rewardriot.xyz/root/spinwhel-om/img/2.jpg
104.21.4.3200 OK 8.1 kB URL GET HTTP/3 rewardriot.xyz/root/spinwhel-om/img/2.jpg
IP 104.21.4.3:443
Requested by https://rewardriot.xyz/root/spinwhel-om/?bemobdata=c=5a44cdbb-85b0-43a7-9b10-b9914a101e7f..l=a681fcb3-67cd-437b-b490-3ed268be9c8b..a=0..b=0..ts=1685042332298
Certificate IssuerGoogle Trust Services LLC
Subjectrewardriot.xyz
FingerprintCF:E3:DF:85:34:2A:A4:FF:07:36:24:4D:A6:06:6B:F6:C9:FA:2A:0C
ValidityThu, 18 May 2023 18:01:07 GMT - Wed, 16 Aug 2023 18:01:06 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Hash d3a748efcc12b64924280109f7b42c99
733dca7bef4f1f344b9bd0176ed9f8e6b38111e9
0f6c00936fa720c5c4b4bd5b410badd270114ba65d06ad148b550617a296ab17
GET /root/spinwhel-om/img/2.jpg HTTP/1.1
Host: rewardriot.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardriot.xyz/root/spinwhel-om/?bemobdata=c=5a44cdbb-85b0-43a7-9b10-b9914a101e7f..l=a681fcb3-67cd-437b-b490-3ed268be9c8b..a=0..b=0..ts=1685042332298
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 May 2023 19:18:53 GMT
content-type: image/jpeg
content-length: 8149
cache-control: public, max-age=14400, must-revalidate
etag: "192591960bd52039aaec63c9d453a3a2-ssl"
x-nf-request-id: 01H1A5K1HW0E5CT9CQWY1ERNQ3
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Syb%2FOxcynHCo0F5fGPsksAwaig4%2B%2FcRfKhEe%2FBfM49QIb6DPHcmCOfjsGxP%2BGuOO0KPwguvwLRfjzhtGuxz%2BsvcdxB0qGkhdWExEAKzSY8VUyWB2wveBYkZ3pl8sLPm6lg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd020766e4ab51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
rewardriot.xyz/root/spinwhel-om/img/refresh.png
104.21.4.3200 OK 1.8 kB URL GET HTTP/3 rewardriot.xyz/root/spinwhel-om/img/refresh.png
IP 104.21.4.3:443
Requested by https://rewardriot.xyz/root/spinwhel-om/?bemobdata=c=5a44cdbb-85b0-43a7-9b10-b9914a101e7f..l=a681fcb3-67cd-437b-b490-3ed268be9c8b..a=0..b=0..ts=1685042332298
Certificate IssuerGoogle Trust Services LLC
Subjectrewardriot.xyz
FingerprintCF:E3:DF:85:34:2A:A4:FF:07:36:24:4D:A6:06:6B:F6:C9:FA:2A:0C
ValidityThu, 18 May 2023 18:01:07 GMT - Wed, 16 Aug 2023 18:01:06 GMT
File type PNG image data, 70 x 70, 8-bit colormap, non-interlaced\012- data
Hash 2d0f4539e28850747bcdf03e8c9a9f10
c400935fad4c29d04714cf5b9e74fb4d4d8f1e1d
c04fa254d43e1b6db555962ac2dbc6cd67d47aff3c1d7895a229cdaca87a688e
GET /root/spinwhel-om/img/refresh.png HTTP/1.1
Host: rewardriot.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardriot.xyz/root/spinwhel-om/?bemobdata=c=5a44cdbb-85b0-43a7-9b10-b9914a101e7f..l=a681fcb3-67cd-437b-b490-3ed268be9c8b..a=0..b=0..ts=1685042332298
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 May 2023 19:18:53 GMT
content-type: image/png
content-length: 1798
cache-control: public, max-age=14400, must-revalidate
etag: "a8f2cf0e5f0e85d12faa27e61c1d49a3-ssl"
x-nf-request-id: 01H1A5K1HX7WM2MD0SSNQDDV75
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nfAeA%2FQQwoNzWCsNSF5b9LGHFMOr1L4tjuwP2NR2OSMQZOPKTaoHD%2FxzgQ0%2FUegDfvUNDzI8CwcJ3i7XyTj60pdYUSEFpYAIjNoPqyh0M9nrhYtAA%2FzcAKGrdHFfUEAREA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd020766e58b51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
rewardriot.xyz/root/spinwhel-om/img/1.jpg
104.21.4.3200 OK 18 kB URL GET HTTP/3 rewardriot.xyz/root/spinwhel-om/img/1.jpg
IP 104.21.4.3:443
Requested by https://rewardriot.xyz/root/spinwhel-om/?bemobdata=c=5a44cdbb-85b0-43a7-9b10-b9914a101e7f..l=a681fcb3-67cd-437b-b490-3ed268be9c8b..a=0..b=0..ts=1685042332298
Certificate IssuerGoogle Trust Services LLC
Subjectrewardriot.xyz
FingerprintCF:E3:DF:85:34:2A:A4:FF:07:36:24:4D:A6:06:6B:F6:C9:FA:2A:0C
ValidityThu, 18 May 2023 18:01:07 GMT - Wed, 16 Aug 2023 18:01:06 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, description=Smiling hispanic or middle eastern young man looking at the camera\377\333], baseline, precision 8, 360x360, components 3\012- data
Hash 8d4757a7ca89741ae1ef279ac277739b
e3134530778bbf711de60829f9ee270ae3309d4b
e0b4b9068a7fe672f712bb1a39080e06604c506465394214cfde2382ba52f047
GET /root/spinwhel-om/img/1.jpg HTTP/1.1
Host: rewardriot.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardriot.xyz/root/spinwhel-om/?bemobdata=c=5a44cdbb-85b0-43a7-9b10-b9914a101e7f..l=a681fcb3-67cd-437b-b490-3ed268be9c8b..a=0..b=0..ts=1685042332298
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 May 2023 19:18:53 GMT
content-type: image/jpeg
content-length: 18232
cache-control: public, max-age=14400, must-revalidate
etag: "0fdf1d98ca06e6a3b06349fd9985af77-ssl"
x-nf-request-id: 01H1A5K1GWBYH94Q6CEZMYY3YK
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=g4xCkO4VQx3v6K2B27QhvNIbv8IKevE00LtSVDk82Hb%2F8eg61JOz2qqnVQIf%2FS4zPLcy%2BSSkt3erL2YYG8mvWkgtzfMB2AXJvtdZUYjiL81xfHOLqYOS5ecfTTxF9jWQaA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd020766e45b51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
rewardriot.xyz/root/spinwhel-om/img/smiley.png
104.21.4.3200 OK 5.0 kB URL GET HTTP/3 rewardriot.xyz/root/spinwhel-om/img/smiley.png
IP 104.21.4.3:443
Requested by https://rewardriot.xyz/root/spinwhel-om/?bemobdata=c=5a44cdbb-85b0-43a7-9b10-b9914a101e7f..l=a681fcb3-67cd-437b-b490-3ed268be9c8b..a=0..b=0..ts=1685042332298
Certificate IssuerGoogle Trust Services LLC
