contabo Asia Private Limited
Requested by https://spin.pubg.nnewevent.skom.id/
Certificate IssuerLet's Encrypt
Subjectspin.pubg.nnewevent.skom.id
Fingerprint10:FB:E4:CB:4C:84:D0:B0:7F:A9:D0:BE:69:8C:C3:82:BD:3F:BD:F0
ValidityFri, 26 May 2023 08:20:22 GMT - Thu, 24 Aug 2023 08:20:21 GMT
Hash 8eae1a9cfafdc593321d4d59ec4905ea
232f5f3f4c3a0a56823e0e933f9c7fec3aa9cbcc
e89c81987c5cbc157097eaa6657d6a594abf030cc89bb63f0d2154d8383e9fab
Analyzer Verdict Alert openphish Tencent
quad9 Sinkholed
GET /css/animate.css HTTP/1.1
Host: spin.pubg.nnewevent.skom.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spin.pubg.nnewevent.skom.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 19:43:06 GMT
Content-Type: text/css
Content-Length: 77906
Connection: keep-alive
Last-Modified: Wed, 18 Jan 2023 12:41:46 GMT
Accept-Ranges: bytes
i.ibb.co/V9rgBqw/twitter-text.png
162.19.58.156200 OK 4.3 kB URL GET HTTP/2 i.ibb.co/V9rgBqw/twitter-text.png
IP 162.19.58.156:443
Requested by https://spin.pubg.nnewevent.skom.id/
Certificate IssuerLet's Encrypt
Subjecti.ibb.co
FingerprintAF:A9:9B:0C:BD:57:09:69:DA:43:43:94:E3:3C:4C:1E:EB:1E:95:63
ValidityTue, 11 Apr 2023 07:00:13 GMT - Mon, 10 Jul 2023 07:00:12 GMT
File type PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced\012- data
Hash fef946b8bba756359e2a1e87ccd915ea
acc364946077b0e32b2343474ce4066ad3ee524c
1be5d05ce6faad469f7f9c5a5879f2d9f8d267b60eb394e92c19217268bcea8f
GET /V9rgBqw/twitter-text.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spin.pubg.nnewevent.skom.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 May 2023 19:43:06 GMT
content-type: image/png
content-length: 4298
last-modified: Mon, 18 Oct 2021 19:35:41 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash d4e2d954927aa1532ece1f3aad871a48
64080e5552252600638702178c90cd946984d117
7dc0934c025e5057e7011bc9b1d43c7dad69fd03c2398f15baab0385a96b230d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 19:43:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
spin.pubg.nnewevent.skom.id/img/reward/8.png
194.233.70.182200 OK 24 kB URL GET HTTP/1.1 spin.pubg.nnewevent.skom.id/img/reward/8.png
IP 194.233.70.182:443
ASN #141995 Contabo Asia Private Limited
Requested by https://spin.pubg.nnewevent.skom.id/
Certificate IssuerLet's Encrypt
Subjectspin.pubg.nnewevent.skom.id
Fingerprint10:FB:E4:CB:4C:84:D0:B0:7F:A9:D0:BE:69:8C:C3:82:BD:3F:BD:F0
ValidityFri, 26 May 2023 08:20:22 GMT - Thu, 24 Aug 2023 08:20:21 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Hash 21b21b7bd9f3050a0a8cfdb97e898d21
42e722041470b2afb503008978592a072fafbf6f
13c9bb11994a27a8a01dacc468d2212d7ae75bd41774c4af84e60d8c08e9269b
Analyzer Verdict Alert openphish Tencent
quad9 Sinkholed
GET /img/reward/8.png HTTP/1.1
Host: spin.pubg.nnewevent.skom.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spin.pubg.nnewevent.skom.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 19:43:06 GMT
Content-Type: image/png
Content-Length: 24001
Connection: keep-alive
Last-Modified: Wed, 18 Jan 2023 12:41:46 GMT
Accept-Ranges: bytes
spin.pubg.nnewevent.skom.id/img/footer.png
194.233.70.182200 OK 13 kB URL GET HTTP/1.1 spin.pubg.nnewevent.skom.id/img/footer.png
IP 194.233.70.182:443
ASN #141995 Contabo Asia Private Limited
Requested by https://spin.pubg.nnewevent.skom.id/
Certificate IssuerLet's Encrypt
Subjectspin.pubg.nnewevent.skom.id
Fingerprint10:FB:E4:CB:4C:84:D0:B0:7F:A9:D0:BE:69:8C:C3:82:BD:3F:BD:F0
ValidityFri, 26 May 2023 08:20:22 GMT - Thu, 24 Aug 2023 08:20:21 GMT
File type PNG image data, 1280 x 189, 8-bit colormap, non-interlaced\012- data
Hash 3593f5c920bebddd62ff279b2dabae08
182a776fa67117553e6dd3abeedc344e78d1db6c
a744712efb7dfb06a6d35b9173627c587c25ae7f2b1a40555b8936fd846ba7f4
Analyzer Verdict Alert openphish Tencent
quad9 Sinkholed
GET /img/footer.png HTTP/1.1
Host: spin.pubg.nnewevent.skom.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spin.pubg.nnewevent.skom.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 19:43:06 GMT
Content-Type: image/png
Content-Length: 12574
Connection: keep-alive
Last-Modified: Wed, 18 Jan 2023 12:41:46 GMT
Accept-Ranges: bytes
i.ibb.co/Wg8qQxh/facebook-text.png
162.19.58.156200 OK 29 kB URL GET HTTP/2 i.ibb.co/Wg8qQxh/facebook-text.png
IP 162.19.58.156:443
Requested by https://spin.pubg.nnewevent.skom.id/
Certificate IssuerLet's Encrypt
Subjecti.ibb.co
FingerprintAF:A9:9B:0C:BD:57:09:69:DA:43:43:94:E3:3C:4C:1E:EB:1E:95:63
ValidityTue, 11 Apr 2023 07:00:13 GMT - Mon, 10 Jul 2023 07:00:12 GMT
File type PNG image data, 604 x 158, 8-bit/color RGBA, non-interlaced\012- data
Hash 74190b93fc4f5d88f0c8e6411ba20bd8
