| lw19.cdm4.my.id/id-id/mobile-legends/ | 104.21.34.70 | 301 Moved Permanently | 0 B |
URL HTTP/1.1lw19.cdm4.my.id/id-id/mobile-legends/ IP104.21.34.70:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | openphish | Mobile Legends | | fortinet | Phishing | |
GET /id-id/mobile-legends/ HTTP/1.1
Host: lw19.cdm4.my.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sun, 05 Mar 2023 09:17:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sun, 05 Mar 2023 10:17:31 GMT
Location: https://lw19.cdm4.my.id/id-id/mobile-legends/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QqlLjfUodKdS12xLhOlUKJA0wsmlxhnT6fYQLw43cEEBKppmdWFikfWs5b3ZHUaa0zgpcItUYYvEpyK2f9VK1I7acFoWd5QxzxQ0wkwVHmTmmgzWeOQCb5mKg0KgsZdSnMA%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7a31442dcbb3b50f-OSL
alt-svc: h2=":443"; ma=60
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashc8d3b63b0ab9c679c7a50df2ba42b497 7133ccb414f7d8040d0f4a1b1df359485a76c377 4652b9b479b50208073dbff5a0b434fe6e8a1a2c5caa6365a8c5de2ff7fd9865
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4652B9B479B50208073DBFF5A0B434FE6E8A1A2C5CAA6365A8C5DE2FF7FD9865"
Last-Modified: Sat, 04 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5957
Expires: Sun, 05 Mar 2023 10:56:48 GMT
Date: Sun, 05 Mar 2023 09:17:31 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashcf14baed0842431a08367ed54f2346ca d943be8835b7e4470e3d6fbe09ac39c5464be434 a45fbc8cdddc9f43c0c3c7d73cbb2cdf3cf4c4cd2df20802925b795da5048aa4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A45FBC8CDDDC9F43C0C3C7D73CBB2CDF3CF4C4CD2DF20802925B795DA5048AA4"
Last-Modified: Sun, 05 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10765
Expires: Sun, 05 Mar 2023 12:16:56 GMT
Date: Sun, 05 Mar 2023 09:17:31 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ | 35.241.9.150 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hash84db75194692d4afe13196bda6f22da8 4c1f49bc973a4917f146d93c8d598344edc021f6 a3bec66f95b3bdf1d310c726e8ed05f7b06c1901c62381a94582d581844d2c23
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Content-Length, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 05 Mar 2023 09:13:13 GMT
content-type: application/json
age: 258
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash6681493f94022a7df736f92e03badd12 31bc327734b19fbf70290dcc2d19222564a3a396 f9fe24479b86404d7884409068517cc6f57b988b35be92e4f58cb4634fcb2218
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F9FE24479B86404D7884409068517CC6F57B988B35BE92E4F58CB4634FCB2218"
Last-Modified: Sat, 04 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14342
Expires: Sun, 05 Mar 2023 13:16:33 GMT
Date: Sun, 05 Mar 2023 09:17:31 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hashb5ba6334e73496995e3e3a9ecd0eb323 ad80d3b7718c28364e8c2004fb38a13a1747e462 aa5abb52515c6383c014aadb63a86c9f798ad64de53c0218616c1fc6d424d2e2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: yMT0GzTiHsuhOkBlI3+YqVhciE9o1qglYl6HoUz6iSJ/K+UAvdkDu7untWYj8cWwTgvOyJ0v6es=
x-amz-request-id: D3GH7GRK61D02GP0
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 05 Mar 2023 09:16:39 GMT
age: 52
last-modified: Sat, 18 Feb 2023 20:28:27 GMT
etag: "b5ba6334e73496995e3e3a9ecd0eb323"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| e1.o.lencr.org/ | 23.36.76.226 | 200 OK | 345 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash56497d6eba3fe27a630ffa1b544c7ec7 250b0a63c68742425ab2d190671f8de5e77b3411 401afbfeb9fa34048f299a1bc07867b1cec41a3b65bd06284bfb5f38cd75ccec
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "401AFBFEB9FA34048F299A1BC07867B1CEC41A3B65BD06284BFB5F38CD75CCEC"
Last-Modified: Fri, 03 Mar 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5049
Expires: Sun, 05 Mar 2023 10:41:40 GMT
Date: Sun, 05 Mar 2023 09:17:31 GMT
Connection: keep-alive
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 05 Mar 2023 09:17:31 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 35.241.9.150 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Type, Last-Modified, Retry-After, Expires, Pragma, Content-Length, Cache-Control, Alert, ETag
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 05 Mar 2023 09:12:29 GMT
age: 302
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| e1.o.lencr.org/ | 23.36.76.226 | 200 OK | 345 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash56497d6eba3fe27a630ffa1b544c7ec7 250b0a63c68742425ab2d190671f8de5e77b3411 401afbfeb9fa34048f299a1bc07867b1cec41a3b65bd06284bfb5f38cd75ccec
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "401AFBFEB9FA34048F299A1BC07867B1CEC41A3B65BD06284BFB5F38CD75CCEC"
Last-Modified: Fri, 03 Mar 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5049
Expires: Sun, 05 Mar 2023 10:41:40 GMT
Date: Sun, 05 Mar 2023 09:17:31 GMT
Connection: keep-alive
|
|
| cdnjs.cloudflare.com/ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.css | 104.17.24.14 | 200 OK | 6.3 kB |
URL HTTP/2cdnjs.cloudflare.com/ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.css IP104.17.24.14:0
Hash99918fca57628309f8f9d98576272cec ab194d60583b16df155932a9f2d638298b356ed2 5d70e984ef355ffb6e1a01510a79aad3f24536bb3809498b815ea834701b473e
GET /ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lw19.cdm4.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Mar 2023 09:17:31 GMT
content-type: text/css; charset=utf-8
content-length: 6252
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ed9-14d38"
last-modified: Mon, 04 May 2020 16:12:09 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 15349462
expires: Fri, 23 Feb 2024 09:17:31 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Y24vTC1qPkU7GytgatkQ6%2BvnPNAwqThFlUv3KiPPRLVNuTUTGJAgftRum%2Fb%2Ffr7Zca7Si3LGpftGNvFO6UM3yxyU834dJz3z8sH1%2BVoEiCZga%2B7aaCceZkQ0Vw%2BekVPaAI5KBAkZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7a314432ff3bb50b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S2/content/mobile/js/freefire.4a7a9740bc.js | 54.230.111.15 | 200 OK | 520 B |
URL HTTP/2cdn1.codashop.com/S2/content/mobile/js/freefire.4a7a9740bc.js IP54.230.111.15:0
File typeASCII text, with very long lines (520), with no line terminators Hash4a7a9740bcf8062898a69cb939b84746 948bbea618cae328d0acb4cea603023da671358c c636bd0ea30e4e99b8ef807c5561df5064f8c1bd84b08038cdad8bdf989c7822
GET /S2/content/mobile/js/freefire.4a7a9740bc.js HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lw19.cdm4.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 520
last-modified: Sat, 04 Mar 2023 01:02:57 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: seyWdYPdmqER07KATe.BSKq8SuNWiXWr
accept-ranges: bytes
server: AmazonS3
date: Sun, 05 Mar 2023 08:55:41 GMT
etag: "4a7a9740bcf8062898a69cb939b84746"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: uf0vOIXA_pS0zjiVnjCqaPRKo3tJKk1JfGwNbm5tMikfWncZZUCq2w==
age: 11720
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S/content/common/images/grab.29dad06670f873936002ddb910253a4b.png | 54.230.111.15 | 200 OK | 62 kB |
URL HTTP/2cdn1.codashop.com/S/content/common/images/grab.29dad06670f873936002ddb910253a4b.png IP54.230.111.15:0
File typePNG image data, 2000 x 800, 8-bit/color RGBA, non-interlaced\012- data Hash29dad06670f873936002ddb910253a4b 523ee4adf550df78348cf7528580171f0828f2b4 8871194dc3ae9035b5bb04c84aa7b82afa7442daf2bab5f1393a5751e6082a10
