| GET imgku.io/download/E1d2TOR3.gif |  172.67.162.223 | 200 OK | 6.8 kB |
URL imgku.io/download/E1d2TOR3.gif IP / ASN 172.67.162.223 #13335 CLOUDFLARENET Requested byhttps://cbt.e-smanpul.com/login/?web=puasbet Resource Info File typeGIF image data, version 89a, 88 x 26 First Seen2024-08-19 Last Seen2025-08-01 Times Seen59 Size6.8 kB (6838 bytes) MD50b70ede090b0603493b52ef7ab0d05b8 SHA1892d1bacbda1a89b005218e59d034c3a323a5f42 SHA25654df7e8101fe1e2d12e30679e39c81f060adfd5c879f203668bfb29d8587f507 Certificate Info IssuerGoogle Trust Services Subjectimgku.io FingerprintD2:4E:D7:8C:16:37:FE:CB:5B:0D:6E:7E:F3:10:7B:41:17:06:A4:F9 ValidityFri, 20 Jun 2025 16:01:18 GMT - Thu, 18 Sep 2025 16:59:41 GMT GET /download/E1d2TOR3.gif HTTP/1.1
Host: imgku.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cbt.e-smanpul.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 09 Jul 2025 14:27:13 GMT
content-type: image/gif
content-length: 6838
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
x-ratelimit-remaining-second: 245
x-ratelimit-limit-second: 250
ratelimit-limit: 250
ratelimit-remaining: 245
ratelimit-reset: 1
last-modified: Wed, 28 Feb 2024 14:28:51 GMT
x-rgw-object-type: Normal
etag: "0b70ede090b0603493b52ef7ab0d05b8"
x-amz-request-id: tx0000037c6d284dd33a5f4-0066d5dc98-a2b46-default
x-proxy-cache: HIT
accept-ranges: bytes
access-control-allow-origin: *
strict-transport-security: max-age=16000000; includeSubDomains; preload;
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
age: 4833
cache-control: max-age=14400
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=tJexraTUn%2B%2BWY9fXqF7vYgPNCVjYvFn%2BNLF%2FlADnkZhsv9aiYWZOiiVJglOHOQzsAREOCh1FZaNpXKo1GKligLkcjeMTtA%3D%3D"}]}
cf-ray: 95c880368a421d1a-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| GET koinbos.sgp1.cdn.digitaloceanspaces.com/slotkoin805.jpg | 172.64.145.29 | 200 OK | 495 kB |
URL koinbos.sgp1.cdn.digitaloceanspaces.com/slotkoin805.jpg IP / ASN 172.64.145.29 #13335 CLOUDFLARENET Requested byhttps://cbt.e-smanpul.com/login/?web=puasbet Resource Info File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 21.2 (Windows), datetime=2025:06:02 12:46:31], baseline, precision 8, 840x480, components 3 First Seen2025-07-09 Last Seen2025-07-09 Times Seen1 Size495 kB (494583 bytes) MD575eccb1cb199d67a7b0cf6e8efcbefe9 SHA1d2fb2b0231260215a49ba7ecdb10da031fe1e270 SHA25609b08c99c0a82c1e451bbd74460f62491593e3b1aac2d1783719bf52b1da198d Certificate Info IssuerDigiCert Inc Subject*.sgp1.cdn.digitaloceanspaces.com Fingerprint05:70:5B:97:2A:AE:13:37:C1:6F:C4:E4:52:3A:B4:FD:B7:C7:C1:93 ValidityWed, 23 Apr 2025 00:00:00 GMT - Sat, 09 May 2026 23:59:59 GMT GET /slotkoin805.jpg HTTP/1.1
Host: koinbos.sgp1.cdn.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cbt.e-smanpul.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 09 Jul 2025 14:27:15 GMT
content-type: image/jpeg
content-length: 494583
cache-control: max-age=3600
cf-bgj: h2pri
etag: "75eccb1cb199d67a7b0cf6e8efcbefe9"
last-modified: Mon, 02 Jun 2025 05:46:43 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
x-amz-request-id: tx00000519e09dc76bc098d-00683d3c2c-550f374f-sgp1b
x-do-cdn-uuid: b81d317c-9955-4df0-8300-873090fdb034
x-rgw-object-type: Normal
cf-cache-status: HIT
accept-ranges: bytes
set-cookie: __cf_bm=JRrY5DlZNYrHs5R1.yTPa5KiHD1MtIaS8XA_uK7hwXs-1752071235-1.0.1.1-NfZwbm6yt41QHv1S7D1MPb4FbrtEiXXRL2ukGG7p01IxhtF1.yGfpA3CwFxCHxndToFH4mHEbRECewVNRf6zkeIzt_9LLHeSXBMEYZJ89tA; path=/; expires=Wed, 09-Jul-25 14:57:15 GMT; domain=.digitaloceanspaces.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 95c88040d9c2be4e-CPH
X-Firefox-Spdy: h2
|
|
| GET imgku.io/download/p3yz6GsS.gif | 172.67.162.223 | 200 OK | 4.9 kB |
URL imgku.io/download/p3yz6GsS.gif IP / ASN 172.67.162.223 #13335 CLOUDFLARENET Requested byhttps://cbt.e-smanpul.com/login/?web=puasbet Resource Info File typeGIF image data, version 89a, 88 x 26 First Seen2023-07-12 Last Seen2025-08-01 Times Seen58 Size4.9 kB (4925 bytes) MD56849796fef39354a83202ec3359e86c2 SHA1f7dcd6e906879c01c14e8eeee688ed33ddb881ed SHA256d20e08d686e721b68c91fa98db34b3d850e805b58f2e74306a61dbe56b20ec1f Certificate Info IssuerGoogle Trust Services Subjectimgku.io FingerprintD2:4E:D7:8C:16:37:FE:CB:5B:0D:6E:7E:F3:10:7B:41:17:06:A4:F9 ValidityFri, 20 Jun 2025 16:01:18 GMT - Thu, 18 Sep 2025 16:59:41 GMT GET /download/p3yz6GsS.gif HTTP/1.1
Host: imgku.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cbt.e-smanpul.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 09 Jul 2025 14:27:13 GMT
content-type: image/gif
content-length: 4925
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
ratelimit-remaining: 249
ratelimit-reset: 1
x-ratelimit-remaining-second: 249
x-ratelimit-limit-second: 250
ratelimit-limit: 250
last-modified: Wed, 28 Feb 2024 13:25:51 GMT
x-rgw-object-type: Normal
etag: "6849796fef39354a83202ec3359e86c2"
x-amz-request-id: tx0000086d101f26c6bfd6d-0066d5dc88-a05d9-default
x-proxy-cache: HIT
accept-ranges: bytes
access-control-allow-origin: *
strict-transport-security: max-age=16000000; includeSubDomains; preload;
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
age: 1482
cache-control: max-age=14400
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=ZFoOp8NekSONAhnwmsvG15KRE27725dW9HFHDo4bJo5lc5oe5yl5o5jyWfSgOsKEeNksmce7jtAd%2BROfAOahOQ2439EXgw%3D%3D"}]}
cf-ray: 95c88036daa41d1a-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| GET olx.recamweek.com/OLXTOTO/GIF/promo.gif | 172.64.145.29 | 200 OK | 82 kB |