89ce2ecb660a90b8e6ed1b335443d7767c59f28a
092a3cd5f86b3f039feefdeb86694cd16ae545af214cfda614bdbbe2d1bde401
GET /Wg8qQxh/facebook-text.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spin.pubg.nnewevent.skom.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 May 2023 19:43:06 GMT
content-type: image/png
content-length: 28789
last-modified: Mon, 18 Oct 2021 19:35:50 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
fonts.gstatic.com/s/teko/v16/LYjNdG7kmE0gfaN9pQ.woff2
142.250.74.35200 OK 13 kB URL GET HTTP/2 fonts.gstatic.com/s/teko/v16/LYjNdG7kmE0gfaN9pQ.woff2
IP 142.250.74.35:443
Requested by https://spin.pubg.nnewevent.skom.id/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type Web Open Font Format (Version 2), TrueType, length 13324, version 1.0\012- data
Hash b4082c888eefa2dca3fe2c9d46a87180
05aeb6c58175f659fe59eaca5a9d3735dd0530e3
352ad1513eeaeec51060f01d5bed32345862ec4d9c0802b81e0a47885951e4b6
GET /s/teko/v16/LYjNdG7kmE0gfaN9pQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://spin.pubg.nnewevent.skom.id
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13324
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 May 2023 00:17:37 GMT
expires: Thu, 23 May 2024 00:17:37 GMT
cache-control: public, max-age=31536000
age: 242729
last-modified: Tue, 02 May 2023 14:50:17 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
i.postimg.cc/SxQ04Qn4/navbar-logo.png
162.19.88.68200 OK 159 kB URL GET HTTP/2 i.postimg.cc/SxQ04Qn4/navbar-logo.png
IP 162.19.88.68:443
Requested by https://spin.pubg.nnewevent.skom.id/
Certificate IssuerLet's Encrypt
Subjectpostimg.cc
FingerprintF7:9A:EC:C0:0E:AB:80:A9:55:8F:DF:97:AD:BB:4B:70:07:08:F0:F0
ValidityWed, 19 Apr 2023 13:39:30 GMT - Tue, 18 Jul 2023 13:39:29 GMT
File type PNG image data, 1074 x 800, 8-bit/color RGBA, non-interlaced\012- data
Size 159 kB (158577 bytes)
Hash 386d5af4a1126e03333b3a043f9efa73
3a71b66fbd920ea27595e9c958336da8b3d05606
8b877d99b1124d17bb2e21c71cc8838f80c9c0945e1c140714588e73d50c3473
GET /SxQ04Qn4/navbar-logo.png HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spin.pubg.nnewevent.skom.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 May 2023 19:43:06 GMT
content-type: image/png
content-length: 158577
last-modified: Tue, 22 Mar 2022 04:46:34 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
i.postimg.cc/66bK3tfJ/Amod.png
162.19.88.68200 OK 86 kB URL GET HTTP/2 i.postimg.cc/66bK3tfJ/Amod.png
IP 162.19.88.68:443
Requested by https://spin.pubg.nnewevent.skom.id/
Certificate IssuerLet's Encrypt
Subjectpostimg.cc
FingerprintF7:9A:EC:C0:0E:AB:80:A9:55:8F:DF:97:AD:BB:4B:70:07:08:F0:F0
ValidityWed, 19 Apr 2023 13:39:30 GMT - Tue, 18 Jul 2023 13:39:29 GMT
File type PNG image data, 1280 x 54, 8-bit/color RGBA, non-interlaced\012- data
Hash c984d71cd905f49da568e4065129d87e
659edc07148f7197cdf025bd0ed9ac1d296f9131
c428adc61eebb6d5fb1fab43436b08fc12d7c63419f435395e436babd0adf789
GET /66bK3tfJ/Amod.png HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spin.pubg.nnewevent.skom.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 May 2023 19:43:06 GMT
content-type: image/png
content-length: 86253
last-modified: Wed, 17 Aug 2022 14:47:35 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
i.postimg.cc/02KwtTc7/footer-bg.jpg
162.19.88.68200 OK 12 kB URL GET HTTP/2 i.postimg.cc/02KwtTc7/footer-bg.jpg
IP 162.19.88.68:443
Requested by https://spin.pubg.nnewevent.skom.id/
Certificate IssuerLet's Encrypt
Subjectpostimg.cc
FingerprintF7:9A:EC:C0:0E:AB:80:A9:55:8F:DF:97:AD:BB:4B:70:07:08:F0:F0
ValidityWed, 19 Apr 2023 13:39:30 GMT - Tue, 18 Jul 2023 13:39:29 GMT
File type JPEG image data, progressive, precision 8, 579x800, components 3\012- data
Hash 27b8ceba13cb26a4ac6951cecdd4a5d3
accbec4f1b6038f0bcd2032da80c2ee342033d2e
d1740f2a847c3b67a1071442fe2af27298bca56ab267e90ea8aec3d4e9b9552f
GET /02KwtTc7/footer-bg.jpg HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spin.pubg.nnewevent.skom.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 May 2023 19:43:06 GMT
content-type: image/jpeg
content-length: 11651
last-modified: Wed, 23 Mar 2022 19:15:53 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash fc757271ec057273ef886c129a7bffd0
2e6c8df3cbe82d4dde32cdf7f71a6668dd536287
72cd2bbd96698941fa58cb6a7dfa4340187c0eb2499bd5a0e6cf4d7240c3a225
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 19:43:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.pubgmobile.com/id/event/royalepass10/images/icon_logo.jpg
23.36.76.227200 OK 75 kB URL GET HTTP/2 www.pubgmobile.com/id/event/royalepass10/images/icon_logo.jpg
IP 23.36.76.227:443
ASN #20940 Akamai International B.V.