GET /S/content/common/images/grab.29dad06670f873936002ddb910253a4b.png HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lw19.cdm4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 61755
last-modified: Tue, 05 May 2020 03:32:54 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Sun, 05 Mar 2023 08:55:41 GMT
etag: "29dad06670f873936002ddb910253a4b"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2EvBCp7Jp9a9Hq_jIt1slb1Z_olT3rg7NbciUs2hSyEqVUn9RCq1DA==
age: 2829
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S2/content/mobile/css/infoBar.662b8f1b5f.css | 54.230.111.15 | 200 OK | 960 B |
URL HTTP/2cdn1.codashop.com/S2/content/mobile/css/infoBar.662b8f1b5f.css IP54.230.111.15:0
File typeASCII text, with very long lines (960), with no line terminators Hash662b8f1b5f919912c1df4b367bff2cc1 2be016ac1842ccd1c46f24f3908e0567916b3857 649336097b307d0d03ecf4b5625f62576ced687e627233bf62f73ea4c1375395
GET /S2/content/mobile/css/infoBar.662b8f1b5f.css HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lw19.cdm4.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 960
last-modified: Sat, 04 Mar 2023 01:02:56 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: 7SXgEfEbizL8uJ3GLSnBlke.C4z96AEd
accept-ranges: bytes
server: AmazonS3
date: Sun, 05 Mar 2023 08:55:41 GMT
etag: "662b8f1b5f919912c1df4b367bff2cc1"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2-FlLE6fJfYlR4ajpALoO09B1rafAD-2apXO18ngbO1YvwWEkQTArA==
age: 17428
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S/content/mobile/images/codashop-logo-new-2x.png | 54.230.111.15 | 200 OK | 3.4 kB |
URL HTTP/2cdn1.codashop.com/S/content/mobile/images/codashop-logo-new-2x.png IP54.230.111.15:0
File typePNG image data, 636 x 140, 8-bit colormap, non-interlaced\012- data Hashd0ce400f6d6f397ddca5e460210db19e 159ccb2fcde33529a29fc6df64a09acb2476eba6 cb22f766a2a1a451da510ee5c58242cf074482075e3881e01ec24bbb47d025d3
GET /S/content/mobile/images/codashop-logo-new-2x.png HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lw19.cdm4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 3353
last-modified: Mon, 12 Jul 2021 11:10:08 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Sun, 05 Mar 2023 08:55:41 GMT
etag: "d0ce400f6d6f397ddca5e460210db19e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: aSWv9R2t290YNRAYPz466Ddroddb1_5-FID6JfK-CKyLPJrfDgCzrA==
age: 2829
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S2/content/mobile/images/error-icon.20986d3fe0.png | 54.230.111.15 | 200 OK | 802 B |
URL HTTP/2cdn1.codashop.com/S2/content/mobile/images/error-icon.20986d3fe0.png IP54.230.111.15:0
File typePNG image data, 38 x 38, 8-bit colormap, non-interlaced\012- data Hash20986d3fe0ddac454b9f46bc34ce8952 defb0e4158b8a9576e663b240336a9bbb28d3267 d7ece5222547615bcb5066478f209b6a3e7c3b3c88667972e937c8481688eed7
GET /S2/content/mobile/images/error-icon.20986d3fe0.png HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lw19.cdm4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 802
last-modified: Tue, 14 Dec 2021 02:49:38 GMT
x-amz-version-id: yQvHZsqjV.2CRKMhv5iNVz5bc0xc5Mqc
accept-ranges: bytes
server: AmazonS3
date: Sun, 05 Mar 2023 08:55:41 GMT
etag: "20986d3fe0ddac454b9f46bc34ce8952"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ijOlzncwN4IkSVfpx5uMMxx3pSdf94BpMj0jWz-J1BGBND9UJUtwuA==
age: 6685
X-Firefox-Spdy: h2
|
|
| script.tapfiliate.com/tapfiliate.js | 54.230.111.56 | 200 OK | 4.6 kB |
URL HTTP/2script.tapfiliate.com/tapfiliate.js IP54.230.111.56:0
Hash87f38fde2b26184db452be6eb467d413 ffdcacf1ef4a74612434e1a8ab20151b326dc3fa ca0727b0c73ce4663e39f4dbcb02ba9299d2760a95cc0a8e46dadd1bf00e3893
GET /tapfiliate.js HTTP/1.1
Host: script.tapfiliate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lw19.cdm4.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Sat, 04 Mar 2023 21:04:10 GMT
last-modified: Wed, 12 Oct 2022 12:34:24 GMT
etag: W/"ddbb39a9e8e67d5067145f8aa76b938d"
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 31q_z6PPRGUrXaMILPVps8pyRdoGqE9_UEKn91cpFtq-i24p-dh_MA==
age: 44003
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S/content/common/images/denom-image/MLBB/100x100/5000orMore_MLBB_Diamonds.png | 54.230.111.15 | 200 OK | 4.0 kB |
URL HTTP/2cdn1.codashop.com/S/content/common/images/denom-image/MLBB/100x100/5000orMore_MLBB_Diamonds.png IP54.230.111.15:0
File typePNG image data, 100 x 100, 8-bit colormap, non-interlaced\012- data Hash6bd9642ae100ed2af948f733aedcc3a9 d12e3096c3d2ab99e895a81e0fca9f061021882b 08c8fe130146bf59f323f114d924e64ac078a3e67ec6aa0a2fcf01537f7a043d
GET /S/content/common/images/denom-image/MLBB/100x100/5000orMore_MLBB_Diamonds.png HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lw19.cdm4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 4038
last-modified: Wed, 16 Mar 2022 12:08:39 GMT
x-amz-version-id: 8QFIiI2oxa3faxq9UWXEnfCyvZnT5YRf
accept-ranges: bytes
server: AmazonS3
date: Sun, 05 Mar 2023 02:31:12 GMT
etag: "6bd9642ae100ed2af948f733aedcc3a9"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1xe9hWGP868Zz1u7-qoYMVU8GwWQ6YZoh1mKvZrMS3vbcRRqqlhLZg==
age: 24381
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S2/content/common/js/third_party_common.0859f0e010.js | 54.230.111.15 | 200 OK | 278 B |
URL HTTP/2cdn1.codashop.com/S2/content/common/js/third_party_common.0859f0e010.js IP54.230.111.15:0
File typeASCII text, with no line terminators Hash0859f0e01014515a05f1738b1ad2975d 2ce5a8530a35a3df627384c63add94b4324ab222 d617f26025f9d24f380f09a7fa7bec6d0306163e75de36e17fc198f4d8450a5b
GET /S2/content/common/js/third_party_common.0859f0e010.js HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lw19.cdm4.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 278
last-modified: Wed, 01 Mar 2023 01:03:02 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: M3GmhyhuNllVLOeX_6H5lxDzLqpaDBuP
accept-ranges: bytes
server: AmazonS3
date: Sun, 05 Mar 2023 08:55:41 GMT
etag: "0859f0e01014515a05f1738b1ad2975d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: x1BYo1JlHDYreqeTkOqo-heDR5bnXH4ItUtieCVAW4--uouh9-3wVQ==
age: 14389
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S2/content/common/js/faq.7a04e34b3d.js | 54.230.111.15 | 200 OK | 824 B |
URL HTTP/2cdn1.codashop.com/S2/content/common/js/faq.7a04e34b3d.js IP54.230.111.15:0
File typeASCII text, with very long lines (824), with no line terminators Hash7a04e34b3d63def624af82ba6df461ba 023f366b89c8f008ac2bde6246dd9774a21bccd4 0af099b192033202033bb4999ec904031c72f05ed158816144cb898423a3eb72
GET /S2/content/common/js/faq.7a04e34b3d.js HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lw19.cdm4.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 824
last-modified: Fri, 04 Sep 2020 02:37:42 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Sun, 05 Mar 2023 08:55:41 GMT
etag: "7a04e34b3d63def624af82ba6df461ba"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Aqe8m4yCSPLP7pS01o7ecHdAZ-Msf9EkV-LPzfu-qGRGOLXm0JpIkg==
age: 11711
X-Firefox-Spdy: h2
|
|
| code.jquery.com/jquery-3.5.1.min.js | 69.16.175.42 | 200 OK | 31 kB |
URL HTTP/2code.jquery.com/jquery-3.5.1.min.js IP69.16.175.42:0
File typeASCII text, with very long lines (65451) Hash3700d0b271343804b9b9aa1c13efa521 3d6b03dbd74872ca3dfbb0529f6c80943788f918 fda7541f8e4cf921d20bcd0dc1d0efe69644c79bd18a0be4ce2f34246c83603e
GET /jquery-3.5.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lw19.cdm4.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Mar 2023 09:17:32 GMT