URL olx.recamweek.com/OLXTOTO/GIF/promo.gif IP / ASN 172.64.145.29 #13335 CLOUDFLARENET Requested byhttps://cbt.e-smanpul.com/login/?web=puasbet Resource Info File typeGIF image data, version 89a, 100 x 106 First Seen2024-06-02 Last Seen2025-07-21 Times Seen16 Size82 kB (81731 bytes) MD5082e16e0e9c9ec323deca73c38f7f903 SHA1c9d5139dd17b04ee8ba6e7a396fd943b7a2b719b SHA256c453eb254cc0ef839038fb65ad50c0e22145415cf0f1557e7eab606d283eda6a Certificate Info IssuerLet's Encrypt Subjectrecamweek.com FingerprintA8:73:1C:47:4F:E9:64:38:DF:A4:A3:68:D4:41:AA:69:FD:82:90:A3 ValidityMon, 30 Jun 2025 03:14:46 GMT - Sun, 28 Sep 2025 03:14:45 GMT GET /OLXTOTO/GIF/promo.gif HTTP/1.1
Host: olx.recamweek.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cbt.e-smanpul.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 09 Jul 2025 14:27:13 GMT
content-type: image/gif
content-length: 81731
last-modified: Wed, 05 Jun 2024 06:29:41 GMT
x-rgw-object-type: Normal
etag: "082e16e0e9c9ec323deca73c38f7f903"
x-amz-request-id: tx0000087de236a72581331-00684d0264-15dabfea0-fra1b
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-do-cdn-uuid: 92b56e2c-709c-40a8-b6cd-31843692c2c4
cache-control: max-age=3600
cf-cache-status: HIT
accept-ranges: bytes
set-cookie: __cf_bm=vtsyBk6SBYGE43kJQb4rYVxVn1NKYzcUT27EpQaQNHk-1752071233-1.0.1.1-K14FpHRpWH_RzGCMSl2Rfm6YadmlVzGF5tEkEN5uSlUA8Ic1Eax.QQ184wPU_rlF97yx3VnuqJQkTgVy0YVAmFIl2b1hCul9Bx936NGB7RQ; path=/; expires=Wed, 09-Jul-25 14:57:13 GMT; domain=.olx.recamweek.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 95c8803728cf9312-CPH
X-Firefox-Spdy: h2
|
|
| GET imgku.io/download/C6qsimIg.gif | 172.67.162.223 | 200 OK | 7.2 kB |
URL imgku.io/download/C6qsimIg.gif IP / ASN 172.67.162.223 #13335 CLOUDFLARENET Requested byhttps://cbt.e-smanpul.com/login/?web=puasbet Resource Info File typeGIF image data, version 89a, 88 x 26 First Seen2024-08-19 Last Seen2025-08-01 Times Seen57 Size7.2 kB (7247 bytes) MD59e4d072d0ebc5abed34b0c820122ba41 SHA167c61842937eb53ac60d4289af89e5c63b803660 SHA256dd61ebfc47ef8695510dd49fa85ffe68dad95516542d68df35b6f012784f49df Certificate Info IssuerGoogle Trust Services Subjectimgku.io FingerprintD2:4E:D7:8C:16:37:FE:CB:5B:0D:6E:7E:F3:10:7B:41:17:06:A4:F9 ValidityFri, 20 Jun 2025 16:01:18 GMT - Thu, 18 Sep 2025 16:59:41 GMT GET /download/C6qsimIg.gif HTTP/1.1
Host: imgku.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cbt.e-smanpul.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 09 Jul 2025 14:27:13 GMT
content-type: image/gif
content-length: 7247
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
ratelimit-remaining: 243
ratelimit-reset: 1
x-ratelimit-remaining-second: 243
x-ratelimit-limit-second: 250
ratelimit-limit: 250
last-modified: Wed, 28 Feb 2024 14:28:27 GMT
x-rgw-object-type: Normal
etag: "9e4d072d0ebc5abed34b0c820122ba41"
x-amz-request-id: tx00000547a0729dcf1ed63-0066d5dc90-a2b5a-default
x-proxy-cache: HIT
accept-ranges: bytes
access-control-allow-origin: *
strict-transport-security: max-age=16000000; includeSubDomains; preload;
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
age: 1482
cache-control: max-age=14400
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=%2FqRHC1bhhmBuzKpNh37bhMlvn3lQesRxuUpYL9%2FdKpQX70Oe9l0cO4mTfkb9wFMBXnUhNADhhBMCnpqeaNTUbJlVY7gZ%2FQ%3D%3D"}]}
cf-ray: 95c880366a261d1a-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| GET imgku.io/download/IP4MFef9.gif | 172.67.162.223 | 200 OK | 6.6 kB |
URL imgku.io/download/IP4MFef9.gif IP / ASN 172.67.162.223 #13335 CLOUDFLARENET Requested byhttps://cbt.e-smanpul.com/login/?web=puasbet Resource Info File typeGIF image data, version 89a, 88 x 26 First Seen2024-10-21 Last Seen2025-08-01 Times Seen54 Size6.6 kB (6599 bytes) MD544886f57ded231724a5f1b602bccd4f7 SHA1b0db73a550715261540396e0db523ac47cfde9ee SHA256ac7a5ff394ef55b464b430fc1f66f48ff86013546f1a2077b39b80ec6c364bb9 Certificate Info IssuerGoogle Trust Services Subjectimgku.io FingerprintD2:4E:D7:8C:16:37:FE:CB:5B:0D:6E:7E:F3:10:7B:41:17:06:A4:F9 ValidityFri, 20 Jun 2025 16:01:18 GMT - Thu, 18 Sep 2025 16:59:41 GMT GET /download/IP4MFef9.gif HTTP/1.1
Host: imgku.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cbt.e-smanpul.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 09 Jul 2025 14:27:13 GMT
content-type: image/gif
content-length: 6599
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
ratelimit-remaining: 244
ratelimit-reset: 1
x-ratelimit-remaining-second: 244
x-ratelimit-limit-second: 250
ratelimit-limit: 250
last-modified: Wed, 28 Feb 2024 14:29:14 GMT
x-rgw-object-type: Normal
etag: "44886f57ded231724a5f1b602bccd4f7"
x-amz-request-id: tx00000815175c010cf99b0-0066d5dc87-aa1bd-default
x-proxy-cache: HIT
accept-ranges: bytes
access-control-allow-origin: *
strict-transport-security: max-age=16000000; includeSubDomains; preload;
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
age: 4833
cache-control: max-age=14400
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=UdIY13gYFlTTYgre5yoYv0FjjY5AHzB%2FbUSPE64waru4ICi8krPyUAatsE2btjpoE9wMrPvAv%2FtI1pSrltQMGJYSF6LLcQ%3D%3D"}]}
cf-ray: 95c880368a461d1a-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| GET cdn.ampproject.org/rtv/012505300108000/v0/amp-loader-0.1.js |  142.251.9.132 | 200 OK | 13 kB |
URL cdn.ampproject.org/rtv/012505300108000/v0/amp-loader-0.1.js IP / ASN 142.251.9.132 #15169 GOOGLE Requested byhttps://cbt.e-smanpul.com/login/?web=puasbet Resource Info File typeJavaScript source, ASCII text, with very long lines (12614) First Seen2025-06-10 Last Seen2025-07-11 Times Seen539 Size13 kB (12729 bytes) MD58c0ad13fab8465acb1f0466e8210ab9e SHA1f27a3b6f5d56b405df72f585e11430561f4344d2 SHA25645371ad18ca5f8e3700664e545538f62feb01174b53aa7a97468c7034f59f2de Certificate Info IssuerGoogle Trust Services Subjectmisc-sni.google.com Fingerprint57:E9:A9:D3:AE:F2:69:8B:92:1C:DE:5A:D9:BF:67:9C:05:D6:3C:49 ValidityTue, 17 Jun 2025 20:02:07 GMT - Tue, 09 Sep 2025 20:02:06 GMT GET /rtv/012505300108000/v0/amp-loader-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cbt.e-smanpul.com