Requested by https://spin.pubg.nnewevent.skom.id/
Certificate IssuerDigiCert Inc
Subjectwetv.acc.qq.com
Fingerprint50:05:83:7A:D7:1C:3C:CA:53:85:80:2E:04:C3:47:C2:45:54:EC:6A
ValiditySat, 19 Nov 2022 00:00:00 GMT - Wed, 22 Nov 2023 23:59:59 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 500x500, components 3\012- data
Hash 92c19dc5bd77186e5bb8ed35ce668979
646bf70d1c669c7d7388f95a0a33755e4721289c
0d9cf7eb8fb12be77685134e63f7dae9a95fbf9306ae0529bd0347582d18a8ef
GET /id/event/royalepass10/images/icon_logo.jpg HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spin.pubg.nnewevent.skom.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: image/jpeg
content-length: 75149
last-modified: Wed, 15 Sep 2021 06:46:59 GMT
etag: "614196e3-1258d"
accept-ranges: bytes
unused62: 8096267
cache-control: max-age=300
expires: Fri, 26 May 2023 19:48:07 GMT
date: Fri, 26 May 2023 19:43:07 GMT
X-Firefox-Spdy: h2
spin.pubg.nnewevent.skom.id/img/reward/7.png
194.233.70.182200 OK 31 kB URL GET HTTP/1.1 spin.pubg.nnewevent.skom.id/img/reward/7.png
IP 194.233.70.182:443
ASN #141995 Contabo Asia Private Limited
Requested by https://spin.pubg.nnewevent.skom.id/
Certificate IssuerLet's Encrypt
Subjectspin.pubg.nnewevent.skom.id
Fingerprint10:FB:E4:CB:4C:84:D0:B0:7F:A9:D0:BE:69:8C:C3:82:BD:3F:BD:F0
ValidityFri, 26 May 2023 08:20:22 GMT - Thu, 24 Aug 2023 08:20:21 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1280x630, components 3\012- data
Hash e4d17647f6ad04e82f35f4e3317b9b5c
1e2d7f65cd975211e5a84614f6e98aba2ca3aee4
dd6bbd8d43d958afd0332d188daf561cbd68840b82c67193e414f72c33a61f39
Analyzer Verdict Alert openphish Tencent
quad9 Sinkholed
GET /img/reward/7.png HTTP/1.1
Host: spin.pubg.nnewevent.skom.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spin.pubg.nnewevent.skom.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 19:43:06 GMT
Content-Type: image/png
Content-Length: 31217
Connection: keep-alive
Last-Modified: Wed, 18 Jan 2023 12:41:46 GMT
Accept-Ranges: bytes
spin.pubg.nnewevent.skom.id/img/lucky.png
194.233.70.182200 OK 20 kB URL GET HTTP/1.1 spin.pubg.nnewevent.skom.id/img/lucky.png
IP 194.233.70.182:443
ASN #141995 Contabo Asia Private Limited
Requested by https://spin.pubg.nnewevent.skom.id/
Certificate IssuerLet's Encrypt
Subjectspin.pubg.nnewevent.skom.id
Fingerprint10:FB:E4:CB:4C:84:D0:B0:7F:A9:D0:BE:69:8C:C3:82:BD:3F:BD:F0
ValidityFri, 26 May 2023 08:20:22 GMT - Thu, 24 Aug 2023 08:20:21 GMT
File type PNG image data, 640 x 67, 8-bit/color RGBA, non-interlaced\012- data
Hash fb6204a106ec1a6b587ed70a4dd87742
33638ed72115394447296afe9a7d15771a1aca15
49da9ace657ef9854dfff34560b6f52b1a37be50cddc142ff0c6519325917ae9
Analyzer Verdict Alert openphish Tencent
quad9 Sinkholed
GET /img/lucky.png HTTP/1.1
Host: spin.pubg.nnewevent.skom.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spin.pubg.nnewevent.skom.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 19:43:06 GMT
Content-Type: image/png
Content-Length: 19488
Connection: keep-alive
Last-Modified: Sun, 30 Apr 2023 15:04:12 GMT
Accept-Ranges: bytes
spin.pubg.nnewevent.skom.id/img/reward/3.png
194.233.70.182200 OK 40 kB URL GET HTTP/1.1 spin.pubg.nnewevent.skom.id/img/reward/3.png
IP 194.233.70.182:443
ASN #141995 Contabo Asia Private Limited
Requested by https://spin.pubg.nnewevent.skom.id/
Certificate IssuerLet's Encrypt
Subjectspin.pubg.nnewevent.skom.id
Fingerprint10:FB:E4:CB:4C:84:D0:B0:7F:A9:D0:BE:69:8C:C3:82:BD:3F:BD:F0
ValidityFri, 26 May 2023 08:20:22 GMT - Thu, 24 Aug 2023 08:20:21 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1280x630, components 3\012- data
Hash dde353502b0beda06e5fa3509c936ff0
8ce14aa8f2dbb1545249384171862e2cf63ba966
7135452b3a3cc2777c5af2c8261390d7c2610183b2b9cb77cc1293dfb91de4b8
Analyzer Verdict Alert openphish Tencent
quad9 Sinkholed
GET /img/reward/3.png HTTP/1.1
Host: spin.pubg.nnewevent.skom.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spin.pubg.nnewevent.skom.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 19:43:06 GMT
Content-Type: image/png
Content-Length: 39549
Connection: keep-alive
Last-Modified: Wed, 18 Jan 2023 12:41:46 GMT
Accept-Ranges: bytes
spin.pubg.nnewevent.skom.id/fonts/selow.woff2
194.233.70.182200 OK 22 kB URL GET HTTP/1.1 spin.pubg.nnewevent.skom.id/fonts/selow.woff2
IP 194.233.70.182:443
ASN #141995 Contabo Asia Private Limited
Requested by https://spin.pubg.nnewevent.skom.id/
Certificate IssuerLet's Encrypt
Subjectspin.pubg.nnewevent.skom.id
Fingerprint10:FB:E4:CB:4C:84:D0:B0:7F:A9:D0:BE:69:8C:C3:82:BD:3F:BD:F0
ValidityFri, 26 May 2023 08:20:22 GMT - Thu, 24 Aug 2023 08:20:21 GMT
File type Web Open Font Format (Version 2), TrueType, length 22220, version 1.0\012- data
Hash 345579e8566a3dd6dc9feb5362fbe7e1
df075dd0c26e72fd7df19948f07904c1eaa72ded
1d0dfcc32b3be2bf3b3dbc371e9b7c5ce205f4bc6f7c8ce0226256cc7064c3e4
Analyzer Verdict Alert openphish Tencent
fortinet Phishing
quad9 Sinkholed
GET /fonts/selow.woff2 HTTP/1.1
Host: spin.pubg.nnewevent.skom.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://spin.pubg.nnewevent.skom.id/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 19:43:06 GMT
Content-Type: font/woff2
Content-Length: 22220