Subjectrewardriot.xyz
FingerprintCF:E3:DF:85:34:2A:A4:FF:07:36:24:4D:A6:06:6B:F6:C9:FA:2A:0C
ValidityThu, 18 May 2023 18:01:07 GMT - Wed, 16 Aug 2023 18:01:06 GMT
File type PNG image data, 200 x 200, 8-bit colormap, non-interlaced\012- data
Hash 6a1b1fb2c9a70e8bb232985a5e7c76f2
a371f8e561576cb893e897f1e156597d3abbd0be
68c86e51e47a972e3191621e48685c0d9d1e166235cd816dc74370bc439567fc
GET /root/spinwhel-om/img/smiley.png HTTP/1.1
Host: rewardriot.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardriot.xyz/root/spinwhel-om/?bemobdata=c=5a44cdbb-85b0-43a7-9b10-b9914a101e7f..l=a681fcb3-67cd-437b-b490-3ed268be9c8b..a=0..b=0..ts=1685042332298
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 May 2023 19:18:53 GMT
content-type: image/png
content-length: 4992
cache-control: public, max-age=14400, must-revalidate
etag: "a770a97f2ef0e3b3edd238062c9e3313-ssl"
x-nf-request-id: 01H1A5K1J9YEY2TG1C65R04QVJ
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=I0YNuBsLrdWIh%2B6stR08%2BiyjBGsLaNiKdxvoGBr3x%2BPH7AjEjCrwr7ulcFZekEiwe2Py910BmA%2BeGOwunH1VbQEAXENTYS12Mnug0zP82DrV%2B0QFaaExTcUS0%2BhO4vAN6Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd020766e57b51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
rezuke.gooredirect.xyz/go/5a44cdbb-85b0-43a7-9b10-b9914a101e7f
3.70.16.242 15 kB URL rezuke.gooredirect.xyz/go/5a44cdbb-85b0-43a7-9b10-b9914a101e7f
IP 3.70.16.242:0
File type gzip compressed data, from Unix\012- data
Hash 601ecf7b8810c6c261203f4994200ea5
822ae187008df0adc937fac6e2467692ea0cbcd1
7e0e0a3c945c4095b708ffcb5af86f902876a31030c88b3ad35ceb89f6b674c1
Analyzer Verdict Alert fortinet Malware
GET /go/5a44cdbb-85b0-43a7-9b10-b9914a101e7f HTTP/1.1
Host: rezuke.gooredirect.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: openresty
date: Thu, 25 May 2023 19:18:52 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Full-Version,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Reduced
access-control-allow-origin: *
etag: W/"16b-a/JRihoWvKuFmLX80sMX0dBpnzU"
set-cookie: bemob-uniq-visit:5a44cdbb-85b0-43a7-9b10-b9914a101e7f=1; Domain=rezuke.gooredirect.xyz; Path=/; Expires=Fri, 26 May 2023 19:18:52 GMT; HttpOnly; Secure; SameSite=None
bemob-rotation:5a44cdbb-85b0-43a7-9b10-b9914a101e7f:random:35584b8d4aa205501fbf29276d765af8=0-0-0; Domain=rezuke.gooredirect.xyz; Path=/; Expires=Fri, 26 May 2023 19:18:52 GMT; HttpOnly; Secure; SameSite=None
bemob-track-url=https%3A%2F%2Frewardriot.xyz%2Froot%2Fspinwhel-om%2F%3Fbemobdata%3Dc%253D5a44cdbb-85b0-43a7-9b10-b9914a101e7f..l%253Da681fcb3-67cd-437b-b490-3ed268be9c8b..a%253D0..b%253D0..ts%253D1685042332298; Domain=rezuke.gooredirect.xyz; Path=/; Expires=Fri, 26 May 2023 19:18:52 GMT; HttpOnly; Secure; SameSite=None
x-response-time: 13.513ms
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
rewardriot.xyz/root/spinwhel-om/img/6.jpg
104.21.4.3200 OK 21 kB URL GET HTTP/3 rewardriot.xyz/root/spinwhel-om/img/6.jpg
IP 104.21.4.3:443
Requested by https://rewardriot.xyz/root/spinwhel-om/?bemobdata=c=5a44cdbb-85b0-43a7-9b10-b9914a101e7f..l=a681fcb3-67cd-437b-b490-3ed268be9c8b..a=0..b=0..ts=1685042332298
Certificate IssuerGoogle Trust Services LLC
Subjectrewardriot.xyz
FingerprintCF:E3:DF:85:34:2A:A4:FF:07:36:24:4D:A6:06:6B:F6:C9:FA:2A:0C
ValidityThu, 18 May 2023 18:01:07 GMT - Wed, 16 Aug 2023 18:01:06 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, description=happy refuuge at camp\377\333], baseline, precision 8, 408x408, components 3\012- data
Hash ccddf6a16d3fcc1c7ba4acef48fdef50
de01377d44746d8e92c46e1a64788b5df04340d4
a6fc77c7cb826f01f0aa8c3182b8b0006125f0d5fbec3ceff93b004d14e17d01
GET /root/spinwhel-om/img/6.jpg HTTP/1.1
Host: rewardriot.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardriot.xyz/root/spinwhel-om/?bemobdata=c=5a44cdbb-85b0-43a7-9b10-b9914a101e7f..l=a681fcb3-67cd-437b-b490-3ed268be9c8b..a=0..b=0..ts=1685042332298
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 May 2023 19:18:53 GMT
content-type: image/jpeg
content-length: 20826
cache-control: public, max-age=14400, must-revalidate
etag: "d9f71630def6a1050f1f740068adb403-ssl"
x-nf-request-id: 01H1A5K1J2AFZA9Q11CRCM7P37
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UnwV1T0IPmE%2BJkB8xbkiG7an2xyApX0JEIVeeuzgthb7euQWfaWDfkXfwbj7fSwVgy14mGXra8ZffRodVnTsJ8NrJIg5MvtHWFwzGsqSANnt6NdSylhzXxlNV%2FQboEoSiA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd020766e52b51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
rewardriot.xyz/root/spinwhel-om/img/7.jpg
104.21.4.3200 OK 26 kB URL GET HTTP/3 rewardriot.xyz/root/spinwhel-om/img/7.jpg
IP 104.21.4.3:443
Requested by https://rewardriot.xyz/root/spinwhel-om/?bemobdata=c=5a44cdbb-85b0-43a7-9b10-b9914a101e7f..l=a681fcb3-67cd-437b-b490-3ed268be9c8b..a=0..b=0..ts=1685042332298
Certificate IssuerGoogle Trust Services LLC
Subjectrewardriot.xyz
FingerprintCF:E3:DF:85:34:2A:A4:FF:07:36:24:4D:A6:06:6B:F6:C9:FA:2A:0C
ValidityThu, 18 May 2023 18:01:07 GMT - Wed, 16 Aug 2023 18:01:06 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 480x400, components 3\012- data
Hash 22cb80edd617362c5465bc2e8f8871d0
aa39c3c8c4dfb74089b63abef0e33e74e8fe5210
eaa4bd9a29ee64b0d8e79df7304706004eb6be85fc417f7ffaa0cc7eb6541635
GET /root/spinwhel-om/img/7.jpg HTTP/1.1
Host: rewardriot.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardriot.xyz/root/spinwhel-om/?bemobdata=c=5a44cdbb-85b0-43a7-9b10-b9914a101e7f..l=a681fcb3-67cd-437b-b490-3ed268be9c8b..a=0..b=0..ts=1685042332298
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 May 2023 19:18:53 GMT
content-type: image/jpeg
content-length: 26430
cache-control: public, max-age=14400, must-revalidate
etag: "5f713f6c2173d1bb8ea9cf3786e18e19-ssl"
x-nf-request-id: 01H1A5K1J4JBEHKYEKQFHXCHDW
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EClWrOSN09la3BF7UgVyg5V64ysrCkYUAqOTpUuSNozBASETQgOrSzBLIfoKWmviU9EDVGeiHB%2Bz4yU%2FZelR7oYmnf9%2FtwFDA8UseqT%2FPUbolIr5%2FqND6RBF5T07NF37fg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd020766e54b51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
rewardriot.xyz/root/spinwhel-om/img/cash.png
104.21.4.3200 OK 73 kB URL GET HTTP/3 rewardriot.xyz/root/spinwhel-om/img/cash.png
IP 104.21.4.3:443
Requested by https://rewardriot.xyz/root/spinwhel-om/?bemobdata=c=5a44cdbb-85b0-43a7-9b10-b9914a101e7f..l=a681fcb3-67cd-437b-b490-3ed268be9c8b..a=0..b=0..ts=1685042332298
Certificate IssuerGoogle Trust Services LLC
Subjectrewardriot.xyz
FingerprintCF:E3:DF:85:34:2A:A4:FF:07:36:24:4D:A6:06:6B:F6:C9:FA:2A:0C
ValidityThu, 18 May 2023 18:01:07 GMT - Wed, 16 Aug 2023 18:01:06 GMT
File type PNG image data, 516 x 484, 8-bit colormap, non-interlaced\012- data
Hash a0726a4dbb77b723b4be0be4b8529d21
9a3b379b57a370dbc1d09227cd900090d30a5054
8a6c89712b122f207e08e7ef0ebdb6477a9f79a4dbaf8b664f0cd9fea898c057
GET /root/spinwhel-om/img/cash.png HTTP/1.1
Host: rewardriot.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardriot.xyz/root/spinwhel-om/?bemobdata=c=5a44cdbb-85b0-43a7-9b10-b9914a101e7f..l=a681fcb3-67cd-437b-b490-3ed268be9c8b..a=0..b=0..ts=1685042332298
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 May 2023 19:18:53 GMT
content-type: image/png
content-length: 73135
cache-control: public, max-age=14400, must-revalidate
etag: "8ea1ae3a74d720ad9f5e76be48b47039-ssl"
x-nf-request-id: 01H1A5K1HSHPPPB449E1KN3HYV
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kClkQP1P1q94sdKxLZyFssr3kriPfO2OeEad5D33pBHNQpJdzF7dGlfF0ADPVm80b8r%2FesFIVQ92ms0YGAoV4pUlogBAQt3B7mUduNn8LImEGDM8l9p%2FfQ0ItyB%2FPYzK0A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd020766e3fb51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
rewardriot.xyz/root/spinwhel-om/img/4.jpg
104.21.4.3200 OK 21 kB URL GET HTTP/3 rewardriot.xyz/root/spinwhel-om/img/4.jpg
IP 104.21.4.3:443
Requested by https://rewardriot.xyz/root/spinwhel-om/?bemobdata=c=5a44cdbb-85b0-43a7-9b10-b9914a101e7f..l=a681fcb3-67cd-437b-b490-3ed268be9c8b..a=0..b=0..ts=1685042332298
Certificate IssuerGoogle Trust Services LLC
Subjectrewardriot.xyz
FingerprintCF:E3:DF:85:34:2A:A4:FF:07:36:24:4D:A6:06:6B:F6:C9:FA:2A:0C
ValidityThu, 18 May 2023 18:01:07 GMT - Wed, 16 Aug 2023 18:01:06 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 400x400, components 3\012- data
Hash 5c6bd23de24730e4b4b37730dd74aef8
6ad9ac3a16e2cd8521eeb8d918f0ceb383fb1f90
2fa0af8cb1cffe84b9fadb389a4750f9fe8a5a1ff0a3bce12ec329d4c5e9bcd8
GET /root/spinwhel-om/img/4.jpg HTTP/1.1
Host: rewardriot.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardriot.xyz/root/spinwhel-om/?bemobdata=c=5a44cdbb-85b0-43a7-9b10-b9914a101e7f..l=a681fcb3-67cd-437b-b490-3ed268be9c8b..a=0..b=0..ts=1685042332298
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 May 2023 19:18:53 GMT
content-type: image/jpeg
content-length: 21109
cache-control: public, max-age=14400, must-revalidate
etag: "143c69aaf1e8ba0aabf3dd9ec1d9e445-ssl"
x-nf-request-id: 01H1A5K1JBFZEH452D95CQRZNQ
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6CIaY3vwYsgqc3bkBxsEYDSxB4Zmh8dN9BVc8uws6dLJrwAUt9%2Bl3Z8vr5Skh%2F1YBq4BgH1MPUQ4T%2BU%2F%2BQ%2FthJD0yah8RqNrRRpWz8Khiu4GqTCKQqwDl1M0soWjYG1DuA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd020766e4db51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
rewardriot.xyz/root/spinwhel-om/css/style__base.css
104.21.4.3200 OK 4.8 kB URL GET HTTP/3 rewardriot.xyz/root/spinwhel-om/css/style__base.css
IP 104.21.4.3:443
Requested by https://rewardriot.xyz/root/spinwhel-om/?bemobdata=c=5a44cdbb-85b0-43a7-9b10-b9914a101e7f..l=a681fcb3-67cd-437b-b490-3ed268be9c8b..a=0..b=0..ts=1685042332298
Certificate IssuerGoogle Trust Services LLC
Subjectrewardriot.xyz
FingerprintCF:E3:DF:85:34:2A:A4:FF:07:36:24:4D:A6:06:6B:F6:C9:FA:2A:0C
ValidityThu, 18 May 2023 18:01:07 GMT - Wed, 16 Aug 2023 18:01:06 GMT
Hash 5af9199e58d12f7d074412e74d9a3d3d
74c11cb489a368220c3144e4570ad5b34afa75c2
708ad2fb793e0817fdf6bd7b0401e172f9566033232f148439e6f42b2f3b0999
GET /root/spinwhel-om/css/style__base.css HTTP/1.1
Host: rewardriot.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardriot.xyz/root/spinwhel-om/?bemobdata=c=5a44cdbb-85b0-43a7-9b10-b9914a101e7f..l=a681fcb3-67cd-437b-b490-3ed268be9c8b..a=0..b=0..ts=1685042332298
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 May 2023 19:18:53 GMT
content-type: text/css; charset=UTF-8
cache-control: public, max-age=14400, must-revalidate
etag: W/"48cda9d2e1e4882f881c36734d6c0dbf-ssl-df"