DNT: 1
Connection: keep-alive
Referer: https://cbt.e-smanpul.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 3938
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 08 Jul 2025 03:41:00 GMT
expires: Wed, 08 Jul 2026 03:41:00 GMT
cache-control: public, max-age=31536000
age: 125174
etag: "719cc9260465485c"
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| GET olx.recamweek.com/OLXTOTO/GIF/rtpslot.gif | 172.64.145.29 | 200 OK | 106 kB |
URL olx.recamweek.com/OLXTOTO/GIF/rtpslot.gif IP / ASN 172.64.145.29 #13335 CLOUDFLARENET Requested byhttps://cbt.e-smanpul.com/login/?web=puasbet Resource Info File typeGIF image data, version 89a, 100 x 106 First Seen2024-06-02 Last Seen2025-07-21 Times Seen16 Size106 kB (105900 bytes) MD59bfb18d93b9f955e3ff6691dbef4a878 SHA1d60e15fd93e65e75b3f089a5e42c7c8542b73e46 SHA25637f0a285ff93ac4caa6226db8b81bb5c565ff9482d97121f4b3dac858451b544 Certificate Info IssuerLet's Encrypt Subjectrecamweek.com FingerprintA8:73:1C:47:4F:E9:64:38:DF:A4:A3:68:D4:41:AA:69:FD:82:90:A3 ValidityMon, 30 Jun 2025 03:14:46 GMT - Sun, 28 Sep 2025 03:14:45 GMT GET /OLXTOTO/GIF/rtpslot.gif HTTP/1.1
Host: olx.recamweek.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cbt.e-smanpul.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 09 Jul 2025 14:27:13 GMT
content-type: image/gif
content-length: 105900
last-modified: Wed, 05 Jun 2024 06:29:41 GMT
x-rgw-object-type: Normal
etag: "9bfb18d93b9f955e3ff6691dbef4a878"
x-amz-request-id: tx0000032dabe6922ab7ccf-0067493954-119edcee9-fra1b
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-do-cdn-uuid: 92b56e2c-709c-40a8-b6cd-31843692c2c4
cache-control: max-age=3600
x-envoy-upstream-healthchecked-cluster:
cf-cache-status: HIT
accept-ranges: bytes
set-cookie: __cf_bm=.qkNlbvTuZqYQFd8EQ1OyiX0esJJZBBD_7FP.5jVRYs-1752071233-1.0.1.1-AujvrvsNyJQ_XdWgrmvCUO0zRtSCpbXYTiUqIyaBcJtttXINx_PsOViLukOX8jlkV.SB24nxDmw2AsGkkFSUY6N4ST7KFDOduQfwLwjzTHU; path=/; expires=Wed, 09-Jul-25 14:57:13 GMT; domain=.olx.recamweek.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 95c8803738d89312-CPH
X-Firefox-Spdy: h2
|
|
| GET olx.recamweek.com/OLXTOTO/GIF/carabermain.gif | 172.64.145.29 | 200 OK | 82 kB |
URL olx.recamweek.com/OLXTOTO/GIF/carabermain.gif IP / ASN 172.64.145.29 #13335 CLOUDFLARENET Requested byhttps://cbt.e-smanpul.com/login/?web=puasbet Resource Info File typeGIF image data, version 89a, 100 x 106 First Seen2024-06-02 Last Seen2025-07-21 Times Seen16 Size82 kB (81934 bytes) MD557688b3a70134e7335bcea1a0c4023fa SHA1d62682b1ac2f73de6d0ad235a5f65b8ecd925e09 SHA25697b6fdd9461e5251a6a8bc9521f9d6c19d4986269a6c655be4517e5a280d52ce Certificate Info IssuerLet's Encrypt Subjectrecamweek.com FingerprintA8:73:1C:47:4F:E9:64:38:DF:A4:A3:68:D4:41:AA:69:FD:82:90:A3 ValidityMon, 30 Jun 2025 03:14:46 GMT - Sun, 28 Sep 2025 03:14:45 GMT GET /OLXTOTO/GIF/carabermain.gif HTTP/1.1
Host: olx.recamweek.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cbt.e-smanpul.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 09 Jul 2025 14:27:13 GMT
content-type: image/gif
content-length: 81934
last-modified: Wed, 05 Jun 2024 06:29:41 GMT
x-rgw-object-type: Normal
etag: "57688b3a70134e7335bcea1a0c4023fa"
x-amz-request-id: tx000007eab6658d2eceae6-0067493954-119edcee9-fra1b
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-do-cdn-uuid: 92b56e2c-709c-40a8-b6cd-31843692c2c4
cache-control: max-age=3600
x-envoy-upstream-healthchecked-cluster:
cf-cache-status: REVALIDATED
accept-ranges: bytes
set-cookie: __cf_bm=M77NLEl3HHFz0nZ0JQkq1LBRVREnIZME.3s45lnYM0M-1752071233-1.0.1.1-ot2U_au61wU2JMLPVj6QZHu_kUdsrLliZLF6txo_k84Tqnc3zY5zygYzm5xJwXvhIfAY20d_xaliq0O8ctv4Vc4T1QGBWT8_cBC2Es.TW9U; path=/; expires=Wed, 09-Jul-25 14:57:13 GMT; domain=.olx.recamweek.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 95c8803738d49312-CPH
X-Firefox-Spdy: h2
|
|
| GET storage.googleapis.com/amp-slot/puncak88/Pck-bonus100.jpg | 142.251.9.207 | 200 OK | 132 kB |
URL storage.googleapis.com/amp-slot/puncak88/Pck-bonus100.jpg IP / ASN 142.251.9.207 #15169 GOOGLE Requested byhttps://cbt.e-smanpul.com/login/?web=puasbet Resource Info File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 640x300, components 3 First Seen2025-07-09 Last Seen2025-07-09 Times Seen1 Size132 kB (131712 bytes) MD5463d3589b65ab42be98cf2d21ae2f7d2 SHA1c59d4a2efe05dd37422e69391249bc2d0f8ff6a2 SHA256c1554ba67c075302947158454125896b85f640a53b89730372ac888f3ffd8931 Certificate Info IssuerGoogle Trust Services Subjectstorage.googleapis.com Fingerprint12:72:1A:CA:78:70:3D:EB:1B:38:EE:4F:C3:46:7E:B6:CA:B9:8B:48 ValidityTue, 17 Jun 2025 20:05:57 GMT - Tue, 09 Sep 2025 20:05:56 GMT GET /amp-slot/puncak88/Pck-bonus100.jpg HTTP/1.1
Host: storage.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cbt.e-smanpul.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
x-guploader-uploadid: ABgVH8-qcVLkwLt41Ji29aDB8GipjA8y6vxeQtMUNdP2XHNG9vKKkQU85LP6JICNmTSseWcC
expires: Wed, 09 Jul 2025 15:27:16 GMT
date: Wed, 09 Jul 2025 14:27:16 GMT
cache-control: public, max-age=3600
last-modified: Sat, 08 Jun 2024 04:33:53 GMT
etag: "463d3589b65ab42be98cf2d21ae2f7d2"
x-goog-generation: 1717821233507148
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 131712
x-goog-hash: crc32c=WwhPGg==, md5=Rj01ibZatCvpjPLSGuL30g==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 131712
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| GET cdn.ampproject.org/v0.js | 142.251.9.132 | 200 OK | 285 kB |