content-encoding: gzip
content-length: 30879
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-15d84"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1678007852.dop205.sk1.t,1678007852.cds213.sk1.hn,1678007852.cds208.sk1.c
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S2/content/common/js/infoBar.38acc407b3.js | 54.230.111.15 | 200 OK | 1.5 kB |
URL HTTP/2cdn1.codashop.com/S2/content/common/js/infoBar.38acc407b3.js IP54.230.111.15:0
Hash97620d96473e427ebd917359082ba175 27d3baa27c0244f41216e0a05e5a6113cbc08dcd e9cbc59b6c43663f9cd5b6f45a482afdafd8149f1cbc036b40acd00a80feab88
GET /S2/content/common/js/infoBar.38acc407b3.js HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lw19.cdm4.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Fri, 04 Sep 2020 02:37:42 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Sun, 05 Mar 2023 08:55:41 GMT
etag: W/"38acc407b31daa48fafd99a877c64b5d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: pEz2Ocj7Jp7l1p-aJ6eKSqEhcc-6wcnlELcwNDNKfKE1WNpGqzwUFw==
age: 14389
X-Firefox-Spdy: h2
|
|
| rawcdn.githack.com/AlexHostX/logAlex/0178b75ecc69ec6e01750ce74afb6bc3867f6dc5/google.png | 104.21.234.231 | 301 Moved Permanently | 191 B |
URL HTTP/2rawcdn.githack.com/AlexHostX/logAlex/0178b75ecc69ec6e01750ce74afb6bc3867f6dc5/google.png IP104.21.234.231:0
File typeHTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Hash071fd8ecafea25912fcd3ac36da047f8 1df9fbcde3170de426d4ca7fa23870e69ac7f5a7 6a0441175769a66b712c9e317a0c46df05120400370b4f9fc9828d30e9338b08
GET /AlexHostX/logAlex/0178b75ecc69ec6e01750ce74afb6bc3867f6dc5/google.png HTTP/1.1
Host: rawcdn.githack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lw19.cdm4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
date: Sun, 05 Mar 2023 09:17:32 GMT
content-type: text/html
content-length: 191
location: https://raw.githubusercontent.com/AlexHostX/logAlex/0178b75ecc69ec6e01750ce74afb6bc3867f6dc5/google.png
expires: Sun, 05 Mar 2023 06:06:41 GMT
cache-control: max-age=86400
access-control-allow-origin: *
cf-cache-status: HIT
age: 76618
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6Fc5TMoB8pyauG7TsDyfzZr4gJv5Xyw0TRxApwzfH9nWqCAY4uJT%2FP4rM7jjGJKVxL7lWwyItVx0mPJcbfiCuzCeVQ5J%2BetGeEAeHBDyTIrMkzFXdTXLgRWHFfEMpMb15NIpc04%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7a31443418d1730e-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash08cd9b9adf6ddc7d9006b55a110d51a9 a24fd7732b5dd301d5db8964dbe51c4f15a9474c 71ef55d81603da73d44252a382a9dbb5cebe08b9fe9e0bc78dfac945d6f6773b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Mar 2023 09:17:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| i.postimg.cc/dQr9mRH4/codapaymentlogo.png | 162.19.61.80 | 200 OK | 13 kB |
URL HTTP/2i.postimg.cc/dQr9mRH4/codapaymentlogo.png IP162.19.61.80:0
File typePNG image data, 1000 x 97, 8-bit/color RGBA, non-interlaced\012- data Hashf16535dba0fec2a6feb103ed45b30874 8cd27ad1904006b5db2570b0c320b757aadb98a2 af561f4a98032a04771de61aec77ae1fd118b138b9e45a2b7ca5826a3cb2b59b
GET /dQr9mRH4/codapaymentlogo.png HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lw19.cdm4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Mar 2023 09:17:32 GMT
content-type: image/png
content-length: 13178
last-modified: Tue, 15 Nov 2022 12:22:14 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| i.ibb.co/2Wqpn9X/codashop-logo-new-2x-1.png | 162.19.58.157 | 200 OK | 10 kB |
URL HTTP/2i.ibb.co/2Wqpn9X/codashop-logo-new-2x-1.png IP162.19.58.157:0
File typePNG image data, 636 x 140, 8-bit/color RGBA, non-interlaced\012- data Hash90dbb8098a4add695d31467d76aade38 2e427ed9fcf3a97e4fc87ba26d4f458635e80651 a370f1ffc53ee7f40ac3f0d4f2f40eee3b5fa27035da5ccd4c0e3ad0320716c2
GET /2Wqpn9X/codashop-logo-new-2x-1.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lw19.cdm4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Mar 2023 09:17:32 GMT
content-type: image/png
content-length: 10195
last-modified: Wed, 22 Dec 2021 06:36:09 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| ocsp.r2m02.amazontrust.com/ | 143.204.48.16 | 200 OK | 471 B |
URL HTTP/1.1ocsp.r2m02.amazontrust.com/ IP143.204.48.16:0
Hashe7b237bb2044fdbea550a506484216d5 fb7e57c7f565219eaea24b935d8d437040d9e722 42672df44afb8894599cc75e2af4fef3826bd24014307f8433c90c88e65da447
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=139028
Date: Sun, 05 Mar 2023 09:17:32 GMT
Etag: "64024970-1d7"
Expires: Mon, 06 Mar 2023 23:54:40 GMT
Last-Modified: Fri, 03 Mar 2023 19:24:32 GMT
Server: ECAcc (nya/1C5C)
X-Cache: Miss from cloudfront
Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: tjTwinP_OZ88z1ZX4IFIQGegwmj2gjifeUHc05q6lEfZcelODgusxg==
Age: 102608
|
|
| ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js | 142.250.74.106 | 200 OK | 31 kB |
URL HTTP/2ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js IP142.250.74.106:0
File typeASCII text, with very long lines (65451) Hash903bc7a7e510f87aa5d0201eb59a0832 ac9aa4dd94cde1bcba9037e94087138b127e41fc 41a7ac8150cc9f38421451d5143c1ffec7a1f1fafbf7a7fc0f51b98ad699cf8f
GET /ajax/libs/jquery/3.5.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lw19.cdm4.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31021
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Mar 2023 13:36:02 GMT
expires: Fri, 01 Mar 2024 13:36:02 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Fri, 08 May 2020 07:05:03 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 243690
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.google.com/recaptcha/api.js | 142.250.74.164 | 200 OK | 553 B |
URL HTTP/2www.google.com/recaptcha/api.js IP142.250.74.164:0
File typeASCII text, with very long lines (850), with no line terminators Hashb7a83b95075ffc461accfebe3f5ae0d8 23c7d59dbb1fe2f6a19f437bb4ee8b40de681200 c9b3fdaaa3a280ccf7519fc927ef5b74e432cda963d812b921d94575c0f1cc3d
GET /recaptcha/api.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lw19.cdm4.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Sun, 05 Mar 2023 09:17:32 GMT
date: Sun, 05 Mar 2023 09:17:32 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 553
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| i.postimg.cc/kX3LXzJH/mlbb-halloween640x241.jpg | 162.19.61.80 | 200 OK | 48 kB |
URL HTTP/2i.postimg.cc/kX3LXzJH/mlbb-halloween640x241.jpg IP162.19.61.80:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 640x241, components 3\012- data Hash5a0eb6ee192b23783aef5b8d1eb5a928 eec25570f93e10e8a1d129403d7f1343e33dd510 70f908a0ea6e0bd7925033aefef4c93324e3f2cca65526748330223af420db79
GET /kX3LXzJH/mlbb-halloween640x241.jpg HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lw19.cdm4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Mar 2023 09:17:32 GMT
content-type: image/jpeg
content-length: 47974
last-modified: Sun, 06 Mar 2022 01:49:28 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| i.ibb.co/PjPWJ0L/images-12.jpg | 162.19.58.157 | 200 OK | 41 kB |
URL HTTP/2i.ibb.co/PjPWJ0L/images-12.jpg IP162.19.58.157:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 640x241, components 3\012- data Hash85b0aea9dfd40aebbc68ed54b73e5771 0e9a726bbb512de7f92122828f63d814176c9c4c 7aadeacccf10032534dddb1f8a23f221928ec1cbe28109f3475455ccd1b1f7f8