vary: Accept-Encoding
x-nf-request-id: 01H1A5K1J0YPP6QMTF52WBN6AX
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wciGGIccCEZFG4gjHbWi9MLR3BbX5efYLJI4Fnux318XUlWoU0T3WB0XQxGNysHmrbVC4avrVt40DF3JFL1Y03GZX0cTP6EmCZAeXINqPSI%2BrwC4aSWOQieyjGCM1NUDag%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd020765e2eb51e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
rewardriot.xyz/root/spinwhel-om/?bemobdata=c=5a44cdbb-85b0-43a7-9b10-b9914a101e7f..l=a681fcb3-67cd-437b-b490-3ed268be9c8b..a=0..b=0..ts=1685042332298
104.21.4.3200 OK 45 kB URL User Request GET HTTP/2 rewardriot.xyz/root/spinwhel-om/?bemobdata=c=5a44cdbb-85b0-43a7-9b10-b9914a101e7f..l=a681fcb3-67cd-437b-b490-3ed268be9c8b..a=0..b=0..ts=1685042332298
IP 104.21.4.3:443
Certificate IssuerGoogle Trust Services LLC
Subjectrewardriot.xyz
FingerprintCF:E3:DF:85:34:2A:A4:FF:07:36:24:4D:A6:06:6B:F6:C9:FA:2A:0C
ValidityThu, 18 May 2023 18:01:07 GMT - Wed, 16 Aug 2023 18:01:06 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (2188)
Hash b65a08e3fba7f2ceb821c5dbdfd743c7
ce12c960bb1dafc481ac9d3069c18495ff891021
3d3b4ba20c7ccfe9df4cd409b41d025f9d8765caa8e42bbc9676b269c0be3e39
GET /root/spinwhel-om/?bemobdata=c=5a44cdbb-85b0-43a7-9b10-b9914a101e7f..l=a681fcb3-67cd-437b-b490-3ed268be9c8b..a=0..b=0..ts=1685042332298 HTTP/1.1
Host: rewardriot.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 May 2023 19:18:53 GMT
content-type: text/html; charset=UTF-8
age: 80726
cache-control: public, max-age=0, must-revalidate
vary: Accept-Encoding
x-nf-request-id: 01H1A5K1BRXRKZGA55EBSEW19Y
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RplHlq1gusRLbRpg%2B8ncQWcOiL1nXJkZh8pKQg6oOPvuREk10fW7Dh%2Fx%2FMKn9uPhZRpaS1iY1T%2F9fMiNni%2FX%2BBcOK3rHu2zS1k7F5L1Ch%2F0iGrO7NFy75ZSZzA6lWcGC6Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd020752afd0b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
rewardriot.xyz/root/spinwhel-om/img/5.jpg
104.21.4.3200 OK 48 kB URL GET HTTP/3 rewardriot.xyz/root/spinwhel-om/img/5.jpg
IP 104.21.4.3:443
Requested by https://rewardriot.xyz/root/spinwhel-om/?bemobdata=c=5a44cdbb-85b0-43a7-9b10-b9914a101e7f..l=a681fcb3-67cd-437b-b490-3ed268be9c8b..a=0..b=0..ts=1685042332298
Certificate IssuerGoogle Trust Services LLC
Subjectrewardriot.xyz
FingerprintCF:E3:DF:85:34:2A:A4:FF:07:36:24:4D:A6:06:6B:F6:C9:FA:2A:0C
ValidityThu, 18 May 2023 18:01:07 GMT - Wed, 16 Aug 2023 18:01:06 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, copyright=Shannon Selim], baseline, precision 8, 640x640, components 3\012- data
Hash 6b4d6ee00c74e83d9951c81d58ce9295
9594243fe36fb66f7f0cf659cd279be1cf1cc864
49950c2963d8d425b48440d5663c436b5cd6a4ee550f57912120d530c96032d2
GET /root/spinwhel-om/img/5.jpg HTTP/1.1
Host: rewardriot.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardriot.xyz/root/spinwhel-om/?bemobdata=c=5a44cdbb-85b0-43a7-9b10-b9914a101e7f..l=a681fcb3-67cd-437b-b490-3ed268be9c8b..a=0..b=0..ts=1685042332298
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 May 2023 19:18:53 GMT
content-type: image/jpeg
content-length: 48500
cache-control: public, max-age=14400, must-revalidate
etag: "b7af897904fb4d58f4a27936259bb793-ssl"
x-nf-request-id: 01H1A5K1JDEN0GATHSRGVZY862
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZzHPmWxTnZon4XWRGSxSSkOeQEzQn4Zo7UtcHD6LO8Ieq2ziMx%2FiYTIkYh5DUjA8OkyqJOHDWsOYaLBSM%2FryfFkMcDHacJKdl4gJb8VHV2xiZ%2Flrr03q96Oscen48L86gA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd020766e51b51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
my.rtmark.net/p.js?f=sync&lr=1&partner=1613e65cc703a4bbe17b97eb5acb3397665e55d5078c29478f8778358dd2c87f
139.45.195.8200 OK 697 B URL GET HTTP/2 my.rtmark.net/p.js?f=sync&lr=1&partner=1613e65cc703a4bbe17b97eb5acb3397665e55d5078c29478f8778358dd2c87f
IP 139.45.195.8:443
Requested by https://rewardriot.xyz/root/spinwhel-om/?bemobdata=c=5a44cdbb-85b0-43a7-9b10-b9914a101e7f..l=a681fcb3-67cd-437b-b490-3ed268be9c8b..a=0..b=0..ts=1685042332298
Certificate IssuerLet's Encrypt
Subjectrtmark.net
Fingerprint84:56:36:C3:24:DE:FB:F0:E7:EB:EB:9D:C8:B6:28:31:B5:3C:8B:80
ValiditySat, 06 May 2023 08:48:01 GMT - Fri, 04 Aug 2023 08:48:00 GMT
Hash 15aad4c5f9f7c88bc08eab4b8313d39c
2add1dbc15f0d7786c410ddfa33334a16110a273
4a8c02c98977383b5efdcb1e88e94c78a43412072e74095fb3967655c6ab29ec
GET /p.js?f=sync&lr=1&partner=1613e65cc703a4bbe17b97eb5acb3397665e55d5078c29478f8778358dd2c87f HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardriot.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 May 2023 19:18:53 GMT
content-type: text/javascript
content-length: 697
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
rewardriot.xyz/root/spinwhel-om/img/8.jpg
104.21.4.3200 OK 4.8 kB URL GET HTTP/3 rewardriot.xyz/root/spinwhel-om/img/8.jpg
IP 104.21.4.3:443
Requested by https://rewardriot.xyz/root/spinwhel-om/?bemobdata=c=5a44cdbb-85b0-43a7-9b10-b9914a101e7f..l=a681fcb3-67cd-437b-b490-3ed268be9c8b..a=0..b=0..ts=1685042332298
Certificate IssuerGoogle Trust Services LLC
Subjectrewardriot.xyz
FingerprintCF:E3:DF:85:34:2A:A4:FF:07:36:24:4D:A6:06:6B:F6:C9:FA:2A:0C
ValidityThu, 18 May 2023 18:01:07 GMT - Wed, 16 Aug 2023 18:01:06 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 240x240, components 3\012- data
Hash f1b90b01b26661e37ecdb01a4753a1bf
b6c3960258ba473581daf27df9db972540ec29ed
a8079bac57434af72b399fb198d79cbd9c46a5363096afa97398e4da4228218d
GET /root/spinwhel-om/img/8.jpg HTTP/1.1
Host: rewardriot.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardriot.xyz/root/spinwhel-om/?bemobdata=c=5a44cdbb-85b0-43a7-9b10-b9914a101e7f..l=a681fcb3-67cd-437b-b490-3ed268be9c8b..a=0..b=0..ts=1685042332298
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 May 2023 19:18:53 GMT
content-type: image/jpeg
content-length: 4831
cache-control: public, max-age=14400, must-revalidate
etag: "b9ce8499900b91e7201edecbf1f2962e-ssl"
x-nf-request-id: 01H1A5K1HSXBQWEK3FZ3J5MD1A
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JOvsZZNhPV8TLGqLTSive2fDF4MV54K6KsQqnqjmMOh%2BYOAkpYjA3aBpI60yAE%2B8bglT0ffMzLpKfQAObJ%2BDpA%2FolHGjEUbM4F1zew1rq5bIxD98j%2FvUJC3%2FC%2BGWal6Q0Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd020766e42b51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
rewardriot.xyz/root/spinwhel-om/img/spin.png
104.21.4.3200 OK 2.4 kB URL GET HTTP/3 rewardriot.xyz/root/spinwhel-om/img/spin.png
IP 104.21.4.3:443
Requested by https://rewardriot.xyz/root/spinwhel-om/?bemobdata=c=5a44cdbb-85b0-43a7-9b10-b9914a101e7f..l=a681fcb3-67cd-437b-b490-3ed268be9c8b..a=0..b=0..ts=1685042332298
Certificate IssuerGoogle Trust Services LLC
Subjectrewardriot.xyz
FingerprintCF:E3:DF:85:34:2A:A4:FF:07:36:24:4D:A6:06:6B:F6:C9:FA:2A:0C
ValidityThu, 18 May 2023 18:01:07 GMT - Wed, 16 Aug 2023 18:01:06 GMT
File type PNG image data, 142 x 173, 8-bit colormap, non-interlaced\012- data
Hash 79051a4f9ac575664b4d932d577a65fc
ebae669a090fd6de43fb1854e5ba4868e8e8ffc0
0109faa660c321bbc20f82c8ba38eddd5490bc3b77d72c4b1de965a01a4f12b4
GET /root/spinwhel-om/img/spin.png HTTP/1.1
Host: rewardriot.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardriot.xyz/root/spinwhel-om/css/style__base.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 May 2023 19:18:53 GMT
content-type: image/png
content-length: 2444
cache-control: public, max-age=14400, must-revalidate
etag: "8cf94e3e08876699f7d4768c58d88a1c-ssl"
x-nf-request-id: 01H1A5K1S3ZC26B4YAG1NCJ7ZB
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yk3sxugKU22svV%2B4jodn3Mi8YabtIXJcnO9Cv76PcJvXyFhH3GyYrOU5l5djVauSiNqqhTuyMq%2F35hfU4J24YBuNZh76JhHT6lwsThoHkkLxMZqlrrB36bcs4e1XroqGyQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd02077d8e2b51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
deefauph.com/zone?&pub=0&zone_id=5962615&is_mobile=false&domain=rewardriot.xyz&var=&ymid=&var_3=&var_4=&dsig=&action=prerequest
139.45.197.251200 OK 0 B URL POST HTTP/2 deefauph.com/zone?&pub=0&zone_id=5962615&is_mobile=false&domain=rewardriot.xyz&var=&ymid=&var_3=&var_4=&dsig=&action=prerequest
IP 139.45.197.251:443
Requested by https://rewardriot.xyz/root/spinwhel-om/?bemobdata=c=5a44cdbb-85b0-43a7-9b10-b9914a101e7f..l=a681fcb3-67cd-437b-b490-3ed268be9c8b..a=0..b=0..ts=1685042332298
Certificate IssuerLet's Encrypt
Subjectdeefauph.com
Fingerprint31:9A:4F:89:02:91:AE:2A:8F:3A:45:32:15:99:BC:91:72:5F:DC:02
ValiditySun, 21 May 2023 05:15:27 GMT - Sat, 19 Aug 2023 05:15:26 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /zone?&pub=0&zone_id=5962615&is_mobile=false&domain=rewardriot.xyz&var=&ymid=&var_3=&var_4=&dsig=&action=prerequest HTTP/1.1
Host: deefauph.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rewardriot.xyz
DNT: 1
Connection: keep-alive
Referer: https://rewardriot.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 May 2023 19:18:53 GMT
content-length: 0
x-trace-id: c072e952c840c65b5e15f56ee871f4d2
access-control-allow-origin: https://rewardriot.xyz
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
rewardriot.xyz/root/spinwhel-om/img/logo.png
104.21.4.3200 OK 2.9 kB URL GET HTTP/3 rewardriot.xyz/root/spinwhel-om/img/logo.png
IP 104.21.4.3:443
Requested by https://rewardriot.xyz/root/spinwhel-om/?bemobdata=c=5a44cdbb-85b0-43a7-9b10-b9914a101e7f..l=a681fcb3-67cd-437b-b490-3ed268be9c8b..a=0..b=0..ts=1685042332298
Certificate IssuerGoogle Trust Services LLC
Subjectrewardriot.xyz
FingerprintCF:E3:DF:85:34:2A:A4:FF:07:36:24:4D:A6:06:6B:F6:C9:FA:2A:0C
ValidityThu, 18 May 2023 18:01:07 GMT - Wed, 16 Aug 2023 18:01:06 GMT
File type PNG image data, 128 x 128, 8-bit colormap, non-interlaced\012- data
Hash 05209921be4171eee0954c5ae54850f9
3c6e2db019b4483a6e9e4b77cc93734548f30087
2cde3636ca32586133a4a4967f43e3c0f0b64fb6d645d6c9482eff50124692d5
GET /root/spinwhel-om/img/logo.png HTTP/1.1
Host: rewardriot.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardriot.xyz/root/spinwhel-om/?bemobdata=c=5a44cdbb-85b0-43a7-9b10-b9914a101e7f..l=a681fcb3-67cd-437b-b490-3ed268be9c8b..a=0..b=0..ts=1685042332298
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 May 2023 19:18:53 GMT
content-type: image/png
content-length: 2852
cache-control: public, max-age=14400, must-revalidate
etag: "9e05192c5a0bab692a490873ae8b7bd2-ssl"
x-nf-request-id: 01H1A5K20CYCMFC1HVED06P7RH
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BgorIOMjHhwgZywkft6x8TldVYdgitQsL6jCrE8RsZnIPEoa8i32kfDl8AmsXfoIaD5kv5KU2AONxWGbHoATZddWQg9uqLH%2FjD%2FWC41lCm3hP9%2FYS6%2FUM2Rl7s1fXJOtog%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd020794c74b51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