URL cdn.ampproject.org/v0.js IP / ASN 142.251.9.132 #15169 GOOGLE Requested byhttps://cbt.e-smanpul.com/login/?web=puasbet Resource Info File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (64654) First Seen2025-06-10 Last Seen2025-07-11 Times Seen733 Size285 kB (284590 bytes) MD5de0f5048bbf3c6ddcf9952ec9a66e373 SHA1b80ba655d693da823e1cc11e5438ef661167391e SHA2569aa76f8751d588428056b1d8a76a278ca9d40689f296df4a7fc629e06d7bc40b Certificate Info IssuerGoogle Trust Services Subjectmisc-sni.google.com Fingerprint57:E9:A9:D3:AE:F2:69:8B:92:1C:DE:5A:D9:BF:67:9C:05:D6:3C:49 ValidityTue, 17 Jun 2025 20:02:07 GMT - Tue, 09 Sep 2025 20:02:06 GMT GET /v0.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cbt.e-smanpul.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 73146
date: Wed, 09 Jul 2025 14:27:13 GMT
expires: Wed, 09 Jul 2025 14:27:13 GMT
cache-control: private, max-age=3000, stale-while-revalidate=1206600
etag: "20483b8aae59e838"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| GET ampmvia.com/foto/logo-mvia88.gif | 104.21.80.1 | 403 Forbidden | 0 B |
URL ampmvia.com/foto/logo-mvia88.gif IP / ASN 104.21.80.1 #13335 CLOUDFLARENET Requested byhttps://cbt.e-smanpul.com/login/?web=puasbet Resource Info File typeN/A First Seen0001-01-01 Last Seen2025-08-02 Times Seen5606065 Size0 B (0 bytes) MD5d41d8cd98f00b204e9800998ecf8427e SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709 SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Certificate Info IssuerGoogle Trust Services Subjectampmvia.com Fingerprint69:8E:0F:42:57:18:6C:26:0A:FB:4C:68:8C:BA:C3:3B:5B:D1:37:A5 ValidityThu, 12 Jun 2025 16:48:37 GMT - Wed, 10 Sep 2025 17:47:05 GMT GET /foto/logo-mvia88.gif HTTP/1.1
Host: ampmvia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cbt.e-smanpul.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
date: Wed, 09 Jul 2025 14:27:13 GMT
content-type: text/html; charset=UTF-8
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cf-mitigated: challenge
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
server-timing: chlray;desc="95c880364c8f9980"
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN, SAMEORIGIN
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
speculation-rules: "/cdn-cgi/speculation"
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=pN9xOnhUQ6vxeBP6%2BnJEIfHgBGi3KUl8xF7d8U0rVc7JgBWx2%2BWKphMcS0Iki7RVeMEIAfb6zk%2FUMyrizAhGD%2BRz30Kkh5Ubvg%3D%3D"}]}
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
content-encoding: br
server: cloudflare
cf-ray: 95c880364c8f9980-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| GET imgku.io/download/iA4CqcGO.webp | 172.67.162.223 | 200 OK | 1.5 kB |
URL imgku.io/download/iA4CqcGO.webp IP / ASN 172.67.162.223 #13335 CLOUDFLARENET Requested byhttps://cbt.e-smanpul.com/login/?web=puasbet Resource Info File typeRIFF (little-endian) data, Web/P image First Seen2023-05-06 Last Seen2025-08-01 Times Seen130 Size1.5 kB (1450 bytes) MD52353b8053907decc64f44b359ece209d SHA104e7249895d9f04bfee8e5c9f7e2eb7316298fe1 SHA2563f7fc3e4963723b9301d534230914251012b5a2db1a1b87b9f981ea5f85beaff Certificate Info IssuerGoogle Trust Services Subjectimgku.io FingerprintD2:4E:D7:8C:16:37:FE:CB:5B:0D:6E:7E:F3:10:7B:41:17:06:A4:F9 ValidityFri, 20 Jun 2025 16:01:18 GMT - Thu, 18 Sep 2025 16:59:41 GMT GET /download/iA4CqcGO.webp HTTP/1.1
Host: imgku.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cbt.e-smanpul.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 09 Jul 2025 14:27:13 GMT
content-type: image/webp
content-length: 1450
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
ratelimit-remaining: 246
ratelimit-reset: 1
x-ratelimit-remaining-second: 246
x-ratelimit-limit-second: 250
ratelimit-limit: 250
last-modified: Wed, 28 Feb 2024 14:24:42 GMT
x-rgw-object-type: Normal
etag: "2353b8053907decc64f44b359ece209d"
x-amz-request-id: tx0000018bd27f1721e7b55-0066d5dc9b-a2c6d-default
x-proxy-cache: REVALIDATED
accept-ranges: bytes
access-control-allow-origin: *
strict-transport-security: max-age=16000000; includeSubDomains; preload;
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
age: 4833
cache-control: max-age=14400
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=7noS0OfmUQpa4RFAL0wVRJFSyawi7UZ3pYhGPymDsEnjNtNeaciOYDlOJgCjYsTApV8fiHmxVC05uU7H1nrr06sJAQPy2A%3D%3D"}]}
cf-ray: 95c88036daa81d1a-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| GET imgku.io/download/2jwvo9Zh.webp | 172.67.162.223 | 200 OK | 1.2 kB |
URL imgku.io/download/2jwvo9Zh.webp IP / ASN 172.67.162.223 #13335 CLOUDFLARENET Requested byhttps://cbt.e-smanpul.com/login/?web=puasbet Resource Info File typeRIFF (little-endian) data, Web/P image First Seen2023-05-06 Last Seen2025-08-01 Times Seen120 Size1.2 kB (1192 bytes) MD5c0962baf592c0fbbe7dca5ecd1d25b9c SHA1d5d1f393fc494f8f4139e78ecf0acdefe3b29dd1 SHA256d0c2d57b187ea0297a89acafd79c8fb3dda297730e958b62cee6b07066f8c543 Certificate Info IssuerGoogle Trust Services Subjectimgku.io FingerprintD2:4E:D7:8C:16:37:FE:CB:5B:0D:6E:7E:F3:10:7B:41:17:06:A4:F9 ValidityFri, 20 Jun 2025 16:01:18 GMT - Thu, 18 Sep 2025 16:59:41 GMT GET /download/2jwvo9Zh.webp HTTP/1.1
Host: imgku.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cbt.e-smanpul.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 09 Jul 2025 14:27:13 GMT
content-type: image/webp
content-length: 1192
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
ratelimit-remaining: 249
ratelimit-reset: 1
x-ratelimit-remaining-second: 249
x-ratelimit-limit-second: 250
ratelimit-limit: 250
last-modified: Wed, 28 Feb 2024 14:23:36 GMT
x-rgw-object-type: Normal
etag: "c0962baf592c0fbbe7dca5ecd1d25b9c"
x-amz-request-id: tx000008b197a6fbf06ccf3-0066d5dc94-a2bb4-default
x-proxy-cache: HIT
accept-ranges: bytes
access-control-allow-origin: *
strict-transport-security: max-age=16000000; includeSubDomains; preload;
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
age: 6646
cache-control: max-age=14400
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=SnJCgSpVkSln8vmvnONd5QHzTs2AQcdTdpPgyyD16VCyp4L6%2F3q92WS2lYhGqKkGy4ZgNsZu4Ebtoz7xuv%2FMLspLKj%2BeLg%3D%3D"}]}
cf-ray: 95c880368a491d1a-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| GET imgku.io/download/OWegqDow.gif | 172.67.162.223 | 200 OK | 6.8 kB |
URL imgku.io/download/OWegqDow.gif IP / ASN 172.67.162.223 #13335 CLOUDFLARENET Requested byhttps://cbt.e-smanpul.com/login/?web=puasbet Resource Info File typeGIF image data, version 89a, 88 x 26 First Seen2024-10-21 Last Seen2025-08-01 Times Seen52 Size6.8 kB (6799 bytes) MD5a423678a68a5806ee5d58872a6d589e1 SHA1189c1fcd80373a061c19dbdbd60e9b7cce57ca15 SHA256be7c84ace86252e8a3e7cf15cc48f0fdb9bdda080bab9fdaca933a0d0c2254f9 Certificate Info IssuerGoogle Trust Services Subjectimgku.io FingerprintD2:4E:D7:8C:16:37:FE:CB:5B:0D:6E:7E:F3:10:7B:41:17:06:A4:F9 ValidityFri, 20 Jun 2025 16:01:18 GMT - Thu, 18 Sep 2025 16:59:41 GMT GET /download/OWegqDow.gif HTTP/1.1
Host: imgku.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cbt.e-smanpul.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 09 Jul 2025 14:27:13 GMT
content-type: image/gif
content-length: 6799
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
x-ratelimit-remaining-second: 244
x-ratelimit-limit-second: 250
ratelimit-limit: 250
ratelimit-remaining: 244
ratelimit-reset: 1
last-modified: Wed, 28 Feb 2024 14:26:25 GMT
x-rgw-object-type: Normal
etag: "a423678a68a5806ee5d58872a6d589e1"
x-amz-request-id: tx0000095cf8432fea4b4f3-0066d5dc8d-a2bb4-default
x-proxy-cache: HIT
accept-ranges: bytes
access-control-allow-origin: *
strict-transport-security: max-age=16000000; includeSubDomains; preload;
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
age: 4833
cache-control: max-age=14400
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=hB2ITEYR2ofyC8F4CyWkNuh2mVYeFTN1NwAM1vNDQRyysnMVTmS%2F%2Fpaj6jr%2FlGjynHFbJH0WSmqBmDOFh2o%2BAA7pWq7MDw%3D%3D"}]}
cf-ray: 95c880366a211d1a-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| GET cbt.e-smanpul.com/images/toga.png |  181.215.78.237 | 200 OK | 40 kB |
URL cbt.e-smanpul.com/images/toga.png IP / ASN 181.215.78.237 #47583 Hostinger International Limited Requested byhttps://cbt.e-smanpul.com/login/?web=puasbet Resource Info File typePNG image data, 512 x 513, 8-bit/color RGBA, non-interlaced First Seen2025-07-09 Last Seen2025-07-09 Times Seen1 Size40 kB (39596 bytes) MD54470de82ae969db865ea63934e610ffb SHA1c634229ee5d1d6ee0f189a7fcf43d8e099484965 SHA256196c8c17b531ab536e3546cc393002e64004e4e49b583a426591e0b0476a0db2 Certificate Info IssuerLet's Encrypt Subjectcbt.e-smanpul.com FingerprintDB:84:61:58:8D:2F:22:B0:BF:54:A7:00:43:5E:BA:1E:4E:5C:D5:4B ValiditySun, 29 Jun 2025 18:17:56 GMT - Sat, 27 Sep 2025 18:17:55 GMT GET /images/toga.png HTTP/1.1
Host: cbt.e-smanpul.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cbt.e-smanpul.com/login/?web=puasbet
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 09 Jul 2025 14:27:15 GMT
Content-Type: image/png
Content-Length: 39596
Last-Modified: Mon, 10 Jun 2024 06:33:49 GMT
Connection: keep-alive
Keep-Alive: timeout=2
ETag: "66669e4d-9aac"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
|
|
| GET cbt.e-smanpul.com/login/?web=puasbet | 181.215.78.237 | 200 OK | 92 kB |
URL cbt.e-smanpul.com/login/?web=puasbet IP / ASN 181.215.78.237 #47583 Hostinger International Limited Resource Info File typeHTML document, ASCII text, with CRLF line terminators First Seen2025-07-09 Last Seen2025-07-09 Times Seen1 Size92 kB (91601 bytes) MD5c6c6b9b74b0d71068eb39febd416be46 SHA1a1adddf47a1035db81051a08b89e5500ca2acbb2 SHA25677fdeba7cad5c0c8d255e2eff586314e0ecae95e1c6fca27796d7feaee531c51 Certificate Info IssuerLet's Encrypt Subjectcbt.e-smanpul.com FingerprintDB:84:61:58:8D:2F:22:B0:BF:54:A7:00:43:5E:BA:1E:4E:5C:D5:4B ValiditySun, 29 Jun 2025 18:17:56 GMT - Sat, 27 Sep 2025 18:17:55 GMT GET /login/?web=puasbet HTTP/1.1
Host: cbt.e-smanpul.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 09 Jul 2025 14:27:12 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=2
Vary: Accept-Encoding
X-Powered-By: PHP/8.0.30
Content-Encoding: gzip
|
|
| GET olx.recamweek.com/OLXTOTO/GIF/buktijp.gif | 172.64.145.29 | 200 OK | 101 kB |
URL olx.recamweek.com/OLXTOTO/GIF/buktijp.gif IP / ASN 172.64.145.29 #13335 CLOUDFLARENET Requested byhttps://cbt.e-smanpul.com/login/?web=puasbet Resource Info File typeGIF image data, version 89a, 100 x 106 First Seen2024-06-02 Last Seen2025-07-21 Times Seen16 Size101 kB (100781 bytes) MD5363918110190c3d6f55409166776dd8e SHA1d671062760ef050ec6ee87625235bce855f703f7 SHA256af979dec1f85ba5273bef696a2d275b1d338bc966b4450a11927feee56543f96 Certificate Info IssuerLet's Encrypt Subjectrecamweek.com FingerprintA8:73:1C:47:4F:E9:64:38:DF:A4:A3:68:D4:41:AA:69:FD:82:90:A3 ValidityMon, 30 Jun 2025 03:14:46 GMT - Sun, 28 Sep 2025 03:14:45 GMT GET /OLXTOTO/GIF/buktijp.gif HTTP/1.1
Host: olx.recamweek.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cbt.e-smanpul.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 09 Jul 2025 14:27:13 GMT
content-type: image/gif
content-length: 100781
last-modified: Wed, 05 Jun 2024 06:29:41 GMT
x-rgw-object-type: Normal
etag: "363918110190c3d6f55409166776dd8e"
x-amz-request-id: tx000008cdf51e87f7a02bf-006799ae4c-12b9e856c-fra1b
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-do-cdn-uuid: 92b56e2c-709c-40a8-b6cd-31843692c2c4
cache-control: max-age=3600
x-envoy-upstream-healthchecked-cluster:
cf-cache-status: REVALIDATED
accept-ranges: bytes
set-cookie: __cf_bm=m0QvGg9tC.axnhdvm.dAVIoJQRlFvdwc1711UAhjB1Y-1752071233-1.0.1.1-8hCeBWWoCgL4fxQVBPV2mh2NpIEGjMS2yFp9qshnntSybCtxTzH9ppvn7hsR54XHgs_MO4PiNjyW7E137xcE.xsYpHXIFLpaRmpVib_hiA0; path=/; expires=Wed, 09-Jul-25 14:57:13 GMT; domain=.olx.recamweek.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 95c8803718aa9312-CPH
X-Firefox-Spdy: h2
|
