| cdnjs.cloudflare.com/ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.css | 104.17.24.14 | 200 OK | 6.3 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.css IP104.17.24.14:443
Requested byhttps://84vxd.ktt55.my.id/free-fire/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
Hash0920ea34072683229e6ea8299345cd09 0903033a844336f7c78ed4abbbcd92cd3115a03e f37d6f502a5a961ac5c3f17c8d58685ff6b0dc0f69c2dcdd379ccabc96ec3bf2
GET /ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://84vxd.ktt55.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 04:27:32 GMT
content-type: text/css; charset=utf-8
content-length: 6252
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ed9-14d38"
last-modified: Mon, 04 May 2020 16:12:09 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 113153
expires: Wed, 16 Apr 2025 04:27:32 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tmbfzzqLHk%2Bb4rNEIGsJIMZ5y6gNRjv9axdWGB%2FjbKqWZ2M3TfDv6cHly3obsWo5JdQytiqeWrNiQGRr2jSvmkXCsWoU9Gow8lqwgjgwin2B64xarA3VCYvYXpnGFY4bbg%2BCJAHQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87a3d2291b88b503-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| 84vxd.ktt55.my.id/free-fire | 104.21.17.78 | 301 Moved Permanently | 17 kB |
URL User Request GET HTTP/284vxd.ktt55.my.id/free-fire IP104.21.17.78:443
CertificateIssuerGoogle Trust Services LLC Subjectktt55.my.id Fingerprint8A:ED:C5:91:EA:3A:47:4E:D2:1C:E4:11:78:2D:71:BC:1D:AA:DF:DE ValiditySat, 16 Mar 2024 07:53:55 GMT - Fri, 14 Jun 2024 07:53:54 GMT
Hashb4d3809b5297f94a7ba9a1dad0e03240 b0e865b5f1ae7d381adb8f39ba1f11ba77564e3c 0248f91b18d98534f798734fc6e42e6f15b86cb68099889267911c0ffe649893
Analyzer | Verdict | Alert | OpenPhish | phishing | Coda Payments |
GET /free-fire HTTP/1.1
Host: 84vxd.ktt55.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
date: Fri, 26 Apr 2024 04:27:31 GMT
content-type: text/html
location: https://84vxd.ktt55.my.id/free-fire/
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1IrrrxtWMWerS6THMlBn%2BR9yEg45qEH37VVL6FH5gn7RUEcMZn8xza1PLI8sPb7HnmbfJfyFYdZKGHWWH4tGu6ZBsh8x5aiDcFjJETivT05mo2elwNolQiEBPrjNU9XmbiAYQQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a3d2218e1556bd-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S2/content/mobile/css/infoBar.662b8f1b5f.css | 143.204.55.8 | 200 OK | 960 B |
URL GET HTTP/2cdn1.codashop.com/S2/content/mobile/css/infoBar.662b8f1b5f.css IP143.204.55.8:443
Requested byhttps://84vxd.ktt55.my.id/free-fire/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typeASCII text, with very long lines (960), with no line terminators Hash662b8f1b5f919912c1df4b367bff2cc1 2be016ac1842ccd1c46f24f3908e0567916b3857 649336097b307d0d03ecf4b5625f62576ced687e627233bf62f73ea4c1375395
GET /S2/content/mobile/css/infoBar.662b8f1b5f.css HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://84vxd.ktt55.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 960
last-modified: Tue, 23 Apr 2024 06:11:16 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: FVJp4s4hv3VbFtrJShUaumjGHOliLz5E
accept-ranges: bytes
server: AmazonS3
date: Thu, 25 Apr 2024 07:26:23 GMT
etag: "662b8f1b5f919912c1df4b367bff2cc1"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: irPpTAoReXsRpg7LVyEAvdgspHPAdVDRPQDtCe2K7D4r30Xx9MmvrA==
age: 75670
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S2/content/common/js/faq.7a04e34b3d.js | 143.204.55.8 | 200 OK | 824 B |
URL GET HTTP/2cdn1.codashop.com/S2/content/common/js/faq.7a04e34b3d.js IP143.204.55.8:443
Requested byhttps://84vxd.ktt55.my.id/free-fire/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (824), with no line terminators Hash7a04e34b3d63def624af82ba6df461ba 023f366b89c8f008ac2bde6246dd9774a21bccd4 0af099b192033202033bb4999ec904031c72f05ed158816144cb898423a3eb72
GET /S2/content/common/js/faq.7a04e34b3d.js HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://84vxd.ktt55.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 824
last-modified: Fri, 04 Sep 2020 02:37:42 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Thu, 25 Apr 2024 05:15:49 GMT
etag: "7a04e34b3d63def624af82ba6df461ba"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 7f8NJ_ixpDTejLhIX2PobTsTo23n_3gU2IHNYRvLnKmmZcx6CjAEDg==
age: 83504
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S/content/mobile/images/codashop-logo-new-2x.png | 143.204.55.8 | 200 OK | 3.4 kB |
URL GET HTTP/2cdn1.codashop.com/S/content/mobile/images/codashop-logo-new-2x.png IP143.204.55.8:443
Requested byhttps://84vxd.ktt55.my.id/free-fire/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typePNG image data, 636 x 140, 8-bit colormap, non-interlaced Hashd0ce400f6d6f397ddca5e460210db19e 159ccb2fcde33529a29fc6df64a09acb2476eba6 cb22f766a2a1a451da510ee5c58242cf074482075e3881e01ec24bbb47d025d3
GET /S/content/mobile/images/codashop-logo-new-2x.png HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://84vxd.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 3353
last-modified: Mon, 12 Jul 2021 11:10:08 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Thu, 25 Apr 2024 06:34:41 GMT
etag: "d0ce400f6d6f397ddca5e460210db19e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: UvG4yDofpIv8nLm7pPBJaU_WSBD0jA2FDHlrPXwSvit4B7X8wKnz2A==
age: 78772
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S/content/common/images/promos/Community%20Banners/freefire_id_codaclub.jpeg | 143.204.55.8 | 200 OK | 29 kB |
URL GET HTTP/2cdn1.codashop.com/S/content/common/images/promos/Community%20Banners/freefire_id_codaclub.jpeg IP143.204.55.8:443
Requested byhttps://84vxd.ktt55.my.id/free-fire/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 641x242, components 3 Hashf93267a5b15f21f2c6f33e9bb893dfd1 3a88c25a20f79cf5fb6ebe3e34116678a43531ff c9952880919057304eec16200ccd3f7b373d3ba7192c936b4a79ffca9b62ed35
GET /S/content/common/images/promos/Community%20Banners/freefire_id_codaclub.jpeg HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://84vxd.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 28559
last-modified: Wed, 20 Jan 2021 10:28:50 GMT
x-amz-meta-sha256: c9952880919057304eec16200ccd3f7b373d3ba7192c936b4a79ffca9b62ed35
x-amz-meta-s3b-last-modified: 20210120T102030Z
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Thu, 25 Apr 2024 09:10:40 GMT
etag: "f93267a5b15f21f2c6f33e9bb893dfd1"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 3av6uvkCxxvQufGAVBEOM2edE3EJjFg9Xxc9KitzF0_Tr8INouK_-A==
age: 69413
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S2/content/mobile/images/error-icon.20986d3fe0.png | 143.204.55.8 | 200 OK | 802 B |
URL GET HTTP/2cdn1.codashop.com/S2/content/mobile/images/error-icon.20986d3fe0.png IP143.204.55.8:443
Requested byhttps://84vxd.ktt55.my.id/free-fire/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typePNG image data, 38 x 38, 8-bit colormap, non-interlaced Hash20986d3fe0ddac454b9f46bc34ce8952 defb0e4158b8a9576e663b240336a9bbb28d3267 d7ece5222547615bcb5066478f209b6a3e7c3b3c88667972e937c8481688eed7
GET /S2/content/mobile/images/error-icon.20986d3fe0.png HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://84vxd.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 802
last-modified: Tue, 14 Dec 2021 02:49:38 GMT
x-amz-version-id: yQvHZsqjV.2CRKMhv5iNVz5bc0xc5Mqc
accept-ranges: bytes
server: AmazonS3
date: Thu, 25 Apr 2024 06:34:41 GMT
etag: "20986d3fe0ddac454b9f46bc34ce8952"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: kvVlgaFww92AGMn6qnCoYN4_6vfWknQc5Tk-S2jvBWrzDDhUy8REVw==
age: 78772
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S/content/social-media-logo/36/socmed-facebook-H36.png | 143.204.55.8 | 200 OK | 2.9 kB |
URL GET HTTP/2cdn1.codashop.com/S/content/social-media-logo/36/socmed-facebook-H36.png IP143.204.55.8:443
Requested byhttps://84vxd.ktt55.my.id/free-fire/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typePNG image data, 36 x 36, 8-bit/color RGBA, non-interlaced Hashcf9659fa3891add490cb7d0d099d72ac 85581945ff05f48b3a652ba3e90ae44d97b18cf1 76db9987bb4f902e6d4a6702577717a6d6afff1bef8eb6dfce62c5c69e8d707d
GET /S/content/social-media-logo/36/socmed-facebook-H36.png HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://84vxd.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 2890
last-modified: Fri, 24 Apr 2020 04:39:27 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Fri, 26 Apr 2024 03:46:16 GMT
etag: "cf9659fa3891add490cb7d0d099d72ac"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: NxXfezC5AsE1NyL-eSkwc3jgwaOJS-v3X6NT4oaOMD1Xy9zuhELeow==
age: 6813
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S/content/social-media-logo/36/socmed-instagram-H36.png | 143.204.55.8 | 200 OK | 4.7 kB |
URL GET HTTP/2cdn1.codashop.com/S/content/social-media-logo/36/socmed-instagram-H36.png IP143.204.55.8:443
Requested byhttps://84vxd.ktt55.my.id/free-fire/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typePNG image data, 36 x 36, 8-bit/color RGBA, non-interlaced Hasha91be2e400b7f0dc66247427dfaffcf3 900e87486aa051659e114eb5b7a2980d75e7889a 62437412556a804293516df99c0970427549b1a50258462035410072f96dd093
GET /S/content/social-media-logo/36/socmed-instagram-H36.png HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://84vxd.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 4678
last-modified: Fri, 24 Apr 2020 04:39:27 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Fri, 26 Apr 2024 03:46:16 GMT
etag: "a91be2e400b7f0dc66247427dfaffcf3"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: rfBmwmf4WROejUTrZSs6LRSSEWQCAW_r8jUFysKuDbgb8fE0oGjbRA==
age: 13023
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S/content/common/images/grab.29dad06670f873936002ddb910253a4b.png | 143.204.55.8 | 200 OK | 62 kB |
URL GET HTTP/2cdn1.codashop.com/S/content/common/images/grab.29dad06670f873936002ddb910253a4b.png IP143.204.55.8:443
Requested byhttps://84vxd.ktt55.my.id/free-fire/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typePNG image data, 2000 x 800, 8-bit/color RGBA, non-interlaced Hash29dad06670f873936002ddb910253a4b 523ee4adf550df78348cf7528580171f0828f2b4 8871194dc3ae9035b5bb04c84aa7b82afa7442daf2bab5f1393a5751e6082a10
GET /S/content/common/images/grab.29dad06670f873936002ddb910253a4b.png HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://84vxd.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 61755
date: Fri, 26 Apr 2024 03:46:18 GMT
last-modified: Tue, 05 May 2020 03:32:54 GMT
etag: "29dad06670f873936002ddb910253a4b"
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ZmKA2RWmokyZI6PHVgAu82u7gJIajwnxRboXl-A4Y6iWx461BcNsqQ==
age: 2475
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S2/content/mobile/js/freefire.4a7a9740bc.js | 143.204.55.8 | 200 OK | 520 B |
URL GET HTTP/2cdn1.codashop.com/S2/content/mobile/js/freefire.4a7a9740bc.js IP143.204.55.8:443
Requested byhttps://84vxd.ktt55.my.id/free-fire/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (520), with no line terminators Hash4a7a9740bcf8062898a69cb939b84746 948bbea618cae328d0acb4cea603023da671358c c636bd0ea30e4e99b8ef807c5561df5064f8c1bd84b08038cdad8bdf989c7822
GET /S2/content/mobile/js/freefire.4a7a9740bc.js HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://84vxd.ktt55.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
content-length: 520
last-modified: Tue, 23 Apr 2024 06:11:17 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: 9GujOsismVXsqihEtQdfSR66E_zf6j1P
accept-ranges: bytes
server: AmazonS3
date: Thu, 25 Apr 2024 07:57:27 GMT
etag: "4a7a9740bcf8062898a69cb939b84746"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: rX-hDTwdQ0yy86t0AzlOJRbHJFG98nU_WtJsVaCKFgu2muiJVWdxhg==
age: 73806
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S/content/common/images/denom-image/FreeFire/Freefire_diamonds.png | 143.204.55.8 | 200 OK | 5.1 kB |
URL GET HTTP/2cdn1.codashop.com/S/content/common/images/denom-image/FreeFire/Freefire_diamonds.png IP143.204.55.8:443
Requested byhttps://84vxd.ktt55.my.id/free-fire/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typePNG image data, 100 x 100, 8-bit colormap, non-interlaced Hash28380515fca2c6f9a34c8d63c84082ee 8f4e3f2a27ac7daf8d4ad527df869e3283280d2e 7c77ef25ab71668ce14480e52815e31bcf9e19f2409889048c0c00bde9716895
GET /S/content/common/images/denom-image/FreeFire/Freefire_diamonds.png HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://84vxd.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 5052
date: Fri, 26 Apr 2024 03:46:18 GMT
last-modified: Wed, 16 Mar 2022 14:39:10 GMT
etag: "28380515fca2c6f9a34c8d63c84082ee"
x-amz-version-id: M7elHFq6ZhRZdt3T0xX6NlAMaSWhq70l
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: N_uCigdw5iRNYNB-vBoCgUrUBPuKHEx60geo6Luh2L1u4k9-xzbjTg==
age: 2475
X-Firefox-Spdy: h2
|
|
| ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js | 142.250.74.170 | 200 OK | 31 kB |
URL GET HTTP/2ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js IP142.250.74.170:443
Requested byhttps://84vxd.ktt55.my.id/free-fire/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typeJavaScript source, ASCII text, with very long lines (65451) Hashdc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d
GET /ajax/libs/jquery/3.5.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://84vxd.ktt55.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31021
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 09:56:44 GMT
expires: Wed, 23 Apr 2025 09:56:44 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 239448
last-modified: Fri, 08 May 2020 07:05:03 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S/content/common/images/mno/freefire_new_640x241.jpg | 143.204.55.8 | 200 OK | 54 kB |
URL GET HTTP/2cdn1.codashop.com/S/content/common/images/mno/freefire_new_640x241.jpg IP143.204.55.8:443
Requested byhttps://84vxd.ktt55.my.id/free-fire/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 640x241, components 3 Hash8e5bb390d9e0f12905481edac5e46539 c9d5677d4d96847df61e41b8d1ce5fa750eb834f 5bebf695d8569b372a8b99bb7bd08bccf0158f0ce3400469cafe685f3971ba5d
GET /S/content/common/images/mno/freefire_new_640x241.jpg HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://84vxd.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 53533
last-modified: Fri, 01 Sep 2023 07:44:38 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: 0KBjyiuNH1PeQRH3zwi23nW4fDwvGvAM
accept-ranges: bytes
server: AmazonS3
date: Fri, 26 Apr 2024 04:27:32 GMT
etag: "8e5bb390d9e0f12905481edac5e46539"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 0YN_8HkjKdeEC0zya-RYrFP0Ga2iQtERgucZe_2YM5XKzBiFnKP9NA==
age: 1823
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S/content/social-media-logo/36/socmed-youtube-H36.png | 143.204.55.8 | 200 OK | 2.2 kB |
URL GET HTTP/2cdn1.codashop.com/S/content/social-media-logo/36/socmed-youtube-H36.png IP143.204.55.8:443
Requested byhttps://84vxd.ktt55.my.id/free-fire/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typePNG image data, 51 x 36, 8-bit/color RGBA, non-interlaced Hash123c968b7d12fcf714b9d2af208d666a e81c6311be251ac7a4174d6a16c772e8ac78528e dcf5dc23bfca5d9b4b2a36c9db76f5375f51417bde2b33f1c60e3925c814d361
GET /S/content/social-media-logo/36/socmed-youtube-H36.png HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://84vxd.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 2216
last-modified: Fri, 24 Apr 2020 04:39:27 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Fri, 26 Apr 2024 04:27:32 GMT
etag: "123c968b7d12fcf714b9d2af208d666a"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: DA_1QnzbmkUeEco-b_DcSXaNaY1zFh111lmrQ3rDYM-Y_X-ZnZ5xpw==
age: 15496
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S/content/social-media-logo/36/socmed-facebook-msg-H36.png | 143.204.55.8 | 200 OK | 2.9 kB |
URL GET HTTP/2cdn1.codashop.com/S/content/social-media-logo/36/socmed-facebook-msg-H36.png IP143.204.55.8:443
Requested byhttps://84vxd.ktt55.my.id/free-fire/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typePNG image data, 36 x 36, 8-bit/color RGBA, non-interlaced Hashe3443d0d8aea42fc61368b9792b6fdc3 6d0f867176171d6dd3fe1e052251b7fdc8c479ca e6ff78cbc0e7a99c0243089cd0357f70d4432faea71e5b43ebfa466a166939d6
GET /S/content/social-media-logo/36/socmed-facebook-msg-H36.png HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://84vxd.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 2866
date: Fri, 26 Apr 2024 03:46:18 GMT
last-modified: Fri, 24 Apr 2020 04:39:27 GMT
etag: "e3443d0d8aea42fc61368b9792b6fdc3"
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: f0NNXjvC48DytNUmPunbW2vEePuH9L5T6khLmgRUuILwu6YTiT8aNQ==
age: 2475
X-Firefox-Spdy: h2
|
|
| cdn-www.bluestacks.com/bs-images/69b5965b1c8f0d20f45be82f0522d88a6bfa2ba0.png | 23.36.76.211 | 200 OK | 104 kB |
URL GET HTTP/1.1cdn-www.bluestacks.com/bs-images/69b5965b1c8f0d20f45be82f0522d88a6bfa2ba0.png IP23.36.76.211:443 ASN#20940 Akamai International B.V.
Requested byhttps://84vxd.ktt55.my.id/free-fire/ CertificateIssuerDigiCert Inc Subject*.bluestacks.com Fingerprint6F:39:D8:89:B6:A0:49:A7:C7:FA:A6:D0:74:C1:EC:93:A6:61:C4:1B ValidityThu, 11 Apr 2024 00:00:00 GMT - Fri, 11 Apr 2025 23:59:59 GMT
File typePNG image data, 512 x 512, 8-bit colormap, non-interlaced Size104 kB (104257 bytes) Hashc3221b6f85d253041dd7a749046252b4 3c61d86b06e871c2c4ca2c4e2ecd99e396d81927 75b0515e2566cc4467be7033f6b62b384138c74aab296fb3a924fb4f6ccefa1e
GET /bs-images/69b5965b1c8f0d20f45be82f0522d88a6bfa2ba0.png HTTP/1.1
Host: cdn-www.bluestacks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://84vxd.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: Atvb972R4Szs+CRwixmkl9Rf/1CtZTXyAKpOUY08eIPahyRrRMLoIbdPiKghgvSRa/DFVkJbIh8=
x-amz-request-id: CTHA6MWVX14W7DYN
Last-Modified: Wed, 23 May 2018 17:39:54 GMT
ETag: "c3221b6f85d253041dd7a749046252b4"
x-amz-version-id: null
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 104257
Cache-Control: max-age=64491
Expires: Fri, 26 Apr 2024 22:22:23 GMT
Date: Fri, 26 Apr 2024 04:27:32 GMT
Alt-Svc: h3=":443"; ma=93600,h3-29=":443"; ma=93600,h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Connection: keep-alive
|
|
| i.ibb.co/jr5VL36/favicon.png | 162.19.58.161 | 200 OK | 3.7 kB |
URL GET HTTP/2i.ibb.co/jr5VL36/favicon.png IP162.19.58.161:443
Requested byhttps://84vxd.ktt55.my.id/free-fire/ CertificateIssuerLet's Encrypt Subjectibb.co Fingerprint0C:8B:6F:2F:B8:9F:91:1E:3A:DD:B1:1B:45:47:B4:65:FD:56:73:3D ValidityMon, 22 Apr 2024 06:29:44 GMT - Sun, 21 Jul 2024 06:29:43 GMT
File typePNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced Hash036da5872428ec3279ad07f3074a8da7 d4bac7fce3fc291fc2452b6bc35b158c4ef309d1 d00bfe6cdff8e3c2370b458723c7db811efd563b36f1de3a02f28806db170981
GET /jr5VL36/favicon.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://84vxd.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 04:27:32 GMT
content-type: image/png
content-length: 3677
last-modified: Fri, 10 Sep 2021 14:31:05 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| i.postimg.cc/dQr9mRH4/codapaymentlogo.png | 162.19.88.69 | 200 OK | 13 kB |
URL GET HTTP/2i.postimg.cc/dQr9mRH4/codapaymentlogo.png IP162.19.88.69:443
Requested byhttps://84vxd.ktt55.my.id/free-fire/ CertificateIssuerLet's Encrypt Subjectpostimg.cc Fingerprint53:90:A2:AC:6E:D0:9C:56:06:D5:4F:6E:EE:C9:67:58:10:CF:9A:D6 ValidityMon, 22 Apr 2024 06:32:22 GMT - Sun, 21 Jul 2024 06:32:21 GMT
File typePNG image data, 1000 x 97, 8-bit/color RGBA, non-interlaced Hashf16535dba0fec2a6feb103ed45b30874 8cd27ad1904006b5db2570b0c320b757aadb98a2 af561f4a98032a04771de61aec77ae1fd118b138b9e45a2b7ca5826a3cb2b59b
GET /dQr9mRH4/codapaymentlogo.png HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://84vxd.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 04:27:32 GMT
content-type: image/png
content-length: 13178
last-modified: Tue, 15 Nov 2022 12:22:14 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| 84vxd.ktt55.my.id/img/facebook_text.png | 104.21.17.78 | 200 OK | 29 kB |
URL GET HTTP/384vxd.ktt55.my.id/img/facebook_text.png IP104.21.17.78:443
Requested byhttps://84vxd.ktt55.my.id/free-fire/ CertificateIssuerGoogle Trust Services LLC Subjectktt55.my.id Fingerprint8A:ED:C5:91:EA:3A:47:4E:D2:1C:E4:11:78:2D:71:BC:1D:AA:DF:DE ValiditySat, 16 Mar 2024 07:53:55 GMT - Fri, 14 Jun 2024 07:53:54 GMT
File typePNG image data, 604 x 158, 8-bit/color RGBA, non-interlaced Hash74190b93fc4f5d88f0c8e6411ba20bd8 89ce2ecb660a90b8e6ed1b335443d7767c59f28a 092a3cd5f86b3f039feefdeb86694cd16ae545af214cfda614bdbbe2d1bde401
Analyzer | Verdict | Alert | OpenPhish | phishing | Coda Payments |
GET /img/facebook_text.png HTTP/1.1
Host: 84vxd.ktt55.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://84vxd.ktt55.my.id/free-fire/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 04:27:33 GMT
content-type: image/png
content-length: 28789
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 04:27:33 GMT
last-modified: Thu, 03 Sep 2020 11:33:54 GMT
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JizJGL3ZNKBzltgLmXsx2u0LfeOGOBBfNLnj4tiE8mPa3e5PlBpJE5NuLUOUugkdWsBlcqLYCOTsVkpgMcamWUtbZnrnjqKOJLd9P6sSi%2BnJL8LOR%2B0vj8sdro6LYAjJXUbhoQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a3d228ffaa712a-OSL
|
|
| cdn1.codashop.com/S2/content/common/js/third_party_common.0859f0e010.js | 143.204.55.8 | 200 OK | 278 B |
URL GET HTTP/2cdn1.codashop.com/S2/content/common/js/third_party_common.0859f0e010.js IP143.204.55.8:443
Requested byhttps://84vxd.ktt55.my.id/free-fire/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with no line terminators Hash0859f0e01014515a05f1738b1ad2975d 2ce5a8530a35a3df627384c63add94b4324ab222 d617f26025f9d24f380f09a7fa7bec6d0306163e75de36e17fc198f4d8450a5b
GET /S2/content/common/js/third_party_common.0859f0e010.js HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://84vxd.ktt55.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
content-length: 278
date: Fri, 26 Apr 2024 04:27:34 GMT
last-modified: Tue, 23 Apr 2024 06:11:16 GMT
etag: "0859f0e01014515a05f1738b1ad2975d"
x-amz-server-side-encryption: AES256
x-amz-version-id: ScaB9TMwHR7xgpnLkSa00IT27uLRWY6B
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: p_sarLr9FoCRqm7rlg483Nre0oZsL4UvuM9eIK5qW7-1OJxQl2dwpg==
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S/content/common/css/flags32.png | 143.204.55.8 | 200 OK | 26 kB |
URL GET HTTP/2cdn1.codashop.com/S/content/common/css/flags32.png IP143.204.55.8:443
Requested byhttps://84vxd.ktt55.my.id/free-fire/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typePNG image data, 32 x 7904, 8-bit colormap, non-interlaced Hashee905aeea99aa287b3f5b569fedbd91e 0fd8e62c7b5240b5496dc1f2af99d45766c30b86 5ad678791b5d4839f74a625c1ff6d3f4a6bbfca6417ecb0133f1a60de77b415d
GET /S/content/common/css/flags32.png HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn1.codashop.com/S/content/common/css/flags.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 26399
date: Fri, 26 Apr 2024 03:46:19 GMT
last-modified: Thu, 20 Dec 2018 04:54:20 GMT
etag: "ee905aeea99aa287b3f5b569fedbd91e"
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 9JIoO4UNc8rLx8n6UxZN7tHc_uYuDtRs8cWY5qCNeuVcZPhOip3lEA==
age: 2475
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S/content/fonts/Lato/Lato-Regular.woff2 | 143.204.55.8 | 200 OK | 28 kB |
URL GET HTTP/2cdn1.codashop.com/S/content/fonts/Lato/Lato-Regular.woff2 IP143.204.55.8:443
Requested byhttps://84vxd.ktt55.my.id/free-fire/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 28440, version 1.0 Hash1031840a9580bcc9b1b83a047f2282b4 92eb819b7183fe6b04774a1003216991342e3af5 386695f80ed730cc1a3108b4d91fab24e1db1d9e5f13caa1f95095fb6f1de147
GET /S/content/fonts/Lato/Lato-Regular.woff2 HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://84vxd.ktt55.my.id
DNT: 1
Connection: keep-alive
Referer: https://cdn1.codashop.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 28440
date: Fri, 26 Apr 2024 02:43:54 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST
last-modified: Thu, 09 Apr 2020 13:54:30 GMT
etag: "1031840a9580bcc9b1b83a047f2282b4"
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
vary: Origin
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 61xU_ZU3_0ob2PBgnQ1YXZV9fOTXOnYK1S-_xO7eRYLNfmPUfmMTTA==
age: 6220
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S/content/fonts/Lato/Lato-Bold.woff2 | 143.204.55.8 | 200 OK | 211 kB |
URL GET HTTP/2cdn1.codashop.com/S/content/fonts/Lato/Lato-Bold.woff2 IP143.204.55.8:443
Requested byhttps://84vxd.ktt55.my.id/free-fire/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 211160, version 1.0 Size211 kB (211160 bytes) Hash743278852fdad61a73198bc74d529af8 d0f790e800b87b0db1edc0aedd9f3a82f88629cc 57b0c1d7bee3f753da5e6aa215a417abfa87dd9798ef2483f42585bfb08d64d9
GET /S/content/fonts/Lato/Lato-Bold.woff2 HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://84vxd.ktt55.my.id
DNT: 1
Connection: keep-alive
Referer: https://cdn1.codashop.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 211160
date: Fri, 26 Apr 2024 02:43:54 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST
last-modified: Thu, 09 Apr 2020 14:30:12 GMT
etag: "743278852fdad61a73198bc74d529af8"
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
vary: Origin
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: tHxloIzkcwgWlOf_zCB1jZoqMn1afVzpKg3AASu1oJcobXBAMFT7BQ==
age: 6220
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S/content/fonts/Noto/NotoSans-Regular.woff2 | 143.204.55.8 | 200 OK | 118 kB |
URL GET HTTP/2cdn1.codashop.com/S/content/fonts/Noto/NotoSans-Regular.woff2 IP143.204.55.8:443
Requested byhttps://84vxd.ktt55.my.id/free-fire/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 117948, version 1.0 Size118 kB (117948 bytes) Hashe50c34178d20d5fa4ab3c1f6c67901a9 655dcb4d829e2bc75e9a7cf8a2aa08f6a4513634 5b43a0c0c7874410cd01de2ec8684785b550295350f5d92901f4c9090f1ab019
GET /S/content/fonts/Noto/NotoSans-Regular.woff2 HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://84vxd.ktt55.my.id
DNT: 1
Connection: keep-alive
Referer: https://cdn1.codashop.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 117948
date: Fri, 26 Apr 2024 02:43:54 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST
last-modified: Fri, 06 May 2022 11:41:27 GMT
etag: "e50c34178d20d5fa4ab3c1f6c67901a9"
cache-control: max-age=604800
x-amz-version-id: trEzvh6kI.WdcIb7.CUjjvIEEUDocBW7
accept-ranges: bytes
server: AmazonS3
vary: Origin
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: I_Dk4NgJ2GKkaTAS_zbQXtEn4T59Li-xjf9zgb_mrKA9AJHqsRMnBQ==
age: 6220
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S/content/fonts/Lato/Lato-Light.woff2 | 143.204.55.8 | 200 OK | 208 kB |
URL GET HTTP/2cdn1.codashop.com/S/content/fonts/Lato/Lato-Light.woff2 IP143.204.55.8:443
Requested byhttps://84vxd.ktt55.my.id/free-fire/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 207880, version 1.0 Size208 kB (207880 bytes) Hash01b5dcc68aff09201f8e83a5e1c568ee 59f494bd2df4ad954d32b8cae8b5800d4834d716 3d2b4deb945a2e8b4a4fd551bd5c41ce8719d34fa4caefb7385829cf85cb7590
GET /S/content/fonts/Lato/Lato-Light.woff2 HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://84vxd.ktt55.my.id
DNT: 1
Connection: keep-alive
Referer: https://cdn1.codashop.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 207880
date: Fri, 26 Apr 2024 02:43:54 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST
last-modified: Thu, 09 Apr 2020 14:21:48 GMT
etag: "01b5dcc68aff09201f8e83a5e1c568ee"
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
vary: Origin
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: mmw_cB73mRHRIdAnz7xq-p_cb1S5Dyo4NexwIDO_-Xik_GP2TlSAqw==
age: 6220
X-Firefox-Spdy: h2
|
|
| www.google.com/recaptcha/api.js | 142.250.74.164 | 200 OK | 116 kB |
URL GET HTTP/2www.google.com/recaptcha/api.js IP142.250.74.164:443
Requested byhttps://84vxd.ktt55.my.id/free-fire/ CertificateIssuerGoogle Trust Services LLC Subjectwww.google.com FingerprintCD:48:2A:0C:60:1D:37:5A:D4:D5:A9:F7:DE:A0:2B:5E:2F:29:76:73 ValidityMon, 18 Mar 2024 20:38:49 GMT - Mon, 10 Jun 2024 20:38:48 GMT
Size116 kB (116190 bytes) Hash71982a6b08beef254ca4c7bd6c2fd344 549e796a259423efbf2690b02dbf05262263ede4 efe20cfca4a898e1fbfc6629140d66246ff705215b8fb2fe39796d493717d138
GET /recaptcha/api.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://84vxd.ktt55.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
expires: Fri, 26 Apr 2024 04:27:32 GMT
date: Fri, 26 Apr 2024 04:27:32 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S/content/fonts/Lato/Lato-Italic.woff2 | 143.204.55.8 | 200 OK | 232 kB |
URL GET HTTP/2cdn1.codashop.com/S/content/fonts/Lato/Lato-Italic.woff2 IP143.204.55.8:443
Requested byhttps://84vxd.ktt55.my.id/free-fire/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 231712, version 1.0 Size232 kB (231712 bytes) Hashfccd49e77f1d0fe7552d11ec3697a5c7 0314a4d1109fd76beb5ab8f28a402f920fc2a225 405dae7456bc82c5f43abde71fdddde1be42a759b1cc7db12756d3c119ae5457
GET /S/content/fonts/Lato/Lato-Italic.woff2 HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://84vxd.ktt55.my.id
DNT: 1
Connection: keep-alive
Referer: https://cdn1.codashop.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 231712
date: Fri, 26 Apr 2024 02:43:54 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST
last-modified: Thu, 09 Apr 2020 14:21:48 GMT
etag: "fccd49e77f1d0fe7552d11ec3697a5c7"
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
vary: Origin
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: XCI5Yr2TjkeHaZ84NQsRqomBbnjOZ8jqUUEpcUkWCsV4MTYaxF07ow==
age: 6220
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S/content/fonts/Lato/Lato-Semibold.woff2 | 143.204.55.8 | 200 OK | 213 kB |
URL GET HTTP/2cdn1.codashop.com/S/content/fonts/Lato/Lato-Semibold.woff2 IP143.204.55.8:443
Requested byhttps://84vxd.ktt55.my.id/free-fire/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 213284, version 1.0 Size213 kB (213284 bytes) Hash3b2be91477b04924b538786080ff371b 1a76b7ffe7ba478a6a34323e85aa219f85eb8842 8817bfe4ce3f5f0a9e3e6221a052e51c5baf38ad16dc65af6753a4c4c4e00b99
GET /S/content/fonts/Lato/Lato-Semibold.woff2 HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://84vxd.ktt55.my.id
DNT: 1
Connection: keep-alive
Referer: https://cdn1.codashop.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 213284
date: Fri, 26 Apr 2024 02:43:54 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST
last-modified: Thu, 09 Apr 2020 14:29:03 GMT
etag: "3b2be91477b04924b538786080ff371b"
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
vary: Origin
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: LUVcgLifmDyjjBsfyjqjl9b2kH7r2arR9xj12Vn_nogyoCWskjinDA==
age: 6220
X-Firefox-Spdy: h2
|
|
| d1qgcmfii0ptfa.cloudfront.net/S/content/mobile/images/app_store_coda.png | 143.204.42.123 | 200 OK | 2.8 kB |
URL GET HTTP/1.1d1qgcmfii0ptfa.cloudfront.net/S/content/mobile/images/app_store_coda.png IP143.204.42.123:443
Requested byhttps://84vxd.ktt55.my.id/free-fire/ CertificateIssuerAmazon Subject*.cloudfront.net FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52 ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File typePNG image data, 138 x 41, 8-bit colormap, non-interlaced Hashcfd0f0cbf8aa1717324f64a438c378c5 deb76943cf9b96153b36c04c9de02996857a808b 6a69de99192160f4a77667679c5a985beb0758dd464c162f58e2f89b91d11011
GET /S/content/mobile/images/app_store_coda.png HTTP/1.1
Host: d1qgcmfii0ptfa.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://84vxd.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 2799
Connection: keep-alive
Last-Modified: Mon, 17 Jul 2017 08:47:30 GMT
Content-Disposition: attachment
Accept-Ranges: bytes
Server: AmazonS3
Date: Fri, 26 Apr 2024 04:09:29 GMT
ETag: "cfd0f0cbf8aa1717324f64a438c378c5"
X-Cache: Hit from cloudfront
Via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 0YD_Up0ZZf16kfv5J6EGPSzU_bBHTSWJBppSCbP0-Hh48L983ZUGIQ==
Age: 1338
|
|
| d1qgcmfii0ptfa.cloudfront.net/S/content/mobile/images/google_play_coda.png | 143.204.42.123 | 200 OK | 2.6 kB |
URL GET HTTP/1.1d1qgcmfii0ptfa.cloudfront.net/S/content/mobile/images/google_play_coda.png IP143.204.42.123:443
Requested byhttps://84vxd.ktt55.my.id/free-fire/ CertificateIssuerAmazon Subject*.cloudfront.net FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52 ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File typePNG image data, 138 x 41, 8-bit colormap, non-interlaced Hashe7ebc6c74ec20ea3614970e178217c10 f667fbc525f046f8c6d7617541884c4d6ed52478 19c2b75fe23ae2238adbd7f34901396d4120605d9028c2fcc7bd3c010e27ef9a
GET /S/content/mobile/images/google_play_coda.png HTTP/1.1
Host: d1qgcmfii0ptfa.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://84vxd.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 2631
Connection: keep-alive
Last-Modified: Mon, 17 Jul 2017 08:47:31 GMT
Content-Disposition: attachment
Accept-Ranges: bytes
Server: AmazonS3
Date: Fri, 26 Apr 2024 03:46:17 GMT
ETag: "e7ebc6c74ec20ea3614970e178217c10"
X-Cache: Hit from cloudfront
Via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: W936eybXDgVs2YWLwzFy2MerAg5eUKsvkndISaWDzjmqFusOPl99bA==
Age: 17537
|
|
| cdn1.codashop.com/S/content/common/css/jquery-ui-1.12.1.css | 143.204.55.8 | 200 OK | 10 kB |