GET /PjPWJ0L/images-12.jpg HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lw19.cdm4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Mar 2023 09:17:32 GMT
content-type: image/jpeg
content-length: 41233
last-modified: Wed, 22 Dec 2021 12:35:12 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| i.ibb.co/cCpMZ6B/images-1.png | 162.19.58.157 | 200 OK | 8.5 kB |
URL HTTP/2i.ibb.co/cCpMZ6B/images-1.png IP162.19.58.157:0
File typePNG image data, 904 x 339, 8-bit colormap, non-interlaced\012- data Hashf29c416a7c6f18ba0c0deb4980763c9d 56c7bfbf2c9a7a2be2e2214b0586c11af8e852bf 7f37cb926c06378327ad2a753c7119291b2ead796a6f588a8374de651ec72a8c
GET /cCpMZ6B/images-1.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lw19.cdm4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Mar 2023 09:17:32 GMT
content-type: image/png
content-length: 8459
last-modified: Mon, 06 Dec 2021 14:41:54 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| i.ibb.co/fH7GrKb/socmed-youtube-H36.png | 162.19.58.157 | 200 OK | 2.2 kB |
URL HTTP/2i.ibb.co/fH7GrKb/socmed-youtube-H36.png IP162.19.58.157:0
File typePNG image data, 51 x 36, 8-bit/color RGBA, non-interlaced\012- data Hash123c968b7d12fcf714b9d2af208d666a e81c6311be251ac7a4174d6a16c772e8ac78528e dcf5dc23bfca5d9b4b2a36c9db76f5375f51417bde2b33f1c60e3925c814d361
GET /fH7GrKb/socmed-youtube-H36.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lw19.cdm4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Mar 2023 09:17:32 GMT
content-type: image/png
content-length: 2216
last-modified: Wed, 22 Dec 2021 12:37:58 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash6da779acb12dfc1041cbaf3a5c1f5ff3 4f1749a2339a8af009b5b02bb427071ef06bd5f3 45407bbfb8b7ec7d6459716c907161aca7f563ecbff0812b2687e00181c1b425
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Mar 2023 09:17:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| i.ibb.co/LRrKwDY/socmed-instagram-H36.png | 162.19.58.157 | 200 OK | 4.7 kB |
URL HTTP/2i.ibb.co/LRrKwDY/socmed-instagram-H36.png IP162.19.58.157:0
File typePNG image data, 36 x 36, 8-bit/color RGBA, non-interlaced\012- data Hasha91be2e400b7f0dc66247427dfaffcf3 900e87486aa051659e114eb5b7a2980d75e7889a 62437412556a804293516df99c0970427549b1a50258462035410072f96dd093
GET /LRrKwDY/socmed-instagram-H36.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lw19.cdm4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Mar 2023 09:17:32 GMT
content-type: image/png
content-length: 4678
last-modified: Wed, 22 Dec 2021 12:38:29 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| i.ibb.co/CBYYXf0/socmed-facebook-H36.png | 162.19.58.157 | 200 OK | 2.9 kB |
URL HTTP/2i.ibb.co/CBYYXf0/socmed-facebook-H36.png IP162.19.58.157:0
File typePNG image data, 36 x 36, 8-bit/color RGBA, non-interlaced\012- data Hashcf9659fa3891add490cb7d0d099d72ac 85581945ff05f48b3a652ba3e90ae44d97b18cf1 76db9987bb4f902e6d4a6702577717a6d6afff1bef8eb6dfce62c5c69e8d707d
GET /CBYYXf0/socmed-facebook-H36.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lw19.cdm4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Mar 2023 09:17:32 GMT
content-type: image/png
content-length: 2890
last-modified: Wed, 22 Dec 2021 12:37:17 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| i.ibb.co/m4VSMvm/socmed-facebook-msg-H36.png | 162.19.58.157 | 200 OK | 2.9 kB |
URL HTTP/2i.ibb.co/m4VSMvm/socmed-facebook-msg-H36.png IP162.19.58.157:0
File typePNG image data, 36 x 36, 8-bit/color RGBA, non-interlaced\012- data Hashe3443d0d8aea42fc61368b9792b6fdc3 6d0f867176171d6dd3fe1e052251b7fdc8c479ca e6ff78cbc0e7a99c0243089cd0357f70d4432faea71e5b43ebfa466a166939d6
GET /m4VSMvm/socmed-facebook-msg-H36.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lw19.cdm4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Mar 2023 09:17:32 GMT
content-type: image/png
content-length: 2866
last-modified: Wed, 22 Dec 2021 12:40:34 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash180ddc8b6a8499123feedc5fa6c2ddeb c2e4086345f937e01d139408a22e7186643c247f 41a9d9eb5b2b6e75d941f1ee8332e6d971beff7cafbebe2cf6e717daf4c2763b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Mar 2023 09:17:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| i.postimg.cc/CLMnXTyq/Picsart-22-11-15-19-05-58-895.png | 162.19.61.80 | 200 OK | 184 kB |
URL HTTP/2i.postimg.cc/CLMnXTyq/Picsart-22-11-15-19-05-58-895.png IP162.19.61.80:0
File typePNG image data, 296 x 296, 8-bit/color RGBA, non-interlaced\012- data Size184 kB (183818 bytes) Hash577c343f5496ff82fe360172a51dbef1 63c666d7beb0d71bc441fb4ef87f399a9b2541e0 51974fe41d85ecc8b3abc505d62f981440ccefd79a47103cf7ed19ea8db20ce2
GET /CLMnXTyq/Picsart-22-11-15-19-05-58-895.png HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lw19.cdm4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Mar 2023 09:17:32 GMT
content-type: image/png
content-length: 183818
last-modified: Tue, 15 Nov 2022 12:06:29 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| push.services.mozilla.com/ | 54.149.203.40 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP54.149.203.40:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: kKwIKFDluZmjPuoaVTiE0w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: SBSszM49GzbDNnDYpd3qEto/MiU=
|
|
| cdn1.codashop.com/S/content/common/css/flags32.png | 54.230.111.15 | 200 OK | 26 kB |
URL HTTP/2cdn1.codashop.com/S/content/common/css/flags32.png IP54.230.111.15:0
File typePNG image data, 32 x 7904, 8-bit colormap, non-interlaced\012- data Hashee905aeea99aa287b3f5b569fedbd91e 0fd8e62c7b5240b5496dc1f2af99d45766c30b86 5ad678791b5d4839f74a625c1ff6d3f4a6bbfca6417ecb0133f1a60de77b415d
GET /S/content/common/css/flags32.png HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn1.codashop.com/S/content/common/css/flags.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 26399
last-modified: Thu, 20 Dec 2018 04:54:20 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Sun, 05 Mar 2023 08:55:41 GMT
etag: "ee905aeea99aa287b3f5b569fedbd91e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: mn-fA741lYxRMpLR4lolokTEhJ6LsTK4tG17Px3U2Asy3YR0znyCQw==
age: 14388
X-Firefox-Spdy: h2
|
|
| raw.githubusercontent.com/AlexHostX/logAlex/0178b75ecc69ec6e01750ce74afb6bc3867f6dc5/google.png | 185.199.110.133 | 404 Not Found | 14 B |
URL HTTP/2raw.githubusercontent.com/AlexHostX/logAlex/0178b75ecc69ec6e01750ce74afb6bc3867f6dc5/google.png IP185.199.110.133:0
File typeASCII text, with no line terminators Hash3be7b8b182ccd96e48989b4e57311193 78fb38f212fa49029aff24c669a39648d9b4e68b d5558cd419c8d46bdc958064cb97f963d1ea793866414c025906ec15033512ed
GET /AlexHostX/logAlex/0178b75ecc69ec6e01750ce74afb6bc3867f6dc5/google.png HTTP/1.1
Host: raw.githubusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lw19.cdm4.my.id/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: deny
x-xss-protection: 1; mode=block
content-type: text/plain; charset=utf-8
x-github-request-id: 1F7A:32A0:161EB4:1CC678:64045E2C
accept-ranges: bytes
date: Sun, 05 Mar 2023 09:17:32 GMT
via: 1.1 varnish
x-served-by: cache-bma1661-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1678007852.271088,VS0,VE151
vary: Authorization,Accept-Encoding,Origin
access-control-allow-origin: *
x-fastly-request-id: c55e7e3a9128d5d2fd193d1ca4949244d3ef40a9
expires: Sun, 05 Mar 2023 09:22:32 GMT
source-age: 0
content-length: 14
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S/content/fonts/Lato/Lato-Regular.woff2 | 54.230.111.15 | 200 OK | 28 kB |