|
| GET imgku.io/download/lp5gBdXQ.gif | 172.67.162.223 | 200 OK | 6.4 kB |
URL imgku.io/download/lp5gBdXQ.gif IP / ASN 172.67.162.223 #13335 CLOUDFLARENET Requested byhttps://cbt.e-smanpul.com/login/?web=puasbet Resource Info File typeGIF image data, version 89a, 88 x 26 First Seen2024-08-19 Last Seen2025-08-01 Times Seen58 Size6.4 kB (6376 bytes) MD50637f31ea2ff4dce02d1a92914121878 SHA1c8fcc84068e07ee4791cecebc4a562aab55791a7 SHA256ac89d8b42b3aecb62b5e7faad78192789cff10e7f83bfc4a02e441c07b5121ff Certificate Info IssuerGoogle Trust Services Subjectimgku.io FingerprintD2:4E:D7:8C:16:37:FE:CB:5B:0D:6E:7E:F3:10:7B:41:17:06:A4:F9 ValidityFri, 20 Jun 2025 16:01:18 GMT - Thu, 18 Sep 2025 16:59:41 GMT GET /download/lp5gBdXQ.gif HTTP/1.1
Host: imgku.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cbt.e-smanpul.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 09 Jul 2025 14:27:13 GMT
content-type: image/gif
content-length: 6376
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
x-ratelimit-remaining-second: 242
x-ratelimit-limit-second: 250
ratelimit-limit: 250
ratelimit-remaining: 242
ratelimit-reset: 1
last-modified: Wed, 28 Feb 2024 14:27:58 GMT
x-rgw-object-type: Normal
etag: "0637f31ea2ff4dce02d1a92914121878"
x-amz-request-id: tx000008cdac3a9295e65df-0066d5dc84-a0601-default
x-proxy-cache: HIT
accept-ranges: bytes
access-control-allow-origin: *
strict-transport-security: max-age=16000000; includeSubDomains; preload;
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
age: 4833
cache-control: max-age=14400
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=rkE8yTxmF7LCb7raMjf%2Fjxd3mA9JHD6IcDPFy7jcjYKDGUPMMp9B68NgXlLKpcFzUTR7uHFm7iOX0UrEk8XfUPN%2F0iZACw%3D%3D"}]}
cf-ray: 95c880366a241d1a-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| GET cbt.e-smanpul.com/images/toga.png | 181.215.78.237 | 200 OK | 40 kB |
URL cbt.e-smanpul.com/images/toga.png IP / ASN 181.215.78.237 #47583 Hostinger International Limited Requested byhttps://cbt.e-smanpul.com/login/?web=puasbet Resource Info File typePNG image data, 512 x 513, 8-bit/color RGBA, non-interlaced First Seen2025-07-09 Last Seen2025-07-09 Times Seen1 Size40 kB (39596 bytes) MD54470de82ae969db865ea63934e610ffb SHA1c634229ee5d1d6ee0f189a7fcf43d8e099484965 SHA256196c8c17b531ab536e3546cc393002e64004e4e49b583a426591e0b0476a0db2 Certificate Info IssuerLet's Encrypt Subjectcbt.e-smanpul.com FingerprintDB:84:61:58:8D:2F:22:B0:BF:54:A7:00:43:5E:BA:1E:4E:5C:D5:4B ValiditySun, 29 Jun 2025 18:17:56 GMT - Sat, 27 Sep 2025 18:17:55 GMT GET /images/toga.png HTTP/1.1
Host: cbt.e-smanpul.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cbt.e-smanpul.com/login/?web=puasbet
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 09 Jul 2025 14:27:15 GMT
Content-Type: image/png
Content-Length: 39596
Last-Modified: Mon, 10 Jun 2024 06:33:49 GMT
Connection: keep-alive
Keep-Alive: timeout=2
ETag: "66669e4d-9aac"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
|
|
| GET i.postimg.cc/x8sftvM9/channel-art-copy.jpg |  46.105.222.162 | 200 OK | 356 kB |
URL i.postimg.cc/x8sftvM9/channel-art-copy.jpg IP / ASN 46.105.222.162 #16276 OVH SAS Requested byhttps://cbt.e-smanpul.com/login/?web=puasbet Resource Info File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=1440, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=2560], progressive, precision 8, 1280x720, components 3 First Seen2025-07-09 Last Seen2025-07-09 Times Seen1 Size356 kB (355877 bytes) MD531610a86ba91469555f9fdf6513673a7 SHA1b2dcdb046d8af74f476f184a4bc1e4cc4d1a060c SHA2569603f1ed7b55e2dbbe261ec32cdeddd1adce900d678f95a2c15ea3e973a2091f Certificate Info IssuerLet's Encrypt Subjectpostimg.cc Fingerprint5F:74:2E:AD:69:70:DF:A9:48:71:87:9D:35:E2:54:DE:CC:91:9E:3C ValidityWed, 18 Jun 2025 01:10:03 GMT - Tue, 16 Sep 2025 01:10:02 GMT GET /x8sftvM9/channel-art-copy.jpg HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cbt.e-smanpul.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 09 Jul 2025 14:27:14 GMT
content-type: image/jpeg
content-length: 355877
last-modified: Mon, 14 Oct 2024 18:07:53 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| GET i.imgur.com/cSzidL9.jpeg | 199.232.196.193 | 200 OK | 535 kB |
URL i.imgur.com/cSzidL9.jpeg IP / ASN 199.232.196.193 #54113 FASTLY Requested byhttps://cbt.e-smanpul.com/login/?web=puasbet Resource Info File typeJPEG image data, baseline, precision 8, 1920x1042, components 3 First Seen2025-07-09 Last Seen2025-07-09 Times Seen1 Size535 kB (534885 bytes) MD5f2d76fc8f7569228dbd1a6a67cdf9332 SHA1d56d87f4c8ed07f6b88ff30fc6995751357292bf SHA2560f0818dbfaf48bdd1abb998610addd71a94dd261a3ba04d4323c810655c573ca Certificate Info IssuerSectigo Limited Subject*.imgur.com FingerprintE4:72:56:8F:0D:0E:0B:E1:47:1E:79:39:7A:0F:AB:05:30:AF:2A:2D ValidityWed, 29 Jan 2025 00:00:00 GMT - Sat, 14 Feb 2026 23:59:59 GMT GET /cSzidL9.jpeg HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cbt.e-smanpul.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
last-modified: Wed, 09 Jul 2025 13:48:31 GMT
etag: "f2d76fc8f7569228dbd1a6a67cdf9332"
x-amz-server-side-encryption: AES256
x-amz-cf-pop: IAD89-P1
x-amz-cf-id: DBYpisskBM_JoedmomEibUB8x82ri7dJoR_aW3jtc2EZ59gwoJcSbw==
cache-control: public, max-age=31536000
accept-ranges: bytes
age: 2322
date: Wed, 09 Jul 2025 14:27:13 GMT
x-served-by: cache-iad-kiad7000063-IAD, cache-hel1410029-HEL
x-cache: Miss from cloudfront, HIT, MISS
x-cache-hits: 5, 0
x-timer: S1752071233.164442,VS0,VE103
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 534885
X-Firefox-Spdy: h2
|
|
| GET imgku.io/download/kLsjJfzl.gif | 172.67.162.223 | 200 OK | 8.2 kB |
URL imgku.io/download/kLsjJfzl.gif IP / ASN 172.67.162.223 #13335 CLOUDFLARENET Requested byhttps://cbt.e-smanpul.com/login/?web=puasbet Resource Info File typeGIF image data, version 89a, 88 x 26 First Seen2024-08-19 Last Seen2025-08-01 Times Seen56 Size8.2 kB (8163 bytes) MD507cfad93a51e69a2018577ecc67b3b60 SHA174f44b2bb8019867456add8499274724ea880ea4 SHA256b252e06ecd8c4d8a4174596775282baab766bb257b6711930ae91adecadcb18a Certificate Info IssuerGoogle Trust Services Subjectimgku.io FingerprintD2:4E:D7:8C:16:37:FE:CB:5B:0D:6E:7E:F3:10:7B:41:17:06:A4:F9 ValidityFri, 20 Jun 2025 16:01:18 GMT - Thu, 18 Sep 2025 16:59:41 GMT GET /download/kLsjJfzl.gif HTTP/1.1
Host: imgku.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cbt.e-smanpul.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 09 Jul 2025 14:27:13 GMT
content-type: image/gif
content-length: 8163
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
x-ratelimit-remaining-second: 240
x-ratelimit-limit-second: 250
ratelimit-limit: 250
ratelimit-remaining: 240
ratelimit-reset: 1
last-modified: Wed, 28 Feb 2024 14:25:04 GMT
x-rgw-object-type: Normal
etag: "07cfad93a51e69a2018577ecc67b3b60"
x-amz-request-id: tx00000d81ee402c79ee00a-0066d5dc86-a058e-default
x-proxy-cache: HIT
accept-ranges: bytes
access-control-allow-origin: *
strict-transport-security: max-age=16000000; includeSubDomains; preload;
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
age: 1482
cache-control: max-age=14400
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=gDaMhrMaW283%2Br3kmVfwScpTczawGbgCVJJbBlhT18NGtFvj%2B7HjdUISGqFy1eSBqNKgtteQgHkAp21mhmWs%2Fp6iIZXMig%3D%3D"}]}
cf-ray: 95c8803659fb1d1a-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| GET olx.recamweek.com/OLXTOTO/GIF/prediksitogel.gif | 172.64.145.29 | 200 OK | 95 kB |
URL olx.recamweek.com/OLXTOTO/GIF/prediksitogel.gif IP / ASN 172.64.145.29 #13335 CLOUDFLARENET Requested byhttps://cbt.e-smanpul.com/login/?web=puasbet Resource Info File typeGIF image data, version 89a, 100 x 106 First Seen2024-06-02 Last Seen2025-07-21 Times Seen16 Size95 kB (94969 bytes) MD541b66a6e94999fa588d538106da6e2e7 SHA15fdf87e3299f5bee38ae2c72c706a99ea7ba36ea SHA256e6bb66b1b61f512bc1ebe80d50c4530d92f79c8b8fbade8247ceac1dff3b126c Certificate Info IssuerLet's Encrypt Subjectrecamweek.com FingerprintA8:73:1C:47:4F:E9:64:38:DF:A4:A3:68:D4:41:AA:69:FD:82:90:A3 ValidityMon, 30 Jun 2025 03:14:46 GMT - Sun, 28 Sep 2025 03:14:45 GMT GET /OLXTOTO/GIF/prediksitogel.gif HTTP/1.1
Host: olx.recamweek.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cbt.e-smanpul.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 09 Jul 2025 14:27:13 GMT
content-type: image/gif
content-length: 94969
last-modified: Wed, 05 Jun 2024 06:29:41 GMT
x-rgw-object-type: Normal
etag: "41b66a6e94999fa588d538106da6e2e7"
x-amz-request-id: tx00000de5eb5543e2e1c82-0067827ca3-12680a1b7-fra1b
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-do-cdn-uuid: 92b56e2c-709c-40a8-b6cd-31843692c2c4
cache-control: max-age=3600
x-envoy-upstream-healthchecked-cluster:
cf-cache-status: HIT
accept-ranges: bytes
set-cookie: __cf_bm=g.lpvw.PQn0BhDQOhKsRS8k3g4XJ5WUfH.HlOP_KRW0-1752071233-1.0.1.1-dBH9wZkVXQtB8.Q2VUfL7fUrpwPZ05hNYKP4KU20qiivjdxT88KY24NtGpy2XxV0rcpvhNaj7LbMnNCCggnimUUQ0SHk7ZXq07vP7dLnhgE; path=/; expires=Wed, 09-Jul-25 14:57:13 GMT; domain=.olx.recamweek.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 95c88036f86d9312-CPH
X-Firefox-Spdy: h2
|
|
| GET imgku.io/download/0qrcKmfO.gif | 172.67.162.223 | 200 OK | 7.5 kB |
URL imgku.io/download/0qrcKmfO.gif IP / ASN 172.67.162.223 #13335 CLOUDFLARENET Requested byhttps://cbt.e-smanpul.com/login/?web=puasbet Resource Info File typeGIF image data, version 89a, 88 x 26 First Seen2024-10-21 Last Seen2025-08-01 Times Seen54 Size7.5 kB (7476 bytes) MD55f9ab3c0971f7541decdf345dcd2af32 SHA16986d2fb246d8cc22f1adb7434eb750e271fe339 SHA25618da0ea9d72ebe56ebb6f228e78e6932b5b2f96ec4a0c0a572004bf08968f6db Certificate Info IssuerGoogle Trust Services Subjectimgku.io FingerprintD2:4E:D7:8C:16:37:FE:CB:5B:0D:6E:7E:F3:10:7B:41:17:06:A4:F9 ValidityFri, 20 Jun 2025 16:01:18 GMT - Thu, 18 Sep 2025 16:59:41 GMT GET /download/0qrcKmfO.gif HTTP/1.1
Host: imgku.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cbt.e-smanpul.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 09 Jul 2025 14:27:13 GMT
content-type: image/gif
content-length: 7476
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
x-ratelimit-remaining-second: 237
x-ratelimit-limit-second: 250
ratelimit-limit: 250
ratelimit-remaining: 237
ratelimit-reset: 1
last-modified: Wed, 28 Feb 2024 14:25:59 GMT
x-rgw-object-type: Normal
etag: "5f9ab3c0971f7541decdf345dcd2af32"
x-amz-request-id: tx00000b07af683efb3905e-0066d5dc88-a5038-default
x-proxy-cache: HIT
accept-ranges: bytes
access-control-allow-origin: *
strict-transport-security: max-age=16000000; includeSubDomains; preload;
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
age: 6650
cache-control: max-age=14400
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=MswH%2Fk0LZWkUE%2Fhgs9pbR7jC8aJyXM%2FxiK5EYlry9mwEzf%2BI2BuUWHZPQd2YyUctXZQ9ZzbOpXl9yAmLr6aKJyZswrCyWQ%3D%3D"}]}
cf-ray: 95c88036aa691d1a-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| GET imgku.io/download/pV5O8EN9.gif | 172.67.162.223 | 200 OK | 6.8 kB |
URL imgku.io/download/pV5O8EN9.gif IP / ASN 172.67.162.223 #13335 CLOUDFLARENET Requested byhttps://cbt.e-smanpul.com/login/?web=puasbet Resource Info File typeGIF image data, version 89a, 88 x 26 First Seen2024-10-21 Last Seen2025-08-01 Times Seen55 Size6.8 kB (6768 bytes) MD540b39a4998780c63e3cb1b3852d9e538 SHA1af4dfec84ae428fe8973f9a0f33806969a60d092 SHA256a68349de8e566fcc9e873826e1ac289c98348a13b9bccd2ca9f5da1cb3e65923 Certificate Info IssuerGoogle Trust Services Subjectimgku.io FingerprintD2:4E:D7:8C:16:37:FE:CB:5B:0D:6E:7E:F3:10:7B:41:17:06:A4:F9 ValidityFri, 20 Jun 2025 16:01:18 GMT - Thu, 18 Sep 2025 16:59:41 GMT GET /download/pV5O8EN9.gif HTTP/1.1
Host: imgku.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cbt.e-smanpul.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 09 Jul 2025 14:27:13 GMT
content-type: image/gif
content-length: 6768
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
x-ratelimit-remaining-second: 249
x-ratelimit-limit-second: 250
ratelimit-limit: 250
ratelimit-remaining: 249
ratelimit-reset: 1
last-modified: Wed, 28 Feb 2024 14:26:48 GMT
x-rgw-object-type: Normal
etag: "40b39a4998780c63e3cb1b3852d9e538"
x-amz-request-id: tx00000029c4717b98dd79e-0066d5dc85-a2c6d-default
x-proxy-cache: HIT
accept-ranges: bytes
access-control-allow-origin: *
strict-transport-security: max-age=16000000; includeSubDomains; preload;
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
age: 4833
cache-control: max-age=14400
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Xrt5xap01sbgpfha8gdxnQ4BgA0w0UjQmwX36aX59tiRon3voa9Bv%2B6LGczILoKgUmfqE6oTL3SdW71dX6FYHjE9MSisSA%3D%3D"}]}
cf-ray: 95c880365a0e1d1a-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| GET imgku.io/download/oflpF6yT.gif | 172.67.162.223 | 200 OK | 9.0 kB |
URL imgku.io/download/oflpF6yT.gif IP / ASN 172.67.162.223 #13335 CLOUDFLARENET Requested byhttps://cbt.e-smanpul.com/login/?web=puasbet Resource Info File typeGIF image data, version 89a, 88 x 26 First Seen2024-08-19 Last Seen2025-08-01 Times Seen38 Size9.0 kB (9043 bytes) MD5c57032ded1b000438e4a003c05b923fb SHA13899560673e423c865cf8c6a4b76dcc37e03c238 SHA256464adacd3a9731353bd3b88cd74a5cbc9095a4ea140312e8d4f4822244f2c5d9 Certificate Info IssuerGoogle Trust Services Subjectimgku.io FingerprintD2:4E:D7:8C:16:37:FE:CB:5B:0D:6E:7E:F3:10:7B:41:17:06:A4:F9 ValidityFri, 20 Jun 2025 16:01:18 GMT - Thu, 18 Sep 2025 16:59:41 GMT GET /download/oflpF6yT.gif HTTP/1.1
Host: imgku.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cbt.e-smanpul.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 09 Jul 2025 14:27:13 GMT
content-type: image/gif
content-length: 9043
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
x-ratelimit-remaining-second: 248
x-ratelimit-limit-second: 250
ratelimit-limit: 250
ratelimit-remaining: 248
ratelimit-reset: 1
last-modified: Wed, 28 Feb 2024 14:19:25 GMT
x-rgw-object-type: Normal
etag: "c57032ded1b000438e4a003c05b923fb"
x-amz-request-id: tx00000f368fe3696732b10-0066d5dc8c-aa19f-default
x-proxy-cache: HIT
accept-ranges: bytes
access-control-allow-origin: *
strict-transport-security: max-age=16000000; includeSubDomains; preload;
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
age: 1482
cache-control: max-age=14400
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=SN5d%2BksymbhWyJA3aJr1OOiQEvH8Jw7i9dvs%2FX21Ma9onnSFQrYgJCd9AGsJFqQbyDkaHcFgwyrqjWa7YBucKfm4W8ROMQ%3D%3D"}]}
cf-ray: 95c88036ca961d1a-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| GET imgku.io/download/76xrFlfA.gif | 172.67.162.223 | 200 OK | 5.9 kB |
URL imgku.io/download/76xrFlfA.gif IP / ASN 172.67.162.223 #13335 CLOUDFLARENET Requested byhttps://cbt.e-smanpul.com/login/?web=puasbet Resource Info File typeGIF image data, version 89a, 88 x 26 First Seen2024-01-03 Last Seen2025-08-01 Times Seen59 Size5.9 kB (5921 bytes) MD51ba19e9e4a6627d45955682458569197 SHA12321ceb93fac4c4ee8b1d31f7096ad45457afca6 SHA256b4a4df87d3e52a00e193c7bc4b3d8e734ce8624904a3a38d977e76285c39628f Certificate Info IssuerGoogle Trust Services Subjectimgku.io FingerprintD2:4E:D7:8C:16:37:FE:CB:5B:0D:6E:7E:F3:10:7B:41:17:06:A4:F9 ValidityFri, 20 Jun 2025 16:01:18 GMT - Thu, 18 Sep 2025 16:59:41 GMT GET /download/76xrFlfA.gif HTTP/1.1
Host: imgku.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cbt.e-smanpul.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 09 Jul 2025 14:27:13 GMT
content-type: image/gif
content-length: 5921
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
x-ratelimit-remaining-second: 244
x-ratelimit-limit-second: 250
ratelimit-limit: 250
ratelimit-remaining: 244
ratelimit-reset: 1
last-modified: Wed, 28 Feb 2024 14:29:34 GMT
x-rgw-object-type: Normal
etag: "1ba19e9e4a6627d45955682458569197"
x-amz-request-id: tx000004f10bc406b2cc3d7-0066d5dc8d-a2b46-default
x-proxy-cache: HIT
accept-ranges: bytes
access-control-allow-origin: *
strict-transport-security: max-age=16000000; includeSubDomains; preload;
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
age: 1482
cache-control: max-age=14400
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=8%2BbRTFlAopFn%2BZxUAayzHv2423FUXe7TETmWj7qfGGnTbwnW8Pac0Q0UPxhrqdf2yWGGxeqi4WSXX157IqhTP63PhB2ueA%3D%3D"}]}
cf-ray: 95c880368a471d1a-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| GET cdn.ampproject.org/v0/amp-carousel-0.2.js | 142.251.9.132 | 200 OK | 34 kB |
URL cdn.ampproject.org/v0/amp-carousel-0.2.js IP / ASN 142.251.9.132 #15169 GOOGLE Requested byhttps://cbt.e-smanpul.com/login/?web=puasbet Resource Info File typeJavaScript source, ASCII text, with very long lines (33740) First Seen2025-06-10 Last Seen2025-07-09 Times Seen68 Size34 kB (33857 bytes) MD587327c646d2433b0b36db430a2b9ff87 SHA14a233b5580b33eded55814a71780be6b9aaf52fe SHA2566ff9f2a771d3e0ad691e1d1fb9fd7e29ee347e4a8753717767339ffae7001a3e Certificate Info IssuerGoogle Trust Services Subjectmisc-sni.google.com Fingerprint57:E9:A9:D3:AE:F2:69:8B:92:1C:DE:5A:D9:BF:67:9C:05:D6:3C:49 ValidityTue, 17 Jun 2025 20:02:07 GMT - Tue, 09 Sep 2025 20:02:06 GMT GET /v0/amp-carousel-0.2.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cbt.e-smanpul.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 9592
date: Wed, 09 Jul 2025 14:27:13 GMT
expires: Wed, 09 Jul 2025 14:27:13 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "32ced30a482d48f3"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|