rezuke.gooredirect.xyz/go/3fd2c679-1c79-46b9-a6bf-b272d332f3fe
3.70.16.242 795 B URL rezuke.gooredirect.xyz/go/3fd2c679-1c79-46b9-a6bf-b272d332f3fe
IP 3.70.16.242:0
File type gzip compressed data, from Unix\012- data
Hash d791b102674bc2eeee417295ed23e5f4
3458c32f6009c57188435a577784bb2f63de2d4a
b8183509b0331ad7291f48ad443b9ec6584857e0de0c54d5a22dad5b77e39442
Analyzer Verdict Alert fortinet Malware
GET /go/3fd2c679-1c79-46b9-a6bf-b272d332f3fe HTTP/1.1
Host: rezuke.gooredirect.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: openresty
date: Sun, 21 May 2023 21:11:11 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Full-Version,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Reduced
access-control-allow-origin: *
etag: W/"16b-j40kR5J34KttQd+5pm/dsNU90b0"
set-cookie: bemob-uniq-visit:3fd2c679-1c79-46b9-a6bf-b272d332f3fe=1; Domain=rezuke.gooredirect.xyz; Path=/; Expires=Mon, 22 May 2023 21:11:11 GMT; HttpOnly; Secure; SameSite=None
bemob-rotation:3fd2c679-1c79-46b9-a6bf-b272d332f3fe:random:60e6ffc167599701db4f2324f5fd2fcd=0-0-0; Domain=rezuke.gooredirect.xyz; Path=/; Expires=Mon, 22 May 2023 21:11:11 GMT; HttpOnly; Secure; SameSite=None
bemob-track-url=https%3A%2F%2Frewardriot.xyz%2Froot%2Fspinwhel-SA-v2%3Fbemobdata%3Dc%253D3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l%253D4a154c0d-3e18-4dd6-b843-054e26cf681d..a%253D0..b%253D0..ts%253D1684703471881; Domain=rezuke.gooredirect.xyz; Path=/; Expires=Mon, 22 May 2023 21:11:11 GMT; HttpOnly; Secure; SameSite=None
x-response-time: 16.209ms
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
rewardriot.xyz/root/spinwhel-sa-v2/img/spin_vi.png
172.67.131.105200 OK 144 kB URL GET HTTP/3 rewardriot.xyz/root/spinwhel-sa-v2/img/spin_vi.png
IP 172.67.131.105:443
Requested by https://rewardriot.xyz/root/spinwhel-sa-v2/?bemobdata=c=3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l=4a154c0d-3e18-4dd6-b843-054e26cf681d..a=0..b=0..ts=1684703471881
Certificate IssuerGoogle Trust Services LLC
Subjectrewardriot.xyz
FingerprintCF:E3:DF:85:34:2A:A4:FF:07:36:24:4D:A6:06:6B:F6:C9:FA:2A:0C
ValidityThu, 18 May 2023 18:01:07 GMT - Wed, 16 Aug 2023 18:01:06 GMT
File type PNG image data, 501 x 501, 8-bit/color RGBA, non-interlaced\012- data
Size 144 kB (144069 bytes)
Hash 1201dc3065d435d17c484417a194e573
927caeca0cdeb9372d5f0e0cfeff1b09e776a3ef
92b5e3aa199aa9a4a6cba54679ecc9297e0bc0062dc40c44ca866b4e961d2741
GET /root/spinwhel-sa-v2/img/spin_vi.png HTTP/1.1
Host: rewardriot.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardriot.xyz/root/spinwhel-sa-v2/?bemobdata=c=3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l=4a154c0d-3e18-4dd6-b843-054e26cf681d..a=0..b=0..ts=1684703471881
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 21 May 2023 21:11:12 GMT
content-type: image/png
content-length: 144069
cache-control: public, max-age=14400, must-revalidate
etag: "f9947251a8b00200d20c08d7377dc4fd-ssl"
x-nf-request-id: 01H0YNN11HK0GHK9C16HHYGB03
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BEXFSqzhuNcPysW7l9HRTcCFf2rSqasktnn1ZfijPO6epGA40K7sV4eQejm%2BsX%2Bk43Ekn7ZRkm9YYm8nb0Y7Rs23cij8UzZYbL5DO5gPZyCFsUg1qVhZ3qqn9dH9UQzyuQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cafcf810e780b49-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
rewardriot.xyz/root/spinwhel-sa-v2/img/cash.png
172.67.131.105200 OK 133 kB URL GET HTTP/3 rewardriot.xyz/root/spinwhel-sa-v2/img/cash.png
IP 172.67.131.105:443
Requested by https://rewardriot.xyz/root/spinwhel-sa-v2/?bemobdata=c=3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l=4a154c0d-3e18-4dd6-b843-054e26cf681d..a=0..b=0..ts=1684703471881
Certificate IssuerGoogle Trust Services LLC
Subjectrewardriot.xyz
FingerprintCF:E3:DF:85:34:2A:A4:FF:07:36:24:4D:A6:06:6B:F6:C9:FA:2A:0C
ValidityThu, 18 May 2023 18:01:07 GMT - Wed, 16 Aug 2023 18:01:06 GMT
File type PNG image data, 360 x 360, 8-bit/color RGBA, non-interlaced\012- data
Size 133 kB (132800 bytes)
Hash 5f497c54b8567cda57005463f8187776
a0abbb9d5969b75ab77539ed29ef6ccfab739e35
cb3f50318486beada347d2930719f582966655f32a27b3ab8e5e5f08d3b58218
GET /root/spinwhel-sa-v2/img/cash.png HTTP/1.1
Host: rewardriot.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardriot.xyz/root/spinwhel-sa-v2/?bemobdata=c=3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l=4a154c0d-3e18-4dd6-b843-054e26cf681d..a=0..b=0..ts=1684703471881
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 21 May 2023 21:11:12 GMT
content-type: image/png
content-length: 132800
cache-control: public, max-age=14400, must-revalidate
etag: "645e77dbc5efacd5a394893b8f934030-ssl"
x-nf-request-id: 01H0YNN11QR6ZSR55E1XA2CN2N
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QYLl0phF3tcYOcuQ3iPX2XQdE8iFr2HWcMGgICyH1kXUkt30LOpzBDtk22HiXqkmcHuNvrsNljtqnDSj67OAJmnbd%2BLFZsoSDI9bF%2FxwDe6r2wxX2JlM2TXzaUhsRrb8Fw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cafcf810e7b0b49-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
rewardriot.xyz/root/spinwhel-sa-v2/img/8.jpg
172.67.131.105200 OK 43 kB URL GET HTTP/3 rewardriot.xyz/root/spinwhel-sa-v2/img/8.jpg
IP 172.67.131.105:443
Requested by https://rewardriot.xyz/root/spinwhel-sa-v2/?bemobdata=c=3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l=4a154c0d-3e18-4dd6-b843-054e26cf681d..a=0..b=0..ts=1684703471881
Certificate IssuerGoogle Trust Services LLC
Subjectrewardriot.xyz
FingerprintCF:E3:DF:85:34:2A:A4:FF:07:36:24:4D:A6:06:6B:F6:C9:FA:2A:0C
ValidityThu, 18 May 2023 18:01:07 GMT - Wed, 16 Aug 2023 18:01:06 GMT
File type JPEG image data, progressive, precision 8, 960x960, components 3\012- data
Hash 34bc5cacd75c0eaffde413681c8ff4cc
28b31a0c50cd35342ac55e0912a2fa6dc8943928
8077bf86e947ace1954cc589de5888833c5f674e709cf9fd81150e5e3d537a5b
GET /root/spinwhel-sa-v2/img/8.jpg HTTP/1.1
Host: rewardriot.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardriot.xyz/root/spinwhel-sa-v2/?bemobdata=c=3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l=4a154c0d-3e18-4dd6-b843-054e26cf681d..a=0..b=0..ts=1684703471881
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 21 May 2023 21:11:12 GMT
content-type: image/jpeg
content-length: 42907
cache-control: public, max-age=14400, must-revalidate
etag: "e6b4c28db8c33381ddbf89a14207c9bb-ssl"