URL HTTP/2cdn1.codashop.com/S/content/fonts/Lato/Lato-Regular.woff2 IP54.230.111.15:0
File typeWeb Open Font Format (Version 2), TrueType, length 28440, version 1.0\012- data Hash1031840a9580bcc9b1b83a047f2282b4 92eb819b7183fe6b04774a1003216991342e3af5 386695f80ed730cc1a3108b4d91fab24e1db1d9e5f13caa1f95095fb6f1de147
GET /S/content/fonts/Lato/Lato-Regular.woff2 HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lw19.cdm4.my.id
Connection: keep-alive
Referer: https://cdn1.codashop.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 28440
date: Sun, 05 Mar 2023 02:38:50 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST
last-modified: Thu, 09 Apr 2020 13:54:30 GMT
etag: "1031840a9580bcc9b1b83a047f2282b4"
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
vary: Origin
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZCSgkIlvTaBNGAz3Uh2ckFmLkcwByzBgLS9X9WMyRn52ennGQTYiJg==
age: 23923
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S2/content/mobile/css/productPage/responsive-product-page2.7ec2b81ede.css | 54.230.111.15 | 200 OK | 214 kB |
URL HTTP/2cdn1.codashop.com/S2/content/mobile/css/productPage/responsive-product-page2.7ec2b81ede.css IP54.230.111.15:0
Size214 kB (213809 bytes) Hashf8028baa2f7201b6101fb038552f892e cb3e73005d3806b2c9ac0541bf895ea4ba24e9fb 052f92da64c0f0d50269588f777db63f21b8cf94de76c6ad045d081cc2ff8487
GET /S2/content/mobile/css/productPage/responsive-product-page2.7ec2b81ede.css HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lw19.cdm4.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
date: Sat, 04 Mar 2023 21:52:48 GMT
last-modified: Fri, 04 Sep 2020 02:37:43 GMT
etag: W/"7ec2b81ede93e59a3c985e6656b87427"
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: AQoGtjP4Kzc7wA9n6XSvongXuzwbU1XavCAZNHSRe68kmo6ODKFf-A==
age: 41085
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S2/content/common/css/shared-shop-content.e6202b83de.css | 54.230.111.15 | 200 OK | 117 kB |
URL HTTP/2cdn1.codashop.com/S2/content/common/css/shared-shop-content.e6202b83de.css IP54.230.111.15:0
Size117 kB (116604 bytes) Hashffdee58c01132ce5bdf85b48dd7906cc 7808cb84d58b927abca47b6924b886d7add8ec0f 9ae937c7aec2ac73ca0ebefee9b79ddcb514c368af930347cb434466b54015a5
GET /S2/content/common/css/shared-shop-content.e6202b83de.css HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lw19.cdm4.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
date: Sun, 05 Mar 2023 04:33:32 GMT
last-modified: Sun, 05 Mar 2023 01:02:46 GMT
etag: W/"e6202b83defd6474350841e595260599"
x-amz-server-side-encryption: AES256
x-amz-version-id: _hYj4uHKu_Tw3qVJZPVHg8zNqK2suJrZ
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: uUvriTLOc_PMEGlrIFXoynTqCjW6Vl_xBe02-JG1hrsMy8bvk9qVvQ==
age: 17041
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S2/content/common/css/shared-topnav2.5566e671b1.css | 54.230.111.15 | 200 OK | 234 kB |
URL HTTP/2cdn1.codashop.com/S2/content/common/css/shared-topnav2.5566e671b1.css IP54.230.111.15:0
Size234 kB (233571 bytes) Hash678dc5a16f588042b3595a2fa159fac5 99f9f56dc30642d33453e4c593ed54d4224e8eee dee2dddd350c65a7cd3ff9df58f52c650934094c156227eb88d5d8d49b52c917
GET /S2/content/common/css/shared-topnav2.5566e671b1.css HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lw19.cdm4.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 26 Nov 2020 09:41:30 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Sun, 05 Mar 2023 08:55:41 GMT
etag: W/"5566e671b1a56ed10ee4665797bca5ba"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Jw1yaWnUtAERkcavYF2q0DN9vaUi1LGpeiHVjdGY7AwwWdKz3euhlw==
age: 17431
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S/content/fonts/Noto/NotoSans-Regular.woff2 | 54.230.111.15 | 200 OK | 118 kB |
URL HTTP/2cdn1.codashop.com/S/content/fonts/Noto/NotoSans-Regular.woff2 IP54.230.111.15:0
File typeWeb Open Font Format (Version 2), TrueType, length 117948, version 1.0\012- data Size118 kB (117948 bytes) Hashe50c34178d20d5fa4ab3c1f6c67901a9 655dcb4d829e2bc75e9a7cf8a2aa08f6a4513634 5b43a0c0c7874410cd01de2ec8684785b550295350f5d92901f4c9090f1ab019
GET /S/content/fonts/Noto/NotoSans-Regular.woff2 HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lw19.cdm4.my.id
Connection: keep-alive
Referer: https://cdn1.codashop.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 117948
date: Sun, 05 Mar 2023 02:38:50 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST
last-modified: Fri, 06 May 2022 11:41:27 GMT
etag: "e50c34178d20d5fa4ab3c1f6c67901a9"
cache-control: max-age=604800
x-amz-version-id: trEzvh6kI.WdcIb7.CUjjvIEEUDocBW7
accept-ranges: bytes
server: AmazonS3
vary: Origin
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9BdIQ2_MOYo0rdv5I7y74V1PvVeW0VvzpRNY9hx6A0v9tIAyYfgduw==
age: 23923
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S/content/fonts/Lato/Lato-Bold.woff2 | 54.230.111.15 | 200 OK | 211 kB |
URL HTTP/2cdn1.codashop.com/S/content/fonts/Lato/Lato-Bold.woff2 IP54.230.111.15:0
File typeWeb Open Font Format (Version 2), TrueType, length 211160, version 1.0\012- data Size211 kB (211160 bytes) Hash743278852fdad61a73198bc74d529af8 d0f790e800b87b0db1edc0aedd9f3a82f88629cc 57b0c1d7bee3f753da5e6aa215a417abfa87dd9798ef2483f42585bfb08d64d9
GET /S/content/fonts/Lato/Lato-Bold.woff2 HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lw19.cdm4.my.id
Connection: keep-alive
Referer: https://cdn1.codashop.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 211160
date: Sun, 05 Mar 2023 02:38:50 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST
last-modified: Thu, 09 Apr 2020 14:30:12 GMT
etag: "743278852fdad61a73198bc74d529af8"
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
vary: Origin
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Q9cqCtALk44ygy0IKP3T4EgsgPgJJFSGO63PDN03XKWKlo_GSSeeMA==
age: 23923
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S/content/fonts/Lato/Lato-Semibold.woff2 | 54.230.111.15 | 200 OK | 213 kB |
URL HTTP/2cdn1.codashop.com/S/content/fonts/Lato/Lato-Semibold.woff2 IP54.230.111.15:0
File typeWeb Open Font Format (Version 2), TrueType, length 213284, version 1.0\012- data Size213 kB (213284 bytes) Hash3b2be91477b04924b538786080ff371b 1a76b7ffe7ba478a6a34323e85aa219f85eb8842 8817bfe4ce3f5f0a9e3e6221a052e51c5baf38ad16dc65af6753a4c4c4e00b99
GET /S/content/fonts/Lato/Lato-Semibold.woff2 HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lw19.cdm4.my.id
Connection: keep-alive
Referer: https://cdn1.codashop.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 213284
date: Sun, 05 Mar 2023 02:38:50 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST
last-modified: Thu, 09 Apr 2020 14:29:03 GMT
etag: "3b2be91477b04924b538786080ff371b"
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
vary: Origin
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: c9m58IHFbj0v04GFRSkiNw57fJehI-XJr3uTAGyYFxklFoOUNeU7RQ==
age: 23923
X-Firefox-Spdy: h2
|
|
| d1qgcmfii0ptfa.cloudfront.net/S/content/mobile/images/app_store_coda.png | 143.204.42.138 | 200 OK | 2.8 kB |
URL HTTP/1.1d1qgcmfii0ptfa.cloudfront.net/S/content/mobile/images/app_store_coda.png IP143.204.42.138:0
File typePNG image data, 138 x 41, 8-bit colormap, non-interlaced\012- data Hashcfd0f0cbf8aa1717324f64a438c378c5 deb76943cf9b96153b36c04c9de02996857a808b 6a69de99192160f4a77667679c5a985beb0758dd464c162f58e2f89b91d11011
GET /S/content/mobile/images/app_store_coda.png HTTP/1.1
Host: d1qgcmfii0ptfa.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lw19.cdm4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 2799
Connection: keep-alive
Last-Modified: Mon, 17 Jul 2017 08:47:30 GMT
Content-Disposition: attachment
Accept-Ranges: bytes
Server: AmazonS3
Date: Sun, 05 Mar 2023 05:47:22 GMT
ETag: "cfd0f0cbf8aa1717324f64a438c378c5"
X-Cache: Hit from cloudfront
Via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: VuFllvZW8eS09b6P_oH-ZMzLH8oPXHrivgcHHaOTIpJYFZcfuqUbNA==
Age: 22938
|
|
| cdn1.codashop.com/S2/content/common/css/shared-footer2.2ce4d6e299.css | 54.230.111.15 | 200 OK | 3.7 kB |
URL HTTP/2cdn1.codashop.com/S2/content/common/css/shared-footer2.2ce4d6e299.css IP54.230.111.15:0
Hashb71424104cf432784e3fd8c22d99ef86 cb45777f05230f42c8227bd150801dcb6bf6e865 3dbfc4c0727ab5f0f9e8c942d8002a1fdf635abbaa07640b0909feda72bbb43c
GET /S2/content/common/css/shared-footer2.2ce4d6e299.css HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lw19.cdm4.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Sat, 04 Mar 2023 01:02:56 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: .LMtuVNy1hYbCQIMChUxCqRoD_6b08vm
server: AmazonS3
content-encoding: gzip
date: Sun, 05 Mar 2023 08:55:41 GMT
etag: W/"2ce4d6e2994e655224b0aa48265ae15a"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0UyroBi8txGdX3cUpnMcLTbSdwEP0R7LovU6Xc0PMzZM-TFtIW_n7A==
age: 11718
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 192.229.221.95 | 200 OK | 471 B |
IP192.229.221.95:0
Hash9f5555346671a84a397e3b815b67cafe 21d7703d1aa6e893cebc2d1b8d619b53e2c41d7e 42ab1a009d1c1235bf7bff782457af526f95117e1e89549360dfc47d6bca8df7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 53934
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Mar 2023 09:17:32 GMT
Last-Modified: Sat, 04 Mar 2023 18:18:38 GMT
Server: ECAcc (ska/F756)
X-Cache: HIT
Content-Length: 471
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hashbba672a94dfc9e79665ea44b23f9c19b 2458a0439e4567374f0475945def58c7da12660c baebcf0e9740e2dde753635e7d46c61eb293957c0497a75d56cabf6af212ddb6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Mar 2023 09:17:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| connect.facebook.net/en_US/fbevents.js | 31.13.72.12 | 200 OK | 28 kB |
URL HTTP/2connect.facebook.net/en_US/fbevents.js IP31.13.72.12:0
File typeASCII text, with very long lines (64348) Hash43d943c7499b27a8ef3972fa070f6756 59303c79335aa0a9f529c0f6166f99c3e650088c 96ab29f531694f1b8e5d2f031e16581fe1052636fb32c5cd96d55b824d6539b2
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lw19.cdm4.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: Vwp67ybtn/Xxgg6qfYLa+LcOonMEl9FkQjzis4dQee8xHItENSfdARqfIK/XeV7yoqJhaQfHGmoPShuonX0zrQ==
content-length: 27907
x-fb-trip-id: 1904183273
date: Sun, 05 Mar 2023 09:17:32 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/releases/Nh10qRQB5k2ucc5SCBLAQ4nA/recaptcha__en.js | 142.250.74.35 | 200 OK | 165 kB |
URL HTTP/2www.gstatic.com/recaptcha/releases/Nh10qRQB5k2ucc5SCBLAQ4nA/recaptcha__en.js IP142.250.74.35:0
File typeHTML document, ASCII text, with very long lines (839) Size165 kB (164689 bytes) Hash7f27adb1216e4ddb02884fd68a1ec297 a33a85dfc58ca995fa184035b8fdb896866c361f aeea36b977f073b902c2c5536b21f43e931fc2ac5ba3601db228e686457e9bc8
GET /recaptcha/releases/Nh10qRQB5k2ucc5SCBLAQ4nA/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lw19.cdm4.my.id
Connection: keep-alive
Referer: https://lw19.cdm4.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 164689
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Mar 2023 08:44:27 GMT
expires: Fri, 01 Mar 2024 08:44:27 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 20 Feb 2023 05:03:28 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 261185
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 192.229.221.95 | 200 OK | 471 B |
IP192.229.221.95:0
Hash6c5f1f806afb76597a3f8d7cb3b04c68 05fd55c02d97d8d70cb705137d7693d7f8eebac9 b23d158e3facc5c72d7c834d633a6adfa4f4caf1c7ab4b3b2bb78553da30372a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 140890
Cache-Control: max-age=161882
Content-Type: application/ocsp-response
Date: Sun, 05 Mar 2023 09:17:32 GMT
Etag: "64020d2c-1d7"
Expires: Tue, 07 Mar 2023 06:15:34 GMT
Last-Modified: Fri, 03 Mar 2023 15:07:24 GMT
Server: ECAcc (ska/F6AF)
X-Cache: HIT
Content-Length: 471
|
|
| www.codashop.com/img/icons/favicon-32.png?v=2 | 54.230.111.123 | 200 OK | 1.2 kB |
URL HTTP/2www.codashop.com/img/icons/favicon-32.png?v=2 IP54.230.111.123:0
File typePNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data Hash3a1dd9189576623836ae92e68f7c35bb 2d878b12813d6537e772152c65683314b37ad811 a57aaf851f34910a58d9a76cea8d39ca2ebbf3f776475329401a0bc4caa8a685
GET /img/icons/favicon-32.png?v=2 HTTP/1.1
Host: www.codashop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lw19.cdm4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
content-length: 1151
date: Thu, 02 Mar 2023 05:42:21 GMT
last-modified: Thu, 02 Mar 2023 05:42:08 GMT
etag: "3a1dd9189576623836ae92e68f7c35bb"
x-amz-server-side-encryption: AES256
cache-control: public,must-revalidate,max-age=604800
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: N0PIRpJzC4bJ3gyvBGRKIO4f0z9pPZUsu2xqAcRCbk6L2bsphw_faQ==
age: 272112
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hashbba672a94dfc9e79665ea44b23f9c19b 2458a0439e4567374f0475945def58c7da12660c baebcf0e9740e2dde753635e7d46c61eb293957c0497a75d56cabf6af212ddb6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Mar 2023 09:17:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash798f3637325523bddef4e627e66b0bb1 f3258713f39d4e7448590dee010917ed14320ec4 e5805f2922506bd022a7fe734d1022156241e88653ea5d16d5a698ac7067828b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E5805F2922506BD022A7FE734D1022156241E88653EA5D16D5A698AC7067828B"
Last-Modified: Sat, 04 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13512
Expires: Sun, 05 Mar 2023 13:02:45 GMT
Date: Sun, 05 Mar 2023 09:17:33 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash798f3637325523bddef4e627e66b0bb1 f3258713f39d4e7448590dee010917ed14320ec4 e5805f2922506bd022a7fe734d1022156241e88653ea5d16d5a698ac7067828b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E5805F2922506BD022A7FE734D1022156241E88653EA5D16D5A698AC7067828B"
Last-Modified: Sat, 04 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13512
Expires: Sun, 05 Mar 2023 13:02:45 GMT
Date: Sun, 05 Mar 2023 09:17:33 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash798f3637325523bddef4e627e66b0bb1 f3258713f39d4e7448590dee010917ed14320ec4 e5805f2922506bd022a7fe734d1022156241e88653ea5d16d5a698ac7067828b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E5805F2922506BD022A7FE734D1022156241E88653EA5D16D5A698AC7067828B"
Last-Modified: Sat, 04 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13512
Expires: Sun, 05 Mar 2023 13:02:45 GMT
Date: Sun, 05 Mar 2023 09:17:33 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe20ff76d-e949-4360-bacb-a5aa866991c2.jpeg | 34.120.237.76 | 200 OK | 9.3 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe20ff76d-e949-4360-bacb-a5aa866991c2.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashce712849bedfd2e64ad065f809119622 3b581618a0a7152ead0245f3818905a3fbac55be 823d6c1a0eabcf57301d0a228fad56459e874b288b52d31ea2cc8fca1a51a30a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe20ff76d-e949-4360-bacb-a5aa866991c2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9301
x-amzn-requestid: 245fb031-c71c-48c8-b775-9b9bc0aca8eb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BFvhfG44IAMFb-A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63fef93c-5bbf00015ab2e70e79bbab75;Sampled=0
x-amzn-remapped-date: Wed, 01 Mar 2023 07:05:32 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: dlEywB7YIa1M1ccOXQ9TJUhWaS9hFLLVwKuaf8zhZY9uVN40LxJVvg==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 f3ac324bf05099849ebda59e8136db0e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Mar 2023 09:24:08 GMT
age: 86005
etag: "3b581618a0a7152ead0245f3818905a3fbac55be"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0c3b178-ee57-465b-aa8c-fb6f93e35cab.jpeg | 34.120.237.76 | 200 OK | 3.4 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0c3b178-ee57-465b-aa8c-fb6f93e35cab.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash4726917eabc29a977873ad26e264e70d 4619a0418ee08d6618ead537f31823c98f355b5a d3c6b43d46ccff30f0003a063b6c4c78d4a782262bfdeb138e6c015555ce2dcb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0c3b178-ee57-465b-aa8c-fb6f93e35cab.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3381
x-amzn-requestid: 8b89e7ab-b8b3-45cd-af3a-cc419e61f1fc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: A-PNPFynoAMFn8Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63fbf8ba-616bedc230d1c2b13a09beae;Sampled=0
x-amzn-remapped-date: Mon, 27 Feb 2023 00:26:34 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: 7f5O-v2e1_OXVVveu0_kNtjOTnUAC5shUmd4JejtlrnliJsxeitcYA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 de2dd11312f7d5ad3bcd0cb112c7fd0e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Mar 2023 09:31:56 GMT
age: 85537
etag: "4619a0418ee08d6618ead537f31823c98f355b5a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fef57950c-a2fd-4f4e-ab9e-ed094ff81aa5.jpeg | 34.120.237.76 | 200 OK | 6.6 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fef57950c-a2fd-4f4e-ab9e-ed094ff81aa5.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash826ca6a8dadb358e528b079b8cad6cc5 1f8ea42b7f18c9756d5566880307950f5861de01 57c21443e08c9779febf17304e325351dd1fff47f37d70da49f413eb5a9c6c19
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fef57950c-a2fd-4f4e-ab9e-ed094ff81aa5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6563
x-amzn-requestid: 71b0b4e4-513e-4202-b49b-afb2d17e4f28
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BCb_JGkRoAMFx2w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63fda6c7-21f5fd9223fc894a6ef2a745;Sampled=0
x-amzn-remapped-date: Tue, 28 Feb 2023 07:01:27 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: aZtaoIgjpNFYij73pvO6oaBHxTYlYZyLCy4Y_cFzBhmWyH_oejYHgw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 31dfa94142c6eaf975b0e5454c00340a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Mar 2023 14:40:08 GMT
age: 67045
etag: "1f8ea42b7f18c9756d5566880307950f5861de01"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9efde266-ca49-41eb-9487-44e134916b4f.jpeg | 34.120.237.76 | 200 OK | 10 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9efde266-ca49-41eb-9487-44e134916b4f.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash724fa48ccca0d3c13ff4b7d6f37b9d83 464c721a0b21748887983c18b374919fded7a9ec 2f9c5afbf0cf73ef947f3a1befe80aab80c1ba62a0b1c4d4484ad1508b8c0e62
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9efde266-ca49-41eb-9487-44e134916b4f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10330
x-amzn-requestid: 8260d57d-a18a-47c2-b1ab-e3446828fb72
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BRnFOFpIIAMFQ5A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6403b887-6aad3a6721a923a2785af45e;Sampled=0
x-amzn-remapped-date: Sat, 04 Mar 2023 21:30:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: AgSjPLDX3q6HTwtAmDzATddl8ZVrjex8_knBealJq5Il1vUC16nMhA==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 1d000d0dfe9d69b4983f619fdc5499d6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Mar 2023 21:54:33 GMT
age: 40980
etag: "464c721a0b21748887983c18b374919fded7a9ec"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a242e25-d709-4aac-bb1b-f87b28f73bda.jpeg | 34.120.237.76 | 200 OK | 6.2 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a242e25-d709-4aac-bb1b-f87b28f73bda.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash0025baabbcf064f3462fd9fd97e1505b ac52f28a9a028ff321c60849e1524f1f97c45216 92d3fba200330543cd5dcbfee2f28712c0e935f1553c481cd4a07a3170c69a65
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a242e25-d709-4aac-bb1b-f87b28f73bda.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6237
x-amzn-requestid: 108e05b4-fe18-4bfe-835e-5768af158fcf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BOoNiEUloAMF8kg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64028723-613dbdbb68e843da1d4cb859;Sampled=0
x-amzn-remapped-date: Fri, 03 Mar 2023 23:47:47 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: VhJe-kymnVzygs7TBsreLtSACOheHHbLhkjBae75AMU0XjAWY16FkA==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 ae06b19943a6bad1c1b12b79f7339498.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Mar 2023 10:54:00 GMT
age: 80613
etag: "ac52f28a9a028ff321c60849e1524f1f97c45216"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8abcdf8b-d542-4d16-a8f7-0cb74a2f41a3.jpeg | 34.120.237.76 | 200 OK | 11 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8abcdf8b-d542-4d16-a8f7-0cb74a2f41a3.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash6c3d50cd0866b97ec301332844b8c5c3 ae5e32bdad4dfa161630dd927eb24505c9a07366 485b39a2e310ddd9ccc2796cfd306d0cfacd6d66e8ae7e42a6b84c5272d442e1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8abcdf8b-d542-4d16-a8f7-0cb74a2f41a3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10884
x-amzn-requestid: fd171e3f-9ff3-45f3-ab68-e97dcd237639
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BCb_KEUPoAMFyxA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63fda6c7-5d6df2783ca4a67625c66c43;Sampled=0
x-amzn-remapped-date: Tue, 28 Feb 2023 07:01:27 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: UcteZkH6W0WUteKNxAB5sfmAsRW89MvonC9ZY3FRsIex4Tf4C_piHg==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 548adcda884eed02304ba5d6a1d7f514.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Mar 2023 10:54:00 GMT
age: 80613
etag: "ae5e32bdad4dfa161630dd927eb24505c9a07366"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1052a57b-d107-441d-8144-5a749b38029b.jpeg | 34.120.237.76 | 200 OK | 8.3 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1052a57b-d107-441d-8144-5a749b38029b.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashcea199874a3d762ceddacfc2e93348e9 dea69d87c530dd150fbb022f49cf6bf938b8230d 00801bc7fcd1ed5523339fb920151077e1b029b9f9a24a82ea4310f544ec4866
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1052a57b-d107-441d-8144-5a749b38029b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8301
x-amzn-requestid: 4c64e7c7-9068-430d-a28e-e7f814145701
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BFviyGq_IAMFRjw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63fef944-65be55b51fff458026b65ad1;Sampled=0
x-amzn-remapped-date: Wed, 01 Mar 2023 07:05:40 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: G3n3m3bja1y4Qb8_kRUTN238timflz9ZM4EVnsAt4rw0z4z3eXxc-g==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 bb763d35677c62f9f5d9728bba884662.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Mar 2023 09:24:08 GMT
age: 86012
etag: "dea69d87c530dd150fbb022f49cf6bf938b8230d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S/content/common/js/xss.min.js | 54.230.111.15 | 200 OK | 0 B |
URL HTTP/2cdn1.codashop.com/S/content/common/js/xss.min.js IP54.230.111.15:0
GET /S/content/common/js/xss.min.js HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lw19.cdm4.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 12 Nov 2019 04:16:51 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Sun, 05 Mar 2023 08:55:41 GMT
etag: W/"4947ff982fb69173f95da79b538f254d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: vjtTozNreIYe-o9B2LyXXu_b-cd4AF5TOkxGOja-oIkz7VoGZZqJfQ==
age: 17457
X-Firefox-Spdy: h2
|
|
| lw19.cdm4.my.id/id-id/mobile-legends/ | 172.67.155.199 | 200 OK | 0 B |
URL HTTP/2lw19.cdm4.my.id/id-id/mobile-legends/ IP172.67.155.199:0
Analyzer | Verdict | Alert | openphish | Mobile Legends | | fortinet | Phishing | |
GET /id-id/mobile-legends/ HTTP/1.1
Host: lw19.cdm4.my.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Sun, 05 Mar 2023 09:17:31 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sqrR3ENjUCRUWKE7ctUwFE7A8%2BfSSxzIXekKi2i0%2BKnQacDcwktuxvWtPo8tG4sqw%2BQv1Nqb9cDDbY%2FkKvTt1FuvI3Cy4i75Lwvro%2FkgqOaTjHnRF3JH2ckhignm5bCSyOY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7a31442fda0fb4f9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S/content/common/css/jquery-ui-1.12.1.css | 54.230.111.15 | 200 OK | 0 B |
URL HTTP/2cdn1.codashop.com/S/content/common/css/jquery-ui-1.12.1.css IP54.230.111.15:0
GET /S/content/common/css/jquery-ui-1.12.1.css HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lw19.cdm4.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 20 Dec 2018 07:52:04 GMT
content-disposition: attachment
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Sun, 05 Mar 2023 08:55:41 GMT
etag: W/"c4a88ec0cb998929a670c0c58d7dc526"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: BzQ-vyWwGCYj7-DgRv-KRGWEjq_EUmsf1ixCD50w0WtA8_BFThThMw==
age: 17434
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S/content/common/js/jquery.mask.min.js | 54.230.111.15 | 200 OK | 0 B |
URL HTTP/2cdn1.codashop.com/S/content/common/js/jquery.mask.min.js IP54.230.111.15:0
GET /S/content/common/js/jquery.mask.min.js HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lw19.cdm4.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript
last-modified: Thu, 20 Dec 2018 08:04:35 GMT
content-disposition: attachment
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Sun, 05 Mar 2023 08:55:41 GMT
etag: W/"35d9db48e3112f35d81e70b98457aa42"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: BJE2QmVGt2GoBj02rFoINnfe9gYT-6-_lRfH7u2VektXpfRc5KhlzQ==
age: 21014
X-Firefox-Spdy: h2
|
|
| stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css | 188.114.99.234 | 200 OK | 0 B |
URL HTTP/2stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css IP188.114.99.234:0
GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lw19.cdm4.my.id
Connection: keep-alive
Referer: https://lw19.cdm4.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Mar 2023 09:17:32 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"269550530cc127b6aa5a35925a7de6ce"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 11/18/2022 06:18:29
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 722
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 954f989b0fbaf2b11bbe0e32d326c321
cdn-cache: HIT
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7a3144336cb20b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S2/content/common/js/payment-channel-suggestion.535f3c6f70.js | 54.230.111.15 | 200 OK | 0 B |
URL HTTP/2cdn1.codashop.com/S2/content/common/js/payment-channel-suggestion.535f3c6f70.js IP54.230.111.15:0
GET /S2/content/common/js/payment-channel-suggestion.535f3c6f70.js HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lw19.cdm4.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Fri, 04 Sep 2020 02:37:42 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Sun, 05 Mar 2023 08:55:41 GMT
etag: W/"535f3c6f7015dbae9e6b2a4987192e2b"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: y3De2HcAb787xTOUnNL4figRGQ3eKNK1BYmeUqSxy5sjB38o3q0fjw==
age: 10305
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S/content/common/css/flags.css | 54.230.111.15 | 200 OK | 0 B |
URL HTTP/2cdn1.codashop.com/S/content/common/css/flags.css IP54.230.111.15:0
GET /S/content/common/css/flags.css HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lw19.cdm4.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 20 Dec 2018 04:54:20 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Sun, 05 Mar 2023 08:55:41 GMT
etag: W/"48625f4127086c12c9db05064a6bab03"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: MOqLsVRFaU4IGq4fCT5hKrkmIdkuP1Vu3ZBJl6d7QDa_qOloqq217g==
age: 17427
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/P/airtime/w/css/airtime_v1.0a.css | 54.230.111.15 | 200 OK | 0 B |
URL HTTP/2cdn1.codashop.com/P/airtime/w/css/airtime_v1.0a.css IP54.230.111.15:0
GET /P/airtime/w/css/airtime_v1.0a.css HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lw19.cdm4.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Fri, 13 Mar 2020 03:56:02 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Sun, 05 Mar 2023 08:55:41 GMT
etag: W/"753a330f95a906499abe488e677662d3"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Vaiv_zsri7JNBFyQ-RA9a3rtV2yiAmvWug5zLHRVKicPlF1Zg40tcA==
age: 14389
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S2/content/common/css/shared-fontfaces.b6c83d3582.css | 54.230.111.15 | 200 OK | 0 B |
URL HTTP/2cdn1.codashop.com/S2/content/common/css/shared-fontfaces.b6c83d3582.css IP54.230.111.15:0
GET /S2/content/common/css/shared-fontfaces.b6c83d3582.css HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lw19.cdm4.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Sat, 04 Mar 2023 01:02:56 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: kxPaS5LY6sJDVQDF1xhGbZpQXUB6r_5x
server: AmazonS3
content-encoding: gzip
date: Sun, 05 Mar 2023 08:55:41 GMT
etag: W/"b6c83d3582430126098676cc14c0b7ae"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: cNQa1gSK6VSrwkPdfGzKQFxcjmsACp_J7aa7rgljiEn634rnWhkKDA==
age: 17041
X-Firefox-Spdy: h2
|
|
| cdn1.codashop.com/S2/content/common/js/shop-topnav2.7e1fed6bdf.js | 54.230.111.15 | 200 OK | 0 B |
URL HTTP/2cdn1.codashop.com/S2/content/common/js/shop-topnav2.7e1fed6bdf.js IP54.230.111.15:0
GET /S2/content/common/js/shop-topnav2.7e1fed6bdf.js HTTP/1.1
Host: cdn1.codashop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lw19.cdm4.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 27 Feb 2023 01:02:52 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: pbhgqVF3zwJsjTyjsIV1OReHNkmmspkh
server: AmazonS3
content-encoding: gzip
date: Sun, 05 Mar 2023 08:55:41 GMT
etag: W/"7e1fed6bdfc0657c0dedc6e6c19553fa"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Bby1QH1VzXMzpNGSgV0izax_IL7bYEmrXjx6wK0AHsNEM_22hTF6TA==
age: 21014
X-Firefox-Spdy: h2
|
|