my.rtmark.net/img.gif?f=sync&partner=1613e65cc703a4bbe17b97eb5acb3397665e55d5078c29478f8778358dd2c87f&ttl=&rurl=https%3A%2F%2Frewardriot.xyz%2Froot%2Fspinwhel-om%2F%3Fbemobdata%3Dc%3D5a44cdbb-85b0-43a7-9b10-b9914a101e7f..l%3Da681fcb3-67cd-437b-b490-3ed268be9c8b..a%3D0..b%3D0..ts%3D1685042332298%23
139.45.195.8200 OK 43 B URL GET HTTP/2 my.rtmark.net/img.gif?f=sync&partner=1613e65cc703a4bbe17b97eb5acb3397665e55d5078c29478f8778358dd2c87f&ttl=&rurl=https%3A%2F%2Frewardriot.xyz%2Froot%2Fspinwhel-om%2F%3Fbemobdata%3Dc%3D5a44cdbb-85b0-43a7-9b10-b9914a101e7f..l%3Da681fcb3-67cd-437b-b490-3ed268be9c8b..a%3D0..b%3D0..ts%3D1685042332298%23
IP 139.45.195.8:443
Requested by https://rewardriot.xyz/root/spinwhel-om/?bemobdata=c=5a44cdbb-85b0-43a7-9b10-b9914a101e7f..l=a681fcb3-67cd-437b-b490-3ed268be9c8b..a=0..b=0..ts=1685042332298
Certificate IssuerLet's Encrypt
Subjectrtmark.net
Fingerprint84:56:36:C3:24:DE:FB:F0:E7:EB:EB:9D:C8:B6:28:31:B5:3C:8B:80
ValiditySat, 06 May 2023 08:48:01 GMT - Fri, 04 Aug 2023 08:48:00 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /img.gif?f=sync&partner=1613e65cc703a4bbe17b97eb5acb3397665e55d5078c29478f8778358dd2c87f&ttl=&rurl=https%3A%2F%2Frewardriot.xyz%2Froot%2Fspinwhel-om%2F%3Fbemobdata%3Dc%3D5a44cdbb-85b0-43a7-9b10-b9914a101e7f..l%3Da681fcb3-67cd-437b-b490-3ed268be9c8b..a%3D0..b%3D0..ts%3D1685042332298%23 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardriot.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 May 2023 19:18:54 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=38add01bf0da41269d898d4a08339735; expires=Fri, 24 May 2024 19:18:54 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
rewardriot.xyz/root/spinwhel-om/js/en_date.js
104.21.4.3200 OK 6.7 kB URL GET HTTP/3 rewardriot.xyz/root/spinwhel-om/js/en_date.js
IP 104.21.4.3:443
Requested by https://rewardriot.xyz/root/spinwhel-om/?bemobdata=c=5a44cdbb-85b0-43a7-9b10-b9914a101e7f..l=a681fcb3-67cd-437b-b490-3ed268be9c8b..a=0..b=0..ts=1685042332298
Certificate IssuerGoogle Trust Services LLC
Subjectrewardriot.xyz
FingerprintCF:E3:DF:85:34:2A:A4:FF:07:36:24:4D:A6:06:6B:F6:C9:FA:2A:0C
ValidityThu, 18 May 2023 18:01:07 GMT - Wed, 16 Aug 2023 18:01:06 GMT
File type ASCII text, with very long lines (7106), with no line terminators
Hash ea133004ba2ee7bebc25767e49cb99ff
50c4bbb8423fe9d364798f28c8260cf66916b677
cda4a08060ba5f9871213274ab4f043f97f74311196eb4916fef50700178cff8
GET /root/spinwhel-om/js/en_date.js HTTP/1.1
Host: rewardriot.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardriot.xyz/root/spinwhel-om/?bemobdata=c=5a44cdbb-85b0-43a7-9b10-b9914a101e7f..l=a681fcb3-67cd-437b-b490-3ed268be9c8b..a=0..b=0..ts=1685042332298
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 May 2023 19:18:53 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=14400, must-revalidate
etag: W/"3ffc4d8daf8a0279c657879a371a6eff-ssl"
vary: Accept-Encoding
x-nf-request-id: 01H1A5K1HKQACYVBYKM19ED51Y
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=z%2BVbJvR9flaVJa8XPekqDFReZZbqYWE2%2BUZOPHXzo%2FU9EXQYZo9%2BooNmBzwTgaOSilrfjba%2FVWUZo6pWGYNsEQQoZ2pJBFsXsWL%2BU1AgI5EeubojGwAuE2atrSwEgqZVyw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd020765e28b51e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
rewardriot.xyz/root/spinwhel-om/css/style_a.css
104.21.4.3200 OK 6.5 kB URL GET HTTP/3 rewardriot.xyz/root/spinwhel-om/css/style_a.css
IP 104.21.4.3:443
Requested by https://rewardriot.xyz/root/spinwhel-om/?bemobdata=c=5a44cdbb-85b0-43a7-9b10-b9914a101e7f..l=a681fcb3-67cd-437b-b490-3ed268be9c8b..a=0..b=0..ts=1685042332298
Certificate IssuerGoogle Trust Services LLC
Subjectrewardriot.xyz
FingerprintCF:E3:DF:85:34:2A:A4:FF:07:36:24:4D:A6:06:6B:F6:C9:FA:2A:0C
ValidityThu, 18 May 2023 18:01:07 GMT - Wed, 16 Aug 2023 18:01:06 GMT
File type ASCII text, with very long lines (6989), with no line terminators
Hash a53a207a73db213f78c49078dbdde32a
4a5813b3d9a5237141104cd9ab2ef54c8151e168
b37503aacfbae5e87ea942f2a7b5291f4a271af060f01caf7dc1a02160633f8f
GET /root/spinwhel-om/css/style_a.css HTTP/1.1
Host: rewardriot.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardriot.xyz/root/spinwhel-om/?bemobdata=c=5a44cdbb-85b0-43a7-9b10-b9914a101e7f..l=a681fcb3-67cd-437b-b490-3ed268be9c8b..a=0..b=0..ts=1685042332298
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 May 2023 19:18:53 GMT
content-type: text/css; charset=UTF-8
cache-control: public, max-age=14400, must-revalidate
etag: W/"1473adf58d9bbec22e785727559b8c51-ssl"
vary: Accept-Encoding
x-nf-request-id: 01H1A5K1HKPGJEAG6KPD990V1J
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Hb9MGkMWLjMPusjPxUjkbrjAMSxTQ5%2FYCQMQir5ogWo4aqE7XbxVbM4O6Rve5agBWuiIDFKuou%2FVF00%2BWr8myW4Xy%2F94y4cX9jCKjAtRVCqf%2FE7gNFKr6xXgc%2Fq3AzCHgw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd020765e31b51e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
rewardriot.xyz/root/spinwhel-om/js/bioep.min.js
104.21.4.3200 OK 5.3 kB URL GET HTTP/3 rewardriot.xyz/root/spinwhel-om/js/bioep.min.js
IP 104.21.4.3:443