Connection: keep-alive
Last-Modified: Wed, 18 Jan 2023 12:41:46 GMT
Accept-Ranges: bytes
l.top4top.io/m_1725u5z7i1.mp3
65.21.235.194206 Partial Content 20 kB URL GET HTTP/2 l.top4top.io/m_1725u5z7i1.mp3
IP 65.21.235.194:443
ASN #24940 Hetzner Online GmbH
Requested by https://spin.pubg.nnewevent.skom.id/
Certificate IssuerLet's Encrypt
Subject*.top4top.co
Fingerprint5A:EC:D7:03:5C:B3:D2:EF:5C:09:D4:81:E0:BF:B9:4B:DE:1C:7A:B9
ValidityMon, 01 May 2023 00:04:26 GMT - Sun, 30 Jul 2023 00:04:25 GMT
File type Audio file with ID3 version 2.4.0, contains: MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, Stereo\012- data
Hash ee5b5d12064ae26f839b882edb33da62
6fa93ef00f294eec4ef05276e81813db1e95e346
4bc5852e5cec62ceab9260f712961f59609868151e01b63e7b7cae2b00efed54
Analyzer Verdict Alert fortinet Malware
GET /m_1725u5z7i1.mp3 HTTP/1.1
Host: l.top4top.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://spin.pubg.nnewevent.skom.id/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 206 Partial Content
server: nginx
date: Fri, 26 May 2023 19:43:07 GMT
content-type: audio/mpeg
content-length: 19781
set-cookie: klj_40d147_downloads=kh51z; Max-Age=85000; Domain=.top4top.io; Path=/; Expires=Sat, 27 May 2023 19:19:47 GMT
last-modified: Mon, 21 Sep 2020 07:16:33 GMT
content-disposition: inline; filename="open_reward_tab.mp3"
etag: "5f685351-4d45"
expires: Fri, 26 May 2023 21:43:07 GMT
cache-control: max-age=7200
x-file-id: x34392023x
content-range: bytes 0-19780/19781
X-Firefox-Spdy: h2
spin.pubg.nnewevent.skom.id/img/reward/1.png
194.233.70.182200 OK 15 kB URL GET HTTP/1.1 spin.pubg.nnewevent.skom.id/img/reward/1.png
IP 194.233.70.182:443
ASN #141995 Contabo Asia Private Limited
Requested by https://spin.pubg.nnewevent.skom.id/
Certificate IssuerLet's Encrypt
Subjectspin.pubg.nnewevent.skom.id
Fingerprint10:FB:E4:CB:4C:84:D0:B0:7F:A9:D0:BE:69:8C:C3:82:BD:3F:BD:F0
ValidityFri, 26 May 2023 08:20:22 GMT - Thu, 24 Aug 2023 08:20:21 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x480, components 3\012- data
Hash d0c6d5dc4eabcd5b1a983e5053a76a89
21701ac8b38adffc19aca54e7670fe3473e447a3
d458467031fd3f8a06c74d3da8481c1e6fd41f68147cfde168a766d62c02babe
Analyzer Verdict Alert openphish Tencent
quad9 Sinkholed
GET /img/reward/1.png HTTP/1.1
Host: spin.pubg.nnewevent.skom.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spin.pubg.nnewevent.skom.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 19:43:07 GMT
Content-Type: image/png
Content-Length: 14926
Connection: keep-alive
Last-Modified: Sun, 30 Apr 2023 14:48:24 GMT
Accept-Ranges: bytes
spin.pubg.nnewevent.skom.id/img/header.jpg
194.233.70.182200 OK 112 kB URL GET HTTP/1.1 spin.pubg.nnewevent.skom.id/img/header.jpg
IP 194.233.70.182:443
ASN #141995 Contabo Asia Private Limited
Requested by https://spin.pubg.nnewevent.skom.id/
Certificate IssuerLet's Encrypt
Subjectspin.pubg.nnewevent.skom.id
Fingerprint10:FB:E4:CB:4C:84:D0:B0:7F:A9:D0:BE:69:8C:C3:82:BD:3F:BD:F0
ValidityFri, 26 May 2023 08:20:22 GMT - Thu, 24 Aug 2023 08:20:21 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1080x608, components 3\012- data
Size 112 kB (112151 bytes)
Hash 0d82c6ce905311ba5f4f7d84a1beeb45
4634f5fc4302ddedaed23257f0d42db748ec23b4
86b64c4d779918dbf540ac569f15294b13ecf5e8078ebc0df67bdcbbea35eab2
Analyzer Verdict Alert openphish Tencent
quad9 Sinkholed
GET /img/header.jpg HTTP/1.1
Host: spin.pubg.nnewevent.skom.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spin.pubg.nnewevent.skom.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 19:43:06 GMT
Content-Type: image/jpeg
Content-Length: 112151
Connection: keep-alive
Last-Modified: Sun, 30 Apr 2023 14:55:18 GMT
Accept-Ranges: bytes
spin.pubg.nnewevent.skom.id/img/reward/2.png
194.233.70.182200 OK 57 kB URL GET HTTP/1.1 spin.pubg.nnewevent.skom.id/img/reward/2.png
IP 194.233.70.182:443
ASN #141995 Contabo Asia Private Limited
Requested by https://spin.pubg.nnewevent.skom.id/
Certificate IssuerLet's Encrypt
Subjectspin.pubg.nnewevent.skom.id
Fingerprint10:FB:E4:CB:4C:84:D0:B0:7F:A9:D0:BE:69:8C:C3:82:BD:3F:BD:F0
ValidityFri, 26 May 2023 08:20:22 GMT - Thu, 24 Aug 2023 08:20:21 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1280x1280, components 3\012- data
Hash 68cb454029bb7a6c4e1e3a80dcd84991
c472aacc8295372fb70786d4466cac605ac2b3d2
8a60c06a15510999152b7039438d8a5e40d9974b1f9b2e26cb0943420fb36c54
Analyzer Verdict Alert openphish Tencent
quad9 Sinkholed
GET /img/reward/2.png HTTP/1.1
Host: spin.pubg.nnewevent.skom.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spin.pubg.nnewevent.skom.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 19:43:07 GMT
Content-Type: image/png
Content-Length: 56784
Connection: keep-alive
Last-Modified: Sun, 30 Apr 2023 14:48:02 GMT
Accept-Ranges: bytes
spin.pubg.nnewevent.skom.id/img/subtitle.png
194.233.70.182200 OK 70 kB URL GET HTTP/1.1 spin.pubg.nnewevent.skom.id/img/subtitle.png
IP 194.233.70.182:443
ASN #141995 Contabo Asia Private Limited
Requested by https://spin.pubg.nnewevent.skom.id/
Certificate IssuerLet's Encrypt
Subjectspin.pubg.nnewevent.skom.id
Fingerprint10:FB:E4:CB:4C:84:D0:B0:7F:A9:D0:BE:69:8C:C3:82:BD:3F:BD:F0
ValidityFri, 26 May 2023 08:20:22 GMT - Thu, 24 Aug 2023 08:20:21 GMT