x-nf-request-id: 01H0YNN11NGFY9XHTYH4E4R1MB
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AHb2jKlA3jVhni0WwuOLwjWb9f7KUDxnXGmo36CKG1OzA3ucq1n0kOpMO2fw%2FsArxTnyNmophs79Lb77ta0vF2OU3LtFlBwb6mm%2Fsb0OQIPmCcXZfaLqxc77MIqBh40%2FSQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cafcf810e7e0b49-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
rewardriot.xyz/root/spinwhel-sa-v2/img/1.jpg
172.67.131.105200 OK 111 kB URL GET HTTP/3 rewardriot.xyz/root/spinwhel-sa-v2/img/1.jpg
IP 172.67.131.105:443
Requested by https://rewardriot.xyz/root/spinwhel-sa-v2/?bemobdata=c=3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l=4a154c0d-3e18-4dd6-b843-054e26cf681d..a=0..b=0..ts=1684703471881
Certificate IssuerGoogle Trust Services LLC
Subjectrewardriot.xyz
FingerprintCF:E3:DF:85:34:2A:A4:FF:07:36:24:4D:A6:06:6B:F6:C9:FA:2A:0C
ValidityThu, 18 May 2023 18:01:07 GMT - Wed, 16 Aug 2023 18:01:06 GMT
File type JPEG image data, progressive, precision 8, 960x960, components 3\012- data
Size 111 kB (110834 bytes)
Hash 5849b2642b6e7e7b073e9efe30b9ec35
239a57967c4764378b53563b7d640a05c5658e37
069607abd10223c310a25150d76384c6326d97938abec614e6149614307584d6
GET /root/spinwhel-sa-v2/img/1.jpg HTTP/1.1
Host: rewardriot.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardriot.xyz/root/spinwhel-sa-v2/?bemobdata=c=3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l=4a154c0d-3e18-4dd6-b843-054e26cf681d..a=0..b=0..ts=1684703471881
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 21 May 2023 21:11:12 GMT
content-type: image/jpeg
content-length: 110834
cache-control: public, max-age=14400, must-revalidate
etag: "91b8a7e253c68d9bd92af83f066c832a-ssl"
x-nf-request-id: 01H0YNN120WS6WABR80NFSAR64
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Y%2FZb8lNhciI4ABP29p7QUn990IbnXLiKjCCqIYNEUBp6u19wbFgVaZh76xKpQN0uaQ7K1YedBhSFJZS%2BpEHw2iVBtLb4e34fp1Epl0LNwm4GWJBTB4fjOMmtirQAxlFqwA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cafcf810e810b49-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
pu3hj.bemobpath.com/?redirectUrl=https%3A%2F%2Frewardriot.xyz%2Froot%2Fspinwhel-SA-v2%3Fbemobdata%3Dc%253D3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l%253D4a154c0d-3e18-4dd6-b843-054e26cf681d..a%253D0..b%253D0..ts%253D1684703471881
3.70.16.242 19 kB URL pu3hj.bemobpath.com/?redirectUrl=https%3A%2F%2Frewardriot.xyz%2Froot%2Fspinwhel-SA-v2%3Fbemobdata%3Dc%253D3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l%253D4a154c0d-3e18-4dd6-b843-054e26cf681d..a%253D0..b%253D0..ts%253D1684703471881
IP 3.70.16.242:0
File type gzip compressed data, from Unix\012- data
Hash 15527d7cbcfa97b20874331129e17f47
c612861b9bd1a7e9fce4089143e7aa02886b3a8f
4b423bf80bcbb5ed6e20c2d08b35cf6ed12c38b9fb95f813204a0cecd27e307f
GET /?redirectUrl=https%3A%2F%2Frewardriot.xyz%2Froot%2Fspinwhel-SA-v2%3Fbemobdata%3Dc%253D3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l%253D4a154c0d-3e18-4dd6-b843-054e26cf681d..a%253D0..b%253D0..ts%253D1684703471881 HTTP/1.1
Host: pu3hj.bemobpath.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: openresty
date: Sun, 21 May 2023 21:11:12 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Full-Version,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Reduced
access-control-allow-origin: *
etag: W/"11f-qWJt8dr67tgn42fxvEIk8mBeleA"
x-response-time: 2.362ms
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
rewardriot.xyz/root/spinwhel-sa-v2/img/3.jpg
172.67.131.105200 OK 39 kB URL GET HTTP/3 rewardriot.xyz/root/spinwhel-sa-v2/img/3.jpg
IP 172.67.131.105:443
Requested by https://rewardriot.xyz/root/spinwhel-sa-v2/?bemobdata=c=3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l=4a154c0d-3e18-4dd6-b843-054e26cf681d..a=0..b=0..ts=1684703471881
Certificate IssuerGoogle Trust Services LLC
Subjectrewardriot.xyz
FingerprintCF:E3:DF:85:34:2A:A4:FF:07:36:24:4D:A6:06:6B:F6:C9:FA:2A:0C
ValidityThu, 18 May 2023 18:01:07 GMT - Wed, 16 Aug 2023 18:01:06 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 640x640, components 3\012- data
Hash 0443057b541f962f7ab95ea63330f0ab
163556fdacebcc00568bb444a48997a42aed6516
b8927c1a239e405ba1fe6063bbabe05f07078b8572f6f3261c334b5998198a9f
GET /root/spinwhel-sa-v2/img/3.jpg HTTP/1.1
Host: rewardriot.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardriot.xyz/root/spinwhel-sa-v2/?bemobdata=c=3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l=4a154c0d-3e18-4dd6-b843-054e26cf681d..a=0..b=0..ts=1684703471881
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 21 May 2023 21:11:12 GMT
content-type: image/jpeg
content-length: 39002
cache-control: public, max-age=14400, must-revalidate
etag: "124c2127be7679d7e58aa2457d230b74-ssl"
x-nf-request-id: 01H0YNN11BER53FTY72WXKHBXN
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UsBCiIXUdrDTSjgvDigk4%2FxclDYVAxzT%2Bhe5HuFAkPBVbLZRlVq8Pm%2FaqNb9W8q6Ngcqo4VsngtgSAlhYMtHJWmDfoMVfiFj2VvA7OQJE%2BGkLV0lj2%2FGtFan%2FPImsmEUBA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cafcf810e8a0b49-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
rewardriot.xyz/root/spinwhel-sa-v2/img/2.jpg
172.67.131.105200 OK 28 kB URL GET HTTP/3 rewardriot.xyz/root/spinwhel-sa-v2/img/2.jpg
IP 172.67.131.105:443
Requested by https://rewardriot.xyz/root/spinwhel-sa-v2/?bemobdata=c=3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l=4a154c0d-3e18-4dd6-b843-054e26cf681d..a=0..b=0..ts=1684703471881
Certificate IssuerGoogle Trust Services LLC
Subjectrewardriot.xyz
FingerprintCF:E3:DF:85:34:2A:A4:FF:07:36:24:4D:A6:06:6B:F6:C9:FA:2A:0C
ValidityThu, 18 May 2023 18:01:07 GMT - Wed, 16 Aug 2023 18:01:06 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 720x720, components 3\012- data
Hash 595bd5c316361244abdddf4511b7c5ed
3d202dd3a40c842a1183c7e1261638376f4273af
b34c408736dfd47b8146e84a14cb587e51ec4f193dfdda64ce05cc903252514e
GET /root/spinwhel-sa-v2/img/2.jpg HTTP/1.1
Host: rewardriot.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardriot.xyz/root/spinwhel-sa-v2/?bemobdata=c=3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l=4a154c0d-3e18-4dd6-b843-054e26cf681d..a=0..b=0..ts=1684703471881
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 21 May 2023 21:11:12 GMT
content-type: image/jpeg