Requested by https://rewardriot.xyz/root/spinwhel-om/?bemobdata=c=5a44cdbb-85b0-43a7-9b10-b9914a101e7f..l=a681fcb3-67cd-437b-b490-3ed268be9c8b..a=0..b=0..ts=1685042332298
Certificate IssuerGoogle Trust Services LLC
Subjectrewardriot.xyz
FingerprintCF:E3:DF:85:34:2A:A4:FF:07:36:24:4D:A6:06:6B:F6:C9:FA:2A:0C
ValidityThu, 18 May 2023 18:01:07 GMT - Wed, 16 Aug 2023 18:01:06 GMT
File type ASCII text, with very long lines (5456), with no line terminators
Hash fe234c9b352a64fd48af6671a6460c25
4ab82b1093465cbeba45d0dfd67ed3d8cd30deb2
97043aee10fc7179a85aea1e1e96bbd6a4564d733589548209ccc1358252eb9f
GET /root/spinwhel-om/js/bioep.min.js HTTP/1.1
Host: rewardriot.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardriot.xyz/root/spinwhel-om/?bemobdata=c=5a44cdbb-85b0-43a7-9b10-b9914a101e7f..l=a681fcb3-67cd-437b-b490-3ed268be9c8b..a=0..b=0..ts=1685042332298
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 May 2023 19:18:53 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=14400, must-revalidate
etag: W/"16322b53a3ea039d744dc303d398d1dd-ssl"
vary: Accept-Encoding
x-nf-request-id: 01H1A5K1HRQ9ZS5ADPB2VHZ5DV
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2fn9%2B2ZcNVbGdhWzBz50G05sIxIOXPQDZhx5VHdnyH0P9Q7VB7BFgYxW209Xumpi%2Fmbb%2BXf4FNPzp9u80TiD6sHbLM90tqi59STCGyWprP9ZYDlFaXxo%2BLTialUAbAMsWQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd020766e33b51e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
deefauph.com/pfe/current/micro.tag.min.js?z=5962615&sw=/sw-check-permissions-75368.js
139.45.197.251200 OK 42 kB URL GET HTTP/2 deefauph.com/pfe/current/micro.tag.min.js?z=5962615&sw=/sw-check-permissions-75368.js
IP 139.45.197.251:443
Requested by https://rewardriot.xyz/root/spinwhel-om/?bemobdata=c=5a44cdbb-85b0-43a7-9b10-b9914a101e7f..l=a681fcb3-67cd-437b-b490-3ed268be9c8b..a=0..b=0..ts=1685042332298
Certificate IssuerLet's Encrypt
Subjectdeefauph.com
Fingerprint31:9A:4F:89:02:91:AE:2A:8F:3A:45:32:15:99:BC:91:72:5F:DC:02
ValiditySun, 21 May 2023 05:15:27 GMT - Sat, 19 Aug 2023 05:15:26 GMT
File type C source, ASCII text, with very long lines (41979), with no line terminators
Hash d44fd7b96fceca8f81b472766025d0d2
237541097413baf5cd3e703413f8bc9ea538a4db
b6c7c1e7fb1a437f100bdcb253df8b0468f130835fbb82c5687505a099997d16
GET /pfe/current/micro.tag.min.js?z=5962615&sw=/sw-check-permissions-75368.js HTTP/1.1
Host: deefauph.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardriot.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 May 2023 19:18:53 GMT
content-type: application/javascript
last-modified: Thu, 11 May 2023 14:20:13 GMT
etag: W/"645cf99d-a3fb"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
backunder.com/script.js
188.114.96.1200 OK 911 B IP 188.114.96.1:443
Requested by https://rewardriot.xyz/root/spinwhel-om/?bemobdata=c=5a44cdbb-85b0-43a7-9b10-b9914a101e7f..l=a681fcb3-67cd-437b-b490-3ed268be9c8b..a=0..b=0..ts=1685042332298
Certificate IssuerGoogle Trust Services LLC
Subject*.backunder.com
Fingerprint23:59:D8:C1:60:4C:DB:2F:17:D5:9F:BC:19:2F:6A:18:8A:5F:4E:B8
ValidityMon, 10 Apr 2023 23:26:53 GMT - Sun, 09 Jul 2023 23:26:52 GMT
File type ASCII text, with very long lines (920), with no line terminators
Hash f60d3d95ba5d3857d3acb6730f06767d
454bf6bf84fc040a03287bf1096d2669804627c8
5c501b55106f7ffe03902742af81cad54e109fec08e9dd005b13ecaa6cbb748e
GET /script.js HTTP/1.1
Host: backunder.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardriot.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 May 2023 19:18:53 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1228
etag: W/"4cc-5f2f3364b2fe4-gzip"
last-modified: Mon, 23 Jan 2023 19:14:45 GMT
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 3890
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=39US5mTrlH%2BXc1b2EAgjNCTBBPh4PF0UIrmjt%2FAfbpgNye4MSYdBvwL%2BLsFzGOb2fNP5R3ckny4DEu2ktRoXKibJJ7%2FbJAK2o07g37oFpPgblxuoZTk%2FmPZftqq24q%2Fs"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd02076a8d8b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
rewardriot.xyz/root/spinwhel-om/img/3.jpg
104.21.4.3200 OK 15 kB URL GET HTTP/3 rewardriot.xyz/root/spinwhel-om/img/3.jpg
IP 104.21.4.3:443
Requested by https://rewardriot.xyz/root/spinwhel-om/?bemobdata=c=5a44cdbb-85b0-43a7-9b10-b9914a101e7f..l=a681fcb3-67cd-437b-b490-3ed268be9c8b..a=0..b=0..ts=1685042332298
Certificate IssuerGoogle Trust Services LLC
Subjectrewardriot.xyz
FingerprintCF:E3:DF:85:34:2A:A4:FF:07:36:24:4D:A6:06:6B:F6:C9:FA:2A:0C
ValidityThu, 18 May 2023 18:01:07 GMT - Wed, 16 Aug 2023 18:01:06 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, description=Smiling young man looking at the camera with his arms crossed\377\333], baseline, precision 8, 360x360, components 3\012- data
Hash 56612da382cd894c3d9a7066200c8987
b50307ef6d081ab84e04f3077551ef52bc677bf8
235ac72915d61b0433f01ae12e6a2a0dd5a676b0e85fdeeb67f6a5b2ea9bb63d
GET /root/spinwhel-om/img/3.jpg HTTP/1.1
Host: rewardriot.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardriot.xyz/root/spinwhel-om/?bemobdata=c=5a44cdbb-85b0-43a7-9b10-b9914a101e7f..l=a681fcb3-67cd-437b-b490-3ed268be9c8b..a=0..b=0..ts=1685042332298
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 May 2023 19:18:53 GMT
content-type: image/jpeg
content-length: 14686
cache-control: public, max-age=14400, must-revalidate
etag: "a84fd5388db24f436ebb6879d0e97503-ssl"
x-nf-request-id: 01H1A5K1HX10TB4AM6J7AA01VQ
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JHspQnqLHhzyT4uHAgLGaOd%2F3pirmn2mUrpmNRZ3oHFmyoMaIEzy2BgO1aiU7sc0uKLo%2B2c7NNotNroKbjttm9ZXYwtvqBNXrS07Oq73lh7h0NSrpp8gYT0fBBPf3nUepQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd020766e4eb51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
rewardriot.xyz/sw-check-permissions-75368.js
104.21.4.3200 OK 566 B URL GET HTTP/3 rewardriot.xyz/sw-check-permissions-75368.js
IP 104.21.4.3:443
Requested by https://rewardriot.xyz/root/spinwhel-om/?bemobdata=c=5a44cdbb-85b0-43a7-9b10-b9914a101e7f..l=a681fcb3-67cd-437b-b490-3ed268be9c8b..a=0..b=0..ts=1685042332298
Certificate IssuerGoogle Trust Services LLC
Subjectrewardriot.xyz
FingerprintCF:E3:DF:85:34:2A:A4:FF:07:36:24:4D:A6:06:6B:F6:C9:FA:2A:0C
ValidityThu, 18 May 2023 18:01:07 GMT - Wed, 16 Aug 2023 18:01:06 GMT
File type ASCII text, with very long lines (605), with no line terminators
Hash 720be97b55df431e3ac519499d3d1aa2
1e36945ff2f39b65fb281b7cc04557a7636994c1
7dd4c6ff9ee8f3f43b81446ab2b06e8e461b53fe7eb4e5ef0824d90a50ae0ee0
GET /sw-check-permissions-75368.js HTTP/1.1
Host: rewardriot.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://rewardriot.xyz/root/spinwhel-om/?bemobdata=c=5a44cdbb-85b0-43a7-9b10-b9914a101e7f..l=a681fcb3-67cd-437b-b490-3ed268be9c8b..a=0..b=0..ts=1685042332298
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 May 2023 19:18:53 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=14400, must-revalidate
etag: W/"30ae048566e52469789fc589ebd954db-ssl"
x-nf-request-id: 01H17S03FG0ZE71S9MBCJBCT37
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=z2HBK%2FzS7sVIjDAzPsmMQy1QKC0OfdDDt1gVedt8mw5cT68RyhSC5XxMYSPafwn%2FkLY6iCONOWNsHBsvBJWG0BjEWtbCh40WvJy9uRaJfU0PBPIm6K76X%2FXf6jQA0vjZ%2FQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd020798cfeb51e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
rewardriot.xyz/root/spinwhel-om/img/spin_vi.png
104.21.4.3200 OK 40 kB URL GET HTTP/3 rewardriot.xyz/root/spinwhel-om/img/spin_vi.png
IP 104.21.4.3:443
Requested by https://rewardriot.xyz/root/spinwhel-om/?bemobdata=c=5a44cdbb-85b0-43a7-9b10-b9914a101e7f..l=a681fcb3-67cd-437b-b490-3ed268be9c8b..a=0..b=0..ts=1685042332298
Certificate IssuerGoogle Trust Services LLC
Subjectrewardriot.xyz
FingerprintCF:E3:DF:85:34:2A:A4:FF:07:36:24:4D:A6:06:6B:F6:C9:FA:2A:0C
ValidityThu, 18 May 2023 18:01:07 GMT - Wed, 16 Aug 2023 18:01:06 GMT
File type PNG image data, 501 x 501, 8-bit colormap, non-interlaced\012- data
Hash 911e82b77f8cffccdcdec5eed82e3a8e
e8f74b28f5df9b13a5db0924397587e159b0ebab
2731ec1c9632e1efd4c3a67144a49d118bde6ccaefd5797adb17d1d23e50b5f4
GET /root/spinwhel-om/img/spin_vi.png HTTP/1.1
Host: rewardriot.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardriot.xyz/root/spinwhel-om/?bemobdata=c=5a44cdbb-85b0-43a7-9b10-b9914a101e7f..l=a681fcb3-67cd-437b-b490-3ed268be9c8b..a=0..b=0..ts=1685042332298
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 May 2023 19:18:53 GMT
content-type: image/png
content-length: 39890
cache-control: public, max-age=14400, must-revalidate
etag: "f7526fc4e954fe069324f38a94ddf6c3-ssl"
x-nf-request-id: 01H1A5K1J52BJQQ1M8WWK48MYS
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mqkaIfzO9o56BbGPILL%2FUSe4Sdo4IaFBbMZd7peW9z1YeL4%2FSst2OPMTmV31Q5ukA5RAxhWER%2F2US42CSaBiIFQhbFn1yOv%2FxJj2QZ4OpH0oSCvpv0%2Bs40qBoCl7vaqyog%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd020766e38b51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
rewardriot.xyz/root/spinwhel-om/js/jquery.min.js
104.21.4.3200 OK 87 kB URL GET HTTP/3 rewardriot.xyz/root/spinwhel-om/js/jquery.min.js
IP 104.21.4.3:443
Requested by https://rewardriot.xyz/root/spinwhel-om/?bemobdata=c=5a44cdbb-85b0-43a7-9b10-b9914a101e7f..l=a681fcb3-67cd-437b-b490-3ed268be9c8b..a=0..b=0..ts=1685042332298
Certificate IssuerGoogle Trust Services LLC
Subjectrewardriot.xyz
FingerprintCF:E3:DF:85:34:2A:A4:FF:07:36:24:4D:A6:06:6B:F6:C9:FA:2A:0C
ValidityThu, 18 May 2023 18:01:07 GMT - Wed, 16 Aug 2023 18:01:06 GMT
File type ASCII text, with very long lines (32058)
Hash 24f2e59beae1680f19632d9c1b89d730
b3a77b35c4809324ab79e64d40c4ee391234e008
39646863a414e0a84920b3a8639c0f3e8c94535e8dc051b42b485a068dc2902f
GET /root/spinwhel-om/js/jquery.min.js HTTP/1.1
Host: rewardriot.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardriot.xyz/root/spinwhel-om/?bemobdata=c=5a44cdbb-85b0-43a7-9b10-b9914a101e7f..l=a681fcb3-67cd-437b-b490-3ed268be9c8b..a=0..b=0..ts=1685042332298
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 May 2023 19:18:53 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=14400, must-revalidate
etag: W/"ddbc6702bc953f6dedfe3543150cf865-ssl-df"
vary: Accept-Encoding
x-nf-request-id: 01H1A5K1J25GSN0G10HRME0CM5
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7IPrBuBf3Tgmy8B4NGCa7%2BqVPYyKtEc%2F1Q9WDpLuQKs7Vjr8n6Q95xElQB5euCwqjTsMO8ApUKQ3y2nija5H0zYH8u38VZf5M0HG771FgcCINYPce%2BRSchdul9dIwpCNvA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd020766e5ab51e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400