File type PNG image data, 1280 x 260, 8-bit colormap, non-interlaced\012- data
Hash 1c93e1470a2b0ff43f5f4558e1da334a
36470bb837950ee047461b3410257cb73e1b2f71
912a378f0e21a74b6bfb2ac784a42c5ca9697135afa9bc0dedeafd31761846a7
Analyzer Verdict Alert openphish Tencent
quad9 Sinkholed
GET /img/subtitle.png HTTP/1.1
Host: spin.pubg.nnewevent.skom.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spin.pubg.nnewevent.skom.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 19:43:07 GMT
Content-Type: image/png
Content-Length: 70412
Connection: keep-alive
Last-Modified: Sun, 30 Apr 2023 14:41:06 GMT
Accept-Ranges: bytes
spin.pubg.nnewevent.skom.id/img/draw.png
194.233.70.182200 OK 26 kB URL GET HTTP/1.1 spin.pubg.nnewevent.skom.id/img/draw.png
IP 194.233.70.182:443
ASN #141995 Contabo Asia Private Limited
Requested by https://spin.pubg.nnewevent.skom.id/
Certificate IssuerLet's Encrypt
Subjectspin.pubg.nnewevent.skom.id
Fingerprint10:FB:E4:CB:4C:84:D0:B0:7F:A9:D0:BE:69:8C:C3:82:BD:3F:BD:F0
ValidityFri, 26 May 2023 08:20:22 GMT - Thu, 24 Aug 2023 08:20:21 GMT
File type PNG image data, 480 x 480, 8-bit colormap, non-interlaced\012- data
Hash c2abcd721ae1099a77bf4289eb3861d5
bb4ae2245cf4a26bdb9140e6ebe6c453f0beb143
e8b858271c041d93bff4c98ca9bdacd6a130e55229f9384fad973387651b6028
Analyzer Verdict Alert openphish Tencent
quad9 Sinkholed
GET /img/draw.png HTTP/1.1
Host: spin.pubg.nnewevent.skom.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spin.pubg.nnewevent.skom.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 19:43:07 GMT
Content-Type: image/png
Content-Length: 25629
Connection: keep-alive
Last-Modified: Sun, 30 Apr 2023 14:40:44 GMT
Accept-Ranges: bytes
spin.pubg.nnewevent.skom.id/img/bg.png
194.233.70.182200 OK 344 kB URL GET HTTP/1.1 spin.pubg.nnewevent.skom.id/img/bg.png
IP 194.233.70.182:443
ASN #141995 Contabo Asia Private Limited
Requested by https://spin.pubg.nnewevent.skom.id/
Certificate IssuerLet's Encrypt
Subjectspin.pubg.nnewevent.skom.id
Fingerprint10:FB:E4:CB:4C:84:D0:B0:7F:A9:D0:BE:69:8C:C3:82:BD:3F:BD:F0
ValidityFri, 26 May 2023 08:20:22 GMT - Thu, 24 Aug 2023 08:20:21 GMT
File type PNG image data, 750 x 1624, 8-bit colormap, non-interlaced\012- data
Size 344 kB (344489 bytes)
Hash 6f3eafd7346b8bc722fe9d1614c876df
697b4652ceacaedc32675e35c91f5810228158f9
e764f08e7d0ef7df7765ad0ea2354eeaa3de6a484ad2301fbf487b6b6c718831
Analyzer Verdict Alert openphish Tencent
quad9 Sinkholed
GET /img/bg.png HTTP/1.1
Host: spin.pubg.nnewevent.skom.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spin.pubg.nnewevent.skom.id/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 19:43:07 GMT
Content-Type: image/png
Content-Length: 344489
Connection: keep-alive
Last-Modified: Sun, 30 Apr 2023 14:40:36 GMT
Accept-Ranges: bytes
spin.pubg.nnewevent.skom.id/img/reward/6.png
194.233.70.182200 OK 40 kB URL GET HTTP/1.1 spin.pubg.nnewevent.skom.id/img/reward/6.png
IP 194.233.70.182:443
ASN #141995 Contabo Asia Private Limited
Requested by https://spin.pubg.nnewevent.skom.id/
Certificate IssuerLet's Encrypt
Subjectspin.pubg.nnewevent.skom.id
Fingerprint10:FB:E4:CB:4C:84:D0:B0:7F:A9:D0:BE:69:8C:C3:82:BD:3F:BD:F0
ValidityFri, 26 May 2023 08:20:22 GMT - Thu, 24 Aug 2023 08:20:21 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1280x1280, components 3\012- data
Hash 5c8a233210d003c433c12ead6d0f6980
637049ef7301c809bc21e8f4e71c68adff448973
ba7dee0298ac1066281fdb3bc543217ff6340e3941492636832f905585493a16
Analyzer Verdict Alert openphish Tencent
quad9 Sinkholed
GET /img/reward/6.png HTTP/1.1
Host: spin.pubg.nnewevent.skom.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spin.pubg.nnewevent.skom.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 19:43:07 GMT
Content-Type: image/png
Content-Length: 39884
Connection: keep-alive
Last-Modified: Wed, 18 Jan 2023 12:41:46 GMT
Accept-Ranges: bytes
spin.pubg.nnewevent.skom.id/img/container.jpg
194.233.70.182200 OK 131 kB URL GET HTTP/1.1 spin.pubg.nnewevent.skom.id/img/container.jpg
IP 194.233.70.182:443
ASN #141995 Contabo Asia Private Limited
Requested by https://spin.pubg.nnewevent.skom.id/
Certificate IssuerLet's Encrypt
Subjectspin.pubg.nnewevent.skom.id
Fingerprint10:FB:E4:CB:4C:84:D0:B0:7F:A9:D0:BE:69:8C:C3:82:BD:3F:BD:F0
ValidityFri, 26 May 2023 08:20:22 GMT - Thu, 24 Aug 2023 08:20:21 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x960, components 3\012- data
Size 131 kB (130567 bytes)
Hash a3cac8e2a5eec3bc1f41b8c98e1e8304
d782cbc0e667d8f7777b7e767c89b627d8feda66
24a96af439eb32da0bae315f8765167ef2f9701f518bb483d5aae6e6b7578115
Analyzer Verdict Alert openphish Tencent
quad9 Sinkholed
GET /img/container.jpg HTTP/1.1
Host: spin.pubg.nnewevent.skom.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spin.pubg.nnewevent.skom.id/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 19:43:06 GMT
Content-Type: image/jpeg
Content-Length: 130567
Connection: keep-alive
Last-Modified: Sun, 30 Apr 2023 14:40:40 GMT
Accept-Ranges: bytes
www.pubgmobile.com/en/images/nav_menu.svg
23.36.76.227200 OK 426 B URL GET HTTP/2 www.pubgmobile.com/en/images/nav_menu.svg
IP 23.36.76.227:443
ASN #20940 Akamai International B.V.
Requested by https://spin.pubg.nnewevent.skom.id/
Certificate IssuerDigiCert Inc
Subjectwetv.acc.qq.com
Fingerprint50:05:83:7A:D7:1C:3C:CA:53:85:80:2E:04:C3:47:C2:45:54:EC:6A
ValiditySat, 19 Nov 2022 00:00:00 GMT - Wed, 22 Nov 2023 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- HTML document, Unicode text, UTF-8 text, with very long lines (876), with no line terminators
Hash a1f09c4f5c87271dbccf8cb05885ad42
18bbacc9c372dcb6bc77c2475595e058c1ad1594
b0d849e0e910d13bcdab1e94f5c799dda1a9429c908e18069f9dc7f7d551d58a
GET /en/images/nav_menu.svg HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spin.pubg.nnewevent.skom.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: image/svg+xml
last-modified: Mon, 21 Mar 2022 13:24:18 GMT
etag: "62387c82-374"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 426
date: Fri, 26 May 2023 19:43:07 GMT
X-Firefox-Spdy: h2
www.pubgmobile.com/en/images/nav_language.svg
23.36.76.227200 OK 675 B URL GET HTTP/2 www.pubgmobile.com/en/images/nav_language.svg
IP 23.36.76.227:443
ASN #20940 Akamai International B.V.
Requested by https://spin.pubg.nnewevent.skom.id/
Certificate IssuerDigiCert Inc
Subjectwetv.acc.qq.com
Fingerprint50:05:83:7A:D7:1C:3C:CA:53:85:80:2E:04:C3:47:C2:45:54:EC:6A
ValiditySat, 19 Nov 2022 00:00:00 GMT - Wed, 22 Nov 2023 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- HTML document, Unicode text, UTF-8 text, with very long lines (1107), with no line terminators
Hash d8ba211bb1be1a15bf5b0143ca1b009a
215203609a551dcaccf6e434508623f302635f86
a441182568ad88fa9c54384de94a77f64148d3d54df66ea1beff4a11100967c6
GET /en/images/nav_language.svg HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spin.pubg.nnewevent.skom.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: image/svg+xml
last-modified: Mon, 21 Mar 2022 13:24:18 GMT
etag: "62387c82-45b"
accept-ranges: bytes
unused62: 8096267
vary: Accept-Encoding
content-encoding: gzip
content-length: 675
date: Fri, 26 May 2023 19:43:07 GMT
X-Firefox-Spdy: h2
www.pubgmobile.com/en/images/nav_shop.svg
23.36.76.227200 OK 526 B URL GET HTTP/2 www.pubgmobile.com/en/images/nav_shop.svg
IP 23.36.76.227:443
ASN #20940 Akamai International B.V.
Requested by https://spin.pubg.nnewevent.skom.id/
Certificate IssuerDigiCert Inc
Subjectwetv.acc.qq.com
Fingerprint50:05:83:7A:D7:1C:3C:CA:53:85:80:2E:04:C3:47:C2:45:54:EC:6A
ValiditySat, 19 Nov 2022 00:00:00 GMT - Wed, 22 Nov 2023 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- HTML document, Unicode text, UTF-8 text, with very long lines (985), with no line terminators
Hash 061f8e3121c0e545cb6277cbdba661e0
680a6ef2b0b5b9ae376ad927055e93e1efca2389
bad9e2db663bbdb4f80bdcb6ea144d69502f9d58bf6fcf19f17e365ffea0220f
GET /en/images/nav_shop.svg HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spin.pubg.nnewevent.skom.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: image/svg+xml
last-modified: Mon, 21 Mar 2022 13:24:18 GMT
etag: "62387c82-3e1"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 526
date: Fri, 26 May 2023 19:43:07 GMT
X-Firefox-Spdy: h2
www.pubgmobile.com/en/images/nav_download.svg
23.36.76.227200 OK 485 B URL GET HTTP/2 www.pubgmobile.com/en/images/nav_download.svg
IP 23.36.76.227:443
ASN #20940 Akamai International B.V.
Requested by https://spin.pubg.nnewevent.skom.id/
Certificate IssuerDigiCert Inc
Subjectwetv.acc.qq.com
Fingerprint50:05:83:7A:D7:1C:3C:CA:53:85:80:2E:04:C3:47:C2:45:54:EC:6A
ValiditySat, 19 Nov 2022 00:00:00 GMT - Wed, 22 Nov 2023 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- HTML document, Unicode text, UTF-8 text, with very long lines (999), with no line terminators
Hash 41c1c00e6070b60d70177ae11625bb86
7f01626c76ce129247860802fd2355f2878fe8dd
0b22f25d8b7421c4c4aec15a9a4781f873545a5732ac128871da40f38c98f4cf
GET /en/images/nav_download.svg HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spin.pubg.nnewevent.skom.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: image/svg+xml
last-modified: Mon, 21 Mar 2022 13:24:17 GMT
etag: "62387c81-3ef"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 485
date: Fri, 26 May 2023 19:43:07 GMT
X-Firefox-Spdy: h2
spin.pubg.nnewevent.skom.id/img/reward/5.png
194.233.70.182200 OK 36 kB URL GET HTTP/1.1 spin.pubg.nnewevent.skom.id/img/reward/5.png
IP 194.233.70.182:443
ASN #141995 Contabo Asia Private Limited
Requested by https://spin.pubg.nnewevent.skom.id/
Certificate IssuerLet's Encrypt
Subjectspin.pubg.nnewevent.skom.id
Fingerprint10:FB:E4:CB:4C:84:D0:B0:7F:A9:D0:BE:69:8C:C3:82:BD:3F:BD:F0
ValidityFri, 26 May 2023 08:20:22 GMT - Thu, 24 Aug 2023 08:20:21 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1280x1280, components 3\012- data
Hash 5f4e1074aa7d34ecbcbfa63cc0e4f83c
f25974d532d3c4344723cb2ea6a6c133639a8414
9f0511abd65dc722738e3c5449dd1572c2054484fa7ddee30706c8b34814013e
Analyzer Verdict Alert openphish Tencent
quad9 Sinkholed
GET /img/reward/5.png HTTP/1.1
Host: spin.pubg.nnewevent.skom.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spin.pubg.nnewevent.skom.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 19:43:07 GMT
Content-Type: image/png
Content-Length: 36213
Connection: keep-alive
Last-Modified: Wed, 18 Jan 2023 12:41:46 GMT
Accept-Ranges: bytes
spin.pubg.nnewevent.skom.id/img/box.png
194.233.70.182200 OK 474 kB URL GET HTTP/1.1 spin.pubg.nnewevent.skom.id/img/box.png
IP 194.233.70.182:443
ASN #141995 Contabo Asia Private Limited
Requested by https://spin.pubg.nnewevent.skom.id/
Certificate IssuerLet's Encrypt
Subjectspin.pubg.nnewevent.skom.id
Fingerprint10:FB:E4:CB:4C:84:D0:B0:7F:A9:D0:BE:69:8C:C3:82:BD:3F:BD:F0
ValidityFri, 26 May 2023 08:20:22 GMT - Thu, 24 Aug 2023 08:20:21 GMT
File type PNG image data, 1080 x 1402, 8-bit/color RGBA, non-interlaced\012- data
Size 474 kB (474321 bytes)
Hash 70f0af6456d111dfc336d67c6c15e4ea
6c2123fcc3267c00102173b44d03de6bd343d1ed
c19fe8e1479ab588b1349ec858c512db90e95ad7300c8facba1aeaacb485c55e
Analyzer Verdict Alert openphish Tencent
quad9 Sinkholed
GET /img/box.png HTTP/1.1
Host: spin.pubg.nnewevent.skom.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spin.pubg.nnewevent.skom.id/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 19:43:07 GMT
Content-Type: image/png
Content-Length: 474321
Connection: keep-alive
Last-Modified: Sun, 30 Apr 2023 15:18:38 GMT
Accept-Ranges: bytes
spin.pubg.nnewevent.skom.id/img/alert.png
194.233.70.182200 OK 14 kB URL GET HTTP/1.1 spin.pubg.nnewevent.skom.id/img/alert.png
IP 194.233.70.182:443
ASN #141995 Contabo Asia Private Limited
Requested by https://spin.pubg.nnewevent.skom.id/
Certificate IssuerLet's Encrypt
Subjectspin.pubg.nnewevent.skom.id
Fingerprint10:FB:E4:CB:4C:84:D0:B0:7F:A9:D0:BE:69:8C:C3:82:BD:3F:BD:F0
ValidityFri, 26 May 2023 08:20:22 GMT - Thu, 24 Aug 2023 08:20:21 GMT
File type PNG image data, 1280 x 208, 8-bit colormap, non-interlaced\012- data
Hash 810cd2cfe1be58941f7c57a0c111037b
db9349e1691f1014d723301248b6b4fb100cd39f
e9b14458505ff279e5b6529ce06816ef72e458b9270a2cde043f1f7ea8b1bf60
Analyzer Verdict Alert openphish Tencent
quad9 Sinkholed
GET /img/alert.png HTTP/1.1
Host: spin.pubg.nnewevent.skom.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spin.pubg.nnewevent.skom.id/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 19:43:07 GMT
Content-Type: image/png
Content-Length: 14542
Connection: keep-alive
Last-Modified: Sun, 30 Apr 2023 14:40:50 GMT
Accept-Ranges: bytes
spin.pubg.nnewevent.skom.id/media/putaran.mp3
194.233.70.182206 Partial Content 93 kB URL GET HTTP/1.1 spin.pubg.nnewevent.skom.id/media/putaran.mp3
IP 194.233.70.182:443
ASN #141995 Contabo Asia Private Limited
Requested by https://spin.pubg.nnewevent.skom.id/
Certificate IssuerLet's Encrypt
Subjectspin.pubg.nnewevent.skom.id
Fingerprint10:FB:E4:CB:4C:84:D0:B0:7F:A9:D0:BE:69:8C:C3:82:BD:3F:BD:F0
ValidityFri, 26 May 2023 08:20:22 GMT - Thu, 24 Aug 2023 08:20:21 GMT
File type Audio file with ID3 version 2.4.0, contains: MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, Stereo\012- data
Hash d79ba85640e089dabcc31377d3586363
9e114f0f2ae0cad5b464a6d14f3f3e91193b204a
c116089f76fcfac640d9077510d653c8efe84c308e3b163913b9193417bbc6a5
Analyzer Verdict Alert openphish Tencent
fortinet Phishing
quad9 Sinkholed
GET /media/putaran.mp3 HTTP/1.1
Host: spin.pubg.nnewevent.skom.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://spin.pubg.nnewevent.skom.id/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 206 Partial Content
Server: nginx
Date: Fri, 26 May 2023 19:43:07 GMT
Content-Type: audio/mpeg
Content-Length: 93347
Connection: keep-alive
Last-Modified: Wed, 18 Jan 2023 12:41:46 GMT
Content-Range: bytes 0-93346/93347
spin.pubg.nnewevent.skom.id/img/reward/4.png
194.233.70.182200 OK 459 kB URL GET HTTP/1.1 spin.pubg.nnewevent.skom.id/img/reward/4.png
IP 194.233.70.182:443
ASN #141995 Contabo Asia Private Limited
Requested by https://spin.pubg.nnewevent.skom.id/
Certificate IssuerLet's Encrypt
Subjectspin.pubg.nnewevent.skom.id
Fingerprint10:FB:E4:CB:4C:84:D0:B0:7F:A9:D0:BE:69:8C:C3:82:BD:3F:BD:F0
ValidityFri, 26 May 2023 08:20:22 GMT - Thu, 24 Aug 2023 08:20:21 GMT
File type PNG image data, 1080 x 1080, 8-bit/color RGBA, non-interlaced\012- data
Size 459 kB (459320 bytes)
Hash 7d74376a5b01ed85b34e1f618fc4d9b3
c03d79f093b8a4f755d08fbe26a3ae58fcd81b87
828c92b3a62ecf42f957725c73531b882e48a7d3c8b106d2d218410e148e7d7c
Analyzer Verdict Alert openphish Tencent
quad9 Sinkholed
GET /img/reward/4.png HTTP/1.1
Host: spin.pubg.nnewevent.skom.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spin.pubg.nnewevent.skom.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 19:43:07 GMT
Content-Type: image/png
Content-Length: 459320
Connection: keep-alive
Last-Modified: Fri, 17 Mar 2023 18:44:18 GMT
Accept-Ranges: bytes
www.pubgmobile.com/common/images/icon_logo.jpg
23.36.76.227200 OK 982 kB URL GET HTTP/2 www.pubgmobile.com/common/images/icon_logo.jpg
IP 23.36.76.227:443
ASN #20940 Akamai International B.V.
Requested by https://spin.pubg.nnewevent.skom.id/
Certificate IssuerDigiCert Inc
Subjectwetv.acc.qq.com
Fingerprint50:05:83:7A:D7:1C:3C:CA:53:85:80:2E:04:C3:47:C2:45:54:EC:6A
ValiditySat, 19 Nov 2022 00:00:00 GMT - Wed, 22 Nov 2023 23:59:59 GMT
File type JPEG image data, baseline, precision 8, 1024x1024, components 3\012- data
Size 982 kB (982437 bytes)
Hash b83d8d3e9beecfac081f4e742d27661c
448330670bef8c2ee17baf6d2410ca974341cb88
5899c82b2f0563679a9c1ee79b5b28f2545864d95c7627c1a70e36a2f034497d
GET /common/images/icon_logo.jpg HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spin.pubg.nnewevent.skom.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/jpeg
content-length: 982437
last-modified: Mon, 30 Nov 2020 12:10:45 GMT
etag: "5fc4e145-efda5"
accept-ranges: bytes
cache-control: max-age=280
expires: Fri, 26 May 2023 19:47:48 GMT
date: Fri, 26 May 2023 19:43:08 GMT
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:300,400,500,700|Teko:300,400,500
142.250.74.106200 OK 12 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Roboto:300,400,500,700|Teko:300,400,500
IP 142.250.74.106:443
Requested by https://spin.pubg.nnewevent.skom.id/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT
Hash 3e56f2f362e87a1c9c61845b359b7288
8eb99f962a30163d425b12130b1ef50f4b8c1603
a8e7fe41b58cbb8cb18a9f93e59b4f3ac0a7a7cc33130104f81cfb294795095e
GET /css?family=Roboto:300,400,500,700|Teko:300,400,500 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spin.pubg.nnewevent.skom.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 26 May 2023 19:43:05 GMT
date: Fri, 26 May 2023 19:43:05 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Teko&display=swap
142.250.74.106200 OK 1.1 kB URL GET HTTP/2 fonts.googleapis.com/css2?family=Teko&display=swap
IP 142.250.74.106:443
Requested by https://spin.pubg.nnewevent.skom.id/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT
File type ASCII text, with very long lines (1106), with no line terminators
Hash 5c6516987bdea1aa17d1198614828f24
69557d00ab3831718879ab2ae051c5157bfc551b
5169c6dea5cf27fe3faa4bebcbec8b2cfa4e92b4cc5ad5859a6adc60372f03d8
GET /css2?family=Teko&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spin.pubg.nnewevent.skom.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 26 May 2023 19:43:06 GMT
date: Fri, 26 May 2023 19:43:06 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
104.18.10.207200 OK 31 kB URL GET HTTP/2 stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
IP 104.18.10.207:443
Requested by https://spin.pubg.nnewevent.skom.id/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5B:F7:8F:50:AD:E5:5B:5E:8C:4A:39:3D:0C:98:E8:8C:18:4B:3D:8A
ValidityFri, 30 Dec 2022 00:00:00 GMT - Sat, 30 Dec 2023 23:59:59 GMT
File type ASCII text, with very long lines (30837)
Hash 269550530cc127b6aa5a35925a7de6ce
512c7d79033e3028a9be61b540cf1a6870c896f8
799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spin.pubg.nnewevent.skom.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 May 2023 19:43:05 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 11/15/2021 21:49:00
cdn-proxyver: 1.0
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 723
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: 2729ae8f2fc6c761bdc17d91cc795f58
cdn-cache: HIT
cf-cache-status: HIT
age: 30576939
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7cd8814ded4bb529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
a.top4top.io/m_1725zobal2.mp3
0.0.0.0 0 B URL GET a.top4top.io/m_1725zobal2.mp3
IP 0.0.0.0:0
Requested by https://spin.pubg.nnewevent.skom.id/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /m_1725zobal2.mp3 HTTP/1.1
Host: a.top4top.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://spin.pubg.nnewevent.skom.id/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache