Report - nsjd.ktt55.my.id/

Report Overview

Submitted URL
nsjd.ktt55.my.id/
IP
104.21.17.78
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-26 03:46:43
Access
public
Website Title
Top up FF | Diamond Free Fire Murah | Codashop
Final URL
nsjd.ktt55.my.id/free-fire/
Tags
suspicious
urlquery detections
Suspicious - Anti-debugging code

Detections

urlquery
3
Network Intrusion Detection
0
Threat Detection Systems
16

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
ajax.googleapis.com	12905	2005-01-25	2013-08-16	2024-04-25	431 B	32 kB	142.250.74.170
icon-library.com	74653	2020-01-03	2020-01-09	2024-03-27	456 B	17 kB	104.26.11.155
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-04-25	511 B	16 kB	142.250.74.67
script.tapfiliate.com	32485	2014-01-10	2018-06-18	2024-04-24	412 B	12 kB	54.230.111.8
stackpath.bootstrapcdn.com	2467	2012-05-25	2018-06-15	2024-04-25	492 B	32 kB	104.18.10.207
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17	2024-04-24	489 B	7.3 kB	104.17.24.14
i.postimg.cc	23840	2016-06-11	2018-04-11	2024-04-25	437 B	14 kB	162.19.88.68
cdn-www.bluestacks.com	248087	2010-10-27	2015-06-23	2024-04-22	473 B	105 kB	23.36.76.91
d1qgcmfii0ptfa.cloudfront.net	unknown	2008-04-25	2016-07-28	2024-04-18	940 B	6.4 kB	143.204.42.123
www.gstatic.com	unknown	2008-02-11	2016-07-26	2024-04-25	1.9 kB	442 kB	142.250.74.35
cdn1.codashop.com	218452	unknown	2020-11-16	2024-04-18	18 kB	1.7 MB	143.204.55.85
nsjd.ktt55.my.id	unknown	unknown	No data	No data	3.6 kB	220 kB	104.21.17.78
i.ibb.co	13485	2010-07-20	2018-11-25	2024-04-24	424 B	4.0 kB	162.19.58.156
www.google.com	7	1997-09-15	2015-05-10	2024-03-23	1.1 kB	125 kB	142.250.74.164

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-04-25	medium	nsjd.ktt55.my.id/	Coda Payments
2024-04-25	medium	nsjd.ktt55.my.id/	Coda Payments
2024-04-25	medium	nsjd.ktt55.my.id/	Coda Payments
2024-04-25	medium	nsjd.ktt55.my.id/	Coda Payments
2024-04-25	medium	nsjd.ktt55.my.id/	Coda Payments
2024-04-25	medium	nsjd.ktt55.my.id/	Coda Payments
2024-04-25	medium	nsjd.ktt55.my.id/	Coda Payments
2024-04-25	medium	nsjd.ktt55.my.id/	Coda Payments

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (22)

	URL	Size	First Seen	Last Seen
	cdn1.codashop.com/S2/content/mobile/js/freefire.4a7a9740bc.js	520 B	2023-03-07	2024-04-30
Pretty URL cdn1.codashop.com/S2/content/mobile/js/freefire.4a7a9740bc.js IP 143.204.55.85 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:50 Last Seen2024-04-30 19:37:41 Times Seen1497 Hash 4a7a9740bcf8062898a69cb939b84746 948bbea618cae328d0acb4cea603023da671358c c636bd0ea30e4e99b8ef807c5561df5064f8c1bd84b08038cdad8bdf989c7822 Loading...

	cdn1.codashop.com/S2/content/common/js/third_party_common.0859f0e010.js	278 B	2023-03-07	2024-04-30
Pretty URL cdn1.codashop.com/S2/content/common/js/third_party_common.0859f0e010.js IP 143.204.55.85 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:50 Last Seen2024-04-30 19:37:41 Times Seen1496 Hash 0859f0e01014515a05f1738b1ad2975d 2ce5a8530a35a3df627384c63add94b4324ab222 d617f26025f9d24f380f09a7fa7bec6d0306163e75de36e17fc198f4d8450a5b Loading...

	nsjd.ktt55.my.id/free-fire/	787 B	2023-03-07	2024-04-30
Pretty URL nsjd.ktt55.my.id/free-fire/ IP 104.21.17.78 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:03:50 Last Seen2024-04-30 07:42:25 Times Seen653 Hash 78204552467198b4ddd46217031b535e 9bed8323e0432e343ef6f76501cedfad04756a8a cdb154013ad7fab86d4315de929cdb60f86f0a42426c888ba073f1112cb03658 Loading...

	www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js	518 kB	2024-04-24	2024-05-05
Pretty URL www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js IP 142.250.74.35 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 09:18:30 Last Seen2024-05-05 10:50:39 Times Seen7089 Hash e2e79d6b927169d9e0e57e3baecc0993 1299473950b2999ba0b7f39bd5e4a60eafd1819d 231336ed913a5ebd4445b85486e053caf2b81cab91318241375f3f7a245b6c6b Loading...

	cdn1.codashop.com/S/content/common/js/xss.min.js	29 kB	2023-03-07	2024-04-30
Pretty URL cdn1.codashop.com/S/content/common/js/xss.min.js IP 143.204.55.85 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:50 Last Seen2024-04-30 19:37:42 Times Seen1446 Hash 4947ff982fb69173f95da79b538f254d 884db3bf10e92790cf6d9937731f70d59c87cc9f 0278b60e08b67fb8ae86c56dd80075e94e1d51113eb21ade41996147c601dfe6 Loading...

	ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js	90 kB	2023-03-07	2024-05-05
Pretty URL ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js IP 142.250.74.170 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-05-05 10:56:42 Times Seen141552 Hash dc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d Loading...

	cdn1.codashop.com/S2/content/common/js/infoBar.38acc407b3.js	2.1 kB	2023-03-07	2024-04-30
Pretty URL cdn1.codashop.com/S2/content/common/js/infoBar.38acc407b3.js IP 143.204.55.85 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:50 Last Seen2024-04-30 19:37:41 Times Seen761 Hash 38acc407b31daa48fafd99a877c64b5d 2d4ff63b5c01682308051b7c70c4d97861be9bc6 fd9e295b54bddbda076cb3b98f340699091fa8d67907462a3924b37ef061deb1 Loading...

	nsjd.ktt55.my.id/free-fire/	256 B	2023-03-07	2024-04-30
Pretty URL nsjd.ktt55.my.id/free-fire/ IP 104.21.17.78 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:03:50 Last Seen2024-04-30 07:42:25 Times Seen628 Hash 9749088cd28ec091201d3cb14d95581c 20e88e906497f7f2daa0e06bfb9c6217144cfc80 6657b4f64a55730a32d9db182a3f72ac47b8b39ff8b44919d80cd726f7465202 Loading...

	nsjd.ktt55.my.id/free-fire/	3.3 kB	2023-05-26	2024-04-30
Pretty URL nsjd.ktt55.my.id/free-fire/ IP 104.21.17.78 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-26 20:48:51 Last Seen2024-04-30 07:42:25 Times Seen194 Hash a478291dd1fd8750ca8a387f4c3ffaaa 6964b70e52afe6892d6a96207e654f3dc900a8c6 0768c8459876482f1b153a2069d0c2316487d32fa2ed6bf6c8a622b7c075b662 Loading...

	nsjd.ktt55.my.id/free-fire/	353 B	2023-03-07	2024-04-30
Pretty URL nsjd.ktt55.my.id/free-fire/ IP 104.21.17.78 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:03:50 Last Seen2024-04-30 07:42:25 Times Seen627 Hash 3cb67c602a896c75ea44b3c3ab156e97 1377e5053b418d6edcc281707f700ac6369e8ee3 3ca65a76ffb8aecb426396466129c1164f4c529ec0d4824aefcf947f8632d3cc Loading...

	cdn1.codashop.com/S2/content/common/js/shop-topnav2.7e1fed6bdf.js	7.2 kB	2023-03-07	2024-04-30
Pretty URL cdn1.codashop.com/S2/content/common/js/shop-topnav2.7e1fed6bdf.js IP 143.204.55.85 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:50 Last Seen2024-04-30 19:37:41 Times Seen761 Hash 7e1fed6bdfc0657c0dedc6e6c19553fa 558908ad0be5bd05f13a8053c6cfde0341bc6c08 3674e598baf27dfcea3bddbc29783b85fd74934f69a34920a061139d2149d7ec Loading...

	cdn1.codashop.com/S2/content/common/js/faq.7a04e34b3d.js	824 B	2023-03-07	2024-04-30
Pretty URL cdn1.codashop.com/S2/content/common/js/faq.7a04e34b3d.js IP 143.204.55.85 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:50 Last Seen2024-04-30 19:37:41 Times Seen1471 Hash 7a04e34b3d63def624af82ba6df461ba 023f366b89c8f008ac2bde6246dd9774a21bccd4 0af099b192033202033bb4999ec904031c72f05ed158816144cb898423a3eb72 Loading...

	nsjd.ktt55.my.id/free-fire/	398 B	2023-03-07	2024-04-30
Pretty URL nsjd.ktt55.my.id/free-fire/ IP 104.21.17.78 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:03:50 Last Seen2024-04-30 07:42:25 Times Seen627 Hash 70dc9f5fe8bbbd0986c2672b5950a1b7 e19f6a7db41e640b3b493f3ea10064defcab4dee d67dfae548c27915d244e06949a47920e48166f1ad83b202f25c710b2195195f Loading...

	script.tapfiliate.com/tapfiliate.js	12 kB	2023-03-08	2024-05-03
Pretty URL script.tapfiliate.com/tapfiliate.js IP 54.230.111.8 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:46:13 Last Seen2024-05-03 13:00:48 Times Seen2109 Hash ddbb39a9e8e67d5067145f8aa76b938d 2f7cacfbcaaf8291a1a933898d1dff0b21edf1cb 44798a517a7c8d28c1e371a1b8b869bae1608bd48df7ed50800cbed8703612c1 Loading...

	cdn1.codashop.com/S/content/common/js/jquery.mask.min.js	7.4 kB	2023-03-07	2024-05-03
Pretty URL cdn1.codashop.com/S/content/common/js/jquery.mask.min.js IP 143.204.55.85 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:50 Last Seen2024-05-03 18:33:04 Times Seen888 Hash 35d9db48e3112f35d81e70b98457aa42 7baded3da3bae7598688ad6c89800b88cdb49fdd 5f8e21f061de1874e4af063f095a389187c40583c9033946e406a8bb825ca358 Loading...

	nsjd.ktt55.my.id/free-fire/	6.6 kB	2023-05-26	2024-04-30
Pretty URL nsjd.ktt55.my.id/free-fire/ IP 104.21.17.78 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-26 20:48:51 Last Seen2024-04-30 07:42:25 Times Seen194 Hash c37079469679948f4e32eafd3f5f1b00 48fcd83a27bdf1bec5fac9b3ae6cc652f7ec1aff 349b8e91e2eecd3cc897ee2f15497656d59ae68d5d1d7f263d84c218e8530d66 Loading...

	nsjd.ktt55.my.id/free-fire/	446 B	2023-03-07	2024-04-30
Pretty URL nsjd.ktt55.my.id/free-fire/ IP 104.21.17.78 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:03:50 Last Seen2024-04-30 07:42:25 Times Seen624 Hash 4e92a9ebd1ac57950582772492502788 9240bf5716226798293326e9d7aa744cc5e8b0de bb8ee3b4b0c0a68c991ddde84b7c791dba50897853224a87ceebd9af68ca4169 Loading...

	nsjd.ktt55.my.id/free-fire/	527 B	2023-05-25	2024-04-30
Pretty URL nsjd.ktt55.my.id/free-fire/ IP 104.21.17.78 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-25 04:42:11 Last Seen2024-04-30 07:42:25 Times Seen229 Hash 97854cd3a3a3cab03f90909c40f88e5b a70e1823fc0e5a6ccb8655913069e1ec893e9b79 0b3abb9119e4adbeafec9d22dc054efceee39c332c59cd24c5da7cf01dd0b19d Loading...

	nsjd.ktt55.my.id/free-fire/	297 B	2023-03-07	2024-04-30
Pretty URL nsjd.ktt55.my.id/free-fire/ IP 104.21.17.78 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:03:50 Last Seen2024-04-30 07:42:25 Times Seen261 Hash 6d8e2a9bc53b214e6bd9c87133ec3bb6 8665dd95a677931eb8f26f29eeb04290163ed77c 3f4b32039543ed7f437eb35d2c3c419ad17007210dcec79ed5f803584c85713e Loading...

	cdn1.codashop.com/S2/content/common/js/payment-channel-suggestion.535f3c6f70.js	1.9 kB	2023-03-07	2024-04-30
Pretty URL cdn1.codashop.com/S2/content/common/js/payment-channel-suggestion.535f3c6f70.js IP 143.204.55.85 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:50 Last Seen2024-04-30 19:37:41 Times Seen743 Hash 535f3c6f7015dbae9e6b2a4987192e2b e356ddac477467b6d240894078fe01320bdfa950 250e11fdf553a784636f5a080fcd88f11f15e8d892c95be88dfc391c515662ca Loading...

	www.google.com/recaptcha/api.js	850 B	2024-04-24	2024-05-05
Pretty URL www.google.com/recaptcha/api.js IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 09:35:35 Last Seen2024-05-05 07:36:45 Times Seen1143 Hash ee87fd4035a91d937ff13613982b4170 e897502e3a58c6be2b64da98474f0d405787f5f7 7649b605b4f35666df5cbcbb03597306d9215f53f61c2a097f085fa39af9859f Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6Lc8br0ZAAAAAOAZHpdE1Fm9RA9tK85W3ano_l0-&co=aHR0cHM6Ly9uc2pkLmt0dDU1Lm15LmlkOjQ0Mw..&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=normal&cb=1p118omlumk9	0 B	2023-03-07	2024-05-05
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6Lc8br0ZAAAAAOAZHpdE1Fm9RA9tK85W3ano_l0-&co=aHR0cHM6Ly9uc2pkLmt0dDU1Lm15LmlkOjQ0Mw..&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=normal&cb=1p118omlumk9 IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-05 11:16:57 Times Seen37357446 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

HTTP Transactions (62)

URL IP Response Size

cdnjs.cloudflare.com/ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.css

104.17.24.14

200 OK

6.3 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.css
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nsjd.ktt55.my.id/free-fire/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text
Size
6.3 kB (6252 bytes)
Hash
0920ea34072683229e6ea8299345cd09
0903033a844336f7c78ed4abbbcd92cd3115a03e
f37d6f502a5a961ac5c3f17c8d58685ff6b0dc0f69c2dcdd379ccabc96ec3bf2

HTTP Headers

GET /ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsjd.ktt55.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 Apr 2024 03:46:16 GMT
content-type: text/css; charset=utf-8
content-length: 6252
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ed9-14d38"
last-modified: Mon, 04 May 2020 16:12:09 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 110677
expires: Wed, 16 Apr 2025 03:46:16 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=L8lsXS0HcjkCJwsuuHyRfglGhklaTokOnmCT79pVxIP%2FftMf947qKaO1o0EviJeS3xsd%2BKG0G0%2FGL8LInL8LNlSvzW6oFjmmw7i9JlsnufVKR37rXKnauN4CInQmPDp2BL82cEgf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87a395b3ff33b52d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js

142.250.74.170

200 OK

31 kB

URL GET HTTP/2
ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js
IP
142.250.74.170:443
ASN
#15169 GOOGLE

Requested by
https://nsjd.ktt55.my.id/free-fire/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
31 kB (31021 bytes)
Hash
dc5e7f18c8d36ac1d3d4753a87c98d0a
c8e1c8b386dc5b7a9184c763c88d19a346eb3342
f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d

HTTP Headers

GET /ajax/libs/jquery/3.5.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsjd.ktt55.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31021
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 09:56:44 GMT
expires: Wed, 23 Apr 2025 09:56:44 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 236972
last-modified: Fri, 08 May 2020 07:05:03 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn1.codashop.com/S/content/social-media-logo/36/socmed-youtube-H36.png

143.204.55.85

200 OK

2.2 kB

URL GET HTTP/2
cdn1.codashop.com/S/content/social-media-logo/36/socmed-youtube-H36.png
IP
143.204.55.85:443
ASN
#16509 AMAZON-02

Requested by
https://nsjd.ktt55.my.id/free-fire/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
PNG image data, 51 x 36, 8-bit/color RGBA, non-interlaced
Size
2.2 kB (2216 bytes)
Hash
123c968b7d12fcf714b9d2af208d666a
e81c6311be251ac7a4174d6a16c772e8ac78528e
dcf5dc23bfca5d9b4b2a36c9db76f5375f51417bde2b33f1c60e3925c814d361

HTTP Headers

GET /S/content/social-media-logo/36/socmed-youtube-H36.png HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsjd.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 2216
last-modified: Fri, 24 Apr 2020 04:39:27 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Thu, 25 Apr 2024 03:57:21 GMT
etag: "123c968b7d12fcf714b9d2af208d666a"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: _o10J2pxqtIVMvV963SinGTqCER_ES-Xu3j-wwoFtu4-gfniEDy8Kg==
age: 85735
X-Firefox-Spdy: h2

cdn1.codashop.com/S/content/social-media-logo/36/socmed-facebook-H36.png

143.204.55.85

200 OK

2.9 kB

URL GET HTTP/2
cdn1.codashop.com/S/content/social-media-logo/36/socmed-facebook-H36.png
IP
143.204.55.85:443
ASN
#16509 AMAZON-02

Requested by
https://nsjd.ktt55.my.id/free-fire/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
PNG image data, 36 x 36, 8-bit/color RGBA, non-interlaced
Size
2.9 kB (2890 bytes)
Hash
cf9659fa3891add490cb7d0d099d72ac
85581945ff05f48b3a652ba3e90ae44d97b18cf1
76db9987bb4f902e6d4a6702577717a6d6afff1bef8eb6dfce62c5c69e8d707d

HTTP Headers

GET /S/content/social-media-logo/36/socmed-facebook-H36.png HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsjd.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 2890
last-modified: Fri, 24 Apr 2020 04:39:27 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Fri, 26 Apr 2024 03:46:16 GMT
etag: "cf9659fa3891add490cb7d0d099d72ac"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ASq01BRfyA5E5xl-dDTgEEIpZXSHVpuCyK9hVH0KckP4C26SGML__Q==
age: 4337
X-Firefox-Spdy: h2

cdn1.codashop.com/S/content/social-media-logo/36/socmed-instagram-H36.png

143.204.55.85

200 OK

4.7 kB

URL GET HTTP/2
cdn1.codashop.com/S/content/social-media-logo/36/socmed-instagram-H36.png
IP
143.204.55.85:443
ASN
#16509 AMAZON-02

Requested by
https://nsjd.ktt55.my.id/free-fire/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
PNG image data, 36 x 36, 8-bit/color RGBA, non-interlaced
Size
4.7 kB (4678 bytes)
Hash
a91be2e400b7f0dc66247427dfaffcf3
900e87486aa051659e114eb5b7a2980d75e7889a
62437412556a804293516df99c0970427549b1a50258462035410072f96dd093

HTTP Headers

GET /S/content/social-media-logo/36/socmed-instagram-H36.png HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsjd.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 4678
last-modified: Fri, 24 Apr 2020 04:39:27 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Fri, 26 Apr 2024 03:46:16 GMT
etag: "a91be2e400b7f0dc66247427dfaffcf3"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: _a5pFP7FVt1F80LzdCgF7z7591U2WBciq2UaqptXBmNJqIuXMF9Dag==
age: 10547
X-Firefox-Spdy: h2

cdn1.codashop.com/S2/content/mobile/images/error-icon.20986d3fe0.png

143.204.55.85

200 OK

802 B

URL GET HTTP/2
cdn1.codashop.com/S2/content/mobile/images/error-icon.20986d3fe0.png
IP
143.204.55.85:443
ASN
#16509 AMAZON-02

Requested by
https://nsjd.ktt55.my.id/free-fire/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
PNG image data, 38 x 38, 8-bit colormap, non-interlaced
Size
802 B (802 bytes)
Hash
20986d3fe0ddac454b9f46bc34ce8952
defb0e4158b8a9576e663b240336a9bbb28d3267
d7ece5222547615bcb5066478f209b6a3e7c3b3c88667972e937c8481688eed7

HTTP Headers

GET /S2/content/mobile/images/error-icon.20986d3fe0.png HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsjd.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 802
last-modified: Tue, 14 Dec 2021 02:49:38 GMT
x-amz-version-id: yQvHZsqjV.2CRKMhv5iNVz5bc0xc5Mqc
accept-ranges: bytes
server: AmazonS3
date: Thu, 25 Apr 2024 06:34:41 GMT
etag: "20986d3fe0ddac454b9f46bc34ce8952"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 7uKoC79CFDtksaEesx1_jvcw8bgvOdqvjrXxiaOAmyK8S1oEbwERdA==
age: 76296
X-Firefox-Spdy: h2

cdn1.codashop.com/S/content/mobile/images/codashop-logo-new-2x.png

143.204.55.85

200 OK

3.4 kB

URL GET HTTP/2
cdn1.codashop.com/S/content/mobile/images/codashop-logo-new-2x.png
IP
143.204.55.85:443
ASN
#16509 AMAZON-02

Requested by
https://nsjd.ktt55.my.id/free-fire/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
PNG image data, 636 x 140, 8-bit colormap, non-interlaced
Size
3.4 kB (3353 bytes)
Hash
d0ce400f6d6f397ddca5e460210db19e
159ccb2fcde33529a29fc6df64a09acb2476eba6
cb22f766a2a1a451da510ee5c58242cf074482075e3881e01ec24bbb47d025d3

HTTP Headers

GET /S/content/mobile/images/codashop-logo-new-2x.png HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsjd.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 3353
last-modified: Mon, 12 Jul 2021 11:10:08 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Thu, 25 Apr 2024 06:34:41 GMT
etag: "d0ce400f6d6f397ddca5e460210db19e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Mib4sbjZIiidwvEKThBUFE6ip_Nn_FPbmcJ_kfTxt5XCxRy3bmdFRA==
age: 76296
X-Firefox-Spdy: h2

cdn1.codashop.com/S2/content/mobile/js/freefire.4a7a9740bc.js

143.204.55.85

200 OK

520 B

URL GET HTTP/2
cdn1.codashop.com/S2/content/mobile/js/freefire.4a7a9740bc.js
IP
143.204.55.85:443
ASN
#16509 AMAZON-02

Requested by
https://nsjd.ktt55.my.id/free-fire/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (520), with no line terminators
Size
520 B (520 bytes)
Hash
4a7a9740bcf8062898a69cb939b84746
948bbea618cae328d0acb4cea603023da671358c
c636bd0ea30e4e99b8ef807c5561df5064f8c1bd84b08038cdad8bdf989c7822

HTTP Headers

GET /S2/content/mobile/js/freefire.4a7a9740bc.js HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsjd.ktt55.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
content-length: 520
last-modified: Tue, 23 Apr 2024 06:11:17 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: 9GujOsismVXsqihEtQdfSR66E_zf6j1P
accept-ranges: bytes
server: AmazonS3
date: Thu, 25 Apr 2024 07:57:27 GMT
etag: "4a7a9740bcf8062898a69cb939b84746"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: aTASTa0kq9HrrBU3GHAdZoMzf3pNwsFuaLFbtMu8MOH5sxi-k4MMCQ==
age: 71330
X-Firefox-Spdy: h2

cdn1.codashop.com/S/content/common/images/mno/freefire_new_640x241.jpg

143.204.55.85

200 OK

54 kB

URL GET HTTP/2
cdn1.codashop.com/S/content/common/images/mno/freefire_new_640x241.jpg
IP
143.204.55.85:443
ASN
#16509 AMAZON-02

Requested by
https://nsjd.ktt55.my.id/free-fire/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 640x241, components 3
Size
54 kB (53533 bytes)
Hash
8e5bb390d9e0f12905481edac5e46539
c9d5677d4d96847df61e41b8d1ce5fa750eb834f
5bebf695d8569b372a8b99bb7bd08bccf0158f0ce3400469cafe685f3971ba5d

HTTP Headers

GET /S/content/common/images/mno/freefire_new_640x241.jpg HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsjd.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
content-length: 53533
date: Thu, 25 Apr 2024 03:54:10 GMT
last-modified: Fri, 01 Sep 2023 07:44:38 GMT
etag: "8e5bb390d9e0f12905481edac5e46539"
x-amz-server-side-encryption: AES256
x-amz-version-id: 0KBjyiuNH1PeQRH3zwi23nW4fDwvGvAM
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: qvmWt7Ykwa19WHAIUtPe431ZzPKkio3fOkHk5_4oZ22GDfOlXr3QSA==
age: 85927
X-Firefox-Spdy: h2

cdn1.codashop.com/S2/content/mobile/css/infoBar.662b8f1b5f.css

143.204.55.85

200 OK

960 B

URL GET HTTP/2
cdn1.codashop.com/S2/content/mobile/css/infoBar.662b8f1b5f.css
IP
143.204.55.85:443
ASN
#16509 AMAZON-02

Requested by
https://nsjd.ktt55.my.id/free-fire/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (960), with no line terminators
Size
960 B (960 bytes)
Hash
662b8f1b5f919912c1df4b367bff2cc1
2be016ac1842ccd1c46f24f3908e0567916b3857
649336097b307d0d03ecf4b5625f62576ced687e627233bf62f73ea4c1375395

HTTP Headers

GET /S2/content/mobile/css/infoBar.662b8f1b5f.css HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsjd.ktt55.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: text/css
content-length: 960
last-modified: Tue, 23 Apr 2024 06:11:16 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: FVJp4s4hv3VbFtrJShUaumjGHOliLz5E
accept-ranges: bytes
server: AmazonS3
date: Thu, 25 Apr 2024 07:26:23 GMT
etag: "662b8f1b5f919912c1df4b367bff2cc1"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: yAeJ-DntLHAMG3XRHYyw_mzQ5QWlSB68GUFyc6G5MufBOFlNk-JjJQ==
age: 73194
X-Firefox-Spdy: h2

icon-library.com/images/vk-icon/vk-icon-28.jpg

104.26.11.155

200 OK

16 kB

URL GET HTTP/2
icon-library.com/images/vk-icon/vk-icon-28.jpg
IP
104.26.11.155:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nsjd.ktt55.my.id/free-fire/
Certificate
IssuerGoogle Trust Services LLC
Subjecticon-library.com
FingerprintA4:A9:B0:06:3C:55:29:F6:F4:F1:31:2C:16:EB:40:3D:5E:F1:B5:DD
ValidityMon, 18 Mar 2024 13:36:58 GMT - Sun, 16 Jun 2024 13:36:57 GMT

File type
PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced
Size
16 kB (16200 bytes)
Hash
b5af86a05a5a0ec827d4d9aa7a834a43
efe9a10ef6ff312c1bce1ed2dfa4bb75b9b176de
d58e787f4eaa1bfee5c58b23535ad1082b7ebf8ddb95c42521839b5b3058e795

HTTP Headers

GET /images/vk-icon/vk-icon-28.jpg HTTP/1.1
Host: icon-library.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsjd.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 26 Apr 2024 03:46:16 GMT
content-type: image/jpeg
content-length: 16200
cf-bgj: h2pri
last-modified: Wed, 10 Jul 2019 13:13:10 GMT
strict-transport-security: max-age=31536000;
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=a6CkIHba8SjivJqa7BK%2F%2BxvnxlQ17vBx84JF48%2FWylEoVMyqMwj8NpPyLX1wTlCEUM46iSoLJo6cMdH%2BmejImYBJ9HXkC9zHy1gon9fZLEOM22Veuw%2Bq9NzL1mSHUB%2Bo63M%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a395b438ca56ca-OSL
X-Firefox-Spdy: h2

cdn1.codashop.com/S2/content/common/js/faq.7a04e34b3d.js

143.204.55.85

200 OK

824 B

URL GET HTTP/2
cdn1.codashop.com/S2/content/common/js/faq.7a04e34b3d.js
IP
143.204.55.85:443
ASN
#16509 AMAZON-02

Requested by
https://nsjd.ktt55.my.id/free-fire/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (824), with no line terminators
Size
824 B (824 bytes)
Hash
7a04e34b3d63def624af82ba6df461ba
023f366b89c8f008ac2bde6246dd9774a21bccd4
0af099b192033202033bb4999ec904031c72f05ed158816144cb898423a3eb72

HTTP Headers

GET /S2/content/common/js/faq.7a04e34b3d.js HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsjd.ktt55.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 824
last-modified: Fri, 04 Sep 2020 02:37:42 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Thu, 25 Apr 2024 05:15:49 GMT
etag: "7a04e34b3d63def624af82ba6df461ba"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Y2xnHxT_SqyQ904ScBJTgW7T8Hjrnd5Dpy7FAa8nSRKNLqYDZTZJ7w==
age: 81028
X-Firefox-Spdy: h2

cdn1.codashop.com/S/content/common/images/promos/Community%20Banners/freefire_id_codaclub.jpeg

143.204.55.85

200 OK

29 kB

URL GET HTTP/2
cdn1.codashop.com/S/content/common/images/promos/Community%20Banners/freefire_id_codaclub.jpeg
IP
143.204.55.85:443
ASN
#16509 AMAZON-02

Requested by
https://nsjd.ktt55.my.id/free-fire/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 641x242, components 3
Size
29 kB (28559 bytes)
Hash
f93267a5b15f21f2c6f33e9bb893dfd1
3a88c25a20f79cf5fb6ebe3e34116678a43531ff
c9952880919057304eec16200ccd3f7b373d3ba7192c936b4a79ffca9b62ed35

HTTP Headers

GET /S/content/common/images/promos/Community%20Banners/freefire_id_codaclub.jpeg HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsjd.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
content-length: 28559
last-modified: Wed, 20 Jan 2021 10:28:50 GMT
x-amz-meta-sha256: c9952880919057304eec16200ccd3f7b373d3ba7192c936b4a79ffca9b62ed35
x-amz-meta-s3b-last-modified: 20210120T102030Z
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Thu, 25 Apr 2024 09:10:40 GMT
etag: "f93267a5b15f21f2c6f33e9bb893dfd1"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: B1_Sf-NSZ1-5xdt-xiy0qggUvoNqtWUt3JlN6DjMo3c3zIvLVSqKMw==
age: 66937
X-Firefox-Spdy: h2

nsjd.ktt55.my.id/img/facebook_text.png

104.21.17.78

200 OK

29 kB

URL GET HTTP/3
nsjd.ktt55.my.id/img/facebook_text.png
IP
104.21.17.78:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nsjd.ktt55.my.id/free-fire/
Certificate
IssuerGoogle Trust Services LLC
Subjectktt55.my.id
Fingerprint8A:ED:C5:91:EA:3A:47:4E:D2:1C:E4:11:78:2D:71:BC:1D:AA:DF:DE
ValiditySat, 16 Mar 2024 07:53:55 GMT - Fri, 14 Jun 2024 07:53:54 GMT

File type
PNG image data, 604 x 158, 8-bit/color RGBA, non-interlaced
Size
29 kB (28789 bytes)
Hash
74190b93fc4f5d88f0c8e6411ba20bd8
89ce2ecb660a90b8e6ed1b335443d7767c59f28a
092a3cd5f86b3f039feefdeb86694cd16ae545af214cfda614bdbbe2d1bde401

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Coda Payments

HTTP Headers

GET /img/facebook_text.png HTTP/1.1
Host: nsjd.ktt55.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsjd.ktt55.my.id/free-fire/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 03:46:17 GMT
content-type: image/png
content-length: 28789
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 03:46:16 GMT
last-modified: Thu, 03 Sep 2020 11:33:54 GMT
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HkbJaj%2F7kzGYKwQCJfA%2FAupD5WoKxjXsLjEq4yeqQaya4h8PDLCmWcnl5DQ4ChT0UwJLVHpVvX3s8AalG2%2FpZtKl5anncBkdHHJDqBbuYDfflCh0qypFFO3I%2FWGOU3qpjZh7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a395b3f97db515-OSL

cdn1.codashop.com/S/content/common/images/denom-image/FreeFire/Freefire_diamonds.png

143.204.55.85

200 OK

5.1 kB

URL GET HTTP/2
cdn1.codashop.com/S/content/common/images/denom-image/FreeFire/Freefire_diamonds.png
IP
143.204.55.85:443
ASN
#16509 AMAZON-02

Requested by
https://nsjd.ktt55.my.id/free-fire/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
PNG image data, 100 x 100, 8-bit colormap, non-interlaced
Size
5.1 kB (5052 bytes)
Hash
28380515fca2c6f9a34c8d63c84082ee
8f4e3f2a27ac7daf8d4ad527df869e3283280d2e
7c77ef25ab71668ce14480e52815e31bcf9e19f2409889048c0c00bde9716895

HTTP Headers

GET /S/content/common/images/denom-image/FreeFire/Freefire_diamonds.png HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsjd.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 5052
date: Fri, 26 Apr 2024 03:46:18 GMT
last-modified: Wed, 16 Mar 2022 14:39:10 GMT
etag: "28380515fca2c6f9a34c8d63c84082ee"
x-amz-version-id: M7elHFq6ZhRZdt3T0xX6NlAMaSWhq70l
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 9nvcnpcilfqxnx58tEsFvEQxU-LZmitjWH6KswsM3aP4JchT23qB1A==
X-Firefox-Spdy: h2

cdn1.codashop.com/S2/content/common/js/third_party_common.0859f0e010.js

143.204.55.85

200 OK

278 B

URL GET HTTP/2
cdn1.codashop.com/S2/content/common/js/third_party_common.0859f0e010.js
IP
143.204.55.85:443
ASN
#16509 AMAZON-02

Requested by
https://nsjd.ktt55.my.id/free-fire/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with no line terminators
Size
278 B (278 bytes)
Hash
0859f0e01014515a05f1738b1ad2975d
2ce5a8530a35a3df627384c63add94b4324ab222
d617f26025f9d24f380f09a7fa7bec6d0306163e75de36e17fc198f4d8450a5b

HTTP Headers

GET /S2/content/common/js/third_party_common.0859f0e010.js HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsjd.ktt55.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
content-length: 278
date: Fri, 26 Apr 2024 03:46:18 GMT
last-modified: Tue, 23 Apr 2024 06:11:16 GMT
etag: "0859f0e01014515a05f1738b1ad2975d"
x-amz-server-side-encryption: AES256
x-amz-version-id: ScaB9TMwHR7xgpnLkSa00IT27uLRWY6B
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: APIWtpeb4u2Kb-8jy4ETYP7WxgoBq9bMlvEtOOTcCaf3jdjurnQluA==
X-Firefox-Spdy: h2

cdn1.codashop.com/S/content/social-media-logo/36/socmed-facebook-msg-H36.png

143.204.55.85

200 OK

2.9 kB

URL GET HTTP/2
cdn1.codashop.com/S/content/social-media-logo/36/socmed-facebook-msg-H36.png
IP
143.204.55.85:443
ASN
#16509 AMAZON-02

Requested by
https://nsjd.ktt55.my.id/free-fire/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
PNG image data, 36 x 36, 8-bit/color RGBA, non-interlaced
Size
2.9 kB (2866 bytes)
Hash
e3443d0d8aea42fc61368b9792b6fdc3
6d0f867176171d6dd3fe1e052251b7fdc8c479ca
e6ff78cbc0e7a99c0243089cd0357f70d4432faea71e5b43ebfa466a166939d6

HTTP Headers

GET /S/content/social-media-logo/36/socmed-facebook-msg-H36.png HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsjd.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 2866
date: Fri, 26 Apr 2024 03:46:18 GMT
last-modified: Fri, 24 Apr 2020 04:39:27 GMT
etag: "e3443d0d8aea42fc61368b9792b6fdc3"
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: NsPCmPyqUJ655Q9qpntzeI7UZda2ZynB0XRq3UuM18ZtbpK5eJO_XA==
X-Firefox-Spdy: h2

i.ibb.co/jr5VL36/favicon.png

162.19.58.156

200 OK

3.7 kB

URL GET HTTP/2
i.ibb.co/jr5VL36/favicon.png
IP
162.19.58.156:443
ASN
#16276 OVH SAS

Requested by
https://nsjd.ktt55.my.id/free-fire/
Certificate
IssuerLet's Encrypt
Subjectibb.co
Fingerprint0C:8B:6F:2F:B8:9F:91:1E:3A:DD:B1:1B:45:47:B4:65:FD:56:73:3D
ValidityMon, 22 Apr 2024 06:29:44 GMT - Sun, 21 Jul 2024 06:29:43 GMT

File type
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Size
3.7 kB (3677 bytes)
Hash
036da5872428ec3279ad07f3074a8da7
d4bac7fce3fc291fc2452b6bc35b158c4ef309d1
d00bfe6cdff8e3c2370b458723c7db811efd563b36f1de3a02f28806db170981

HTTP Headers

GET /jr5VL36/favicon.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsjd.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 03:46:17 GMT
content-type: image/png
content-length: 3677
last-modified: Fri, 10 Sep 2021 14:31:05 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

i.postimg.cc/dQr9mRH4/codapaymentlogo.png

162.19.88.68

200 OK

13 kB

URL GET HTTP/2
i.postimg.cc/dQr9mRH4/codapaymentlogo.png
IP
162.19.88.68:443
ASN
#16276 OVH SAS

Requested by
https://nsjd.ktt55.my.id/free-fire/
Certificate
IssuerLet's Encrypt
Subjectpostimg.cc
Fingerprint53:90:A2:AC:6E:D0:9C:56:06:D5:4F:6E:EE:C9:67:58:10:CF:9A:D6
ValidityMon, 22 Apr 2024 06:32:22 GMT - Sun, 21 Jul 2024 06:32:21 GMT

File type
PNG image data, 1000 x 97, 8-bit/color RGBA, non-interlaced
Size
13 kB (13178 bytes)
Hash
f16535dba0fec2a6feb103ed45b30874
8cd27ad1904006b5db2570b0c320b757aadb98a2
af561f4a98032a04771de61aec77ae1fd118b138b9e45a2b7ca5826a3cb2b59b

HTTP Headers

GET /dQr9mRH4/codapaymentlogo.png HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsjd.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 03:46:17 GMT
content-type: image/png
content-length: 13178
last-modified: Tue, 15 Nov 2022 12:22:14 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn-www.bluestacks.com/bs-images/69b5965b1c8f0d20f45be82f0522d88a6bfa2ba0.png

23.36.76.91

200 OK

104 kB

URL GET HTTP/1.1
cdn-www.bluestacks.com/bs-images/69b5965b1c8f0d20f45be82f0522d88a6bfa2ba0.png
IP
23.36.76.91:443
ASN
#20940 Akamai International B.V.

Requested by
https://nsjd.ktt55.my.id/free-fire/
Certificate
IssuerDigiCert Inc
Subject*.bluestacks.com
Fingerprint6F:39:D8:89:B6:A0:49:A7:C7:FA:A6:D0:74:C1:EC:93:A6:61:C4:1B
ValidityThu, 11 Apr 2024 00:00:00 GMT - Fri, 11 Apr 2025 23:59:59 GMT

File type
PNG image data, 512 x 512, 8-bit colormap, non-interlaced
Size
104 kB (104257 bytes)
Hash
c3221b6f85d253041dd7a749046252b4
3c61d86b06e871c2c4ca2c4e2ecd99e396d81927
75b0515e2566cc4467be7033f6b62b384138c74aab296fb3a924fb4f6ccefa1e

HTTP Headers

GET /bs-images/69b5965b1c8f0d20f45be82f0522d88a6bfa2ba0.png HTTP/1.1
Host: cdn-www.bluestacks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsjd.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: Atvb972R4Szs+CRwixmkl9Rf/1CtZTXyAKpOUY08eIPahyRrRMLoIbdPiKghgvSRa/DFVkJbIh8=
x-amz-request-id: CTHA6MWVX14W7DYN
Last-Modified: Wed, 23 May 2018 17:39:54 GMT
ETag: "c3221b6f85d253041dd7a749046252b4"
x-amz-version-id: null
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 104257
Cache-Control: max-age=66955
Expires: Fri, 26 Apr 2024 22:22:12 GMT
Date: Fri, 26 Apr 2024 03:46:17 GMT
Alt-Svc: h3=":443"; ma=93600,h3-29=":443"; ma=93600,h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Connection: keep-alive

cdn1.codashop.com/S/content/common/images/grab.29dad06670f873936002ddb910253a4b.png

143.204.55.85

200 OK

62 kB

URL GET HTTP/2
cdn1.codashop.com/S/content/common/images/grab.29dad06670f873936002ddb910253a4b.png
IP
143.204.55.85:443
ASN
#16509 AMAZON-02

Requested by
https://nsjd.ktt55.my.id/free-fire/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
PNG image data, 2000 x 800, 8-bit/color RGBA, non-interlaced
Size
62 kB (61755 bytes)
Hash
29dad06670f873936002ddb910253a4b
523ee4adf550df78348cf7528580171f0828f2b4
8871194dc3ae9035b5bb04c84aa7b82afa7442daf2bab5f1393a5751e6082a10

HTTP Headers

GET /S/content/common/images/grab.29dad06670f873936002ddb910253a4b.png HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsjd.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 61755
date: Fri, 26 Apr 2024 03:46:18 GMT
last-modified: Tue, 05 May 2020 03:32:54 GMT
etag: "29dad06670f873936002ddb910253a4b"
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: mECW-SwLHDYKXF7T1aW6toaQRyG7d3XuRrwGlrfZ53h9Pzbe5kyIQA==
X-Firefox-Spdy: h2

cdn1.codashop.com/S/content/fonts/Lato/Lato-Regular.woff2

143.204.55.85

200 OK

28 kB

URL GET HTTP/2
cdn1.codashop.com/S/content/fonts/Lato/Lato-Regular.woff2
IP
143.204.55.85:443
ASN
#16509 AMAZON-02

Requested by
https://nsjd.ktt55.my.id/free-fire/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 28440, version 1.0
Size
28 kB (28440 bytes)
Hash
1031840a9580bcc9b1b83a047f2282b4
92eb819b7183fe6b04774a1003216991342e3af5
386695f80ed730cc1a3108b4d91fab24e1db1d9e5f13caa1f95095fb6f1de147

HTTP Headers

GET /S/content/fonts/Lato/Lato-Regular.woff2 HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nsjd.ktt55.my.id
DNT: 1
Connection: keep-alive
Referer: https://cdn1.codashop.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-length: 28440
date: Fri, 26 Apr 2024 02:29:20 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST
last-modified: Thu, 09 Apr 2020 13:54:30 GMT
etag: "1031840a9580bcc9b1b83a047f2282b4"
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
vary: Origin
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: fSpDKmTnbuuJLbumVEZ5qHP9Fw59bBkwO5yLk7FJE8GuTcMvrbe2-w==
age: 4617
X-Firefox-Spdy: h2

cdn1.codashop.com/S/content/fonts/Lato/Lato-Light.woff2

143.204.55.85

200 OK

208 kB

URL GET HTTP/2
cdn1.codashop.com/S/content/fonts/Lato/Lato-Light.woff2
IP
143.204.55.85:443
ASN
#16509 AMAZON-02

Requested by
https://nsjd.ktt55.my.id/free-fire/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 207880, version 1.0
Size
208 kB (207880 bytes)
Hash
01b5dcc68aff09201f8e83a5e1c568ee
59f494bd2df4ad954d32b8cae8b5800d4834d716
3d2b4deb945a2e8b4a4fd551bd5c41ce8719d34fa4caefb7385829cf85cb7590

HTTP Headers

GET /S/content/fonts/Lato/Lato-Light.woff2 HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nsjd.ktt55.my.id
DNT: 1
Connection: keep-alive
Referer: https://cdn1.codashop.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-length: 207880
date: Fri, 26 Apr 2024 02:29:20 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST
last-modified: Thu, 09 Apr 2020 14:21:48 GMT
etag: "01b5dcc68aff09201f8e83a5e1c568ee"
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
vary: Origin
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: G_IvGdUgLUCFHGnsRqlAcqiU0_eD5CqWW_ZXl3sN-mSJnMWRDszQUQ==
age: 4617
X-Firefox-Spdy: h2

cdn1.codashop.com/S/content/fonts/Noto/NotoSans-Regular.woff2

143.204.55.85

200 OK

118 kB

URL GET HTTP/2
cdn1.codashop.com/S/content/fonts/Noto/NotoSans-Regular.woff2
IP
143.204.55.85:443
ASN
#16509 AMAZON-02

Requested by
https://nsjd.ktt55.my.id/free-fire/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 117948, version 1.0
Size
118 kB (117948 bytes)
Hash
e50c34178d20d5fa4ab3c1f6c67901a9
655dcb4d829e2bc75e9a7cf8a2aa08f6a4513634
5b43a0c0c7874410cd01de2ec8684785b550295350f5d92901f4c9090f1ab019

HTTP Headers

GET /S/content/fonts/Noto/NotoSans-Regular.woff2 HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nsjd.ktt55.my.id
DNT: 1
Connection: keep-alive
Referer: https://cdn1.codashop.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 117948
date: Fri, 26 Apr 2024 02:29:20 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST
last-modified: Fri, 06 May 2022 11:41:27 GMT
etag: "e50c34178d20d5fa4ab3c1f6c67901a9"
cache-control: max-age=604800
x-amz-version-id: trEzvh6kI.WdcIb7.CUjjvIEEUDocBW7
accept-ranges: bytes
server: AmazonS3
vary: Origin
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 01tno8wUN3l_FauIxBH8gr7BhHFvmDjEwu2QBOi7Ck5tBVJLJ1rjkg==
age: 4617
X-Firefox-Spdy: h2

cdn1.codashop.com/S/content/fonts/Lato/Lato-Semibold.woff2

143.204.55.85

200 OK

213 kB

URL GET HTTP/2
cdn1.codashop.com/S/content/fonts/Lato/Lato-Semibold.woff2
IP
143.204.55.85:443
ASN
#16509 AMAZON-02

Requested by
https://nsjd.ktt55.my.id/free-fire/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 213284, version 1.0
Size
213 kB (213284 bytes)
Hash
3b2be91477b04924b538786080ff371b
1a76b7ffe7ba478a6a34323e85aa219f85eb8842
8817bfe4ce3f5f0a9e3e6221a052e51c5baf38ad16dc65af6753a4c4c4e00b99

HTTP Headers

GET /S/content/fonts/Lato/Lato-Semibold.woff2 HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nsjd.ktt55.my.id
DNT: 1
Connection: keep-alive
Referer: https://cdn1.codashop.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-length: 213284
date: Fri, 26 Apr 2024 02:29:20 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST
last-modified: Thu, 09 Apr 2020 14:29:03 GMT
etag: "3b2be91477b04924b538786080ff371b"
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
vary: Origin
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 3leQcG1WZBcH0Qigte-VZ_4KCG7_oFrD6Tp0K0CUhs0Hx2sqnvVmig==
age: 4617
X-Firefox-Spdy: h2

cdn1.codashop.com/S/content/common/css/jquery-ui-1.12.1.css

143.204.55.85

200 OK

220 kB

URL GET HTTP/2
cdn1.codashop.com/S/content/common/css/jquery-ui-1.12.1.css
IP
143.204.55.85:443
ASN
#16509 AMAZON-02

Requested by
https://nsjd.ktt55.my.id/free-fire/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
gzip compressed data, from Unix
Size
220 kB (219453 bytes)
Hash
8d35e1ec19d07f54885d5ebdd99a7700
110845bcb1bdda6a5195918a932711e847838a2e
7d4fc28666868953584612023cffcfe55bf43df699cdc19e1c17bb00e07208ff

HTTP Headers

GET /S/content/common/css/jquery-ui-1.12.1.css HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsjd.ktt55.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 20 Dec 2018 07:52:04 GMT
content-disposition: attachment
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Thu, 25 Apr 2024 06:34:41 GMT
etag: W/"c4a88ec0cb998929a670c0c58d7dc526"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 7yRiPOEfaXqkj4uE0c2wBFf6iJblgyaLRVeIx7fqz6jPuaF3DK2HbA==
age: 76296
X-Firefox-Spdy: h2

cdn1.codashop.com/S/content/fonts/Lato/Lato-Italic.woff2

143.204.55.85

200 OK

232 kB

URL GET HTTP/2
cdn1.codashop.com/S/content/fonts/Lato/Lato-Italic.woff2
IP
143.204.55.85:443
ASN
#16509 AMAZON-02

Requested by
https://nsjd.ktt55.my.id/free-fire/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 231712, version 1.0
Size
232 kB (231712 bytes)
Hash
fccd49e77f1d0fe7552d11ec3697a5c7
0314a4d1109fd76beb5ab8f28a402f920fc2a225
405dae7456bc82c5f43abde71fdddde1be42a759b1cc7db12756d3c119ae5457

HTTP Headers

GET /S/content/fonts/Lato/Lato-Italic.woff2 HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nsjd.ktt55.my.id
DNT: 1
Connection: keep-alive
Referer: https://cdn1.codashop.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-length: 231712
date: Fri, 26 Apr 2024 02:29:20 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST
last-modified: Thu, 09 Apr 2020 14:21:48 GMT
etag: "fccd49e77f1d0fe7552d11ec3697a5c7"
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
vary: Origin
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: X6JlWyxt5rZ-Sy6ewMx_3STkERBSd992fRDYVlw8YFZQ3EHgVWZ9Ug==
age: 4617
X-Firefox-Spdy: h2

www.google.com/recaptcha/api.js

142.250.74.164

200 OK

117 kB

URL GET HTTP/2
www.google.com/recaptcha/api.js
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://nsjd.ktt55.my.id/free-fire/
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintCD:48:2A:0C:60:1D:37:5A:D4:D5:A9:F7:DE:A0:2B:5E:2F:29:76:73
ValidityMon, 18 Mar 2024 20:38:49 GMT - Mon, 10 Jun 2024 20:38:48 GMT

File type
gzip compressed data
Size
117 kB (116567 bytes)
Hash
a010922f37f2913e100ced42c15d29f3
5701b6add4de4f39bbd6d4bbccad6293f5cea9d0
4b4976c3a9cfd191915ddeb31bbcfb08081df6afaa67857b912f082c344bb315

HTTP Headers

GET /recaptcha/api.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsjd.ktt55.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
expires: Fri, 26 Apr 2024 03:46:16 GMT
date: Fri, 26 Apr 2024 03:46:16 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

d1qgcmfii0ptfa.cloudfront.net/S/content/mobile/images/app_store_coda.png

143.204.42.123

200 OK

2.8 kB

URL GET HTTP/1.1
d1qgcmfii0ptfa.cloudfront.net/S/content/mobile/images/app_store_coda.png
IP
143.204.42.123:443
ASN
#16509 AMAZON-02

Requested by
https://nsjd.ktt55.my.id/free-fire/
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
PNG image data, 138 x 41, 8-bit colormap, non-interlaced
Size
2.8 kB (2799 bytes)
Hash
cfd0f0cbf8aa1717324f64a438c378c5
deb76943cf9b96153b36c04c9de02996857a808b
6a69de99192160f4a77667679c5a985beb0758dd464c162f58e2f89b91d11011

HTTP Headers

GET /S/content/mobile/images/app_store_coda.png HTTP/1.1
Host: d1qgcmfii0ptfa.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsjd.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 2799
Connection: keep-alive
Last-Modified: Mon, 17 Jul 2017 08:47:30 GMT
Content-Disposition: attachment
Accept-Ranges: bytes
Server: AmazonS3
Date: Thu, 25 Apr 2024 04:05:14 GMT
ETag: "cfd0f0cbf8aa1717324f64a438c378c5"
X-Cache: Hit from cloudfront
Via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 5-RcX20kkBX0Z_hOQ60z-7Jh83ySLaRUUnhAKET9eLiTPHvrkjOmMg==
Age: 85264

cdn1.codashop.com/S2/content/mobile/css/productPage/responsive-product-page2.7ec2b81ede.css

143.204.55.85

200 OK

8.6 kB

URL GET HTTP/2
cdn1.codashop.com/S2/content/mobile/css/productPage/responsive-product-page2.7ec2b81ede.css
IP
143.204.55.85:443
ASN
#16509 AMAZON-02

Requested by
https://nsjd.ktt55.my.id/free-fire/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
gzip compressed data, from Unix
Size
8.6 kB (8560 bytes)
Hash
9299e682a02138e333b037231bf3c0c7
ee9653ac32d8cd7a623b8a38aa8801bf8a21ed1c
214d13338463140403befa3bb08702c6b1830cda9b5782758d3067cb15885e7a

HTTP Headers

GET /S2/content/mobile/css/productPage/responsive-product-page2.7ec2b81ede.css HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsjd.ktt55.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: text/css
date: Fri, 26 Apr 2024 03:46:18 GMT
last-modified: Fri, 04 Sep 2020 02:37:43 GMT
etag: W/"7ec2b81ede93e59a3c985e6656b87427"
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Lp294pMwrCX_wZntQc4rmmySPP3ab8zJtg7ZT1FbMxCQKKsi_gaQTw==
X-Firefox-Spdy: h2

www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js

142.250.74.35

200 OK

206 kB

URL GET HTTP/2
www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://nsjd.ktt55.my.id/free-fire/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
JavaScript source, ASCII text, with very long lines (631)
Size
206 kB (205803 bytes)
Hash
e2e79d6b927169d9e0e57e3baecc0993
1299473950b2999ba0b7f39bd5e4a60eafd1819d
231336ed913a5ebd4445b85486e053caf2b81cab91318241375f3f7a245b6c6b

HTTP Headers

GET /recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nsjd.ktt55.my.id
DNT: 1
Connection: keep-alive
Referer: https://nsjd.ktt55.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 205803
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 Apr 2024 20:51:00 GMT
expires: Thu, 24 Apr 2025 20:51:00 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2024 21:03:35 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 111318
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/styles__ltr.css

142.250.74.35

200 OK

25 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/styles__ltr.css
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Lc8br0ZAAAAAOAZHpdE1Fm9RA9tK85W3ano_l0-&co=aHR0cHM6Ly9uc2pkLmt0dDU1Lm15LmlkOjQ0Mw..&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=normal&cb=1p118omlumk9
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
ASCII text, with very long lines (56412), with no line terminators
Size
25 kB (24617 bytes)
Hash
2c00b9f417b688224937053cd0c284a5
17b4c18ebc129055dd25f214c3f11e03e9df2d82
1e754b107428162c65a26d399b66db3daaea09616bf8620d9de4bc689ce48eed

HTTP Headers

GET /recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24617
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 15:50:55 GMT
expires: Wed, 23 Apr 2025 15:50:55 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2024 21:03:35 GMT
content-type: text/css
vary: Accept-Encoding
age: 215723
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js

142.250.74.35

200 OK

206 kB

URL GET HTTP/2
www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://nsjd.ktt55.my.id/free-fire/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
JavaScript source, ASCII text, with very long lines (631)
Size
206 kB (205803 bytes)
Hash
e2e79d6b927169d9e0e57e3baecc0993
1299473950b2999ba0b7f39bd5e4a60eafd1819d
231336ed913a5ebd4445b85486e053caf2b81cab91318241375f3f7a245b6c6b

HTTP Headers

GET /recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 205803
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 Apr 2024 20:51:00 GMT
expires: Thu, 24 Apr 2025 20:51:00 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2024 21:03:35 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 111318
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

cdn1.codashop.com/S/content/common/css/flags32.png

143.204.55.85

200 OK

26 kB

URL GET HTTP/2
cdn1.codashop.com/S/content/common/css/flags32.png
IP
143.204.55.85:443
ASN
#16509 AMAZON-02

Requested by
https://nsjd.ktt55.my.id/free-fire/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
PNG image data, 32 x 7904, 8-bit colormap, non-interlaced
Size
26 kB (26399 bytes)
Hash
ee905aeea99aa287b3f5b569fedbd91e
0fd8e62c7b5240b5496dc1f2af99d45766c30b86
5ad678791b5d4839f74a625c1ff6d3f4a6bbfca6417ecb0133f1a60de77b415d

HTTP Headers

GET /S/content/common/css/flags32.png HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn1.codashop.com/S/content/common/css/flags.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 26399
date: Fri, 26 Apr 2024 03:46:19 GMT
last-modified: Thu, 20 Dec 2018 04:54:20 GMT
etag: "ee905aeea99aa287b3f5b569fedbd91e"
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: r3O377uW-9mjLRO1R2sGD1f2CHGLfiI6O8_3G36rnYfHTDJSr99drQ==
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2

142.250.74.67

200 OK

15 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
142.250.74.67:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Lc8br0ZAAAAAOAZHpdE1Fm9RA9tK85W3ano_l0-&co=aHR0cHM6Ly9uc2pkLmt0dDU1Lm15LmlkOjQ0Mw..&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=normal&cb=1p118omlumk9
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15344, version 1.0
Size
15 kB (15344 bytes)
Hash
5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc

HTTP Headers

GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 02:43:03 GMT
expires: Fri, 25 Apr 2025 02:43:03 GMT
cache-control: public, max-age=31536000
age: 90195
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.gstatic.com/recaptcha/api2/logo_48.png

142.250.74.35

200 OK

2.2 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/api2/logo_48.png
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Lc8br0ZAAAAAOAZHpdE1Fm9RA9tK85W3ano_l0-&co=aHR0cHM6Ly9uc2pkLmt0dDU1Lm15LmlkOjQ0Mw..&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=normal&cb=1p118omlumk9
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced
Size
2.2 kB (2228 bytes)
Hash
ef9941290c50cd3866e2ba6b793f010d
4736508c795667dcea21f8d864233031223b7832
1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a

HTTP Headers

GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 02:54:07 GMT
expires: Thu, 02 May 2024 02:54:07 GMT
cache-control: public, max-age=604800
age: 89531
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

cdn1.codashop.com/S2/content/mobile/images/app/codashop-ico-192x192.eda9c373cc.png

143.204.55.85

200 OK

5.1 kB

URL GET HTTP/2
cdn1.codashop.com/S2/content/mobile/images/app/codashop-ico-192x192.eda9c373cc.png
IP
143.204.55.85:443
ASN
#16509 AMAZON-02

Requested by
https://nsjd.ktt55.my.id/free-fire/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
PNG image data, 192 x 192, 8-bit colormap, non-interlaced
Size
5.1 kB (5067 bytes)
Hash
eda9c373ccb4065459e0a9dd76c35348
03ac8f73f9d9f58a86db99aa4dd4947b481752e0
bac3a525d341ed1bde59059a94d6c04cacd69bba4aeb2768af781199c15f3ab6

HTTP Headers

GET /S2/content/mobile/images/app/codashop-ico-192x192.eda9c373cc.png HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsjd.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 5067
date: Fri, 26 Apr 2024 03:46:19 GMT
last-modified: Tue, 23 Apr 2024 06:11:17 GMT
etag: "eda9c373ccb4065459e0a9dd76c35348"
x-amz-server-side-encryption: AES256
x-amz-version-id: XMTiL4Yk_l7WvO6Rgftw4tp3FOBX1CLk
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ZnxYdtTvnl5rOJx3Nql5qMhcOeS9ax0vtBK9LBdrwSgzfEa5qmdDvQ==
X-Firefox-Spdy: h2

cdn1.codashop.com/S/content/common/images/reskin/favicon.ico

143.204.55.85

200 OK

2.2 kB

URL GET HTTP/2
cdn1.codashop.com/S/content/common/images/reskin/favicon.ico
IP
143.204.55.85:443
ASN
#16509 AMAZON-02

Requested by
https://nsjd.ktt55.my.id/free-fire/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Size
2.2 kB (2190 bytes)
Hash
9141e5521105fb13c657480daf781484
1d0d577784430fce4badac4b6c8aa81bfbe45c8f
8af7dda580228d237c72eed44bce0912585241544a1feae96a464145efb542b2

HTTP Headers

GET /S/content/common/images/reskin/favicon.ico HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsjd.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/x-icon
content-length: 2190
date: Fri, 26 Apr 2024 03:46:19 GMT
last-modified: Thu, 19 Aug 2021 08:47:21 GMT
etag: "9141e5521105fb13c657480daf781484"
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: TVbKvMW31JBIQYJBRi2l7jGLUSLHhcmsLC_2cdeGvEH5Sa1agb1VPQ==
X-Firefox-Spdy: h2

cdn1.codashop.com/S/content/common/js/jquery.mask.min.js

143.204.55.85

200 OK

7.4 kB

URL GET HTTP/2
cdn1.codashop.com/S/content/common/js/jquery.mask.min.js
IP
143.204.55.85:443
ASN
#16509 AMAZON-02

Requested by
https://nsjd.ktt55.my.id/free-fire/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (7660), with no line terminators
Size
7.4 kB (7448 bytes)
Hash
6409d62d5717b9730b29269652900057
e3ee78cc51381e332376792b552da91391eb43ec
18945d2c761b9a1534e686ca2237bc2d6f7afc9687099e1cfead10e1269b20bb

HTTP Headers

GET /S/content/common/js/jquery.mask.min.js HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsjd.ktt55.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
last-modified: Thu, 20 Dec 2018 08:04:35 GMT
content-disposition: attachment
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Fri, 26 Apr 2024 03:46:16 GMT
etag: W/"35d9db48e3112f35d81e70b98457aa42"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: iNV-5S4rqCvxrmL1Gs63j_943qeNQK9b4ev2WRZpF8f5w9O-J6VM4A==
age: 8264
X-Firefox-Spdy: h2

nsjd.ktt55.my.id/free-fire/

104.21.17.78

200 OK

59 kB

URL User Request GET HTTP/3
nsjd.ktt55.my.id/free-fire/
IP
104.21.17.78:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectktt55.my.id
Fingerprint8A:ED:C5:91:EA:3A:47:4E:D2:1C:E4:11:78:2D:71:BC:1D:AA:DF:DE
ValiditySat, 16 Mar 2024 07:53:55 GMT - Fri, 14 Jun 2024 07:53:54 GMT

File type

Size
59 kB (58660 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	suspicious	Suspicious - Anti-debugging code
OpenPhish	phishing	Coda Payments

HTTP Headers

GET /free-fire/ HTTP/1.1
Host: nsjd.ktt55.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 03:46:16 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TqPey7Fa%2Fd1mz78%2F7ANahOYi75wirrExJoFOgJaKRAZJrcSqaSl4MF%2BuprvbbSa%2Fg%2BnkS%2FKr%2FnEUH6zKGi2rawHwagHaq1bOcKRE81SrAuf3DzlLr2ocIxThoMqfp8z7qbsk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a395adff31b515-OSL
content-encoding: br

cdn1.codashop.com/S2/content/common/js/payment-channel-suggestion.535f3c6f70.js

143.204.55.85

200 OK

1.9 kB

URL GET HTTP/2
cdn1.codashop.com/S2/content/common/js/payment-channel-suggestion.535f3c6f70.js
IP
143.204.55.85:443
ASN
#16509 AMAZON-02

Requested by
https://nsjd.ktt55.my.id/free-fire/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (1959), with no line terminators
Size
1.9 kB (1887 bytes)
Hash
4f04b352041bdea32f0207797a53970f
6d4bddeab49faa3cb3d3b35c737a3a14f7fd120b
ccc96932a6384222d948362a27564274e2d33f8c70ce64ebd2a6c473b1719d06

HTTP Headers

GET /S2/content/common/js/payment-channel-suggestion.535f3c6f70.js HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsjd.ktt55.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
date: Fri, 26 Apr 2024 03:46:18 GMT
last-modified: Fri, 04 Sep 2020 02:37:42 GMT
etag: W/"535f3c6f7015dbae9e6b2a4987192e2b"
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Z7Vpap7DZlEk1CCa1SZZePYzSOJ9o9pHYXE2N3GVbngKJl_B7ai0_A==
X-Firefox-Spdy: h2

nsjd.ktt55.my.id/

104.21.17.78

302 Found

59 kB

URL User Request GET HTTP/2
nsjd.ktt55.my.id/
IP
104.21.17.78:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectktt55.my.id
Fingerprint8A:ED:C5:91:EA:3A:47:4E:D2:1C:E4:11:78:2D:71:BC:1D:AA:DF:DE
ValiditySat, 16 Mar 2024 07:53:55 GMT - Fri, 14 Jun 2024 07:53:54 GMT

File type

Size
59 kB (58660 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Coda Payments

HTTP Headers

GET / HTTP/1.1
Host: nsjd.ktt55.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Fri, 26 Apr 2024 03:46:15 GMT
content-type: text/html; charset=UTF-8
location: free-fire
vary: Accept-Encoding
cache-control: no-cache, no-store, must-revalidate, max-age=0
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GGZLag99hG7Tt6nYsEmYqCCj2Xc%2BnXLizq%2BCwDJqE5RNqUaaXzohBzGZWRnwXTH4%2FbYbbB%2FWd9UhP6LqvfOIS8VsTURYAJD%2FAUwd%2BnMDV3L%2BVtrq7Bjx6Lrv8TGJSceId4JG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a395ab1b565688-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

script.tapfiliate.com/tapfiliate.js

54.230.111.8

200 OK

12 kB

URL GET HTTP/2
script.tapfiliate.com/tapfiliate.js
IP
54.230.111.8:443
ASN
#16509 AMAZON-02

Requested by
https://nsjd.ktt55.my.id/free-fire/
Certificate
IssuerAmazon
Subjectbackend.tapfiliate.com
Fingerprint08:49:72:00:4F:7E:51:98:05:55:F9:6A:56:27:5A:78:BD:99:57:C4
ValidityWed, 04 Oct 2023 00:00:00 GMT - Sat, 02 Nov 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (11592), with no line terminators
Size
12 kB (11592 bytes)
Hash
ddbb39a9e8e67d5067145f8aa76b938d
2f7cacfbcaaf8291a1a933898d1dff0b21edf1cb
44798a517a7c8d28c1e371a1b8b869bae1608bd48df7ed50800cbed8703612c1

HTTP Headers

GET /tapfiliate.js HTTP/1.1
Host: script.tapfiliate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsjd.ktt55.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 12 Oct 2022 12:34:24 GMT
server: AmazonS3
content-encoding: br
date: Fri, 26 Apr 2024 01:58:46 GMT
etag: W/"ddbb39a9e8e67d5067145f8aa76b938d"
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: cvoO_XmC2Ztcsydg9yoCDrYAg5w8-jzgivN1yG07sy5THntzts7pxg==
age: 6459
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2

nsjd.ktt55.my.id/css/popupLogin.css

104.21.17.78

200 OK

2.2 kB

URL GET HTTP/3
nsjd.ktt55.my.id/css/popupLogin.css
IP
104.21.17.78:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nsjd.ktt55.my.id/free-fire/
Certificate
IssuerGoogle Trust Services LLC
Subjectktt55.my.id
Fingerprint8A:ED:C5:91:EA:3A:47:4E:D2:1C:E4:11:78:2D:71:BC:1D:AA:DF:DE
ValiditySat, 16 Mar 2024 07:53:55 GMT - Fri, 14 Jun 2024 07:53:54 GMT

File type
ASCII text, with very long lines (2603), with no line terminators
Size
2.2 kB (2244 bytes)
Hash
132ae2b937805fb20662171424973d82
2cade27c0ecc7002b82117e92278b62c0f0f3122
2d4b6c88b764b6f6463b45f84209aa5af2f6972beff4a6f4fad284e3b032c05d

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Coda Payments

HTTP Headers

GET /css/popupLogin.css HTTP/1.1
Host: nsjd.ktt55.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsjd.ktt55.my.id/free-fire/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 03:46:16 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 03:46:16 GMT
last-modified: Thu, 03 Sep 2020 11:34:32 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kQG%2Bp6J1TJ4KtIfY5XuDxsCQIeD6agHWtegntN47d99S%2FZpIRMFn6C807K3VUmvcIO1Z%2B98D3i8wwPzCpGQ1CCr0vKJddar8XFlvqtLVElWrYt6Sd5O%2Bl6nMdkJi4UU6OrML"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a395b3e978b515-OSL
content-encoding: br

cdn1.codashop.com/S2/content/common/css/shared-footer2.2ce4d6e299.css

143.204.55.85

200 OK

3.7 kB

URL GET HTTP/2
cdn1.codashop.com/S2/content/common/css/shared-footer2.2ce4d6e299.css
IP
143.204.55.85:443
ASN
#16509 AMAZON-02

Requested by
https://nsjd.ktt55.my.id/free-fire/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (3650), with no line terminators
Size
3.7 kB (3650 bytes)
Hash
2ce4d6e2994e655224b0aa48265ae15a
e08c6461b3168581712b18d9c9bd9343422f7e14
cfdc96da2e956842b4cbea254d93c923a9c7d5f1443385996a0f2c80cc4b0f76

HTTP Headers

GET /S2/content/common/css/shared-footer2.2ce4d6e299.css HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsjd.ktt55.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
last-modified: Tue, 23 Apr 2024 06:11:16 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: FHv9cHBXpdQtDLtmoTgE4iPIzr7o_tec
server: AmazonS3
content-encoding: gzip
date: Thu, 25 Apr 2024 06:34:41 GMT
etag: W/"2ce4d6e2994e655224b0aa48265ae15a"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Z2OE_FxmnPIA6odpVz4LFKRn1wNKyEmhdI5UTHNnAFyVIjMr7saI1Q==
age: 76296
X-Firefox-Spdy: h2

d1qgcmfii0ptfa.cloudfront.net/S/content/mobile/images/google_play_coda.png

143.204.42.123

200 OK

2.6 kB

URL GET HTTP/1.1
d1qgcmfii0ptfa.cloudfront.net/S/content/mobile/images/google_play_coda.png
IP
143.204.42.123:443
ASN
#16509 AMAZON-02

Requested by
https://nsjd.ktt55.my.id/free-fire/
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
PNG image data, 138 x 41, 8-bit colormap, non-interlaced
Size
2.6 kB (2631 bytes)
Hash
e7ebc6c74ec20ea3614970e178217c10
f667fbc525f046f8c6d7617541884c4d6ed52478
19c2b75fe23ae2238adbd7f34901396d4120605d9028c2fcc7bd3c010e27ef9a

HTTP Headers

GET /S/content/mobile/images/google_play_coda.png HTTP/1.1
Host: d1qgcmfii0ptfa.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsjd.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 2631
Connection: keep-alive
Last-Modified: Mon, 17 Jul 2017 08:47:31 GMT
Content-Disposition: attachment
Accept-Ranges: bytes
Server: AmazonS3
Date: Fri, 26 Apr 2024 03:46:17 GMT
ETag: "e7ebc6c74ec20ea3614970e178217c10"
X-Cache: Hit from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: lgF_fwlJC-mnp9eSTVBZqIrdfWGzdpZ6CugaSEkM0U7MEVKVCDYRHw==
Age: 15060

nsjd.ktt55.my.id/css/spinner.58144.css

104.21.17.78

200 OK

2.2 kB

URL GET HTTP/3
nsjd.ktt55.my.id/css/spinner.58144.css
IP
104.21.17.78:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nsjd.ktt55.my.id/free-fire/
Certificate
IssuerGoogle Trust Services LLC
Subjectktt55.my.id
Fingerprint8A:ED:C5:91:EA:3A:47:4E:D2:1C:E4:11:78:2D:71:BC:1D:AA:DF:DE
ValiditySat, 16 Mar 2024 07:53:55 GMT - Fri, 14 Jun 2024 07:53:54 GMT

File type
ASCII text, with very long lines (2460), with no line terminators
Size
2.2 kB (2236 bytes)
Hash
ee824601116a720609b935eff142581d
17e6b55baec1ca23273589b72c222b4cbfbdeaed
4be7ac29546a8f58a9ae8749cf83b7ee8b0f38a21d6edb78b98e1dcc178dd2d1

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Coda Payments

HTTP Headers

GET /css/spinner.58144.css HTTP/1.1
Host: nsjd.ktt55.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsjd.ktt55.my.id/free-fire/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 03:46:16 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 03:46:16 GMT
last-modified: Fri, 10 Sep 2021 21:26:50 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zxELngF%2BGkB6l0eVu6%2F0p8d2Lsjx0eCVnBnz7Un9OrHzc9Rk3%2FheCi3QZQnUtKGnv03w%2F%2F1TTfIgv6J6b%2FDUuDEIvOUMAZDbcukRjnyc8c6tN9%2FFz34NWLAxKOaHy26d1bqJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a395b3f97cb515-OSL
content-encoding: br

cdn1.codashop.com/S2/content/common/css/shared-shop-content.e6202b83de.css

143.204.55.85

200 OK

3.2 kB

URL GET HTTP/2
cdn1.codashop.com/S2/content/common/css/shared-shop-content.e6202b83de.css
IP
143.204.55.85:443
ASN
#16509 AMAZON-02

Requested by
https://nsjd.ktt55.my.id/free-fire/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (3225), with no line terminators
Size
3.2 kB (3237 bytes)
Hash
25fa185279e8f6803556a00a262f95c5
d932b37655b18e119aaf89ccbe833da32b1fe3a4
ab288c27611661da5d71e78e22a89c3180e1077fcbf2349417db3640c99a742c

HTTP Headers

GET /S2/content/common/css/shared-shop-content.e6202b83de.css HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsjd.ktt55.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
date: Thu, 25 Apr 2024 05:43:39 GMT
last-modified: Tue, 23 Apr 2024 06:11:16 GMT
etag: W/"e6202b83defd6474350841e595260599"
x-amz-server-side-encryption: AES256
x-amz-version-id: mS76H60CSqpKERT7gu1FDPeeSGjaE.vA
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: nlYoby20Z4lw_NpGZkaBeZ4fFgxyrwq7U1b2KwzuTvEEF_AH5SIyFw==
age: 79358
X-Firefox-Spdy: h2

nsjd.ktt55.my.id/free-fire

104.21.17.78

301 Moved Permanently

59 kB

URL User Request GET HTTP/2
nsjd.ktt55.my.id/free-fire
IP
104.21.17.78:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectktt55.my.id
Fingerprint8A:ED:C5:91:EA:3A:47:4E:D2:1C:E4:11:78:2D:71:BC:1D:AA:DF:DE
ValiditySat, 16 Mar 2024 07:53:55 GMT - Fri, 14 Jun 2024 07:53:54 GMT

File type

Size
59 kB (58660 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Coda Payments

HTTP Headers

GET /free-fire HTTP/1.1
Host: nsjd.ktt55.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
date: Fri, 26 Apr 2024 03:46:15 GMT
content-type: text/html
location: https://nsjd.ktt55.my.id/free-fire/
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=q578e8ZezZYID%2BvnWLqkGKlVulzn1ncqYfDrQtydhum0so5R9AZF2Di1gFh2ki9aNJ%2F8JHU%2B1UqvH%2Fqy8FDSF1zI72KOfjLH82zIlTQM13LpmLZz2t30pxxVotCVUYHr4nXG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a395ac9be95688-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn1.codashop.com/P/airtime/w/css/airtime_v1.0a.css

143.204.55.85

200 OK

2.7 kB

URL GET HTTP/2
cdn1.codashop.com/P/airtime/w/css/airtime_v1.0a.css
IP
143.204.55.85:443
ASN
#16509 AMAZON-02

Requested by
https://nsjd.ktt55.my.id/free-fire/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (2798), with no line terminators
Size
2.7 kB (2692 bytes)
Hash
73154e8739468f2fddbaeef7811a68b0
de38327189a27b66910d261043fda84207efb5af
4e58983e6a717b6f05ded030cbed781f163b93d575ef3d16bb17216a23eaf382

HTTP Headers

GET /P/airtime/w/css/airtime_v1.0a.css HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsjd.ktt55.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
last-modified: Fri, 13 Mar 2020 03:56:02 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Thu, 25 Apr 2024 07:26:23 GMT
etag: W/"753a330f95a906499abe488e677662d3"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: B06i2nqklyU27tt_ZX8FlQn5qil7ZGAvN74nv54WYACzZWR2aotxBg==
age: 73194
X-Firefox-Spdy: h2

cdn1.codashop.com/S2/content/common/js/shop-topnav2.7e1fed6bdf.js

143.204.55.85

200 OK

7.2 kB

URL GET HTTP/2
cdn1.codashop.com/S2/content/common/js/shop-topnav2.7e1fed6bdf.js
IP
143.204.55.85:443
ASN
#16509 AMAZON-02

Requested by
https://nsjd.ktt55.my.id/free-fire/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (7489), with no line terminators
Size
7.2 kB (7249 bytes)
Hash
837ad2eb3ceaba97e69a5bc5907656bd
db034dfdf9ad78e25abb924c437be76ce42af461
c77b7db6a323fa7dbe5f0c467d454b65fe161328e2b30d3d67699c4138632508

HTTP Headers

GET /S2/content/common/js/shop-topnav2.7e1fed6bdf.js HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsjd.ktt55.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
date: Thu, 25 Apr 2024 05:43:39 GMT
last-modified: Tue, 23 Apr 2024 06:11:16 GMT
etag: W/"7e1fed6bdfc0657c0dedc6e6c19553fa"
x-amz-server-side-encryption: AES256
x-amz-version-id: 4SjQUHkKUo62BXlULj.VxtctQ3ASVowu
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Pg8GOPxR4sXRAf5i_aGRcuL-F9J6bB8z5r2xXICaMwKct2JrIT9JCA==
age: 79358
X-Firefox-Spdy: h2

nsjd.ktt55.my.id/css/facebook.css

104.21.17.78

200 OK

3.3 kB

URL GET HTTP/3
nsjd.ktt55.my.id/css/facebook.css
IP
104.21.17.78:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nsjd.ktt55.my.id/free-fire/
Certificate
IssuerGoogle Trust Services LLC
Subjectktt55.my.id
Fingerprint8A:ED:C5:91:EA:3A:47:4E:D2:1C:E4:11:78:2D:71:BC:1D:AA:DF:DE
ValiditySat, 16 Mar 2024 07:53:55 GMT - Fri, 14 Jun 2024 07:53:54 GMT

File type
ASCII text, with very long lines (3652), with no line terminators
Size
3.3 kB (3292 bytes)
Hash
cf40acbd99bff687c6b0ead7b5149a8a
feee1d79f66a0a47216f9c1bdfca2cde0da0b4c9
321f3512a8cf477d7129ecd68653261383d91d29204f9119061311c26a7f3133

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Coda Payments

HTTP Headers

GET /css/facebook.css HTTP/1.1
Host: nsjd.ktt55.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsjd.ktt55.my.id/free-fire/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 03:46:16 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 03:46:16 GMT
last-modified: Thu, 03 Sep 2020 11:31:20 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=08nF7Rprwx%2BBkBu51NoX%2FbZMQOnyvMsFT1B%2FVnyjQYKs4Q6Htvn1%2BbZHQ9qtHKbUsQwBLIEPIVWGRl0uC0qG7XIS1hBhVos8Mva2XkN317AmPY%2FFcunVXt5LwQTySfYAQcOk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a395b3e979b515-OSL
content-encoding: br

cdn1.codashop.com/S/content/common/css/flags.css

143.204.55.85

200 OK

12 kB

URL GET HTTP/2
cdn1.codashop.com/S/content/common/css/flags.css
IP
143.204.55.85:443
ASN
#16509 AMAZON-02

Requested by
https://nsjd.ktt55.my.id/free-fire/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
ASCII text
Size
12 kB (12399 bytes)
Hash
48625f4127086c12c9db05064a6bab03
25fb09d9048d67c7e0cdc6c02be8f34140a35082
f6a3220f393767077637471193f95bbde06a0928b0fe5fda70a0aa01cd2cb7b0

HTTP Headers

GET /S/content/common/css/flags.css HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsjd.ktt55.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 20 Dec 2018 04:54:20 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Thu, 25 Apr 2024 06:34:41 GMT
etag: W/"48625f4127086c12c9db05064a6bab03"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: -LJA2KPoKNlP4zgTMVDfL8HoTDI3ticYA4SkOIf_UK3g80ESu7myTg==
age: 76296
X-Firefox-Spdy: h2

cdn1.codashop.com/S/content/common/js/xss.min.js

143.204.55.85

200 OK

29 kB

URL GET HTTP/2
cdn1.codashop.com/S/content/common/js/xss.min.js
IP
143.204.55.85:443
ASN
#16509 AMAZON-02