URL GET HTTP/2cdn1.codashop.com/S/content/common/css/jquery-ui-1.12.1.css IP143.204.55.8:443
Requested byhttps://84vxd.ktt55.my.id/free-fire/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typegzip compressed data, from Unix Hashe9514bd45de437139739beee676cb538 e52de83ab6bc53561e631c429a53f5f99bd358b5 d8631d97bdc86af61a39abeaf8104b7a6d0aec6b5e36da747fd66efd2c1ad2aa
GET /S/content/common/css/jquery-ui-1.12.1.css HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://84vxd.ktt55.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 20 Dec 2018 07:52:04 GMT
content-disposition: attachment
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Thu, 25 Apr 2024 06:34:41 GMT
etag: W/"c4a88ec0cb998929a670c0c58d7dc526"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: fArL1lFcYdMJS-ZcbJsVUHFUbANFF_rBV6SB7muW6DS2pjdQg0iwKg==
age: 78772
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S2/content/mobile/images/app/codashop-ico-192x192.eda9c373cc.png | 143.204.55.8 | 200 OK | 5.1 kB |
URL GET HTTP/2cdn1.codashop.com/S2/content/mobile/images/app/codashop-ico-192x192.eda9c373cc.png IP143.204.55.8:443
Requested byhttps://84vxd.ktt55.my.id/free-fire/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typePNG image data, 192 x 192, 8-bit colormap, non-interlaced Hasheda9c373ccb4065459e0a9dd76c35348 03ac8f73f9d9f58a86db99aa4dd4947b481752e0 bac3a525d341ed1bde59059a94d6c04cacd69bba4aeb2768af781199c15f3ab6
GET /S2/content/mobile/images/app/codashop-ico-192x192.eda9c373cc.png HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://84vxd.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 5067
date: Fri, 26 Apr 2024 03:46:19 GMT
last-modified: Tue, 23 Apr 2024 06:11:17 GMT
etag: "eda9c373ccb4065459e0a9dd76c35348"
x-amz-server-side-encryption: AES256
x-amz-version-id: XMTiL4Yk_l7WvO6Rgftw4tp3FOBX1CLk
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: FoBVPZpwsU6lVYtGG3mZVFF3JjR34fUYbNSAdX0dG6SQrw5biLdryg==
age: 2476
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js | 142.250.74.35 | 200 OK | 206 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js IP142.250.74.35:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6Lc8br0ZAAAAAOAZHpdE1Fm9RA9tK85W3ano_l0-&co=aHR0cHM6Ly84NHZ4ZC5rdHQ1NS5teS5pZDo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=normal&cb=sqz0qfai96p9 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeJavaScript source, ASCII text, with very long lines (631) Size206 kB (205803 bytes) Hashe2e79d6b927169d9e0e57e3baecc0993 1299473950b2999ba0b7f39bd5e4a60eafd1819d 231336ed913a5ebd4445b85486e053caf2b81cab91318241375f3f7a245b6c6b
GET /recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://84vxd.ktt55.my.id
DNT: 1
Connection: keep-alive
Referer: https://84vxd.ktt55.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 205803
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 Apr 2024 20:51:00 GMT
expires: Thu, 24 Apr 2025 20:51:00 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2024 21:03:35 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 113794
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.google.com/recaptcha/api2/anchor?ar=1&k=6Lc8br0ZAAAAAOAZHpdE1Fm9RA9tK85W3ano_l0-&co=aHR0cHM6Ly84NHZ4ZC5rdHQ1NS5teS5pZDo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=normal&cb=sqz0qfai96p9 | 142.250.74.164 | 200 OK | 26 kB |
URL GET HTTP/3www.google.com/recaptcha/api2/anchor?ar=1&k=6Lc8br0ZAAAAAOAZHpdE1Fm9RA9tK85W3ano_l0-&co=aHR0cHM6Ly84NHZ4ZC5rdHQ1NS5teS5pZDo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=normal&cb=sqz0qfai96p9 IP142.250.74.164:443
Requested byhttps://84vxd.ktt55.my.id/free-fire/ CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT
File typeHTML document, ASCII text, with very long lines (56439) Hash567dd55178d1dede60c75a278508cfe8 24e454b8152272d8ff788bd490f3a5022b19f9f6 9ea3b45ed28d64035846775f8adc7e4ac5a1b3a7a154d7edb70c6f57090e4c96
GET /recaptcha/api2/anchor?ar=1&k=6Lc8br0ZAAAAAOAZHpdE1Fm9RA9tK85W3ano_l0-&co=aHR0cHM6Ly84NHZ4ZC5rdHQ1NS5teS5pZDo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=normal&cb=sqz0qfai96p9 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://84vxd.ktt55.my.id/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-security-policy: script-src 'nonce-rltdUZgRydke0kEudLfq5Q' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
date: Fri, 26 Apr 2024 04:27:34 GMT
expires: Fri, 26 Apr 2024 04:27:34 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js | 142.250.74.35 | 200 OK | 206 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js IP142.250.74.35:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6Lc8br0ZAAAAAOAZHpdE1Fm9RA9tK85W3ano_l0-&co=aHR0cHM6Ly84NHZ4ZC5rdHQ1NS5teS5pZDo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=normal&cb=sqz0qfai96p9 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeJavaScript source, ASCII text, with very long lines (631) Size206 kB (205803 bytes) Hashe2e79d6b927169d9e0e57e3baecc0993 1299473950b2999ba0b7f39bd5e4a60eafd1819d 231336ed913a5ebd4445b85486e053caf2b81cab91318241375f3f7a245b6c6b
GET /recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 205803
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 Apr 2024 20:51:00 GMT
expires: Thu, 24 Apr 2025 20:51:00 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2024 21:03:35 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 113794
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/recaptcha/api2/logo_48.png | 142.250.74.35 | 200 OK | 2.2 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/api2/logo_48.png IP142.250.74.35:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6Lc8br0ZAAAAAOAZHpdE1Fm9RA9tK85W3ano_l0-&co=aHR0cHM6Ly84NHZ4ZC5rdHQ1NS5teS5pZDo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=normal&cb=sqz0qfai96p9 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typePNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced Hashef9941290c50cd3866e2ba6b793f010d 4736508c795667dcea21f8d864233031223b7832 1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a
GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 02:54:07 GMT
expires: Thu, 02 May 2024 02:54:07 GMT
cache-control: public, max-age=604800
age: 92007
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 15 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6Lc8br0ZAAAAAOAZHpdE1Fm9RA9tK85W3ano_l0-&co=aHR0cHM6Ly84NHZ4ZC5rdHQ1NS5teS5pZDo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=normal&cb=sqz0qfai96p9 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15344, version 1.0 Hash5d4aeb4e5f5ef754e307d7ffaef688bd 06db651cdf354c64a7383ea9c77024ef4fb4cef8 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 02:43:03 GMT
expires: Fri, 25 Apr 2025 02:43:03 GMT
cache-control: public, max-age=31536000
age: 92671
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S/content/common/css/flags.css | 143.204.55.8 | 200 OK | 9.6 kB |
URL GET HTTP/2cdn1.codashop.com/S/content/common/css/flags.css IP143.204.55.8:443
Requested byhttps://84vxd.ktt55.my.id/free-fire/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typegzip compressed data, from Unix Hash3d4b955f4b9f41c6f6f8042d1dccedfa dfdd9408a7239289ff0d8fe8e28e76bd971b5921 3bd1076099d0fb09c040848430059bdb7d346a6d47f0708baf9b1868a7c0b1d7
GET /S/content/common/css/flags.css HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://84vxd.ktt55.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 20 Dec 2018 04:54:20 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Thu, 25 Apr 2024 06:34:41 GMT
etag: W/"48625f4127086c12c9db05064a6bab03"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: XhXcluar9TOy92Jt8k0VlmyDv9K17x1DiGrn7jx9aAMvC-2iq16mpA==
age: 78772
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S/content/common/js/xss.min.js | 143.204.55.8 | 200 OK | 29 kB |
URL GET HTTP/2cdn1.codashop.com/S/content/common/js/xss.min.js IP143.204.55.8:443
Requested byhttps://84vxd.ktt55.my.id/free-fire/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (28924), with no line terminators Hash4947ff982fb69173f95da79b538f254d 884db3bf10e92790cf6d9937731f70d59c87cc9f 0278b60e08b67fb8ae86c56dd80075e94e1d51113eb21ade41996147c601dfe6
GET /S/content/common/js/xss.min.js HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://84vxd.ktt55.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
date: Fri, 26 Apr 2024 03:46:18 GMT
last-modified: Tue, 12 Nov 2019 04:16:51 GMT
etag: W/"4947ff982fb69173f95da79b538f254d"
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: w9a5Ec94mcmVtwWB93xLio0PnifJThMYxF5G8LuotM_E23gEs37FIQ==
age: 2475
X-Firefox-Spdy: h2
|
|
| 84vxd.ktt55.my.id/css/popupLogin.css | 104.21.17.78 | 200 OK | 2.2 kB |
URL GET HTTP/384vxd.ktt55.my.id/css/popupLogin.css IP104.21.17.78:443
Requested byhttps://84vxd.ktt55.my.id/free-fire/ CertificateIssuerGoogle Trust Services LLC Subjectktt55.my.id Fingerprint8A:ED:C5:91:EA:3A:47:4E:D2:1C:E4:11:78:2D:71:BC:1D:AA:DF:DE ValiditySat, 16 Mar 2024 07:53:55 GMT - Fri, 14 Jun 2024 07:53:54 GMT
File typeASCII text, with very long lines (2603), with no line terminators Hash132ae2b937805fb20662171424973d82 2cade27c0ecc7002b82117e92278b62c0f0f3122 2d4b6c88b764b6f6463b45f84209aa5af2f6972beff4a6f4fad284e3b032c05d
Analyzer | Verdict | Alert | OpenPhish | phishing | Coda Payments |
GET /css/popupLogin.css HTTP/1.1
Host: 84vxd.ktt55.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://84vxd.ktt55.my.id/free-fire/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 04:27:33 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 04:27:33 GMT
last-modified: Thu, 03 Sep 2020 11:34:32 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nfmTaK29C%2F%2Fe%2B0bTbb4jyxrFK9%2FYTQ5c3DB9LZRqM8uAep7NVw0S%2B8lBbOaFVcLG6prVKe1LQzvdsrJIGXsjoTNtfdTFujMPwBbs16cloycU9Z07X1uBGEqqTNFXxZ7dDyITqA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a3d228efa1712a-OSL
content-encoding: br
|
|
| 84vxd.ktt55.my.id/css/twitter.css | 104.21.17.78 | 200 OK | 1.9 kB |
URL GET HTTP/384vxd.ktt55.my.id/css/twitter.css IP104.21.17.78:443
Requested byhttps://84vxd.ktt55.my.id/free-fire/ CertificateIssuerGoogle Trust Services LLC Subjectktt55.my.id Fingerprint8A:ED:C5:91:EA:3A:47:4E:D2:1C:E4:11:78:2D:71:BC:1D:AA:DF:DE ValiditySat, 16 Mar 2024 07:53:55 GMT - Fri, 14 Jun 2024 07:53:54 GMT
File typeASCII text, with very long lines (2108), with no line terminators Hashed1ca2901a80d551b062ee62367f974c d4a0ac67459b72ee1a9217c4feae0d18052f387b 547014d6772b63fdc807bfe1a71788a75a4b41735e4cf75c7c2736ebb7b94c9a
Analyzer | Verdict | Alert | OpenPhish | phishing | Coda Payments |
GET /css/twitter.css HTTP/1.1
Host: 84vxd.ktt55.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://84vxd.ktt55.my.id/free-fire/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 04:27:33 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 04:27:33 GMT
last-modified: Thu, 03 Sep 2020 13:30:00 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YvwHH63TnvfJqT2A7IY4MnEcH0x3ey8PI9I60fA0%2F1uisI%2Bzrk%2Ft%2F%2B9wNG8rs1kou3HGGPf3LeSTHtixs%2Fnb6dhPKlamhlq5KxTWFIxRzzmguS2H0QrqniR9CddlDCtuhQjgZw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a3d228ffa8712a-OSL
content-encoding: br
|
|
| cdn1.codashop.com/S2/content/common/css/shared-shop-content.e6202b83de.css | 143.204.55.8 | 200 OK | 3.2 kB |
URL GET HTTP/2cdn1.codashop.com/S2/content/common/css/shared-shop-content.e6202b83de.css IP143.204.55.8:443
Requested byhttps://84vxd.ktt55.my.id/free-fire/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typeUnicode text, UTF-8 text, with very long lines (3225), with no line terminators Hash25fa185279e8f6803556a00a262f95c5 d932b37655b18e119aaf89ccbe833da32b1fe3a4 ab288c27611661da5d71e78e22a89c3180e1077fcbf2349417db3640c99a742c
GET /S2/content/common/css/shared-shop-content.e6202b83de.css HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://84vxd.ktt55.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
date: Thu, 25 Apr 2024 05:43:39 GMT
last-modified: Tue, 23 Apr 2024 06:11:16 GMT
etag: W/"e6202b83defd6474350841e595260599"
x-amz-server-side-encryption: AES256
x-amz-version-id: mS76H60CSqpKERT7gu1FDPeeSGjaE.vA
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: h1xZ2czYXRfFt01c0wGAuhXI0vOrBum0baLTGnIWUiE1IBU6g_5Pvg==
age: 81834
X-Firefox-Spdy: h2
|
|
| stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css | 104.18.10.207 | 200 OK | 31 kB |
URL GET HTTP/2stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css IP104.18.10.207:443
Requested byhttps://84vxd.ktt55.my.id/free-fire/ CertificateIssuerGoogle Trust Services LLC Subjectbootstrapcdn.com Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63 ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT
File typeASCII text, with very long lines (30837) Hash269550530cc127b6aa5a35925a7de6ce 512c7d79033e3028a9be61b540cf1a6870c896f8 799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://84vxd.ktt55.my.id
DNT: 1
Connection: keep-alive
Referer: https://84vxd.ktt55.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 04:27:32 GMT
content-type: text/css; charset=utf-8
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31919000
content-encoding: br
etag: W/"269550530cc127b6aa5a35925a7de6ce"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 03/18/2024 12:28:12
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1078
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: c86b5094b345c1ea12dbefffb50e8bf4
cdn-cache: HIT
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87a3d2294cfa7128-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S2/content/common/js/infoBar.38acc407b3.js | 143.204.55.8 | 200 OK | 2.1 kB |
URL GET HTTP/2cdn1.codashop.com/S2/content/common/js/infoBar.38acc407b3.js IP143.204.55.8:443
Requested byhttps://84vxd.ktt55.my.id/free-fire/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (2163), with no line terminators Hash61a5dda1acff787320fc2f4e36f1e4f4 779d0360b878d3772a1a8bd40c3b157165d1a7bf e342eed229c64a457df9aa7137b65139369bc15ada6b79eddec49449346b95fb
GET /S2/content/common/js/infoBar.38acc407b3.js HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://84vxd.ktt55.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
date: Fri, 26 Apr 2024 03:46:18 GMT
last-modified: Fri, 04 Sep 2020 02:37:42 GMT
etag: W/"38acc407b31daa48fafd99a877c64b5d"
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 1XED_7mH66f57ajG6TsBtqopJst6ScpoU8dSCQb0TyiZupwLXZs6XQ==
age: 2475
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S2/content/mobile/css/productPage/responsive-product-page2.7ec2b81ede.css | 143.204.55.8 | 200 OK | 27 kB |
URL GET HTTP/2cdn1.codashop.com/S2/content/mobile/css/productPage/responsive-product-page2.7ec2b81ede.css IP143.204.55.8:443
Requested byhttps://84vxd.ktt55.my.id/free-fire/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typeASCII text, with very long lines (26941), with no line terminators Hash7ec2b81ede93e59a3c985e6656b87427 1492b90f5361149a1d84d0870a5fcb15e1a9f60f 8225b86ace7fec322a3bcfb3549603351fef4111b98595a617499a69c8d6269b
GET /S2/content/mobile/css/productPage/responsive-product-page2.7ec2b81ede.css HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://84vxd.ktt55.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
date: Fri, 26 Apr 2024 03:46:18 GMT
last-modified: Fri, 04 Sep 2020 02:37:43 GMT
etag: W/"7ec2b81ede93e59a3c985e6656b87427"
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: YjXP8mfN6tWlbJSGyXr3V9S4Eh26qYw9G4tDvIFUD7vB3e6uzWbqJw==
age: 2475
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S/content/fonts/Noto/NotoSans-Bold.woff2 | 143.204.55.8 | 200 OK | 116 kB |
URL GET HTTP/2cdn1.codashop.com/S/content/fonts/Noto/NotoSans-Bold.woff2 IP143.204.55.8:443
Requested byhttps://84vxd.ktt55.my.id/free-fire/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 115636, version 1.0 Size116 kB (115636 bytes) Hashb85bf848c28799f5ad34ee29db68051c 538e18f01b875aedf4f30d88e38e955c5d59d6c9 c95f8fea4127282bb43f177f7876fe197d76b31402ccda50509a76a9af67fd19
GET /S/content/fonts/Noto/NotoSans-Bold.woff2 HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://84vxd.ktt55.my.id
DNT: 1
Connection: keep-alive
Referer: https://cdn1.codashop.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 115636
date: Fri, 26 Apr 2024 02:43:54 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST
last-modified: Fri, 06 May 2022 11:50:30 GMT
etag: "b85bf848c28799f5ad34ee29db68051c"
cache-control: max-age=604800
x-amz-version-id: 6YZ2iB2NuI0FwUibqboJ_TmO633zhnjc
accept-ranges: bytes
server: AmazonS3
vary: Origin
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: uPTxHCIEyBvCHT_9LRXxOk6flZWQGNo6abyh1xTa9akHwJZruqOcYQ==
age: 6220
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S/content/common/js/jquery.mask.min.js | 143.204.55.8 | 200 OK | 7.4 kB |
URL GET HTTP/2cdn1.codashop.com/S/content/common/js/jquery.mask.min.js IP143.204.55.8:443
Requested byhttps://84vxd.ktt55.my.id/free-fire/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (7660), with no line terminators Hash6409d62d5717b9730b29269652900057 e3ee78cc51381e332376792b552da91391eb43ec 18945d2c761b9a1534e686ca2237bc2d6f7afc9687099e1cfead10e1269b20bb
GET /S/content/common/js/jquery.mask.min.js HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://84vxd.ktt55.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript
last-modified: Thu, 20 Dec 2018 08:04:35 GMT
content-disposition: attachment
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Fri, 26 Apr 2024 03:46:16 GMT
etag: W/"35d9db48e3112f35d81e70b98457aa42"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: bUFLKI53iu7rOPYSa_w1DmVoaRYK9ioIaNabEfUn4Ks6ORFIvkNfXw==
age: 10740
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/P/airtime/w/css/airtime_v1.0a.css | 143.204.55.8 | 200 OK | 2.7 kB |
URL GET HTTP/2cdn1.codashop.com/P/airtime/w/css/airtime_v1.0a.css IP143.204.55.8:443
Requested byhttps://84vxd.ktt55.my.id/free-fire/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typeASCII text, with very long lines (2798), with no line terminators Hash73154e8739468f2fddbaeef7811a68b0 de38327189a27b66910d261043fda84207efb5af 4e58983e6a717b6f05ded030cbed781f163b93d575ef3d16bb17216a23eaf382
GET /P/airtime/w/css/airtime_v1.0a.css HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://84vxd.ktt55.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
last-modified: Fri, 13 Mar 2020 03:56:02 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Thu, 25 Apr 2024 07:26:23 GMT
etag: W/"753a330f95a906499abe488e677662d3"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 0l_6PFLQcn_ouFNFlTS5hB4JembJbSaTflkH2OOq7wvQEs6sP8JgHw==
age: 75670
X-Firefox-Spdy: h2
|
|
| 84vxd.ktt55.my.id/css/facebook.css | 104.21.17.78 | 200 OK | 3.3 kB |
URL GET HTTP/384vxd.ktt55.my.id/css/facebook.css IP104.21.17.78:443
Requested byhttps://84vxd.ktt55.my.id/free-fire/ CertificateIssuerGoogle Trust Services LLC Subjectktt55.my.id Fingerprint8A:ED:C5:91:EA:3A:47:4E:D2:1C:E4:11:78:2D:71:BC:1D:AA:DF:DE ValiditySat, 16 Mar 2024 07:53:55 GMT - Fri, 14 Jun 2024 07:53:54 GMT
File typeASCII text, with very long lines (3652), with no line terminators Hashcf40acbd99bff687c6b0ead7b5149a8a feee1d79f66a0a47216f9c1bdfca2cde0da0b4c9 321f3512a8cf477d7129ecd68653261383d91d29204f9119061311c26a7f3133
Analyzer | Verdict | Alert | OpenPhish | phishing | Coda Payments |
GET /css/facebook.css HTTP/1.1
Host: 84vxd.ktt55.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://84vxd.ktt55.my.id/free-fire/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 04:27:33 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 04:27:33 GMT
last-modified: Thu, 03 Sep 2020 11:31:20 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CzAJRBchzn9NT2r2f4yTLGh8g8KUGz7m0dYRoWL4FGG6QMwOhahCEkFprWBepQmBWjdwUSxrjJGxLwjl2LcEizhJx29kHJ4ULcwxYhat%2Bjuh7oBcfb42xV3M6T5cO6ImXXZLQg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a3d228ffa7712a-OSL
content-encoding: br
|
|
| cdn1.codashop.com/S2/content/common/js/shop-topnav2.7e1fed6bdf.js | 143.204.55.8 | 200 OK | 7.2 kB |
URL GET HTTP/2cdn1.codashop.com/S2/content/common/js/shop-topnav2.7e1fed6bdf.js IP143.204.55.8:443
Requested byhttps://84vxd.ktt55.my.id/free-fire/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (7489), with no line terminators Hash837ad2eb3ceaba97e69a5bc5907656bd db034dfdf9ad78e25abb924c437be76ce42af461 c77b7db6a323fa7dbe5f0c467d454b65fe161328e2b30d3d67699c4138632508
GET /S2/content/common/js/shop-topnav2.7e1fed6bdf.js HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://84vxd.ktt55.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
date: Thu, 25 Apr 2024 05:43:39 GMT
last-modified: Tue, 23 Apr 2024 06:11:16 GMT
etag: W/"7e1fed6bdfc0657c0dedc6e6c19553fa"
x-amz-server-side-encryption: AES256
x-amz-version-id: 4SjQUHkKUo62BXlULj.VxtctQ3ASVowu
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: I_j12JDXRPzG9i4lcBmjNKjIBRKc-dSCejVj6m-OhMufAE46nlxrPA==
age: 81834
X-Firefox-Spdy: h2
|
|
| script.tapfiliate.com/tapfiliate.js | 54.230.111.8 | 200 OK | 12 kB |
URL GET HTTP/2script.tapfiliate.com/tapfiliate.js IP54.230.111.8:443
Requested byhttps://84vxd.ktt55.my.id/free-fire/ CertificateIssuerAmazon Subjectbackend.tapfiliate.com Fingerprint08:49:72:00:4F:7E:51:98:05:55:F9:6A:56:27:5A:78:BD:99:57:C4 ValidityWed, 04 Oct 2023 00:00:00 GMT - Sat, 02 Nov 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (11592), with no line terminators Hashddbb39a9e8e67d5067145f8aa76b938d 2f7cacfbcaaf8291a1a933898d1dff0b21edf1cb 44798a517a7c8d28c1e371a1b8b869bae1608bd48df7ed50800cbed8703612c1
GET /tapfiliate.js HTTP/1.1
Host: script.tapfiliate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://84vxd.ktt55.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 12 Oct 2022 12:34:24 GMT
server: AmazonS3
content-encoding: br
date: Fri, 26 Apr 2024 01:58:46 GMT
etag: W/"ddbb39a9e8e67d5067145f8aa76b938d"
x-cache: Hit from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 16CFXY6JrmrSPKFKpIE8fnBiKYXwcpZvaW150y20Y2-r--adbicCZw==
age: 8935
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S2/content/common/css/shared-fontfaces.b6c83d3582.css | 143.204.55.8 | 200 OK | 2.8 kB |
URL GET HTTP/2cdn1.codashop.com/S2/content/common/css/shared-fontfaces.b6c83d3582.css IP143.204.55.8:443
Requested byhttps://84vxd.ktt55.my.id/free-fire/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typeASCII text, with very long lines (2784), with no line terminators Hashb6c83d3582430126098676cc14c0b7ae a117a8e06637487fabce45c1716e33ce4008e560 f1dc9f4f3addbfa08c795318bfa457a0bf60029d906c694e6aa46d5db79ab50f
GET /S2/content/common/css/shared-fontfaces.b6c83d3582.css HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://84vxd.ktt55.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
last-modified: Tue, 23 Apr 2024 06:11:16 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: Dgpmc5nq6YJlIANF5oJixHrBxLyO5BAz
server: AmazonS3
content-encoding: gzip
date: Thu, 25 Apr 2024 07:26:23 GMT
etag: W/"b6c83d3582430126098676cc14c0b7ae"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: cLWBflG0Zv_U2q_LGQRAX1JoL4II1FyC2ICVRJ3msvOlIZRjJRwx3Q==
age: 75671
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S/content/common/images/reskin/favicon.ico | 143.204.55.8 | 200 OK | 2.2 kB |
URL GET HTTP/2cdn1.codashop.com/S/content/common/images/reskin/favicon.ico IP143.204.55.8:443
Requested byhttps://84vxd.ktt55.my.id/free-fire/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typePNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced Hash9141e5521105fb13c657480daf781484 1d0d577784430fce4badac4b6c8aa81bfbe45c8f 8af7dda580228d237c72eed44bce0912585241544a1feae96a464145efb542b2
GET /S/content/common/images/reskin/favicon.ico HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://84vxd.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/x-icon
content-length: 2190
date: Fri, 26 Apr 2024 03:46:19 GMT
last-modified: Thu, 19 Aug 2021 08:47:21 GMT
etag: "9141e5521105fb13c657480daf781484"
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: V_USzEl0-D_3aJgRv1DwjERsXaq_WoTcfgE0lhgkau4GH7stpz3GvA==
age: 2476
X-Firefox-Spdy: h2
|
|
| 84vxd.ktt55.my.id/free-fire/ | 104.21.17.78 | 200 OK | 59 kB |
URL User Request GET HTTP/384vxd.ktt55.my.id/free-fire/ IP104.21.17.78:443
CertificateIssuerGoogle Trust Services LLC Subjectktt55.my.id Fingerprint8A:ED:C5:91:EA:3A:47:4E:D2:1C:E4:11:78:2D:71:BC:1D:AA:DF:DE ValiditySat, 16 Mar 2024 07:53:55 GMT - Fri, 14 Jun 2024 07:53:54 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - Anti-debugging code | OpenPhish | phishing | Coda Payments |
GET /free-fire/ HTTP/1.1
Host: 84vxd.ktt55.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 04:27:32 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Cj8z%2B3D4GM4HiGifAdvLHgb2skOmwwWsK1uZHj5hSEuFZReqwj8LRNHQ1polwDnuljUVc%2FihjaCy2r6w2KiDFLkwTyusTYA5e3VKhnkdwBr6UTDHpSWDrX22B2EH8vFjPYW2SA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a3d2230b96712a-OSL
content-encoding: br
|
|
| icon-library.com/images/vk-icon/vk-icon-28.jpg | 172.67.68.224 | 200 OK | 16 kB |
URL GET HTTP/2icon-library.com/images/vk-icon/vk-icon-28.jpg IP172.67.68.224:443
Requested byhttps://84vxd.ktt55.my.id/free-fire/ CertificateIssuerGoogle Trust Services LLC Subjecticon-library.com FingerprintA4:A9:B0:06:3C:55:29:F6:F4:F1:31:2C:16:EB:40:3D:5E:F1:B5:DD ValidityMon, 18 Mar 2024 13:36:58 GMT - Sun, 16 Jun 2024 13:36:57 GMT
File typePNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced Hashb5af86a05a5a0ec827d4d9aa7a834a43 efe9a10ef6ff312c1bce1ed2dfa4bb75b9b176de d58e787f4eaa1bfee5c58b23535ad1082b7ebf8ddb95c42521839b5b3058e795
GET /images/vk-icon/vk-icon-28.jpg HTTP/1.1
Host: icon-library.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://84vxd.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 04:27:32 GMT
content-type: image/jpeg
content-length: 16200
cf-bgj: h2pri
last-modified: Wed, 10 Jul 2019 13:13:10 GMT
strict-transport-security: max-age=31536000;
cache-control: max-age=14400
cf-cache-status: HIT
age: 2476
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0PLT%2FPTYmQdRJlb%2BeBriJDWbJR2LtSn%2BnSQaJl7xDp6SuMgGrdmJiEkSnLEaTFDUzmLmMCghRNWKj%2Fsb1MHwyUvSZXppMRrh4sKRPZY9sedPWUtV2d3haPGM%2FQqqH1TO640%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a3d2295ee01bfe-OSL
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S2/content/common/css/shared-topnav2.5566e671b1.css | 143.204.55.8 | 200 OK | 6.9 kB |
URL GET HTTP/2cdn1.codashop.com/S2/content/common/css/shared-topnav2.5566e671b1.css IP143.204.55.8:443
Requested byhttps://84vxd.ktt55.my.id/free-fire/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typeASCII text, with very long lines (6861), with no line terminators Hash5566e671b1a56ed10ee4665797bca5ba 4e1268e9e8cc9b32d46d9e9b64052ca61cc0c688 bbf453aa757d9ee7314e68e9f134a58c34fac46d39bfbf282f9e8e03dbea7df0
GET /S2/content/common/css/shared-topnav2.5566e671b1.css HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://84vxd.ktt55.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 26 Nov 2020 09:41:30 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Thu, 25 Apr 2024 07:57:27 GMT
etag: W/"5566e671b1a56ed10ee4665797bca5ba"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ETZ-Lt9h7y4xIBk7sd6DBG7JeBDOK-Ipg3rkcohSz0yTtEIYP7Q4rQ==
age: 73806
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S2/content/common/css/shared-footer2.2ce4d6e299.css | 143.204.55.8 | 200 OK | 3.7 kB |
URL GET HTTP/2cdn1.codashop.com/S2/content/common/css/shared-footer2.2ce4d6e299.css IP143.204.55.8:443
Requested byhttps://84vxd.ktt55.my.id/free-fire/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typeASCII text, with very long lines (3650), with no line terminators Hash2ce4d6e2994e655224b0aa48265ae15a e08c6461b3168581712b18d9c9bd9343422f7e14 cfdc96da2e956842b4cbea254d93c923a9c7d5f1443385996a0f2c80cc4b0f76
GET /S2/content/common/css/shared-footer2.2ce4d6e299.css HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://84vxd.ktt55.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
last-modified: Tue, 23 Apr 2024 06:11:16 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: FHv9cHBXpdQtDLtmoTgE4iPIzr7o_tec
server: AmazonS3
content-encoding: gzip
date: Thu, 25 Apr 2024 06:34:41 GMT
etag: W/"2ce4d6e2994e655224b0aa48265ae15a"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 2X7ADc5T5__ZtJiR1kUYwXyoTlSWR_xiSQ0vE-DdoAPZTLVqIp2OTg==
age: 78772
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S2/content/common/js/payment-channel-suggestion.535f3c6f70.js | 143.204.55.8 | 200 OK | 1.9 kB |
URL GET HTTP/2cdn1.codashop.com/S2/content/common/js/payment-channel-suggestion.535f3c6f70.js IP143.204.55.8:443
Requested byhttps://84vxd.ktt55.my.id/free-fire/ CertificateIssuerAmazon Subject*.codashop.com FingerprintF5:FB:63:59:B0:C2:CD:C8:00:99:BC:1A:43:75:BA:68:A0:D8:AF:1C ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (1959), with no line terminators Hash4f04b352041bdea32f0207797a53970f 6d4bddeab49faa3cb3d3b35c737a3a14f7fd120b ccc96932a6384222d948362a27564274e2d33f8c70ce64ebd2a6c473b1719d06
GET /S2/content/common/js/payment-channel-suggestion.535f3c6f70.js HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://84vxd.ktt55.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
date: Fri, 26 Apr 2024 03:46:18 GMT
last-modified: Fri, 04 Sep 2020 02:37:42 GMT
etag: W/"535f3c6f7015dbae9e6b2a4987192e2b"
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: RIbi20FXZrN1qQD4BCzMAtBfqoBY-e3gjFNllPa7u2L37sG1TlK4gA==
age: 2475
X-Firefox-Spdy: h2
|
|
| 84vxd.ktt55.my.id/css/spinner.58144.css | 104.21.17.78 | 200 OK | 2.2 kB |
URL GET HTTP/384vxd.ktt55.my.id/css/spinner.58144.css IP104.21.17.78:443
Requested byhttps://84vxd.ktt55.my.id/free-fire/ CertificateIssuerGoogle Trust Services LLC Subjectktt55.my.id Fingerprint8A:ED:C5:91:EA:3A:47:4E:D2:1C:E4:11:78:2D:71:BC:1D:AA:DF:DE ValiditySat, 16 Mar 2024 07:53:55 GMT - Fri, 14 Jun 2024 07:53:54 GMT
File typeASCII text, with very long lines (2460), with no line terminators Hashee824601116a720609b935eff142581d 17e6b55baec1ca23273589b72c222b4cbfbdeaed 4be7ac29546a8f58a9ae8749cf83b7ee8b0f38a21d6edb78b98e1dcc178dd2d1
Analyzer | Verdict | Alert | OpenPhish | phishing | Coda Payments |
GET /css/spinner.58144.css HTTP/1.1
Host: 84vxd.ktt55.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://84vxd.ktt55.my.id/free-fire/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 04:27:33 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 04:27:33 GMT
last-modified: Fri, 10 Sep 2021 21:26:50 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DG4wW%2FPAzizdN2VoFEtyiYNlSgO9hMmgBKwVr4uZkj1MhWhn65Ir12CCY2WttJMSmwgV5C6vlCDypGnhYVvm1CiDHv3JqONQW2l%2FcQjb1yRMSJ6UTkbMTe5uYcBf1k3YLZcE%2FA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a3d228ffa9712a-OSL
content-encoding: br
|
|
| www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/styles__ltr.css | 142.250.74.35 | 200 OK | 56 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/styles__ltr.css IP142.250.74.35:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6Lc8br0ZAAAAAOAZHpdE1Fm9RA9tK85W3ano_l0-&co=aHR0cHM6Ly84NHZ4ZC5rdHQ1NS5teS5pZDo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=normal&cb=sqz0qfai96p9 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeASCII text, with very long lines (56412), with no line terminators Hash2c00b9f417b688224937053cd0c284a5 17b4c18ebc129055dd25f214c3f11e03e9df2d82 1e754b107428162c65a26d399b66db3daaea09616bf8620d9de4bc689ce48eed
GET /recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24617
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 15:50:55 GMT
expires: Wed, 23 Apr 2025 15:50:55 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2024 21:03:35 GMT
content-type: text/css
vary: Accept-Encoding
age: 218199
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| | 104.21.17.78 | 302 Found | 59 kB |
URL User Request GET HTTP/2IP104.21.17.78:443
CertificateIssuerGoogle Trust Services LLC Subjectktt55.my.id Fingerprint8A:ED:C5:91:EA:3A:47:4E:D2:1C:E4:11:78:2D:71:BC:1D:AA:DF:DE ValiditySat, 16 Mar 2024 07:53:55 GMT - Fri, 14 Jun 2024 07:53:54 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Coda Payments |
GET / HTTP/1.1
Host: 84vxd.ktt55.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Fri, 26 Apr 2024 04:27:31 GMT
content-type: text/html; charset=UTF-8
location: free-fire
vary: Accept-Encoding
cache-control: no-cache, no-store, must-revalidate, max-age=0
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=p7t11r%2BDGJ7gQVwNPGdCMJ429I3jh6LZ0VAR0A4kKRYUZf7oJAyiHWsoBnAPlmoD9%2F54Ss5VzZ39SppIHVedXl2pHE9fZl7CjKcsK5hteiK%2BH5Yn267xGg2FNoW%2B%2Ft%2Bq3YdQEg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a3d21d7c6a56bd-OSL
X-Firefox-Spdy: h2
|
|