content-length: 28435
cache-control: public, max-age=14400, must-revalidate
etag: "ff833d1cbb9c627600df1b478902d299-ssl"
x-nf-request-id: 01H0YNN12AGNVCM42J35XRN9GV
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=q%2FM7N1rOVlvuQZJ35aA4Y5%2FnjBv3vFioOwTVap7nzoQd3%2Bf4SzanCxM9A%2F3rAdPPQ1gQkqsLQ47YPxSqIjGv3jIcVXeTKrP1C9Ynz4GdvZJj3%2FHDGFGsB0jDGshN7%2BaxWw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cafcf810e890b49-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
rewardriot.xyz/root/spinwhel-sa-v2/img/6.jpg
172.67.131.105200 OK 31 kB URL GET HTTP/3 rewardriot.xyz/root/spinwhel-sa-v2/img/6.jpg
IP 172.67.131.105:443
Requested by https://rewardriot.xyz/root/spinwhel-sa-v2/?bemobdata=c=3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l=4a154c0d-3e18-4dd6-b843-054e26cf681d..a=0..b=0..ts=1684703471881
Certificate IssuerGoogle Trust Services LLC
Subjectrewardriot.xyz
FingerprintCF:E3:DF:85:34:2A:A4:FF:07:36:24:4D:A6:06:6B:F6:C9:FA:2A:0C
ValidityThu, 18 May 2023 18:01:07 GMT - Wed, 16 Aug 2023 18:01:06 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 640x640, components 3\012- data
Hash c953f249842a5d9247cbc356f4f85794
5cb41016987ddbd2159789c1438f0871e1a362c7
ef290cce347ef95aaf332376b2027e651acc3517b4988fa77ea35f2243cfdff9
GET /root/spinwhel-sa-v2/img/6.jpg HTTP/1.1
Host: rewardriot.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardriot.xyz/root/spinwhel-sa-v2/?bemobdata=c=3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l=4a154c0d-3e18-4dd6-b843-054e26cf681d..a=0..b=0..ts=1684703471881
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 21 May 2023 21:11:12 GMT
content-type: image/jpeg
content-length: 31433
cache-control: public, max-age=14400, must-revalidate
etag: "622db94f73f3e4d35d08519bb0335eb0-ssl"
x-nf-request-id: 01H0YNN11C03BB8P1DQRKFBC9B
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FqTBzuB1g97dfWgSZvNIgX1chG64Se%2BiirNtyvyTGSJ77tMQyCEyygnvtgoN0%2FBV7u6oDJI579G2N2kWl0LpePecScnj8Mok0Ud9nrOC4lTmrdef639rj3vZYTEZHlTsgQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cafcf811e8e0b49-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
rewardriot.xyz/root/spinwhel-sa-v2/img/7.jpg
172.67.131.105200 OK 80 kB URL GET HTTP/3 rewardriot.xyz/root/spinwhel-sa-v2/img/7.jpg
IP 172.67.131.105:443
Requested by https://rewardriot.xyz/root/spinwhel-sa-v2/?bemobdata=c=3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l=4a154c0d-3e18-4dd6-b843-054e26cf681d..a=0..b=0..ts=1684703471881
Certificate IssuerGoogle Trust Services LLC
Subjectrewardriot.xyz
FingerprintCF:E3:DF:85:34:2A:A4:FF:07:36:24:4D:A6:06:6B:F6:C9:FA:2A:0C
ValidityThu, 18 May 2023 18:01:07 GMT - Wed, 16 Aug 2023 18:01:06 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 937x937, components 3\012- data
Hash 79e52c87d2d8a0a2832bac4608fe551a
05ead932c9c20ea3935e5a658ec44ccd48115203
1a3ce3b9a4b8c17be8894d3fe7bf9bc9c0e4bc47c8667ac0b3708b4354fe0666
GET /root/spinwhel-sa-v2/img/7.jpg HTTP/1.1
Host: rewardriot.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardriot.xyz/root/spinwhel-sa-v2/?bemobdata=c=3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l=4a154c0d-3e18-4dd6-b843-054e26cf681d..a=0..b=0..ts=1684703471881
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 21 May 2023 21:11:12 GMT
content-type: image/jpeg
content-length: 79700
cache-control: public, max-age=14400, must-revalidate
etag: "cc39d2363e987d48d505d3dd8d18aba8-ssl"
x-nf-request-id: 01H0YNN11MCANCYY5B6Y29S03P
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ndAIPQ1j0B0cycjKCMjQ0PGOUVRQRjbZPgtZhMzDkrzZMn1rxRTYEJFyQYsR%2B5%2FCHxSW8ZrcY7Bq%2BqWasiPPlHLAsIv5uF%2Bh3p7VHGBU6cI3ukkkUrqDj7t3Q%2BEjcyqNrw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cafcf811e900b49-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
rewardriot.xyz/root/spinwhel-sa-v2/img/smiley.png
172.67.131.105200 OK 5.0 kB URL GET HTTP/3 rewardriot.xyz/root/spinwhel-sa-v2/img/smiley.png
IP 172.67.131.105:443
Requested by https://rewardriot.xyz/root/spinwhel-sa-v2/?bemobdata=c=3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l=4a154c0d-3e18-4dd6-b843-054e26cf681d..a=0..b=0..ts=1684703471881
Certificate IssuerGoogle Trust Services LLC
Subjectrewardriot.xyz
FingerprintCF:E3:DF:85:34:2A:A4:FF:07:36:24:4D:A6:06:6B:F6:C9:FA:2A:0C
ValidityThu, 18 May 2023 18:01:07 GMT - Wed, 16 Aug 2023 18:01:06 GMT
File type PNG image data, 200 x 200, 8-bit colormap, non-interlaced\012- data
Hash 6a1b1fb2c9a70e8bb232985a5e7c76f2
a371f8e561576cb893e897f1e156597d3abbd0be
68c86e51e47a972e3191621e48685c0d9d1e166235cd816dc74370bc439567fc
GET /root/spinwhel-sa-v2/img/smiley.png HTTP/1.1
Host: rewardriot.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardriot.xyz/root/spinwhel-sa-v2/?bemobdata=c=3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l=4a154c0d-3e18-4dd6-b843-054e26cf681d..a=0..b=0..ts=1684703471881
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 21 May 2023 21:11:12 GMT
content-type: image/png
content-length: 4992
cache-control: public, max-age=14400, must-revalidate
etag: "a770a97f2ef0e3b3edd238062c9e3313-ssl"
x-nf-request-id: 01H0YNN11F1KVNR79KD6KA7G4M
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wyCJWYg5DuMG69Z8yGghND4ggY0YeEc7ftjsTHN4PGNVnC97RGlaXIIwZwG4A80KN0KCBJl5QaxILvx5BwppxwKXSvSTqjZ1tMaymkj4eSaejzuBZjNX6FTkYN4qHC698A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cafcf811e940b49-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
rewardriot.xyz/root/spinwhel-sa-v2/img/refresh.png
172.67.131.105200 OK 1.8 kB URL GET HTTP/3 rewardriot.xyz/root/spinwhel-sa-v2/img/refresh.png
IP 172.67.131.105:443
Requested by https://rewardriot.xyz/root/spinwhel-sa-v2/?bemobdata=c=3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l=4a154c0d-3e18-4dd6-b843-054e26cf681d..a=0..b=0..ts=1684703471881
Certificate IssuerGoogle Trust Services LLC
Subjectrewardriot.xyz
FingerprintCF:E3:DF:85:34:2A:A4:FF:07:36:24:4D:A6:06:6B:F6:C9:FA:2A:0C
ValidityThu, 18 May 2023 18:01:07 GMT - Wed, 16 Aug 2023 18:01:06 GMT
File type PNG image data, 70 x 70, 8-bit colormap, non-interlaced\012- data
Hash 2d0f4539e28850747bcdf03e8c9a9f10
c400935fad4c29d04714cf5b9e74fb4d4d8f1e1d
c04fa254d43e1b6db555962ac2dbc6cd67d47aff3c1d7895a229cdaca87a688e
GET /root/spinwhel-sa-v2/img/refresh.png HTTP/1.1
Host: rewardriot.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardriot.xyz/root/spinwhel-sa-v2/?bemobdata=c=3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l=4a154c0d-3e18-4dd6-b843-054e26cf681d..a=0..b=0..ts=1684703471881
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 21 May 2023 21:11:12 GMT
content-type: image/png
content-length: 1798
cache-control: public, max-age=14400, must-revalidate
etag: "a8f2cf0e5f0e85d12faa27e61c1d49a3-ssl"
x-nf-request-id: 01H0YNN1242J41G376FWMG7JEQ
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cKQnZA23TL7yBlZa78WqAZCP1QuTZ5KAWT1peJVE8tYfZBpqkWdfXDHR7a6%2FFG%2BEqajWYn0U0alPhBGzks81vAqgfaqdkuOfS0RveHABzhGshNDqb2MmwaM6sQN8nB0%2Fwg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cafcf811e950b49-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
my.rtmark.net/p.js?f=sync&lr=1&partner=c8148a148dc3ac2d049de99d90ee0c710bedff256ce7e898b836a190a3d87f84
139.45.195.8200 OK 697 B URL GET HTTP/2 my.rtmark.net/p.js?f=sync&lr=1&partner=c8148a148dc3ac2d049de99d90ee0c710bedff256ce7e898b836a190a3d87f84
IP 139.45.195.8:443
Requested by https://rewardriot.xyz/root/spinwhel-sa-v2/?bemobdata=c=3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l=4a154c0d-3e18-4dd6-b843-054e26cf681d..a=0..b=0..ts=1684703471881
Certificate IssuerLet's Encrypt
Subjectrtmark.net
Fingerprint84:56:36:C3:24:DE:FB:F0:E7:EB:EB:9D:C8:B6:28:31:B5:3C:8B:80
ValiditySat, 06 May 2023 08:48:01 GMT - Fri, 04 Aug 2023 08:48:00 GMT
Hash 958a0400a56272ff29c1acdba04b3d15
d34a84f90a3bf246888130eea164a4fe3166d8b5
884078d7937219b1de32e41d5bcfacffc98dbc202478e6120352c79e88375c4c
GET /p.js?f=sync&lr=1&partner=c8148a148dc3ac2d049de99d90ee0c710bedff256ce7e898b836a190a3d87f84 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardriot.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 21 May 2023 21:11:13 GMT
content-type: text/javascript
content-length: 697
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
rewardriot.xyz/root/spinwhel-sa-v2/img/spin.png
172.67.131.105200 OK 2.4 kB URL GET HTTP/3 rewardriot.xyz/root/spinwhel-sa-v2/img/spin.png
IP 172.67.131.105:443
Requested by https://rewardriot.xyz/root/spinwhel-sa-v2/?bemobdata=c=3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l=4a154c0d-3e18-4dd6-b843-054e26cf681d..a=0..b=0..ts=1684703471881
Certificate IssuerGoogle Trust Services LLC
Subjectrewardriot.xyz
FingerprintCF:E3:DF:85:34:2A:A4:FF:07:36:24:4D:A6:06:6B:F6:C9:FA:2A:0C
ValidityThu, 18 May 2023 18:01:07 GMT - Wed, 16 Aug 2023 18:01:06 GMT
File type PNG image data, 142 x 173, 8-bit colormap, non-interlaced\012- data
Hash 79051a4f9ac575664b4d932d577a65fc
ebae669a090fd6de43fb1854e5ba4868e8e8ffc0
0109faa660c321bbc20f82c8ba38eddd5490bc3b77d72c4b1de965a01a4f12b4
GET /root/spinwhel-sa-v2/img/spin.png HTTP/1.1
Host: rewardriot.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardriot.xyz/root/spinwhel-sa-v2/css/style__base.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 21 May 2023 21:11:13 GMT
content-type: image/png
content-length: 2444
cache-control: public, max-age=14400, must-revalidate
etag: "8cf94e3e08876699f7d4768c58d88a1c-ssl"
x-nf-request-id: 01H0YNN18J6J68MRJTET1HC0KA
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qlqubr9Zk4j8cP3TDuDu1QYwQfCpfETbcpxuMnIU2LIXQuiN6Ld43VOl%2F2XvIouschkIheFtRZT%2F06YYlT9NbajvJYWA5yKlCURAmN0XY%2FV89GFfggWTS9QbsFvzpPTdqw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cafcf8268300b49-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
deefauph.com/zone?&pub=0&zone_id=5962615&is_mobile=false&domain=rewardriot.xyz&var=&ymid=&var_3=&var_4=&dsig=&action=prerequest
139.45.197.251200 OK 0 B URL POST HTTP/2 deefauph.com/zone?&pub=0&zone_id=5962615&is_mobile=false&domain=rewardriot.xyz&var=&ymid=&var_3=&var_4=&dsig=&action=prerequest
IP 139.45.197.251:443
Requested by https://rewardriot.xyz/root/spinwhel-sa-v2/?bemobdata=c=3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l=4a154c0d-3e18-4dd6-b843-054e26cf681d..a=0..b=0..ts=1684703471881
Certificate IssuerLet's Encrypt
Subjectdeefauph.com
Fingerprint31:9A:4F:89:02:91:AE:2A:8F:3A:45:32:15:99:BC:91:72:5F:DC:02
ValiditySun, 21 May 2023 05:15:27 GMT - Sat, 19 Aug 2023 05:15:26 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /zone?&pub=0&zone_id=5962615&is_mobile=false&domain=rewardriot.xyz&var=&ymid=&var_3=&var_4=&dsig=&action=prerequest HTTP/1.1
Host: deefauph.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rewardriot.xyz
DNT: 1
Connection: keep-alive
Referer: https://rewardriot.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 21 May 2023 21:11:13 GMT
content-length: 0
x-trace-id: 3b38d114633b36d0020d3dc910285f1a
access-control-allow-origin: https://rewardriot.xyz
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
rewardriot.xyz/root/spinwhel-sa-v2/css/style_a.css
172.67.131.105200 OK 22 kB URL GET HTTP/3 rewardriot.xyz/root/spinwhel-sa-v2/css/style_a.css
IP 172.67.131.105:443
Requested by https://rewardriot.xyz/root/spinwhel-sa-v2/?bemobdata=c=3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l=4a154c0d-3e18-4dd6-b843-054e26cf681d..a=0..b=0..ts=1684703471881
Certificate IssuerGoogle Trust Services LLC
Subjectrewardriot.xyz
FingerprintCF:E3:DF:85:34:2A:A4:FF:07:36:24:4D:A6:06:6B:F6:C9:FA:2A:0C
ValidityThu, 18 May 2023 18:01:07 GMT - Wed, 16 Aug 2023 18:01:06 GMT
File type CSV text\012- , ASCII text
Hash 58426b100bb2d1f7a2b9e535d1d53dbf
fad1af737566c2ac0fe6684e4dcb68b177f9a62a
8259a4387fb3e0a8fb603335e81f2aee08f315f68d23c63af03e519a3f5683b1
GET /root/spinwhel-sa-v2/css/style_a.css HTTP/1.1
Host: rewardriot.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardriot.xyz/root/spinwhel-sa-v2/?bemobdata=c=3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l=4a154c0d-3e18-4dd6-b843-054e26cf681d..a=0..b=0..ts=1684703471881
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 21 May 2023 21:11:12 GMT
content-type: text/css; charset=UTF-8
cache-control: public, max-age=14400, must-revalidate
etag: W/"1473adf58d9bbec22e785727559b8c51-ssl-df"
vary: Accept-Encoding
x-nf-request-id: 01H0YNN120MT5QVTVVR6NY7ZKY
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RJWs1Wmj8P5wUcHX3pLmdPB6NZjLPevX9uKdmRAi2lKBZ1khGxBnOkH5RXjsGDaOU3uoOH2I%2Feu02aaMeKIPV8%2B2HBUEKqVnp3nxerFclZLMg5SAJjSB8lkS%2Fy3WY%2BWX7A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cafcf810e710b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
rewardriot.xyz/root/spinwhel-sa-v2/css/style__base.css
172.67.131.105200 OK 19 kB URL GET HTTP/3 rewardriot.xyz/root/spinwhel-sa-v2/css/style__base.css
IP 172.67.131.105:443
Requested by https://rewardriot.xyz/root/spinwhel-sa-v2/?bemobdata=c=3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l=4a154c0d-3e18-4dd6-b843-054e26cf681d..a=0..b=0..ts=1684703471881
Certificate IssuerGoogle Trust Services LLC
Subjectrewardriot.xyz
FingerprintCF:E3:DF:85:34:2A:A4:FF:07:36:24:4D:A6:06:6B:F6:C9:FA:2A:0C
ValidityThu, 18 May 2023 18:01:07 GMT - Wed, 16 Aug 2023 18:01:06 GMT
Hash 5af9199e58d12f7d074412e74d9a3d3d
74c11cb489a368220c3144e4570ad5b34afa75c2
708ad2fb793e0817fdf6bd7b0401e172f9566033232f148439e6f42b2f3b0999
GET /root/spinwhel-sa-v2/css/style__base.css HTTP/1.1
Host: rewardriot.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardriot.xyz/root/spinwhel-sa-v2/?bemobdata=c=3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l=4a154c0d-3e18-4dd6-b843-054e26cf681d..a=0..b=0..ts=1684703471881
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 21 May 2023 21:11:12 GMT
content-type: text/css; charset=UTF-8
cache-control: public, max-age=14400, must-revalidate
etag: W/"48cda9d2e1e4882f881c36734d6c0dbf-ssl-df"
vary: Accept-Encoding
x-nf-request-id: 01H0YNN11ARZ8Q6HPQ37EPK7ZY
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2FtyZ4KnfnHrMuS16%2FdkCQIvNulMJcFxRZmXHWtjgeFWroPM%2Fr7bwVzbIiEJO7MpVj87J22etNQ5OUUk9qnFzeWYHCYneE3Hgw7cXfTp3NXTc0vZ%2BlYSxGEFg%2BeIBitcpg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cafcf80fe6a0b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
rewardriot.xyz/root/spinwhel-sa-v2/js/bioep.min.js
172.67.131.105200 OK 3.3 kB URL GET HTTP/3 rewardriot.xyz/root/spinwhel-sa-v2/js/bioep.min.js
IP 172.67.131.105:443
Requested by https://rewardriot.xyz/root/spinwhel-sa-v2/?bemobdata=c=3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l=4a154c0d-3e18-4dd6-b843-054e26cf681d..a=0..b=0..ts=1684703471881
Certificate IssuerGoogle Trust Services LLC
Subjectrewardriot.xyz
FingerprintCF:E3:DF:85:34:2A:A4:FF:07:36:24:4D:A6:06:6B:F6:C9:FA:2A:0C
ValidityThu, 18 May 2023 18:01:07 GMT - Wed, 16 Aug 2023 18:01:06 GMT
File type ASCII text, with very long lines (874), with CRLF line terminators
Hash b4be5a852fefdae43b355f2c154e3d65
d5a07889208ed421085aa023485bec0a133e10fc
325981e28cde77631c69c478b3c5e84e7284218b0659284217f80e9766381641
GET /root/spinwhel-sa-v2/js/bioep.min.js HTTP/1.1
Host: rewardriot.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardriot.xyz/root/spinwhel-sa-v2/?bemobdata=c=3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l=4a154c0d-3e18-4dd6-b843-054e26cf681d..a=0..b=0..ts=1684703471881
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 21 May 2023 21:11:12 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=14400, must-revalidate
etag: W/"16322b53a3ea039d744dc303d398d1dd-ssl-df"
vary: Accept-Encoding
x-nf-request-id: 01H0YNN114DD76SEEJHV7D9EZ8
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UUzIrVb4JegbH1wZKlDHfh2XUVJjnjQpDsIFfzsYWeg28sgrq4Fd7rte8OaJKykik4hpAyj%2F76ATBsEg1TzvjJfFxQAiSorZ2SUDu5hC2b4wCK5JkS%2BL%2BtCwq1QC4LaErA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cafcf810e740b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
deefauph.com/pfe/current/micro.tag.min.js?z=5962615&sw=/sw-check-permissions-75368.js
139.45.197.251200 OK 42 kB URL GET HTTP/2 deefauph.com/pfe/current/micro.tag.min.js?z=5962615&sw=/sw-check-permissions-75368.js
IP 139.45.197.251:443
Requested by https://rewardriot.xyz/root/spinwhel-sa-v2/?bemobdata=c=3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l=4a154c0d-3e18-4dd6-b843-054e26cf681d..a=0..b=0..ts=1684703471881
Certificate IssuerLet's Encrypt
Subjectdeefauph.com
Fingerprint31:9A:4F:89:02:91:AE:2A:8F:3A:45:32:15:99:BC:91:72:5F:DC:02
ValiditySun, 21 May 2023 05:15:27 GMT - Sat, 19 Aug 2023 05:15:26 GMT
File type C source, ASCII text, with very long lines (41979), with no line terminators
Hash d44fd7b96fceca8f81b472766025d0d2
237541097413baf5cd3e703413f8bc9ea538a4db
b6c7c1e7fb1a437f100bdcb253df8b0468f130835fbb82c5687505a099997d16
GET /pfe/current/micro.tag.min.js?z=5962615&sw=/sw-check-permissions-75368.js HTTP/1.1
Host: deefauph.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardriot.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 21 May 2023 21:11:13 GMT
content-type: application/javascript
last-modified: Thu, 11 May 2023 14:20:13 GMT
etag: W/"645cf99d-a3fb"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
rewardriot.xyz/sw-check-permissions-aae63.js
172.67.131.105404 Not Found 3.1 kB URL GET HTTP/3 rewardriot.xyz/sw-check-permissions-aae63.js
IP 172.67.131.105:443
Requested by https://rewardriot.xyz/root/spinwhel-sa-v2/?bemobdata=c=3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l=4a154c0d-3e18-4dd6-b843-054e26cf681d..a=0..b=0..ts=1684703471881
Certificate IssuerGoogle Trust Services LLC
Subjectrewardriot.xyz
FingerprintCF:E3:DF:85:34:2A:A4:FF:07:36:24:4D:A6:06:6B:F6:C9:FA:2A:0C
ValidityThu, 18 May 2023 18:01:07 GMT - Wed, 16 Aug 2023 18:01:06 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3234), with no line terminators
Hash 983ad7ad3b11851a568dac1033e352b7
b97321d9a14c18bc49a2029cae02a7c6fae9e2a3
7037defc36dc79e60caa283cf5443f489b9daa5be1dee869404a3b0b95f687e6
GET /sw-check-permissions-aae63.js HTTP/1.1
Host: rewardriot.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://rewardriot.xyz/root/spinwhel-sa-v2/?bemobdata=c=3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l=4a154c0d-3e18-4dd6-b843-054e26cf681d..a=0..b=0..ts=1684703471881
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Sun, 21 May 2023 21:11:13 GMT
content-type: text/html; charset=utf-8
cache-control: public, max-age=14400, must-revalidate
vary: Accept-Encoding
x-nf-request-id: 01H102DVPHPZR3BVN4TX5J2DQG
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pX%2B9y9GcSz3IVczCbfqks9KnLZ6AjVP3AYYsYPHa%2FyA6pxGMFNpkIeEaxVCmbvM8bcW0IKUIw0OVa5tdNpnNB3esPzhkUoNR16AWYEItlDNktET%2FEEcp15Q%2BGuj5uIuq4Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cafcf843a590b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
rewardriot.xyz/root/spinwhel-sa-v2/?bemobdata=c=3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l=4a154c0d-3e18-4dd6-b843-054e26cf681d..a=0..b=0..ts=1684703471881
172.67.131.105200 OK 16 kB URL User Request GET HTTP/2 rewardriot.xyz/root/spinwhel-sa-v2/?bemobdata=c=3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l=4a154c0d-3e18-4dd6-b843-054e26cf681d..a=0..b=0..ts=1684703471881
IP 172.67.131.105:443
Certificate IssuerGoogle Trust Services LLC
Subjectrewardriot.xyz
FingerprintCF:E3:DF:85:34:2A:A4:FF:07:36:24:4D:A6:06:6B:F6:C9:FA:2A:0C
ValidityThu, 18 May 2023 18:01:07 GMT - Wed, 16 Aug 2023 18:01:06 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /root/spinwhel-sa-v2/?bemobdata=c=3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l=4a154c0d-3e18-4dd6-b843-054e26cf681d..a=0..b=0..ts=1684703471881 HTTP/1.1
Host: rewardriot.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 21 May 2023 21:11:12 GMT
content-type: text/html; charset=UTF-8
age: 113620
cache-control: public, max-age=0, must-revalidate
vary: Accept-Encoding
x-nf-request-id: 01H102DV03H70AT9CM8JXB62QN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Iq84YuZGvJQla7UN7iZFMCQsRkG5FFqO7h1li2GMZBNqF%2Fm%2BbwceRooDqzXTuuPFtCA0yWMX4IMfbwH9%2FR9%2B2AnBGMa%2FpKFdZjn6%2Fu02TTarDjWqrKmjcCfJ%2FPSsX5ypvA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cafcf7fdb71b527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
backunder.com/script.js
188.114.97.1200 OK 911 B IP 188.114.97.1:443
Requested by https://rewardriot.xyz/root/spinwhel-sa-v2/?bemobdata=c=3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l=4a154c0d-3e18-4dd6-b843-054e26cf681d..a=0..b=0..ts=1684703471881
Certificate IssuerGoogle Trust Services LLC
Subject*.backunder.com
Fingerprint23:59:D8:C1:60:4C:DB:2F:17:D5:9F:BC:19:2F:6A:18:8A:5F:4E:B8
ValidityMon, 10 Apr 2023 23:26:53 GMT - Sun, 09 Jul 2023 23:26:52 GMT
File type ASCII text, with very long lines (920), with no line terminators
Hash f60d3d95ba5d3857d3acb6730f06767d
454bf6bf84fc040a03287bf1096d2669804627c8
5c501b55106f7ffe03902742af81cad54e109fec08e9dd005b13ecaa6cbb748e
GET /script.js HTTP/1.1
Host: backunder.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardriot.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 21 May 2023 21:11:12 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1228
etag: W/"4cc-5f2f3364b2fe4-gzip"
last-modified: Mon, 23 Jan 2023 19:14:45 GMT
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 6309
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=j6%2BVLmchu1qSbdexQjjZ8gmdIuNo6t0JsPr%2FCjLpn8WB%2FUQoE0T0yISEaibfvgLoLcVAih5iAZ0RZbCcvEPasXgKUpoTkfsO5l98c9wtnVrc7sZs4S6jHESFlUJ%2B5NII"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cafcf811de5b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
rewardriot.xyz/sw-check-permissions-75368.js
172.67.131.105200 OK 566 B URL GET HTTP/3 rewardriot.xyz/sw-check-permissions-75368.js
IP 172.67.131.105:443
Requested by https://rewardriot.xyz/root/spinwhel-sa-v2/?bemobdata=c=3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l=4a154c0d-3e18-4dd6-b843-054e26cf681d..a=0..b=0..ts=1684703471881
Certificate IssuerGoogle Trust Services LLC
Subjectrewardriot.xyz
FingerprintCF:E3:DF:85:34:2A:A4:FF:07:36:24:4D:A6:06:6B:F6:C9:FA:2A:0C
ValidityThu, 18 May 2023 18:01:07 GMT - Wed, 16 Aug 2023 18:01:06 GMT
File type ASCII text, with very long lines (605), with no line terminators
Hash 720be97b55df431e3ac519499d3d1aa2
1e36945ff2f39b65fb281b7cc04557a7636994c1
7dd4c6ff9ee8f3f43b81446ab2b06e8e461b53fe7eb4e5ef0824d90a50ae0ee0
GET /sw-check-permissions-75368.js HTTP/1.1
Host: rewardriot.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://rewardriot.xyz/root/spinwhel-sa-v2/?bemobdata=c=3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l=4a154c0d-3e18-4dd6-b843-054e26cf681d..a=0..b=0..ts=1684703471881
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 21 May 2023 21:11:13 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=14400, must-revalidate
etag: W/"30ae048566e52469789fc589ebd954db-ssl"
x-nf-request-id: 01H0XC9E4GH5WT1D9D4Q4AMSJ7
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vVSPDTYWTeCbD1YnySLbjKqvGRLojxdddEr5yGSJJSc3GzIOu8Yr9IITSl9W8tr2DcmqixAPIYYL1fl3FbBIiGK42iKusq328UweSevbwiYGw1%2B1xTT4u43XH4g%2BCoHMKg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cafcf843a550b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
rewardriot.xyz/root/spinwhel-sa-v2/js/en_date.js
172.67.131.105200 OK 6.7 kB URL GET HTTP/3 rewardriot.xyz/root/spinwhel-sa-v2/js/en_date.js
IP 172.67.131.105:443
Requested by https://rewardriot.xyz/root/spinwhel-sa-v2/?bemobdata=c=3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l=4a154c0d-3e18-4dd6-b843-054e26cf681d..a=0..b=0..ts=1684703471881
Certificate IssuerGoogle Trust Services LLC
Subjectrewardriot.xyz
FingerprintCF:E3:DF:85:34:2A:A4:FF:07:36:24:4D:A6:06:6B:F6:C9:FA:2A:0C
ValidityThu, 18 May 2023 18:01:07 GMT - Wed, 16 Aug 2023 18:01:06 GMT
File type ASCII text, with very long lines (7106), with no line terminators
Hash ea133004ba2ee7bebc25767e49cb99ff
50c4bbb8423fe9d364798f28c8260cf66916b677
cda4a08060ba5f9871213274ab4f043f97f74311196eb4916fef50700178cff8
GET /root/spinwhel-sa-v2/js/en_date.js HTTP/1.1
Host: rewardriot.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardriot.xyz/root/spinwhel-sa-v2/?bemobdata=c=3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l=4a154c0d-3e18-4dd6-b843-054e26cf681d..a=0..b=0..ts=1684703471881
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 21 May 2023 21:11:12 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=14400, must-revalidate
etag: W/"3ffc4d8daf8a0279c657879a371a6eff-ssl-df"
vary: Accept-Encoding
x-nf-request-id: 01H0YNN0ZR8KPE3VABR9SV2ARY
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=A6vOJocAK5Bg5vz2brHkbk6GXXiTc1rIUpL7lYhrUFHnEkKferfKUdaW2We9M9WbZvf4epBkX8Nx3zvyDcbWgWQpDvZKuveUAe5ydgbisdUf7XiSNV%2FVQk3dWB8y7UI2bw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cafcf810e6e0b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
rewardriot.xyz/root/spinwhel-sa-v2/img/4.jpg
172.67.131.105200 OK 18 kB URL GET HTTP/3 rewardriot.xyz/root/spinwhel-sa-v2/img/4.jpg
IP 172.67.131.105:443
Requested by https://rewardriot.xyz/root/spinwhel-sa-v2/?bemobdata=c=3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l=4a154c0d-3e18-4dd6-b843-054e26cf681d..a=0..b=0..ts=1684703471881
Certificate IssuerGoogle Trust Services LLC
Subjectrewardriot.xyz
FingerprintCF:E3:DF:85:34:2A:A4:FF:07:36:24:4D:A6:06:6B:F6:C9:FA:2A:0C
ValidityThu, 18 May 2023 18:01:07 GMT - Wed, 16 Aug 2023 18:01:06 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 500x500, components 3\012- data
Hash ec3bcc7ab2a848181ae94b9526600c4c
b318048c145233b96c6b2c1382d7631ec5b10bd0
0ebb731bf9a1e037bf4b5edf3fdb584b260ac6a6cb3ec6fb95fd31195a37f6a3
GET /root/spinwhel-sa-v2/img/4.jpg HTTP/1.1
Host: rewardriot.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardriot.xyz/root/spinwhel-sa-v2/?bemobdata=c=3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l=4a154c0d-3e18-4dd6-b843-054e26cf681d..a=0..b=0..ts=1684703471881
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 21 May 2023 21:11:12 GMT
content-type: image/jpeg
content-length: 18520
cache-control: public, max-age=14400, must-revalidate
etag: "ac3db181062dbf2554bb7f3d3d89c1d5-ssl"
x-nf-request-id: 01H0YNN127DK7B96VECP6RC80B
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QzzUs48hh1U5CNiur2Uy14cI%2FHFOv0ZU2uKgdndYqOJl7za%2F%2B90PXDgz9UNaR59YOUpgr6X7bIe0PaXDhbLPhM3mr0dEc5XLukAl909aaDKGzCCcwEuQP6JgzUyKyuwCYQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cafcf810e880b49-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
rewardriot.xyz/root/spinwhel-sa-v2/img/5.jpg
172.67.131.105200 OK 1.1 MB URL GET HTTP/3 rewardriot.xyz/root/spinwhel-sa-v2/img/5.jpg
IP 172.67.131.105:443
Requested by https://rewardriot.xyz/root/spinwhel-sa-v2/?bemobdata=c=3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l=4a154c0d-3e18-4dd6-b843-054e26cf681d..a=0..b=0..ts=1684703471881
Certificate IssuerGoogle Trust Services LLC
Subjectrewardriot.xyz
FingerprintCF:E3:DF:85:34:2A:A4:FF:07:36:24:4D:A6:06:6B:F6:C9:FA:2A:0C
ValidityThu, 18 May 2023 18:01:07 GMT - Wed, 16 Aug 2023 18:01:06 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 2000x2000, components 3\012- data
Size 1.1 MB (1111393 bytes)
Hash c157e18a3371e6033b194090e0204df9
ae48ed559246b5eaa68619bd12c7f9f97d096680
5bc479a60d8c56180e98b13c0f3f2b119b4ba6f075c9b98056e060d9ab9816be
GET /root/spinwhel-sa-v2/img/5.jpg HTTP/1.1
Host: rewardriot.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardriot.xyz/root/spinwhel-sa-v2/?bemobdata=c=3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l=4a154c0d-3e18-4dd6-b843-054e26cf681d..a=0..b=0..ts=1684703471881
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 21 May 2023 21:11:12 GMT
content-type: image/jpeg
content-length: 1111393
cache-control: public, max-age=14400, must-revalidate
etag: "92bac8bb4677c6da787a43a6ef5e8659-ssl"
x-nf-request-id: 01H0YNN11QD0N79R88GJCQ657M
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mTDQUtlzcZyqs4ol1zR%2FQZUcydSi05HHcZ3SfAF6aZFd4ZYjNYWKHlZQz1u3FMuH8n0552e2O1gWaFVJ1k%2BPxgWMBTpc%2FJ%2BY%2Frhd6k%2FS3HfnirC1pn0IfsKrbqGClQ5f2g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cafcf810e8b0b49-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
rewardriot.xyz/root/spinwhel-sa-v2/img/logo.png
172.67.131.105200 OK 5.3 kB URL GET HTTP/3 rewardriot.xyz/root/spinwhel-sa-v2/img/logo.png
IP 172.67.131.105:443
Requested by https://rewardriot.xyz/root/spinwhel-sa-v2/?bemobdata=c=3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l=4a154c0d-3e18-4dd6-b843-054e26cf681d..a=0..b=0..ts=1684703471881
Certificate IssuerGoogle Trust Services LLC
Subjectrewardriot.xyz
FingerprintCF:E3:DF:85:34:2A:A4:FF:07:36:24:4D:A6:06:6B:F6:C9:FA:2A:0C
ValidityThu, 18 May 2023 18:01:07 GMT - Wed, 16 Aug 2023 18:01:06 GMT
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash f5d64acf78143acb73a116a4c30059c2
b63e4e1e6b388095aef36318bb3a2d13d63d7d15
53fe91634fedea3522c7ab24f307f994b19aaf87f2b745e99916e691c53b35d6
GET /root/spinwhel-sa-v2/img/logo.png HTTP/1.1
Host: rewardriot.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardriot.xyz/root/spinwhel-sa-v2/?bemobdata=c=3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l=4a154c0d-3e18-4dd6-b843-054e26cf681d..a=0..b=0..ts=1684703471881
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 21 May 2023 21:11:13 GMT
content-type: image/png
content-length: 5346
cache-control: public, max-age=14400, must-revalidate
etag: "971de0900309431e7f297a1e26fff1c6-ssl"
x-nf-request-id: 01H0YNN1F71BPW21RQN6YM58N6
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c4xVMaFa%2B46zK4WR7QPgJyy4BMvtGsOSpUPs%2BcCCgMSHC0l6dAIoYZ%2By0%2BOTv%2FgkEto5Y52KoXh88M26GKmQASz%2F2GDfEYWE4tZj9zVDVvqbclzTc4s4uEBib6AAiMimpA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cafcf83e9e80b49-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
rewardriot.xyz/root/spinwhel-sa-v2/js/jquery.min.js
172.67.131.105200 OK 87 kB URL GET HTTP/3 rewardriot.xyz/root/spinwhel-sa-v2/js/jquery.min.js
IP 172.67.131.105:443
Requested by https://rewardriot.xyz/root/spinwhel-sa-v2/?bemobdata=c=3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l=4a154c0d-3e18-4dd6-b843-054e26cf681d..a=0..b=0..ts=1684703471881
Certificate IssuerGoogle Trust Services LLC
Subjectrewardriot.xyz
FingerprintCF:E3:DF:85:34:2A:A4:FF:07:36:24:4D:A6:06:6B:F6:C9:FA:2A:0C
ValidityThu, 18 May 2023 18:01:07 GMT - Wed, 16 Aug 2023 18:01:06 GMT
File type ASCII text, with very long lines (32058)
Hash 24f2e59beae1680f19632d9c1b89d730
b3a77b35c4809324ab79e64d40c4ee391234e008
39646863a414e0a84920b3a8639c0f3e8c94535e8dc051b42b485a068dc2902f
GET /root/spinwhel-sa-v2/js/jquery.min.js HTTP/1.1
Host: rewardriot.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardriot.xyz/root/spinwhel-sa-v2/?bemobdata=c=3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l=4a154c0d-3e18-4dd6-b843-054e26cf681d..a=0..b=0..ts=1684703471881
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 21 May 2023 21:11:12 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=14400, must-revalidate
etag: W/"ddbc6702bc953f6dedfe3543150cf865-ssl-df"
vary: Accept-Encoding
x-nf-request-id: 01H0YNN11D8CRMKGKMDWAQ9TMJ
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OfTgP3ImDXo0q%2BSU%2FxFwa3edyYQLFN9tGClsvbeCU0Fvj2Q2uWNhky43XsTMA2grRiTle3RxNXC%2B3O4BOeaSrclrj6RZxd%2BWttYVTAstsQgsKS3xv8WERAuUVPVq7qpiqA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cafcf811e970b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
rewardriot.xyz/root/spinwhel-SA-v2?bemobdata=c=3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l=4a154c0d-3e18-4dd6-b843-054e26cf681d..a=0..b=0..ts=1684703471881
172.67.131.105301 Moved Permanently 16 kB URL User Request GET HTTP/2 rewardriot.xyz/root/spinwhel-SA-v2?bemobdata=c=3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l=4a154c0d-3e18-4dd6-b843-054e26cf681d..a=0..b=0..ts=1684703471881
IP 172.67.131.105:443
Certificate IssuerGoogle Trust Services LLC
Subjectrewardriot.xyz
FingerprintCF:E3:DF:85:34:2A:A4:FF:07:36:24:4D:A6:06:6B:F6:C9:FA:2A:0C
ValidityThu, 18 May 2023 18:01:07 GMT - Wed, 16 Aug 2023 18:01:06 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /root/spinwhel-SA-v2?bemobdata=c=3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l=4a154c0d-3e18-4dd6-b843-054e26cf681d..a=0..b=0..ts=1684703471881 HTTP/1.1
Host: rewardriot.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Sun, 21 May 2023 21:11:12 GMT
content-type: text/html; charset=UTF-8
accept-ranges: bytes
age: 113758
cache-control: public, max-age=0, must-revalidate
location: /root/spinwhel-sa-v2/?bemobdata=c=3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l=4a154c0d-3e18-4dd6-b843-054e26cf681d..a=0..b=0..ts=1684703471881
x-nf-request-id: 01H102DTY7M25DC54XJD9AG1GH
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=M7CXNQjesMYVHmv2p4s1oF%2BpYLTOJD90PYZLizyTpnTNG30ioLMaQfAarPAbAv2xwkzZXcnQEFRYfz992g%2BRRoNiWWIsLyK%2F7aiJZtpAsPR4D6h6e3uZ0R%2BcFTHlwAwA9A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cafcf7f2a3bb527-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bigrourg.net/zone?&pub=0&zone_id=5111789&is_mobile=false&domain=rewardriot.xyz&var=&ymid=&var_3=&var_4=&dsig=&action=prerequest
139.45.197.251200 OK 0 B URL POST HTTP/2 bigrourg.net/zone?&pub=0&zone_id=5111789&is_mobile=false&domain=rewardriot.xyz&var=&ymid=&var_3=&var_4=&dsig=&action=prerequest
IP 139.45.197.251:443
Requested by https://rewardriot.xyz/root/spinwhel-sa-v2/?bemobdata=c=3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l=4a154c0d-3e18-4dd6-b843-054e26cf681d..a=0..b=0..ts=1684703471881
Certificate IssuerLet's Encrypt
Subjectbigrourg.net
FingerprintF9:70:DF:80:F4:C5:82:19:2E:60:E6:DD:8F:04:2D:2D:21:6E:2B:25
ValiditySun, 21 May 2023 05:24:52 GMT - Sat, 19 Aug 2023 05:24:51 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /zone?&pub=0&zone_id=5111789&is_mobile=false&domain=rewardriot.xyz&var=&ymid=&var_3=&var_4=&dsig=&action=prerequest HTTP/1.1
Host: bigrourg.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rewardriot.xyz
DNT: 1
Connection: keep-alive
Referer: https://rewardriot.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
server: nginx
date: Sun, 21 May 2023 21:11:13 GMT
content-length: 0
x-trace-id: c430bca56f8137c2c03351dc943f0dd8
access-control-allow-origin: https://rewardriot.xyz
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
my.rtmark.net/img.gif?f=sync&partner=c8148a148dc3ac2d049de99d90ee0c710bedff256ce7e898b836a190a3d87f84&ttl=&rurl=https%3A%2F%2Frewardriot.xyz%2Froot%2Fspinwhel-sa-v2%2F%3Fbemobdata%3Dc%3D3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l%3D4a154c0d-3e18-4dd6-b843-054e26cf681d..a%3D0..b%3D0..ts%3D1684703471881%23
139.45.195.8200 OK 43 B URL GET HTTP/2 my.rtmark.net/img.gif?f=sync&partner=c8148a148dc3ac2d049de99d90ee0c710bedff256ce7e898b836a190a3d87f84&ttl=&rurl=https%3A%2F%2Frewardriot.xyz%2Froot%2Fspinwhel-sa-v2%2F%3Fbemobdata%3Dc%3D3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l%3D4a154c0d-3e18-4dd6-b843-054e26cf681d..a%3D0..b%3D0..ts%3D1684703471881%23
IP 139.45.195.8:443
Requested by https://rewardriot.xyz/root/spinwhel-sa-v2/?bemobdata=c=3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l=4a154c0d-3e18-4dd6-b843-054e26cf681d..a=0..b=0..ts=1684703471881
Certificate IssuerLet's Encrypt
Subjectrtmark.net
Fingerprint84:56:36:C3:24:DE:FB:F0:E7:EB:EB:9D:C8:B6:28:31:B5:3C:8B:80
ValiditySat, 06 May 2023 08:48:01 GMT - Fri, 04 Aug 2023 08:48:00 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /img.gif?f=sync&partner=c8148a148dc3ac2d049de99d90ee0c710bedff256ce7e898b836a190a3d87f84&ttl=&rurl=https%3A%2F%2Frewardriot.xyz%2Froot%2Fspinwhel-sa-v2%2F%3Fbemobdata%3Dc%3D3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l%3D4a154c0d-3e18-4dd6-b843-054e26cf681d..a%3D0..b%3D0..ts%3D1684703471881%23 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardriot.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 21 May 2023 21:11:13 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=d2ee08f439e046a9b79d37d835b0d08b; expires=Mon, 20 May 2024 21:11:13 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
bigrourg.net/pfe/current/micro.tag.min.js?z=5111789&sw=/sw-check-permissions-aae63.js
139.45.197.251200 OK 42 kB URL GET HTTP/2 bigrourg.net/pfe/current/micro.tag.min.js?z=5111789&sw=/sw-check-permissions-aae63.js
IP 139.45.197.251:443
Requested by https://rewardriot.xyz/root/spinwhel-sa-v2/?bemobdata=c=3fd2c679-1c79-46b9-a6bf-b272d332f3fe..l=4a154c0d-3e18-4dd6-b843-054e26cf681d..a=0..b=0..ts=1684703471881
Certificate IssuerLet's Encrypt
Subjectbigrourg.net
FingerprintF9:70:DF:80:F4:C5:82:19:2E:60:E6:DD:8F:04:2D:2D:21:6E:2B:25
ValiditySun, 21 May 2023 05:24:52 GMT - Sat, 19 Aug 2023 05:24:51 GMT
File type C source, ASCII text, with very long lines (41979), with no line terminators
Hash d44fd7b96fceca8f81b472766025d0d2
237541097413baf5cd3e703413f8bc9ea538a4db
b6c7c1e7fb1a437f100bdcb253df8b0468f130835fbb82c5687505a099997d16
GET /pfe/current/micro.tag.min.js?z=5111789&sw=/sw-check-permissions-aae63.js HTTP/1.1
Host: bigrourg.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardriot.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 21 May 2023 21:11:13 GMT
content-type: application/javascript
last-modified: Thu, 11 May 2023 14:20:13 GMT
etag: W/"645cf99d-a3fb"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2