Requested by
https://nsjd.ktt55.my.id/free-fire/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (28924), with no line terminators
Size
29 kB (28924 bytes)
Hash
4947ff982fb69173f95da79b538f254d
884db3bf10e92790cf6d9937731f70d59c87cc9f
0278b60e08b67fb8ae86c56dd80075e94e1d51113eb21ade41996147c601dfe6

HTTP Headers

GET /S/content/common/js/xss.min.js HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsjd.ktt55.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
date: Fri, 26 Apr 2024 03:46:18 GMT
last-modified: Tue, 12 Nov 2019 04:16:51 GMT
etag: W/"4947ff982fb69173f95da79b538f254d"
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: m6WgL6WsxRcsHGpYI1wHCL5pf8L_cvZXFLn79ZeP5ACg3DBXmLKS5Q==
X-Firefox-Spdy: h2

nsjd.ktt55.my.id/css/twitter.css

104.21.17.78

200 OK

1.9 kB

URL GET HTTP/3
nsjd.ktt55.my.id/css/twitter.css
IP
104.21.17.78:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nsjd.ktt55.my.id/free-fire/
Certificate
IssuerGoogle Trust Services LLC
Subjectktt55.my.id
Fingerprint8A:ED:C5:91:EA:3A:47:4E:D2:1C:E4:11:78:2D:71:BC:1D:AA:DF:DE
ValiditySat, 16 Mar 2024 07:53:55 GMT - Fri, 14 Jun 2024 07:53:54 GMT

File type
ASCII text, with very long lines (2108), with no line terminators
Size
1.9 kB (1896 bytes)
Hash
ed1ca2901a80d551b062ee62367f974c
d4a0ac67459b72ee1a9217c4feae0d18052f387b
547014d6772b63fdc807bfe1a71788a75a4b41735e4cf75c7c2736ebb7b94c9a

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Coda Payments

HTTP Headers

GET /css/twitter.css HTTP/1.1
Host: nsjd.ktt55.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsjd.ktt55.my.id/free-fire/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 03:46:16 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 03:46:16 GMT
last-modified: Thu, 03 Sep 2020 13:30:00 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=S6oxeuNocXJ6Of9Zkz7o7znrpx6nWoysWACnCr5FTjuxhFahmt6ga3wVUNt%2BkRmfB7NtYDYGo4z7sWf%2FGXviDZLwDYiO5dAh%2FNmY2MOTHX6SgsT9xn6Sxape8Y%2BEwZOUqmBV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a395b3e97bb515-OSL
content-encoding: br

www.google.com/recaptcha/api2/anchor?ar=1&k=6Lc8br0ZAAAAAOAZHpdE1Fm9RA9tK85W3ano_l0-&co=aHR0cHM6Ly9uc2pkLmt0dDU1Lm15LmlkOjQ0Mw..&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=normal&cb=1p118omlumk9

142.250.74.164

200 OK

7.3 kB

URL GET HTTP/3
www.google.com/recaptcha/api2/anchor?ar=1&k=6Lc8br0ZAAAAAOAZHpdE1Fm9RA9tK85W3ano_l0-&co=aHR0cHM6Ly9uc2pkLmt0dDU1Lm15LmlkOjQ0Mw..&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=normal&cb=1p118omlumk9
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://nsjd.ktt55.my.id/free-fire/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT

File type
HTML document, ASCII text, with very long lines (7494), with no line terminators
Size
7.3 kB (7277 bytes)
Hash
ff632ad6fb3dc303c22261bfbf717227
41fafcea2959f1ae78d61095c1c3a0e0d28b40e4
330acfe2179f19057d2560a47a5fc8188e218bc36a8293f4bcf48d8e8c2d72cb

HTTP Headers

GET /recaptcha/api2/anchor?ar=1&k=6Lc8br0ZAAAAAOAZHpdE1Fm9RA9tK85W3ano_l0-&co=aHR0cHM6Ly9uc2pkLmt0dDU1Lm15LmlkOjQ0Mw..&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=normal&cb=1p118omlumk9 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsjd.ktt55.my.id/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-security-policy: script-src 'nonce-qGpOYa3Q_TWgcAN17za6DA' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
date: Fri, 26 Apr 2024 03:46:18 GMT
expires: Fri, 26 Apr 2024 03:46:18 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

cdn1.codashop.com/S2/content/common/css/shared-topnav2.5566e671b1.css

143.204.55.85

200 OK

6.9 kB

URL GET HTTP/2
cdn1.codashop.com/S2/content/common/css/shared-topnav2.5566e671b1.css
IP
143.204.55.85:443
ASN
#16509 AMAZON-02

Requested by
https://nsjd.ktt55.my.id/free-fire/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (6861), with no line terminators
Size
6.9 kB (6861 bytes)
Hash
5566e671b1a56ed10ee4665797bca5ba
4e1268e9e8cc9b32d46d9e9b64052ca61cc0c688
bbf453aa757d9ee7314e68e9f134a58c34fac46d39bfbf282f9e8e03dbea7df0

HTTP Headers

GET /S2/content/common/css/shared-topnav2.5566e671b1.css HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsjd.ktt55.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 26 Nov 2020 09:41:30 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Thu, 25 Apr 2024 07:57:27 GMT
etag: W/"5566e671b1a56ed10ee4665797bca5ba"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: RR_d9XdqEMjH3fmuSz3Rqn-V8QaC6aAcu7WfllPJU5RdnvZsbwOHuw==
age: 71330
X-Firefox-Spdy: h2

cdn1.codashop.com/S2/content/common/js/infoBar.38acc407b3.js

143.204.55.85

200 OK

2.1 kB

URL GET HTTP/2
cdn1.codashop.com/S2/content/common/js/infoBar.38acc407b3.js
IP
143.204.55.85:443
ASN
#16509 AMAZON-02

Requested by
https://nsjd.ktt55.my.id/free-fire/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (2163), with no line terminators
Size
2.1 kB (2106 bytes)
Hash
61a5dda1acff787320fc2f4e36f1e4f4
779d0360b878d3772a1a8bd40c3b157165d1a7bf
e342eed229c64a457df9aa7137b65139369bc15ada6b79eddec49449346b95fb

HTTP Headers

GET /S2/content/common/js/infoBar.38acc407b3.js HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsjd.ktt55.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
date: Fri, 26 Apr 2024 03:46:18 GMT
last-modified: Fri, 04 Sep 2020 02:37:42 GMT
etag: W/"38acc407b31daa48fafd99a877c64b5d"
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: yjJaUtroB-JVxSo5pw36e5k6vrJ3stjgGyyX9TGH1alHG091mn55rw==
X-Firefox-Spdy: h2

cdn1.codashop.com/S/content/fonts/Lato/Lato-Bold.woff2

143.204.55.85

200 OK

211 kB

URL GET HTTP/2
cdn1.codashop.com/S/content/fonts/Lato/Lato-Bold.woff2
IP
143.204.55.85:443
ASN
#16509 AMAZON-02

Requested by
https://nsjd.ktt55.my.id/free-fire/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 211160, version 1.0
Size
211 kB (211160 bytes)
Hash
743278852fdad61a73198bc74d529af8
d0f790e800b87b0db1edc0aedd9f3a82f88629cc
57b0c1d7bee3f753da5e6aa215a417abfa87dd9798ef2483f42585bfb08d64d9

HTTP Headers

GET /S/content/fonts/Lato/Lato-Bold.woff2 HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nsjd.ktt55.my.id
DNT: 1
Connection: keep-alive
Referer: https://cdn1.codashop.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-length: 211160
date: Fri, 26 Apr 2024 02:29:21 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST
last-modified: Thu, 09 Apr 2020 14:30:12 GMT
etag: "743278852fdad61a73198bc74d529af8"
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
vary: Origin
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: pvAmJeSJEHCGgpCVoK48raQUzgfQV4CsBN7J5fnpEQvXJdPP1MLbjg==
age: 4617
X-Firefox-Spdy: h2

stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css

104.18.10.207

200 OK

31 kB

URL GET HTTP/2
stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
IP
104.18.10.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nsjd.ktt55.my.id/free-fire/
Certificate
IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63
ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT

File type
ASCII text, with very long lines (30837)
Size
31 kB (31000 bytes)
Hash
269550530cc127b6aa5a35925a7de6ce
512c7d79033e3028a9be61b540cf1a6870c896f8
799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd

HTTP Headers

GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nsjd.ktt55.my.id
DNT: 1
Connection: keep-alive
Referer: https://nsjd.ktt55.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 Apr 2024 03:46:16 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding, Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: US
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"269550530cc127b6aa5a35925a7de6ce"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 04/17/2024 23:15:38
cdn-edgestorageid: 871
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 89112a351a46ba3a2b9df3e36b1fb0a6
cdn-cache: HIT
content-encoding: br
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87a395b43a2656b1-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn1.codashop.com/S2/content/common/css/shared-fontfaces.b6c83d3582.css

143.204.55.85

200 OK

2.8 kB

URL GET HTTP/2
cdn1.codashop.com/S2/content/common/css/shared-fontfaces.b6c83d3582.css
IP
143.204.55.85:443
ASN
#16509 AMAZON-02

Requested by
https://nsjd.ktt55.my.id/free-fire/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (2784), with no line terminators
Size
2.8 kB (2784 bytes)
Hash
b6c83d3582430126098676cc14c0b7ae
a117a8e06637487fabce45c1716e33ce4008e560
f1dc9f4f3addbfa08c795318bfa457a0bf60029d906c694e6aa46d5db79ab50f

HTTP Headers

GET /S2/content/common/css/shared-fontfaces.b6c83d3582.css HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsjd.ktt55.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
last-modified: Tue, 23 Apr 2024 06:11:16 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: Dgpmc5nq6YJlIANF5oJixHrBxLyO5BAz
server: AmazonS3
content-encoding: gzip
date: Thu, 25 Apr 2024 07:26:23 GMT
etag: W/"b6c83d3582430126098676cc14c0b7ae"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Wd6NSRP-uV8ejwSvonn93Y_Pmmp3jzbkEgk7qCUqdwAm1jMeWEjXrg==
age: 73195
X-Firefox-Spdy: h2

cdn1.codashop.com/S/content/fonts/Noto/NotoSans-Bold.woff2

143.204.55.85

200 OK

116 kB

URL GET HTTP/2
cdn1.codashop.com/S/content/fonts/Noto/NotoSans-Bold.woff2
IP
143.204.55.85:443
ASN
#16509 AMAZON-02

Requested by
https://nsjd.ktt55.my.id/free-fire/
Certificate
IssuerAmazon
Subject*.codashop.com
FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 115636, version 1.0
Size
116 kB (115636 bytes)
Hash
b85bf848c28799f5ad34ee29db68051c
538e18f01b875aedf4f30d88e38e955c5d59d6c9
c95f8fea4127282bb43f177f7876fe197d76b31402ccda50509a76a9af67fd19

HTTP Headers

GET /S/content/fonts/Noto/NotoSans-Bold.woff2 HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nsjd.ktt55.my.id
DNT: 1
Connection: keep-alive
Referer: https://cdn1.codashop.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 115636
date: Fri, 26 Apr 2024 02:29:20 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST
last-modified: Fri, 06 May 2022 11:50:30 GMT
etag: "b85bf848c28799f5ad34ee29db68051c"
cache-control: max-age=604800
x-amz-version-id: 6YZ2iB2NuI0FwUibqboJ_TmO633zhnjc
accept-ranges: bytes
server: AmazonS3
vary: Origin
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: oRHS3YOB9COkBcRg_iS3dgiUsyTU_CImoU_ZCzMNeS_bkRkyqRhtXw==
age: 4617
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (22)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML