| cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.2/css/all.min.css | 104.17.24.14 | 200 OK | 10 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.2/css/all.min.css IP104.17.24.14:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (59158) Hashc4af24ce595437830af0a401897698b2 06b7f92dd894a9edb0aeb9d040b489460ecff593 d1fb8d8337cd22568295b0ed998c85c58f0b4cd083af0b0db21cb0af80002f2d
GET /ajax/libs/font-awesome/5.15.2/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 27 Mar 2024 05:19:22 GMT
content-type: text/css; charset=utf-8
content-length: 10472
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5fff7431-e7d0"
last-modified: Wed, 13 Jan 2021 22:29:05 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1042781
expires: Mon, 17 Mar 2025 05:19:22 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lkJeWgZQNXYNJ3yk0UHeqJap6umzJBLfED%2F1StpWreu91ERYNVAEqR8kjhIUnidKep6gpdPbDzwkGSjHVmIk54e26LfmjSHvDV6w1aAe%2FK4Gto6ApaIdwOkHPIm9Bm19RjAmb86f"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 86acecd3da9b5690-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css | 104.17.24.14 | 200 OK | 5.8 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css IP104.17.24.14:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hashe9365fe85b7e4db79a87015e52c3db6c 2e2b5eb6e08f0f3d11fe0ada97c962a23ba6a0d9 dec3e9f0190a504ed0c8f4a5e957c107206ba106cac4a1bbb6cbac6369a16d56
GET /ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 27 Mar 2024 05:19:22 GMT
content-type: text/css; charset=utf-8
content-length: 5845
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ed9-1149f"
last-modified: Mon, 04 May 2020 16:12:09 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 380111
expires: Mon, 17 Mar 2025 05:19:22 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GL2hf1QklwvDfwOTwXzdEB9ES%2F%2BNtfl5EzqNj6XiTvxkgVgzBX7S8hY1zBYkEnLPwYlzRhxQKBMMQ9Ka9KuzOKaEVltSwMX8dg2E4Ds4sZvAqwP8SCX4NhvdXQZ1lDltRc2cTNED"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 86acecd3eaa95690-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/npm/bootstrap-icons@1.8.1/font/bootstrap-icons.css | 151.101.129.229 | 200 OK | 11 kB |
URL GET HTTP/2cdn.jsdelivr.net/npm/bootstrap-icons@1.8.1/font/bootstrap-icons.css IP151.101.129.229:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
Hash79877fb82de8ca50845081e3c9a201c5 4f6ea69c0e03431ffa1a097a45453b5b3b246d8b af35cc6aba34e5005de77099dfa72d4c1a7715d28ddcec343f48031dc8cb08bc
GET /npm/bootstrap-icons@1.8.1/font/bootstrap-icons.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 1.8.1
x-jsd-version-type: version
etag: W/"13a7e-T26mnA4DQx/6Ggl6RUU7WzskbYs"
content-encoding: br
accept-ranges: bytes
date: Wed, 27 Mar 2024 05:19:22 GMT
age: 121644
x-served-by: cache-fra-etou8220090-FRA, cache-hel1410028-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 10883
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js | 104.17.24.14 | 200 OK | 28 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js IP104.17.24.14:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hash8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e
GET /ajax/libs/jquery/3.6.0/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://md1td.arach4n.biz.id
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 27 Mar 2024 05:19:22 GMT
content-type: application/javascript; charset=utf-8
content-length: 27938
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "603e8adc-15d9d"
last-modified: Tue, 02 Mar 2021 18:58:36 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1042269
expires: Mon, 17 Mar 2025 05:19:22 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EZZWNFS1Mm3RrytTuyRoSbD6hdjv1bP5%2BYzEtcJ7E%2B42NJQfH489BbGd4Hr9FQ9mznq1DdQp8oAQE3cwydzyVzTOLnOCAfEyxDB6G7PFxlFzLRXtjXAbBzKk4X8R1wG%2FbUjS%2BqOS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 86acecd41ac45690-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/gh/gowebid/assets@main/go_login/facebook_white.png | 151.101.129.229 | 200 OK | 29 kB |
URL GET HTTP/2cdn.jsdelivr.net/gh/gowebid/assets@main/go_login/facebook_white.png IP151.101.129.229:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typePNG image data, 604 x 158, 8-bit/color RGBA, non-interlaced Hash74190b93fc4f5d88f0c8e6411ba20bd8 89ce2ecb660a90b8e6ed1b335443d7767c59f28a 092a3cd5f86b3f039feefdeb86694cd16ae545af214cfda614bdbbe2d1bde401
GET /gh/gowebid/assets@main/go_login/facebook_white.png HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: image/png
x-jsd-version: main
x-jsd-version-type: branch
etag: W/"7075-ic4uy2YKkLjm7RszVEPXdnxZ8oo"
accept-ranges: bytes
date: Wed, 27 Mar 2024 05:19:22 GMT
age: 17231
x-served-by: cache-fra-etou8220127-FRA, cache-hel1410028-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 28789
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/gh/gowebid/assets@main/go_login/vk.webp | 151.101.129.229 | 200 OK | 1.6 kB |
URL GET HTTP/2cdn.jsdelivr.net/gh/gowebid/assets@main/go_login/vk.webp IP151.101.129.229:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeRIFF (little-endian) data, Web/P image Hash8e2c62ec296ece5f6a69e2cfd1133310 a6ae37e62d2f201d0e783df0890df55bc11d52e0 ac250ff6fe61157727de9e17fedeb5c162452fc1aa031c4c1fe2f8eb3290ed98
GET /gh/gowebid/assets@main/go_login/vk.webp HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: image/webp
x-jsd-version: main
x-jsd-version-type: branch
etag: W/"63a-pq435i0vIB0OeD3wiQ31W8EdUuA"
accept-ranges: bytes
date: Wed, 27 Mar 2024 05:19:22 GMT
age: 40659
x-served-by: cache-fra-eddf8230049-FRA, cache-hel1410028-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1594
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/gh/gowebid/assets@main/go_login/google.svg | 151.101.129.229 | 200 OK | 959 B |
URL GET HTTP/2cdn.jsdelivr.net/gh/gowebid/assets@main/go_login/google.svg IP151.101.129.229:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeSVG Scalable Vector Graphics image Hash848700651ce9c04987e04f292c598cba 976fc1619e149ed6161d834d5e3c3be7b7957669 f0562ef3624d99ef205211177586097eb7ebd8f5b31711d335a74d368c75ec27
GET /gh/gowebid/assets@main/go_login/google.svg HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: image/svg+xml
x-jsd-version: main
x-jsd-version-type: branch
etag: W/"7ea-l2/BYZ4UntYWHYNNXjw757eVdmk"
content-encoding: br
accept-ranges: bytes
date: Wed, 27 Mar 2024 05:19:22 GMT
age: 13250
x-served-by: cache-fra-eddf8230119-FRA, cache-hel1410028-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 959
X-Firefox-Spdy: h2
|
|
| | 104.21.0.236 | 200 OK | 7.2 kB |
URL User Request GET HTTP/2IP104.21.0.236:443
CertificateIssuerGoogle Trust Services LLC Subjectarach4n.biz.id Fingerprint07:F9:B3:0C:44:50:44:4C:96:4C:10:98:3B:F2:85:3C:1F:11:BB:8E ValidityFri, 08 Mar 2024 21:03:49 GMT - Thu, 06 Jun 2024 21:03:48 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (1979) Hashb8f0e55ea9769004c277c4b4cd6fceca 11842adc75d333007477cade6bc4ebc1580dc6d5 2adb373d14bec072f475503c367cd25cbfbea661b17b44332ffbaf8e3a9dd390
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET / HTTP/1.1
Host: md1td.arach4n.biz.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 27 Mar 2024 05:19:21 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xQBfc7eua1hUJMxhob0mGXljiOgr0lPgvdg9oOaYlDFdsI2Uc82mU%2BZSW3sGkayC4SDzxaJsSKRW%2FupmrdNFmyFNxnxiaVrdNRDnFJjoeb2Jr5VkJC8ncx2fQntvyU1hV0yviDQjQw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86acecd05c7fb511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| filebagasarya.com/img/border/borderepep2.gif | 188.114.96.1 | 200 OK | 19 kB |
URL GET HTTP/2filebagasarya.com/img/border/borderepep2.gif IP188.114.96.1:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGoogle Trust Services LLC Subjectfilebagasarya.com FingerprintF8:10:79:DD:D9:42:FF:FD:E3:35:9B:09:62:4F:9B:40:07:DD:BA:85 ValidityMon, 26 Feb 2024 19:06:41 GMT - Sun, 26 May 2024 19:06:40 GMT
File typeGIF image data, version 89a, 250 x 336 Hashf3fef4e6d0bc26473c233c2a02630f3b 813aff67a9ee75712a0f2c2870f72490e351d2a0 f683dc9fd57e1d9cbe28e1e357fea157069cb9a531908b760fa371ee96f4f052
GET /img/border/borderepep2.gif HTTP/1.1
Host: filebagasarya.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 27 Mar 2024 05:19:22 GMT
content-type: image/gif
content-length: 18958
cache-control: public, max-age=604800
expires: Mon, 01 Apr 2024 06:10:49 GMT
last-modified: Sun, 05 Mar 2023 10:35:44 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 169713
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fifBzvSk8AYlRsnBSqsCadXUG4LOjFnCyn2Mg18MIklqY%2BA67e%2BzqmSyQlRxnnzOQX8q%2F8jJ0ZziV%2FbibzhKs09NUtg%2FBq51tu3K%2FpT8rTgXfSNbvUl%2FrP5H%2FzTLDZKCjXSgDw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86acecd45bae56c4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| filebagasarya.com/img/border/border5.gif | 188.114.96.1 | 200 OK | 57 kB |
URL GET HTTP/2filebagasarya.com/img/border/border5.gif IP188.114.96.1:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGoogle Trust Services LLC Subjectfilebagasarya.com FingerprintF8:10:79:DD:D9:42:FF:FD:E3:35:9B:09:62:4F:9B:40:07:DD:BA:85 ValidityMon, 26 Feb 2024 19:06:41 GMT - Sun, 26 May 2024 19:06:40 GMT
File typeGIF image data, version 89a, 250 x 336 Hasha11d5e80b7883c717300fd362305a449 bbc08c8ceee464f9aa5fd417145a3c371dcb6876 71b56e5a447fb4b743f7fc5d5bfbc3e4540668c46f5bda6b9050f2d0c7952612
GET /img/border/border5.gif HTTP/1.1
Host: filebagasarya.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 27 Mar 2024 05:19:22 GMT
content-type: image/gif
content-length: 56575
cache-control: public, max-age=604800
expires: Mon, 01 Apr 2024 06:10:49 GMT
last-modified: Wed, 09 Nov 2022 12:29:00 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 169713
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Vu4TqOiK1BgBXiFKLr8AWrG5OMfDPKe3SkndtdqYEKUd3gbD9qL9aavfW9HLo5X47PzSgeM%2BO3jVYix%2FGUp2Ojmv6RV92OwXPUm0Y%2BHo8Kj6Xh63qp4SK3dY6alwUOHjLOw3vA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86acecd45bb056c4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| rawcdn.githack.com/AlexHostX/all.asset/3ddd40ca064d997b6655739e7a0e8a65acc106e8/alex-vikontakte.css | 104.21.234.230 | 404 Not Found | 14 B |
URL GET HTTP/2rawcdn.githack.com/AlexHostX/all.asset/3ddd40ca064d997b6655739e7a0e8a65acc106e8/alex-vikontakte.css IP104.21.234.230:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGoogle Trust Services LLC Subjectgithack.com FingerprintA4:13:2F:80:0A:C6:7C:8B:08:12:12:22:60:76:15:7D:40:80:70:54 ValidityFri, 01 Mar 2024 13:12:36 GMT - Thu, 30 May 2024 13:12:35 GMT
File typeASCII text, with no line terminators Hash3be7b8b182ccd96e48989b4e57311193 78fb38f212fa49029aff24c669a39648d9b4e68b d5558cd419c8d46bdc958064cb97f963d1ea793866414c025906ec15033512ed
GET /AlexHostX/all.asset/3ddd40ca064d997b6655739e7a0e8a65acc106e8/alex-vikontakte.css HTTP/1.1
Host: rawcdn.githack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Wed, 27 Mar 2024 05:19:22 GMT
content-length: 14
x-github-request-id: 4CCE:0DA9:26437F6:2803DD3:6603AB16
via: 1.1 varnish
x-served-by: cache-hel1410032-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1711516439.088398,VS0,VE162
vary: Authorization,Accept-Encoding,Origin
cross-origin-resource-policy: cross-origin
x-fastly-request-id: ef151d2b627d3c45485e4c10fe7490c1c9de18dc
source-age: 0
cache-control: max-age=60, public
x-githack-cache-status: HIT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HdaVlQfEoyhm0QW22fNW69RGpWc6NYK3sQJA6UzoyUNlaerl8%2Fr0y3zfRQYTNNRlxf1aOpoq6VRxb1lrle6Y7t%2FEmplJTOirQ9oSfL4C1VwGj9xGlU%2FFf0HukhcBFegNs%2BpTZ%2FQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86acecd42cb224d5-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| filebagasarya.com/img/border/kotakepep2.gif | 188.114.96.1 | 200 OK | 77 kB |
URL GET HTTP/2filebagasarya.com/img/border/kotakepep2.gif IP188.114.96.1:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGoogle Trust Services LLC Subjectfilebagasarya.com FingerprintF8:10:79:DD:D9:42:FF:FD:E3:35:9B:09:62:4F:9B:40:07:DD:BA:85 ValidityMon, 26 Feb 2024 19:06:41 GMT - Sun, 26 May 2024 19:06:40 GMT
File typeGIF image data, version 89a, 400 x 400 Hash4801459c6968d7736bef25d5d55e67bd 1287fc0cd353a27a74d56985e6086cfe90c9dc6f 4c4982ceb4100231b97050549bd71490b2b215eaffc3029eb50952fafd01572b
GET /img/border/kotakepep2.gif HTTP/1.1
Host: filebagasarya.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 27 Mar 2024 05:19:22 GMT
content-type: image/gif
content-length: 76578
cache-control: public, max-age=604800
expires: Mon, 01 Apr 2024 06:10:49 GMT
last-modified: Sun, 05 Mar 2023 10:35:41 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 169713
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=i%2F1jjdfDi%2FPJ7ezedYdT0dHQM3z78XDUkXjSnXlnSvpfkRDJ1Bq5z3lrQuihlogiplBWlJjSBrShdSENoHrk3Vu5HwU%2BQhfU3GQPTfL7RCc0Q%2BMsCQyEvMIScGULifK8nDwC0w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86acecd45baf56c4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| rawcdn.githack.com/AlexHostX/all.asset/3fce8843edde49a48905ae1ed9cf237534e547dd/alex-moonton.css | 104.21.234.230 | 404 Not Found | 14 B |
URL GET HTTP/2rawcdn.githack.com/AlexHostX/all.asset/3fce8843edde49a48905ae1ed9cf237534e547dd/alex-moonton.css IP104.21.234.230:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGoogle Trust Services LLC Subjectgithack.com FingerprintA4:13:2F:80:0A:C6:7C:8B:08:12:12:22:60:76:15:7D:40:80:70:54 ValidityFri, 01 Mar 2024 13:12:36 GMT - Thu, 30 May 2024 13:12:35 GMT
File typeASCII text, with no line terminators Hash3be7b8b182ccd96e48989b4e57311193 78fb38f212fa49029aff24c669a39648d9b4e68b d5558cd419c8d46bdc958064cb97f963d1ea793866414c025906ec15033512ed
GET /AlexHostX/all.asset/3fce8843edde49a48905ae1ed9cf237534e547dd/alex-moonton.css HTTP/1.1
Host: rawcdn.githack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Wed, 27 Mar 2024 05:19:22 GMT
content-length: 14
x-github-request-id: 760A:330A1F:6960B:71BA3:6603AB31
via: 1.1 varnish
x-served-by: cache-hel1410023-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1711516468.897128,VS0,VE165
vary: Authorization,Accept-Encoding,Origin
cross-origin-resource-policy: cross-origin
x-fastly-request-id: 917928f5d590369e4edb0b65f59fa3271a6fb58e
source-age: 0
cache-control: max-age=60, public
x-githack-cache-status: HIT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NYnbTbkBSR1s8xLrhg5G2k8wzOSy1NrZZXE%2FzoH4KboyHUKEOytcnPpLOo4fJIw5%2FyhOCsru5MZye%2BHgas7s1vMVR2XGH5YauUmZU7h16mU3JSgpaltQfg9q%2FpRQf4NjDqOe1c0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86acecd42cb624d5-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| rawcdn.githack.com/AlexHostX/all.asset/1591ba04a57c11f4b18d2ebb39e03e4a81715c83/alex-google.css | 104.21.234.230 | 404 Not Found | 14 B |
URL GET HTTP/2rawcdn.githack.com/AlexHostX/all.asset/1591ba04a57c11f4b18d2ebb39e03e4a81715c83/alex-google.css IP104.21.234.230:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGoogle Trust Services LLC Subjectgithack.com FingerprintA4:13:2F:80:0A:C6:7C:8B:08:12:12:22:60:76:15:7D:40:80:70:54 ValidityFri, 01 Mar 2024 13:12:36 GMT - Thu, 30 May 2024 13:12:35 GMT
File typeASCII text, with no line terminators Hash3be7b8b182ccd96e48989b4e57311193 78fb38f212fa49029aff24c669a39648d9b4e68b d5558cd419c8d46bdc958064cb97f963d1ea793866414c025906ec15033512ed
GET /AlexHostX/all.asset/1591ba04a57c11f4b18d2ebb39e03e4a81715c83/alex-google.css HTTP/1.1
Host: rawcdn.githack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Wed, 27 Mar 2024 05:19:22 GMT
content-length: 14
x-github-request-id: 35D6:0E70:3155923:33A67B5:6603ABBE
via: 1.1 varnish
x-served-by: cache-hel1410028-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1711516607.955629,VS0,VE158
vary: Authorization,Accept-Encoding,Origin
cross-origin-resource-policy: cross-origin
x-fastly-request-id: 8a9facb2206dbb2b720e541df820e8f7b11ec4ba
source-age: 0
cache-control: max-age=60, public
x-githack-cache-status: HIT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gAuA1wak8TNF%2FJBYn8eOOvX9wVcPwjqdBjrOBigguwXIRGD4iItX%2FPOMEwBvf1hAY8ownajYw4CYa1SwBhsgipRM0Zz6iKtqtpr%2F%2BwOQhePaAdSfHuLax9XppY3nwzlJfDhIZDQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86acecd4bcef24d5-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| md1td.arach4n.biz.id/img/diamond/1d.png | 104.21.0.236 | 200 OK | 2.8 kB |
URL GET HTTP/3md1td.arach4n.biz.id/img/diamond/1d.png IP104.21.0.236:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGoogle Trust Services LLC Subjectarach4n.biz.id Fingerprint07:F9:B3:0C:44:50:44:4C:96:4C:10:98:3B:F2:85:3C:1F:11:BB:8E ValidityFri, 08 Mar 2024 21:03:49 GMT - Thu, 06 Jun 2024 21:03:48 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 130x162, components 3 Hashbd1e125844fffc6d3485bcf93c224f9d 2782371542228b448959c8610cf3790b662185cc b8f4fec91600d5be6d465792f7f7fab635d01019e148fe8b6f7bf59f717041de
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/diamond/1d.png HTTP/1.1
Host: md1td.arach4n.biz.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 27 Mar 2024 05:19:22 GMT
content-type: image/png
content-length: 2814
cache-control: public, max-age=604800
expires: Wed, 03 Apr 2024 05:19:22 GMT
last-modified: Wed, 07 Feb 2024 17:59:21 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yQBVd1kuDgvVUi%2FNUz6aGTcvor9DabseeR2UCd7r4I0ke%2F6VK08x1dP94DtVwVctiLS0fODl7UDvT4kCnzzDiKl9D8JLd5XAYZTRPT8VKujHZHTZfQpwtrX%2FwzMx6DcXOppLQExlZw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86acecd3fc03b517-OSL
alt-svc: h3=":443"; ma=86400
|
|
| md1td.arach4n.biz.id/img/diamond/4d.png | 104.21.0.236 | 200 OK | 2.8 kB |
URL GET HTTP/3md1td.arach4n.biz.id/img/diamond/4d.png IP104.21.0.236:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGoogle Trust Services LLC Subjectarach4n.biz.id Fingerprint07:F9:B3:0C:44:50:44:4C:96:4C:10:98:3B:F2:85:3C:1F:11:BB:8E ValidityFri, 08 Mar 2024 21:03:49 GMT - Thu, 06 Jun 2024 21:03:48 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 130x162, components 3 Hash9322979ec6bc2f29f5f0215487d1be4b 17302260777757a2a811b76ad1d0e96a86781df7 6cc42f3ad3aa5606237a601793c1fb42458386d888adab6cf9077d23887eefed
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/diamond/4d.png HTTP/1.1
Host: md1td.arach4n.biz.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 27 Mar 2024 05:19:22 GMT
content-type: image/png
content-length: 2761
cache-control: public, max-age=604800
expires: Wed, 03 Apr 2024 05:19:22 GMT
last-modified: Wed, 07 Feb 2024 17:59:48 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=om1R0RSTK272ObY%2BCZY%2FEHQHbTJH37%2Bm6wj8K9BuBmhFSGywBzHXv%2FyOSm1si%2BIk%2F24xxLGYm2HpGG2LhxQFwn3bzVy6LZjhL0tT2nBMCt9OkXufEqSKEjfQQbgVPsBC5bEzgqvmVA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86acecd40c0eb517-OSL
alt-svc: h3=":443"; ma=86400
|
|
| md1td.arach4n.biz.id/img/diamond/3d.png | 104.21.0.236 | 200 OK | 2.9 kB |
URL GET HTTP/3md1td.arach4n.biz.id/img/diamond/3d.png IP104.21.0.236:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGoogle Trust Services LLC Subjectarach4n.biz.id Fingerprint07:F9:B3:0C:44:50:44:4C:96:4C:10:98:3B:F2:85:3C:1F:11:BB:8E ValidityFri, 08 Mar 2024 21:03:49 GMT - Thu, 06 Jun 2024 21:03:48 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 130x162, components 3 Hashdf5bfc626761a05e26222598f27cdf15 ed37075f86574bdeb39a5608384d722f8347df03 762fe8a43c859633d41642dd93c10478d3dacf62ff1310ddcefa17db5fa61f29
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/diamond/3d.png HTTP/1.1
Host: md1td.arach4n.biz.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 27 Mar 2024 05:19:22 GMT
content-type: image/png
content-length: 2875
cache-control: public, max-age=604800
expires: Wed, 03 Apr 2024 05:19:22 GMT
last-modified: Wed, 07 Feb 2024 17:59:44 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qojDvumLuCwrTY0ttnAfBKUGzqlfN2kSyuiGA%2FWVkThHLVGq7xdvQyeVUlusxyy4S8HK4ywtSkTnlY9THjwAeQ8Pmcu27%2F3RmDGwLOBRQTREZS1m%2BdQGvjSSRN3%2Fyq08Wqek4b19xQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86acecd40c0db517-OSL
alt-svc: h3=":443"; ma=86400
|
|
| md1td.arach4n.biz.id/img/diamond/6d.png | 104.21.0.236 | 200 OK | 2.8 kB |
URL GET HTTP/3md1td.arach4n.biz.id/img/diamond/6d.png IP104.21.0.236:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGoogle Trust Services LLC Subjectarach4n.biz.id Fingerprint07:F9:B3:0C:44:50:44:4C:96:4C:10:98:3B:F2:85:3C:1F:11:BB:8E ValidityFri, 08 Mar 2024 21:03:49 GMT - Thu, 06 Jun 2024 21:03:48 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 130x162, components 3 Hash2230594c80150378fe318c774eb216a4 918a13f5861c368c3b19c75cf8ca362b0b29a48c 43de460f27a0d3e43b13b5e75ac00da6ea6b54fb468afc4cffbd53709ee556b4
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/diamond/6d.png HTTP/1.1
Host: md1td.arach4n.biz.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 27 Mar 2024 05:19:22 GMT
content-type: image/png
content-length: 2781
cache-control: public, max-age=604800
expires: Wed, 03 Apr 2024 05:19:22 GMT
last-modified: Wed, 07 Feb 2024 17:59:56 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=71ca76f%2FdTT%2FdUCAiz2BwXjvxt5cL7Q4rpVWDDr6GLGShqSw%2Fb0xredZaSc8VDOf4SG0sDMVg%2FEtEGRFxzsKnZA0onfdkMAQCja1q8D%2Bp5j1RD3gii6%2FhPiSIHBxHA5UbgM0E%2BGI2A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86acecd40c12b517-OSL
alt-svc: h3=":443"; ma=86400
|
|
| md1td.arach4n.biz.id/img/diamond/5d.png | 104.21.0.236 | 200 OK | 2.8 kB |
URL GET HTTP/3md1td.arach4n.biz.id/img/diamond/5d.png IP104.21.0.236:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGoogle Trust Services LLC Subjectarach4n.biz.id Fingerprint07:F9:B3:0C:44:50:44:4C:96:4C:10:98:3B:F2:85:3C:1F:11:BB:8E ValidityFri, 08 Mar 2024 21:03:49 GMT - Thu, 06 Jun 2024 21:03:48 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 130x162, components 3 Hashf7fe1bdb99bdc8d0685e5f4bb5bf4e4c 965db0214225f37399495346a972e83c83f3fcdd e436ac38500431763697f5bd387d494324f320b76b25c97e29938d90bd7b1557
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/diamond/5d.png HTTP/1.1
Host: md1td.arach4n.biz.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 27 Mar 2024 05:19:22 GMT
content-type: image/png
content-length: 2779
cache-control: public, max-age=604800
expires: Wed, 03 Apr 2024 05:19:22 GMT
last-modified: Wed, 07 Feb 2024 17:59:52 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=S4qGHmAHBSUBW06Fvo8oZ771PejD7tTLMTY%2BHaL4GFsCqMNB8p5zUC%2FURPqg2tGvg4uOy8SbMaF7GcilXxqjqwbY7A%2BWzzaCbHeooDLCpLsY9eSaC97hAUi%2BtGpYmz%2BnDfDBEiRp6Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86acecd40c11b517-OSL
alt-svc: h3=":443"; ma=86400
|
|
| md1td.arach4n.biz.id/img/diamond/2d.png | 104.21.0.236 | 200 OK | 2.9 kB |
URL GET HTTP/3md1td.arach4n.biz.id/img/diamond/2d.png IP104.21.0.236:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGoogle Trust Services LLC Subjectarach4n.biz.id Fingerprint07:F9:B3:0C:44:50:44:4C:96:4C:10:98:3B:F2:85:3C:1F:11:BB:8E ValidityFri, 08 Mar 2024 21:03:49 GMT - Thu, 06 Jun 2024 21:03:48 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 130x162, components 3 Hash63344bf9eaf1a509a9f8a749a06a36e1 0ff516d19ef2ff1b9a44ab20e3eb9579a8894654 788c47722a4dc77173ab620f196bfc24a2d8668bcf08f9fd296574545cf700f1
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/diamond/2d.png HTTP/1.1
Host: md1td.arach4n.biz.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 27 Mar 2024 05:19:22 GMT
content-type: image/png
content-length: 2878
cache-control: public, max-age=604800
expires: Wed, 03 Apr 2024 05:19:22 GMT
last-modified: Wed, 07 Feb 2024 17:59:41 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=se9NiiVCxooStzY0%2Bxi18EmFeNgn7ug0riuOUw9E9wS4cxlK37LiQ6%2BqihkY1xeMvDEVmM7Q8vbK2EB4bKqiz4DCTNPsHFKs%2BZupA5MFvddfC0BDPjgI7VBFJt3NPVC3qwgkWDDgyA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86acecd3fc04b517-OSL
alt-svc: h3=":443"; ma=86400
|
|
| md1td.arach4n.biz.id/hadiah/6w.jpg | 104.21.0.236 | 200 OK | 97 kB |
URL GET HTTP/3md1td.arach4n.biz.id/hadiah/6w.jpg IP104.21.0.236:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGoogle Trust Services LLC Subjectarach4n.biz.id Fingerprint07:F9:B3:0C:44:50:44:4C:96:4C:10:98:3B:F2:85:3C:1F:11:BB:8E ValidityFri, 08 Mar 2024 21:03:49 GMT - Thu, 06 Jun 2024 21:03:48 GMT
File typePNG image data, 287 x 371, 8-bit/color RGB, non-interlaced Hash2664183460da17c7928677fc9275e7ff 66511df30ba5acc17c980315516be1d6695a0149 b52cab4734f7e301c1ba7add690bfc426fbf5763bc08830f42a8f1e4c5f8dc32
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /hadiah/6w.jpg HTTP/1.1
Host: md1td.arach4n.biz.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 27 Mar 2024 05:19:22 GMT
content-type: image/jpeg
content-length: 96984
cache-control: public, max-age=604800
expires: Wed, 03 Apr 2024 05:19:22 GMT
last-modified: Wed, 07 Feb 2024 18:08:02 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=d2YjgSR5AABNEBJCVIB4RDSeI9hJ96fEtLsJL1I6Lq6ICfiLn8VL0GVLPuSICy5y9JwgTv0WzX%2B6uah2kL7ouD9jwQQwmCNeUa%2F8Qly7WDp8WN75OZ%2FtE65zmey9CaUetobhgQ1t3A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86acecd3abd3b517-OSL
alt-svc: h3=":443"; ma=86400
|
|
| md1td.arach4n.biz.id/hadiah/5w.jpg | 104.21.0.236 | 200 OK | 92 kB |
URL GET HTTP/3md1td.arach4n.biz.id/hadiah/5w.jpg IP104.21.0.236:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGoogle Trust Services LLC Subjectarach4n.biz.id Fingerprint07:F9:B3:0C:44:50:44:4C:96:4C:10:98:3B:F2:85:3C:1F:11:BB:8E ValidityFri, 08 Mar 2024 21:03:49 GMT - Thu, 06 Jun 2024 21:03:48 GMT
File typePNG image data, 283 x 359, 8-bit/color RGB, non-interlaced Hash8564d70663058bb3502a1888f51fcd72 85e22240e15bbcbb4d368987a61a1c697e403edf 87875b47144648bcbf091f0554200be688cb750781e98ca037a63841fb0c8005
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /hadiah/5w.jpg HTTP/1.1
Host: md1td.arach4n.biz.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 27 Mar 2024 05:19:22 GMT
content-type: image/jpeg
content-length: 91503
cache-control: public, max-age=604800
expires: Wed, 03 Apr 2024 05:19:22 GMT
last-modified: Wed, 07 Feb 2024 18:07:51 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=oRCCxfLYG%2B2mRRxmvfgG975VYl29s7RCgUcjnOaIz2aBAVk9SammYLwoc7LpIserF4V5PwcPZ9kj%2FXMpDhcEQmdW2xpVHZWa%2F04eK6xGdD%2BOuB0uozVkXJSTpi4HOr12KZWHbZ%2F1OA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86acecd3abc9b517-OSL
alt-svc: h3=":443"; ma=86400
|
|
| md1td.arach4n.biz.id/hadiah/7w.jpg | 104.21.0.236 | 200 OK | 80 kB |
URL GET HTTP/3md1td.arach4n.biz.id/hadiah/7w.jpg IP104.21.0.236:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGoogle Trust Services LLC Subjectarach4n.biz.id Fingerprint07:F9:B3:0C:44:50:44:4C:96:4C:10:98:3B:F2:85:3C:1F:11:BB:8E ValidityFri, 08 Mar 2024 21:03:49 GMT - Thu, 06 Jun 2024 21:03:48 GMT
File typePNG image data, 283 x 368, 8-bit/color RGB, non-interlaced Hashe229ffb9fa16e6add18b7e7b5e6c8090 342f94a8155bf6bea2dbe30094c9354775ff9bec 6d555f9354429e01d61093d770d9c4ed66e642fe90da732e1e23f6fefb5a41b3
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /hadiah/7w.jpg HTTP/1.1
Host: md1td.arach4n.biz.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 27 Mar 2024 05:19:22 GMT
content-type: image/jpeg
content-length: 80002
cache-control: public, max-age=604800
expires: Wed, 03 Apr 2024 05:19:22 GMT
last-modified: Wed, 07 Feb 2024 18:08:47 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Fiefv95%2B84FPdX6WfcJvJIFIhuORr%2BepArzXScYGHZhYDwXDGl%2FxjxEhOOnsmYdfARPIobzh1VGbFyCF9MSwOLV%2FfsBpjCBVw0T0waI7Rb%2B8QK%2B0otu6zJxa%2F84JKv%2FZqtn2LcWBPw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86acecd3bbd6b517-OSL
alt-svc: h3=":443"; ma=86400
|
|
| md1td.arach4n.biz.id/hadiah/10w.jpg | 104.21.0.236 | 200 OK | 84 kB |
URL GET HTTP/3md1td.arach4n.biz.id/hadiah/10w.jpg IP104.21.0.236:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGoogle Trust Services LLC Subjectarach4n.biz.id Fingerprint07:F9:B3:0C:44:50:44:4C:96:4C:10:98:3B:F2:85:3C:1F:11:BB:8E ValidityFri, 08 Mar 2024 21:03:49 GMT - Thu, 06 Jun 2024 21:03:48 GMT
File typePNG image data, 283 x 371, 8-bit/color RGB, non-interlaced Hash33fe8d73fafabc9eb1071cede7fecf6a 72a14f4d40192521d4ccbed88547064ef77a2f58 619999d33f7b76ec8de71b8d896b0ae4ee220a6c10ddd69978896b87957246bf
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /hadiah/10w.jpg HTTP/1.1
Host: md1td.arach4n.biz.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 27 Mar 2024 05:19:22 GMT
content-type: image/jpeg
content-length: 83785
cache-control: public, max-age=604800
expires: Wed, 03 Apr 2024 05:19:22 GMT
last-modified: Wed, 07 Feb 2024 18:09:16 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yHnRcvDNh7R%2F19ftF3yR4UBeHNi6KtS%2BqYQvaVrd5vu7UjY6ociaYUXjs1z1hgwxpdFo6FL4%2BK0qTj5p%2F2495aQD1OUJA3SmKc%2FO55hQLkIuoTEH0gPjDYa6w5sFsi712fnFIZDZKQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86acecd3bbd9b517-OSL
alt-svc: h3=":443"; ma=86400
|
|
| md1td.arach4n.biz.id/hadiah/3w.jpg | 104.21.0.236 | 200 OK | 90 kB |
URL GET HTTP/3md1td.arach4n.biz.id/hadiah/3w.jpg IP104.21.0.236:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGoogle Trust Services LLC Subjectarach4n.biz.id Fingerprint07:F9:B3:0C:44:50:44:4C:96:4C:10:98:3B:F2:85:3C:1F:11:BB:8E ValidityFri, 08 Mar 2024 21:03:49 GMT - Thu, 06 Jun 2024 21:03:48 GMT
File typePNG image data, 284 x 367, 8-bit/color RGB, non-interlaced Hash9e2c5f54ed2813612815c71dc27a56c3 da86f7a340cee9ff11da48666698285c4b202743 8f85bb40508b7048b6aa28f5e72b59a828568e074e56bacda991a45c06b0c123
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /hadiah/3w.jpg HTTP/1.1
Host: md1td.arach4n.biz.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 27 Mar 2024 05:19:22 GMT
content-type: image/jpeg
content-length: 89530
cache-control: public, max-age=604800
expires: Wed, 03 Apr 2024 05:19:22 GMT
last-modified: Wed, 07 Feb 2024 18:07:12 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iBV06oEtSrb1r%2FiLPP%2Bv2pE1a68smxE7YE1UxFVxycSNcuLrC62akhewLsdfehL5VnrXAumUJmLkYYUkKbrH1IFbmtuRNLt%2BAsh3jfYDiLIUaGvE%2B%2F%2BFxfSAwrjbjfOJsaFtdGR16w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86acecd3abc5b517-OSL
alt-svc: h3=":443"; ma=86400
|
|
| md1td.arach4n.biz.id/hadiah/12w.jpg | 104.21.0.236 | 200 OK | 83 kB |
URL GET HTTP/3md1td.arach4n.biz.id/hadiah/12w.jpg IP104.21.0.236:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGoogle Trust Services LLC Subjectarach4n.biz.id Fingerprint07:F9:B3:0C:44:50:44:4C:96:4C:10:98:3B:F2:85:3C:1F:11:BB:8E ValidityFri, 08 Mar 2024 21:03:49 GMT - Thu, 06 Jun 2024 21:03:48 GMT
File typePNG image data, 291 x 375, 8-bit/color RGB, non-interlaced Hash3d01b1fdb7bc7da738fe670cfb43d48e 1adbab48c9a880f83b6217dbef2ef39d9f11c64a d8d34af6139bc00c5f9612481e460a7d0a9ec6448ea41605f4337b15d5dd7829
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /hadiah/12w.jpg HTTP/1.1
Host: md1td.arach4n.biz.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 27 Mar 2024 05:19:22 GMT
content-type: image/jpeg
content-length: 83098
cache-control: public, max-age=604800
expires: Wed, 03 Apr 2024 05:19:22 GMT
last-modified: Wed, 07 Feb 2024 18:10:00 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5zhIoTSwINIeUY%2BIYRNC5%2B%2F76zOuZYcjA7d4U3HnHzthU%2FoDZVXTbc3o29KliySzRKheWxVe9J%2BGg1xoT4H62SyvClr4EompUnQJxbDdhUbBx%2F%2BlVE21%2FqhZIwQtY0LXDXxfALv1uQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86acecd3bbdbb517-OSL
alt-svc: h3=":443"; ma=86400
|
|
| md1td.arach4n.biz.id/hadiah/13w.jpg | 104.21.0.236 | 200 OK | 78 kB |
URL GET HTTP/3md1td.arach4n.biz.id/hadiah/13w.jpg IP104.21.0.236:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGoogle Trust Services LLC Subjectarach4n.biz.id Fingerprint07:F9:B3:0C:44:50:44:4C:96:4C:10:98:3B:F2:85:3C:1F:11:BB:8E ValidityFri, 08 Mar 2024 21:03:49 GMT - Thu, 06 Jun 2024 21:03:48 GMT
File typePNG image data, 283 x 372, 8-bit/color RGB, non-interlaced Hash29de614b2bbc1aba43135d41a13b5a07 dde21b412d881ef6f1495fe11bc0547680b2ef05 459f58de4185e5a8d37e9dc5c82f53dd6d75d62c4090bba12ebc830e665410ee
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /hadiah/13w.jpg HTTP/1.1
Host: md1td.arach4n.biz.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 27 Mar 2024 05:19:22 GMT
content-type: image/jpeg
content-length: 77577
cache-control: public, max-age=604800
expires: Wed, 03 Apr 2024 05:19:22 GMT
last-modified: Wed, 07 Feb 2024 18:09:25 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ttpoxMjNLky%2F82sI6hkCJaSmiOUNYuzTF9CtY10UjxGBfavUduKAmlLH859a9zFN4J6lGKZlZJ%2FzM4xKko1zzgk1HUCJrlDe4eUtYHWJ6Vt4uPo3tq6HHwkstGXrV5w%2FXe%2ForgvPSg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86acecd3cbdfb517-OSL
alt-svc: h3=":443"; ma=86400
|
|
| md1td.arach4n.biz.id/hadiah/14w.jpg | 104.21.0.236 | 200 OK | 94 kB |
URL GET HTTP/3md1td.arach4n.biz.id/hadiah/14w.jpg IP104.21.0.236:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGoogle Trust Services LLC Subjectarach4n.biz.id Fingerprint07:F9:B3:0C:44:50:44:4C:96:4C:10:98:3B:F2:85:3C:1F:11:BB:8E ValidityFri, 08 Mar 2024 21:03:49 GMT - Thu, 06 Jun 2024 21:03:48 GMT
File typePNG image data, 287 x 368, 8-bit/color RGB, non-interlaced Hashe51741a518627f820c0d6ad3fd0be85f c429b59112f4be2445f8179ec247ca3e4f70b037 df1ab6cf2f1f92afc353162aa671ab6301ee3db6c5a150111d9768e6d29475db
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /hadiah/14w.jpg HTTP/1.1
Host: md1td.arach4n.biz.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 27 Mar 2024 05:19:22 GMT
content-type: image/jpeg
content-length: 94414
cache-control: public, max-age=604800
expires: Wed, 03 Apr 2024 05:19:22 GMT
last-modified: Wed, 07 Feb 2024 18:20:41 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BgqCOQKL6C7LUpFTcG%2Fa%2F7RN%2FYawGWc6ipexwiiCha%2Bp5k5mHfQPh1YQy7d7gARCOdH9BMYUyOIbK%2BMAAflBah7w2RZlQ%2FzAejrarkDQRFnF2Ipaahfn3Ksb7Dt3zYrq911Hask5cA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86acecd3cbe0b517-OSL
alt-svc: h3=":443"; ma=86400
|
|
| md1td.arach4n.biz.id/hadiah/2w.jpg | 104.21.0.236 | 200 OK | 86 kB |
URL GET HTTP/3md1td.arach4n.biz.id/hadiah/2w.jpg IP104.21.0.236:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGoogle Trust Services LLC Subjectarach4n.biz.id Fingerprint07:F9:B3:0C:44:50:44:4C:96:4C:10:98:3B:F2:85:3C:1F:11:BB:8E ValidityFri, 08 Mar 2024 21:03:49 GMT - Thu, 06 Jun 2024 21:03:48 GMT
File typePNG image data, 280 x 368, 8-bit/color RGB, non-interlaced Hasha2fa517c4924ef7d3358cf41f9d809a9 10aa0714f0c5a7594850317d9752ed9682d191a3 bf95403ac749d17c3997e8783b83f878075c7f987c9f1103074026d566549445
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /hadiah/2w.jpg HTTP/1.1
Host: md1td.arach4n.biz.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 27 Mar 2024 05:19:22 GMT
content-type: image/jpeg
content-length: 86293
cache-control: public, max-age=604800
expires: Wed, 03 Apr 2024 05:19:22 GMT
last-modified: Wed, 07 Feb 2024 18:06:18 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=P1NuDmNqmwXhut%2BzTOaVbN84H1CPF6fEmmX7d%2B6VQBoy18lBWYiG32KBHSa7G%2FEqUTH%2BFF4YHAyTiZILkAbn00hSAjuejSWVH8KDeoPjk6gxlHeRtrXc40CywN2D5jjx0RsQ3eDnrA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86acecd3abc1b517-OSL
alt-svc: h3=":443"; ma=86400
|
|
| md1td.arach4n.biz.id/hadiah/9w.jpg | 104.21.0.236 | 200 OK | 74 kB |
URL GET HTTP/3md1td.arach4n.biz.id/hadiah/9w.jpg IP104.21.0.236:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGoogle Trust Services LLC Subjectarach4n.biz.id Fingerprint07:F9:B3:0C:44:50:44:4C:96:4C:10:98:3B:F2:85:3C:1F:11:BB:8E ValidityFri, 08 Mar 2024 21:03:49 GMT - Thu, 06 Jun 2024 21:03:48 GMT
File typePNG image data, 284 x 371, 8-bit/color RGB, non-interlaced Hash4d91db311b5695ab30eb4dcac328b6e7 74bf2cf8f920ae4ba5da8d8041d167bc3dc9bb3e f21753fac4f36eac647552f74ec729dd6ad68d64bf6d947e91035506ad1bba1a
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /hadiah/9w.jpg HTTP/1.1
Host: md1td.arach4n.biz.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 27 Mar 2024 05:19:22 GMT
content-type: image/jpeg
content-length: 73536
cache-control: public, max-age=604800
expires: Wed, 03 Apr 2024 05:19:22 GMT
last-modified: Wed, 07 Feb 2024 18:09:36 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GsDJ6QhkGIaDWT6PNgQhbwR3Vqy12jTzd4S9rRivqpHXKY2gYreDfHIzyJKL8D1qdo8wibhAOysd2dNUiLIsqtnVlOqefp69c4mIxLzmZyErWUmwZpsFmF6loEh%2BikOHEdBdBHEAEA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86acecd3bbd8b517-OSL
alt-svc: h3=":443"; ma=86400
|
|
| md1td.arach4n.biz.id/hadiah/1w.jpg | 104.21.0.236 | 200 OK | 109 kB |
URL GET HTTP/3md1td.arach4n.biz.id/hadiah/1w.jpg IP104.21.0.236:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGoogle Trust Services LLC Subjectarach4n.biz.id Fingerprint07:F9:B3:0C:44:50:44:4C:96:4C:10:98:3B:F2:85:3C:1F:11:BB:8E ValidityFri, 08 Mar 2024 21:03:49 GMT - Thu, 06 Jun 2024 21:03:48 GMT
File typePNG image data, 287 x 372, 8-bit/color RGB, non-interlaced Size109 kB (109270 bytes) Hashdd4bfe00e243bc312e0ebb04a7bbdc5a 36182ed54151d0283c898f36efa7791a9ff25b48 e2ed53dc3665bd8ab9dd7fb25abeceb9f503f7152cf2537700541c766b7d399b
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /hadiah/1w.jpg HTTP/1.1
Host: md1td.arach4n.biz.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 27 Mar 2024 05:19:22 GMT
content-type: image/jpeg
content-length: 109270
cache-control: public, max-age=604800
expires: Wed, 03 Apr 2024 05:19:22 GMT
last-modified: Wed, 07 Feb 2024 18:04:58 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bH%2FEX7PT0jGzxawXnJTNXtfuL6lY5jnqi6%2FN5zFnFTgcE14%2FxPhDvopow3etEdIduc8AKVGsRyy7vs4i4%2F7Ih5UxGooJ%2Frqpc9LrAnXrcfETBL7BhNRYTn%2FfFJKWEBAqjpVIcrry6g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86acecd3abbeb517-OSL
alt-svc: h3=":443"; ma=86400
|
|
| md1td.arach4n.biz.id/hadiah/4w.jpg | 104.21.0.236 | 200 OK | 102 kB |
URL GET HTTP/3md1td.arach4n.biz.id/hadiah/4w.jpg IP104.21.0.236:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGoogle Trust Services LLC Subjectarach4n.biz.id Fingerprint07:F9:B3:0C:44:50:44:4C:96:4C:10:98:3B:F2:85:3C:1F:11:BB:8E ValidityFri, 08 Mar 2024 21:03:49 GMT - Thu, 06 Jun 2024 21:03:48 GMT
File typePNG image data, 288 x 372, 8-bit/color RGB, non-interlaced Size102 kB (101830 bytes) Hashea837f048ada68024773ccec95019232 7ecd7c57ef61f72d960ad11af2d6563e47593e54 6bf4912c37ae07cf9cfc242dde86ce1279c383ff823130e2b7e56459952d7b80
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /hadiah/4w.jpg HTTP/1.1
Host: md1td.arach4n.biz.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 27 Mar 2024 05:19:22 GMT
content-type: image/jpeg
content-length: 101830
cache-control: public, max-age=604800
expires: Wed, 03 Apr 2024 05:19:22 GMT
last-modified: Wed, 07 Feb 2024 18:06:44 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FEmPnEHwSloyLqwIm0Ka68B8uV0fTg0xjsh078gFwW8ZXPfDfgBS3SUrDZTayYeJJuxZfQARK0Xrg2NQvGSzeB50NX089WikXH61ljPLBWEzruAf79HAEpd0hYiM%2FN6SBlHO2kqaWA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86acecd3abc7b517-OSL
alt-svc: h3=":443"; ma=86400
|
|
| md1td.arach4n.biz.id/hadiah/8w.jpg | 104.21.0.236 | 200 OK | 100 kB |
URL GET HTTP/3md1td.arach4n.biz.id/hadiah/8w.jpg IP104.21.0.236:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGoogle Trust Services LLC Subjectarach4n.biz.id Fingerprint07:F9:B3:0C:44:50:44:4C:96:4C:10:98:3B:F2:85:3C:1F:11:BB:8E ValidityFri, 08 Mar 2024 21:03:49 GMT - Thu, 06 Jun 2024 21:03:48 GMT
File typePNG image data, 280 x 368, 8-bit/color RGB, non-interlaced Hashb5cf485d30d6adc5f0e6280a358c9a3d b4c50eefb47bed38e51b09b8c272eb879bed2185 5e8d6499246a5c5e3aabc844313a0a154fbd1c8837cc59c9cea14fb5b86cc1f4
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /hadiah/8w.jpg HTTP/1.1
Host: md1td.arach4n.biz.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 27 Mar 2024 05:19:22 GMT
content-type: image/jpeg
content-length: 99552
cache-control: public, max-age=604800
expires: Wed, 03 Apr 2024 05:19:22 GMT
last-modified: Wed, 07 Feb 2024 18:09:47 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=oWVUG8B5Itfpawx4kRg%2BZ%2FFFbqz8%2B%2FTjaAP%2FHAe0qFR8vJTdyB%2Foa786lPL91QfS9pJFzQoHJ35exhM0qOcoVuh760rLdKJFBpi9wBBAtBpn8AwKwAsNP%2FsfoapuGHnDSvkjkOAWkA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86acecd3bbd7b517-OSL
alt-svc: h3=":443"; ma=86400
|
|
| md1td.arach4n.biz.id/img/senjata/1v.jpg | 104.21.0.236 | 200 OK | 112 kB |
URL GET HTTP/3md1td.arach4n.biz.id/img/senjata/1v.jpg IP104.21.0.236:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGoogle Trust Services LLC Subjectarach4n.biz.id Fingerprint07:F9:B3:0C:44:50:44:4C:96:4C:10:98:3B:F2:85:3C:1F:11:BB:8E ValidityFri, 08 Mar 2024 21:03:49 GMT - Thu, 06 Jun 2024 21:03:48 GMT
File typePNG image data, 284 x 368, 8-bit/color RGB, non-interlaced Size112 kB (112206 bytes) Hash9e4f1202c848590e3282e6d84a54da1b 113593b523a3251c1dc0b166a6a4c77c197ccfbc fcac9333951835715680d21e7468cf372cebfc97b036ccc6f9955b73263d3776
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/senjata/1v.jpg HTTP/1.1
Host: md1td.arach4n.biz.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 27 Mar 2024 05:19:22 GMT
content-type: image/jpeg
content-length: 112206
cache-control: public, max-age=604800
expires: Wed, 03 Apr 2024 05:19:22 GMT
last-modified: Wed, 07 Feb 2024 18:52:33 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2T6Eywz4101yCu0lCI7NThNkpc3b0GRFG0wEGKaPmcXB7ehoT%2FHqcELYQxeE9cDaxnbjkSv0JhBzGndP4%2FOt738U8Vt49hMIvoKY77Dtc%2BVxxrJhgBcr913pCmFkMJd%2FdWuIgk%2By3Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86acecd3cbe4b517-OSL
alt-svc: h3=":443"; ma=86400
|
|
| md1td.arach4n.biz.id/img/senjata/2v.jpg | 104.21.0.236 | 200 OK | 114 kB |
URL GET HTTP/3md1td.arach4n.biz.id/img/senjata/2v.jpg IP104.21.0.236:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGoogle Trust Services LLC Subjectarach4n.biz.id Fingerprint07:F9:B3:0C:44:50:44:4C:96:4C:10:98:3B:F2:85:3C:1F:11:BB:8E ValidityFri, 08 Mar 2024 21:03:49 GMT - Thu, 06 Jun 2024 21:03:48 GMT
File typePNG image data, 283 x 375, 8-bit/color RGB, non-interlaced Size114 kB (113552 bytes) Hash605b6c7b2dd8bae6e7bd23a5340f0a1c f76afc84509e0dba81b2b7779dca0d2add397ccd d4dda75dccadd401b95c228ac709862607cbef2073b67de22783898e42c5c783
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/senjata/2v.jpg HTTP/1.1
Host: md1td.arach4n.biz.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 27 Mar 2024 05:19:22 GMT
content-type: image/jpeg
content-length: 113552
cache-control: public, max-age=604800
expires: Wed, 03 Apr 2024 05:19:22 GMT
last-modified: Wed, 07 Feb 2024 18:52:58 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ct%2BHHnbkOVVtvMHCbNZ3IPibgwqVFTa6fsg1F2k3eyBgehHQfqcBwTjzJrcz2f8uQ0UWfULfaGkgTBzaqs40HgE4zDVh2JEVysWLEKMXtyU%2FR7RuK5HroTHDBbiTmAHuIoOdOqiw2A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86acecd3cbe5b517-OSL
alt-svc: h3=":443"; ma=86400
|
|
| e.top4top.io/s_29595abf50.jpg | 65.21.235.194 | 200 OK | 5.6 kB |
URL GET HTTP/2e.top4top.io/s_29595abf50.jpg IP65.21.235.194:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerLet's Encrypt Subject*.top4top.co Fingerprint2A:32:75:1E:FA:EF:D1:3E:02:CB:78:77:7C:32:CC:60:49:AC:43:05 ValidityFri, 01 Mar 2024 00:02:35 GMT - Thu, 30 May 2024 00:02:34 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 125x125, components 3 Hash0cd71bbd31dd1659363627dc24cf203c f11842d9d336f6845e04cecdb18627454b5c9b05 df263a5be8492d1d83b1a32daa429aa74db82f2d478d0d4d80d6041b510c750e
GET /s_29595abf50.jpg HTTP/1.1
Host: e.top4top.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 27 Mar 2024 05:19:22 GMT
content-type: image/jpeg
content-length: 5642
set-cookie: klj_40d147_downloads=xusks; Max-Age=85000; Domain=.top4top.io; Path=/; Expires=Thu, 28 Mar 2024 04:56:02 GMT
last-modified: Wed, 07 Feb 2024 19:51:26 GMT
content-disposition: inline; filename="Screenshot_2024_0208_024904.jpg"
etag: W/"65c3df3e-11757"
expires: Wed, 27 Mar 2024 07:19:22 GMT
cache-control: max-age=7200
x-file-id: x56864044x
X-Firefox-Spdy: h2
|
|
| md1td.arach4n.biz.id/hadiah/11w.jpg | 104.21.0.236 | 200 OK | 110 kB |
URL GET HTTP/3md1td.arach4n.biz.id/hadiah/11w.jpg IP104.21.0.236:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGoogle Trust Services LLC Subjectarach4n.biz.id Fingerprint07:F9:B3:0C:44:50:44:4C:96:4C:10:98:3B:F2:85:3C:1F:11:BB:8E ValidityFri, 08 Mar 2024 21:03:49 GMT - Thu, 06 Jun 2024 21:03:48 GMT
File typePNG image data, 284 x 367, 8-bit/color RGB, non-interlaced Size110 kB (110290 bytes) Hasha584fa2e418ae1cda7547f315e4d1412 b281b0410291309efeafed9573ea4397558046b7 e3515c7e675181c80f498dca62aba23e7a1a20fe2328e417be70ad10fc34ff14
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /hadiah/11w.jpg HTTP/1.1
Host: md1td.arach4n.biz.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 27 Mar 2024 05:19:22 GMT
content-type: image/jpeg
content-length: 110290
cache-control: public, max-age=604800
expires: Wed, 03 Apr 2024 05:19:22 GMT
last-modified: Wed, 07 Feb 2024 18:10:09 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=anb6YjQOe9KaTR7Jjvqg5vYGq15b5Z2s%2FUl3yZTtl%2FD9bckHuxOVKaLnpnb%2FDILBRDi0aZy7cv4pAM9vVpBoKrTxnmScOHaHeVXkghwppY7Ag%2Byuq3tPcrzULL4YDJSvK7zvjSx%2FLA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86acecd3bbdab517-OSL
alt-svc: h3=":443"; ma=86400
|
|
| md1td.arach4n.biz.id/hadiah/15w.png | 104.21.0.236 | 200 OK | 82 kB |
URL GET HTTP/3md1td.arach4n.biz.id/hadiah/15w.png IP104.21.0.236:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGoogle Trust Services LLC Subjectarach4n.biz.id Fingerprint07:F9:B3:0C:44:50:44:4C:96:4C:10:98:3B:F2:85:3C:1F:11:BB:8E ValidityFri, 08 Mar 2024 21:03:49 GMT - Thu, 06 Jun 2024 21:03:48 GMT
File typePNG image data, 292 x 359, 8-bit/color RGB, non-interlaced Hash15f101554f4d27acbe4cea08a677655e cbbcbf76d4bc202cdc8e6d03feea35f6bc137bfc 231a261e244dc658d8ef59624bc80f8fd75831d718bd35778e501c85a2322323
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /hadiah/15w.png HTTP/1.1
Host: md1td.arach4n.biz.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 27 Mar 2024 05:19:22 GMT
content-type: image/png
content-length: 82313
cache-control: public, max-age=604800
expires: Wed, 03 Apr 2024 05:19:22 GMT
last-modified: Wed, 07 Feb 2024 18:20:50 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=z2indDUkMS5CfGNBNmwc1s0jrR0iA87eq4HSBZiI5eFXYu6rLNeymShTsoAnqWOfr45AKJAap0%2Fd3RBKRr2p%2FcmahIf3sktUMCsOpnACCy%2BQsbzfyDoT5wOciX%2BSe%2Bq383pOzYd5uQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86acecd3cbe3b517-OSL
alt-svc: h3=":443"; ma=86400
|
|
| md1td.arach4n.biz.id/img/senjata/3v.jpg | 104.21.0.236 | 200 OK | 105 kB |
URL GET HTTP/3md1td.arach4n.biz.id/img/senjata/3v.jpg IP104.21.0.236:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGoogle Trust Services LLC Subjectarach4n.biz.id Fingerprint07:F9:B3:0C:44:50:44:4C:96:4C:10:98:3B:F2:85:3C:1F:11:BB:8E ValidityFri, 08 Mar 2024 21:03:49 GMT - Thu, 06 Jun 2024 21:03:48 GMT
File typePNG image data, 279 x 375, 8-bit/color RGB, non-interlaced Size105 kB (104898 bytes) Hash7d43d8ca6cc22fd5ed5b63629475cf3e 56285fa7793459cc676c3c63611067de8992aa57 55a02ffccf532b9652d7f2c6724dd430644eb2ae065a4e327b52f4cd136b9e8e
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/senjata/3v.jpg HTTP/1.1
Host: md1td.arach4n.biz.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 27 Mar 2024 05:19:22 GMT
content-type: image/jpeg
content-length: 104898
cache-control: public, max-age=604800
expires: Wed, 03 Apr 2024 05:19:22 GMT
last-modified: Wed, 07 Feb 2024 18:53:14 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bjD9QR%2FxEkdSAeBI8OflPhajF2fosccY8RA%2FYnvbB2O0eQd3tskR9FnIl%2FfrOYde7QA4VtJT22JXyN3d90IalttXIInpQTIWwpHERbkLbGJYYGdzbPmagCpup1HVRFUXQaDLFRmJAw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86acecd3dbe8b517-OSL
alt-svc: h3=":443"; ma=86400
|
|
| md1td.arach4n.biz.id/img/senjata/6v.jpg | 104.21.0.236 | 200 OK | 101 kB |
URL GET HTTP/3md1td.arach4n.biz.id/img/senjata/6v.jpg IP104.21.0.236:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGoogle Trust Services LLC Subjectarach4n.biz.id Fingerprint07:F9:B3:0C:44:50:44:4C:96:4C:10:98:3B:F2:85:3C:1F:11:BB:8E ValidityFri, 08 Mar 2024 21:03:49 GMT - Thu, 06 Jun 2024 21:03:48 GMT
File typePNG image data, 276 x 376, 8-bit/color RGB, non-interlaced Size101 kB (101314 bytes) Hashe6af03af69eafd9633f30cde58c03196 4306ea25918e92bfc99118b9b3120e6d20be6876 9d981d4044463e8fa86ac44f052fd4cc1f519fc541bc9914992146028f725394
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/senjata/6v.jpg HTTP/1.1
Host: md1td.arach4n.biz.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 27 Mar 2024 05:19:22 GMT
content-type: image/jpeg
content-length: 101314
cache-control: public, max-age=604800
expires: Wed, 03 Apr 2024 05:19:22 GMT
last-modified: Wed, 07 Feb 2024 18:55:27 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JpfMwn3nTpP0GtbKGziZ0cJLLZHMATp7LoxKEnp5uvHu8y2h9NlNA6ckUvmB2jrA6yItii2uqgqaIvpvOdpi8NZTJUl8Rk8P5%2FZySrSLOYSF5cuCxFEntAdmJRIoluqpoPwOskN7zA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86acecd3dbedb517-OSL
alt-svc: h3=":443"; ma=86400
|
|
| md1td.arach4n.biz.id/img/senjata/7v.jpg | 104.21.0.236 | 200 OK | 95 kB |
URL GET HTTP/3md1td.arach4n.biz.id/img/senjata/7v.jpg IP104.21.0.236:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGoogle Trust Services LLC Subjectarach4n.biz.id Fingerprint07:F9:B3:0C:44:50:44:4C:96:4C:10:98:3B:F2:85:3C:1F:11:BB:8E ValidityFri, 08 Mar 2024 21:03:49 GMT - Thu, 06 Jun 2024 21:03:48 GMT
File typePNG image data, 288 x 375, 8-bit/color RGB, non-interlaced Hash61b63bc126a15906fbec1d71f25620cb fa6f9aed9123e35f2881093348439c7e8d168a63 b09f710d05214acd76849a89ac25e9b41e37ab4fabcaadd5f123184281346b29
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/senjata/7v.jpg HTTP/1.1
Host: md1td.arach4n.biz.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 27 Mar 2024 05:19:22 GMT
content-type: image/jpeg
content-length: 94921
cache-control: public, max-age=604800
expires: Wed, 03 Apr 2024 05:19:22 GMT
last-modified: Wed, 07 Feb 2024 18:53:42 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1zAh2IFCyzp7reQKnysNLwHP4pp%2F9Amin48akls6ImSQlC%2FUuzXtAiPJbZ8zj%2BBY82vU68vgv5GxIIswN9bpr8hM9T8FHvRah8ABvSvjmr8ECACsHEkb5fQfMFP2QU6Qy%2Bif9sxQzw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86acecd3dbeeb517-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cdn.jsdelivr.net/gh/AlexHostX/mlbb@main/old/IMG-20220417-184327.jpg | 151.101.129.229 | 404 Not Found | 53 B |
URL GET HTTP/2cdn.jsdelivr.net/gh/AlexHostX/mlbb@main/old/IMG-20220417-184327.jpg IP151.101.129.229:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeASCII text, with no line terminators Hashcb71d2b197dd6af21b39e0261fb1497c 9ab080da6e72161e565846ba4fe9a3279f8f9acf a3abb1833e1a60b26006a99e3ca8c8aefff91c61003548a8f34fc6c92d62acd7
GET /gh/AlexHostX/mlbb@main/old/IMG-20220417-184327.jpg HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=600, s-maxage=600
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/plain; charset=utf-8
etag: W/"30-mrCA2m5yFh5WWEa6T+mjJ5+Pms8"
content-encoding: br
accept-ranges: bytes
date: Wed, 27 Mar 2024 05:19:22 GMT
age: 299
x-served-by: cache-fra-eddf8230046-FRA, cache-hel1410028-HEL
x-cache: HIT, MISS
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 53
X-Firefox-Spdy: h2
|
|
| md1td.arach4n.biz.id/img/senjata/4v.jpg | 104.21.0.236 | 200 OK | 99 kB |
URL GET HTTP/3md1td.arach4n.biz.id/img/senjata/4v.jpg IP104.21.0.236:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGoogle Trust Services LLC Subjectarach4n.biz.id Fingerprint07:F9:B3:0C:44:50:44:4C:96:4C:10:98:3B:F2:85:3C:1F:11:BB:8E ValidityFri, 08 Mar 2024 21:03:49 GMT - Thu, 06 Jun 2024 21:03:48 GMT
File typePNG image data, 291 x 372, 8-bit/color RGB, non-interlaced Hash45143f94da4071209b0cdbb8d67bfe93 cac8e51361c7f27450ccc0703e119cf2a71e0df0 737112396030afda1c69f7f6b4f91966f491d932dcc174653bb30447383ffe0e
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/senjata/4v.jpg HTTP/1.1
Host: md1td.arach4n.biz.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 27 Mar 2024 05:19:22 GMT
content-type: image/jpeg
content-length: 98845
cache-control: public, max-age=604800
expires: Wed, 03 Apr 2024 05:19:22 GMT
last-modified: Wed, 07 Feb 2024 18:54:33 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7BeNmYllQccjpiKAFh2rLEuDZQbuERxVVWlTbjA%2FilolKTqH4apq9GFZSaUm%2F1JBCcrpKmKooTyYCkZ59QuEeUOc%2BvuDgmf0odigGcN4vmRmErSsi%2By5gOEPnJ0AKw8xw%2BVL6L6pnA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86acecd3dbe9b517-OSL
alt-svc: h3=":443"; ma=86400
|
|
| md1td.arach4n.biz.id/img/senjata/5v.jpg | 104.21.0.236 | 200 OK | 108 kB |
URL GET HTTP/3md1td.arach4n.biz.id/img/senjata/5v.jpg IP104.21.0.236:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGoogle Trust Services LLC Subjectarach4n.biz.id Fingerprint07:F9:B3:0C:44:50:44:4C:96:4C:10:98:3B:F2:85:3C:1F:11:BB:8E ValidityFri, 08 Mar 2024 21:03:49 GMT - Thu, 06 Jun 2024 21:03:48 GMT
File typePNG image data, 291 x 372, 8-bit/color RGB, non-interlaced Size108 kB (107481 bytes) Hashbbe4e0314326e8ac5a818ecb60bdb7d7 fd5458fbe85165f5891a2fad85f21ce9d82eb7f4 7acdcbdf7f22b04d468847756c508d84575d348b52fbec152d333e50f3581c89
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/senjata/5v.jpg HTTP/1.1
Host: md1td.arach4n.biz.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 27 Mar 2024 05:19:22 GMT
content-type: image/jpeg
content-length: 107481
cache-control: public, max-age=604800
expires: Wed, 03 Apr 2024 05:19:22 GMT
last-modified: Wed, 07 Feb 2024 18:54:54 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HN2naSZfEDeU%2BqTCRdbMAx2m0AoSPD0fNYFZ6xt1NfnazjWMAx7CTzfSm3v%2BkxbcKnZ0%2BP1sXm%2FWjnZVN%2FKkNLTSimxQOlBj6W9g8R9f6O7Jek1rWncfIEkpoH6iqnzux%2FOk%2BYUgrQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86acecd3dbebb517-OSL
alt-svc: h3=":443"; ma=86400
|
|
| md1td.arach4n.biz.id/img/senjata/8v.jpg | 104.21.0.236 | 200 OK | 86 kB |
URL GET HTTP/3md1td.arach4n.biz.id/img/senjata/8v.jpg IP104.21.0.236:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGoogle Trust Services LLC Subjectarach4n.biz.id Fingerprint07:F9:B3:0C:44:50:44:4C:96:4C:10:98:3B:F2:85:3C:1F:11:BB:8E ValidityFri, 08 Mar 2024 21:03:49 GMT - Thu, 06 Jun 2024 21:03:48 GMT
File typePNG image data, 280 x 371, 8-bit/color RGB, non-interlaced Hash19827c71bd2ed956fda1aefe0aa818f1 33ae2209d023a8344b8419aab0f44020564d2298 59dd2310322d6beb5030e28020f3d38df789f1c1f28864edcce0d8d780b14c6a
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/senjata/8v.jpg HTTP/1.1
Host: md1td.arach4n.biz.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 27 Mar 2024 05:19:22 GMT
content-type: image/jpeg
content-length: 86120
cache-control: public, max-age=604800
expires: Wed, 03 Apr 2024 05:19:22 GMT
last-modified: Wed, 07 Feb 2024 18:53:24 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ERqe5l31Q80ZrUULEwQBE64Nvq2%2BuBBq%2B36Ri%2BBOb0ZtqfqiibCISkfLhjZ6XgmU0jfts5PV4YYwovucvS9wJXAEJezTXfFi4CpTV%2BTfLqn%2BTbGw3vzqb7iRluxzXeG7DCMEaz6k8Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86acecd3ebf2b517-OSL
alt-svc: h3=":443"; ma=86400
|
|
| md1td.arach4n.biz.id/img/senjata/10v.jpg | 104.21.0.236 | 200 OK | 100 kB |
URL GET HTTP/3md1td.arach4n.biz.id/img/senjata/10v.jpg IP104.21.0.236:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGoogle Trust Services LLC Subjectarach4n.biz.id Fingerprint07:F9:B3:0C:44:50:44:4C:96:4C:10:98:3B:F2:85:3C:1F:11:BB:8E ValidityFri, 08 Mar 2024 21:03:49 GMT - Thu, 06 Jun 2024 21:03:48 GMT
File typePNG image data, 284 x 371, 8-bit/color RGB, non-interlaced Hash3fb8321730169b19e14710222af924be 698fafc1d3f7b04d8abec08c080c1b18984ea7d2 cfe8925af205ef9fee22dce3b9c83f6e591ec3b7dc0132ddc5d03a30b4b591c5
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/senjata/10v.jpg HTTP/1.1
Host: md1td.arach4n.biz.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 27 Mar 2024 05:19:22 GMT
content-type: image/jpeg
content-length: 99911
cache-control: public, max-age=604800
expires: Wed, 03 Apr 2024 05:19:22 GMT
last-modified: Wed, 07 Feb 2024 18:53:33 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RRlcvHBxacEVAKGbRZbwY6UCHk%2F3jhriOgKRkSRyOcPKPCBhDaJJffosGjLHRAtLdTlIKl8aHVEsiDEIu7Dm0T2F0i13%2BmtcqEyb2uow7KRldLiru6bruMHR8GysgxXMVFJLg%2BRKAA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86acecd3ebf5b517-OSL
alt-svc: h3=":443"; ma=86400
|
|
| md1td.arach4n.biz.id/img/senjata/9v.jpg | 104.21.0.236 | 200 OK | 100 kB |
URL GET HTTP/3md1td.arach4n.biz.id/img/senjata/9v.jpg IP104.21.0.236:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGoogle Trust Services LLC Subjectarach4n.biz.id Fingerprint07:F9:B3:0C:44:50:44:4C:96:4C:10:98:3B:F2:85:3C:1F:11:BB:8E ValidityFri, 08 Mar 2024 21:03:49 GMT - Thu, 06 Jun 2024 21:03:48 GMT
File typePNG image data, 284 x 364, 8-bit/color RGB, non-interlaced Hash15f3a1035cd615cd3f71cf0face721bc 6cdd506e3f51b28a026e3d11533880230509e4e6 babdec92f0880d49ce9d5066e1e09ab58b8c4a322dec57cf21a07016450ec63d
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/senjata/9v.jpg HTTP/1.1
Host: md1td.arach4n.biz.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 27 Mar 2024 05:19:22 GMT
content-type: image/jpeg
content-length: 99543
cache-control: public, max-age=604800
expires: Wed, 03 Apr 2024 05:19:22 GMT
last-modified: Wed, 07 Feb 2024 18:55:16 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nPCbZtZWtd7RANfIqi7U1wNFP9AnnLxgNdeEZNs3PalVvhHqHon1qIWGwlPdC6aD0MZAbIXi1msFgw2i3vgdi%2Bu%2B8h1iE6BJU8vFoiWHzr%2F86ssHln1qNxLoWRPi8hZWJZTBaaXtIA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86acecd3ebf3b517-OSL
alt-svc: h3=":443"; ma=86400
|
|
| md1td.arach4n.biz.id/img/senjata/12v.jpg | 104.21.0.236 | 200 OK | 122 kB |
URL GET HTTP/3md1td.arach4n.biz.id/img/senjata/12v.jpg IP104.21.0.236:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGoogle Trust Services LLC Subjectarach4n.biz.id Fingerprint07:F9:B3:0C:44:50:44:4C:96:4C:10:98:3B:F2:85:3C:1F:11:BB:8E ValidityFri, 08 Mar 2024 21:03:49 GMT - Thu, 06 Jun 2024 21:03:48 GMT
File typePNG image data, 291 x 376, 8-bit/color RGB, non-interlaced Size122 kB (121876 bytes) Hashb52f41e326164a8ca5fff63f49129217 33bdf5b5845092ca439799c339c76c5822ac975f 2c02e8bb758ae2450861b51b6e434c6c73c5fc6a3e0447612a2754fa01a2bce5
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/senjata/12v.jpg HTTP/1.1
Host: md1td.arach4n.biz.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 27 Mar 2024 05:19:22 GMT
content-type: image/jpeg
content-length: 121876
cache-control: public, max-age=604800
expires: Wed, 03 Apr 2024 05:19:22 GMT
last-modified: Wed, 07 Feb 2024 18:55:06 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kORlzgfMlrP2e%2F1MXo2rp4lrRGswvcynDs4velqtRJ86KizEoJT9JSz%2BG4%2FfWQFaIqeZKmimpy64PkUFk%2FNLMZycaaLFN7xXZnyVNTEhR8wfmm3ckgIag3EDrDiZ8Ip6kJMJfQsurw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86acecd3ebfdb517-OSL
alt-svc: h3=":443"; ma=86400
|
|
| filebagasarya.com/img/border/BoxOn4.gif | 188.114.96.1 | 200 OK | 121 kB |
URL GET HTTP/3filebagasarya.com/img/border/BoxOn4.gif IP188.114.96.1:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGoogle Trust Services LLC Subjectfilebagasarya.com FingerprintF8:10:79:DD:D9:42:FF:FD:E3:35:9B:09:62:4F:9B:40:07:DD:BA:85 ValidityMon, 26 Feb 2024 19:06:41 GMT - Sun, 26 May 2024 19:06:40 GMT
File typeGIF image data, version 89a, 224 x 224 Size121 kB (120915 bytes) Hash127c4202ac37e7b0f72463cebc557b0c 84284b34dd377dbd4feb444aabeb959ac3e2b217 630f7fcbba5df4d44b11d2b9afb87d9ab75ba06f203485650f0fa26b2ca9db43
GET /img/border/BoxOn4.gif HTTP/1.1
Host: filebagasarya.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 27 Mar 2024 05:19:22 GMT
content-type: image/gif
content-length: 120915
cache-control: public, max-age=604800
expires: Mon, 01 Apr 2024 06:10:49 GMT
last-modified: Sun, 16 Oct 2022 00:58:00 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 169713
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=y2uTqQ6mpqYR754tBX8nohGTaPpG703KPujrmM5EhdhT5KrjRwHqyHZfKfkbfDpYXFDwmPSUGtCE4TdxVAsBA5ud2eXABRJLRQ4KWzS08Yxpx3QcoUITcXhWeOgENFfCTNJKQQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86acecd80e25b4ee-OSL
alt-svc: h3=":443"; ma=86400
|
|
| md1td.arach4n.biz.id/img/senjata/11v.jpg | 104.21.0.236 | 200 OK | 119 kB |
URL GET HTTP/3md1td.arach4n.biz.id/img/senjata/11v.jpg IP104.21.0.236:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGoogle Trust Services LLC Subjectarach4n.biz.id Fingerprint07:F9:B3:0C:44:50:44:4C:96:4C:10:98:3B:F2:85:3C:1F:11:BB:8E ValidityFri, 08 Mar 2024 21:03:49 GMT - Thu, 06 Jun 2024 21:03:48 GMT
File typePNG image data, 287 x 372, 8-bit/color RGB, non-interlaced Size119 kB (118838 bytes) Hash81c49f1f9685337acd861c4bd0b71d11 ca230a8a8670e7ea54b5d6e6c028d1fe16791f96 447fa12490b9a8f7530ffc093e6b3728876c294008b9c39878c9fceb5f0e50f0
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/senjata/11v.jpg HTTP/1.1
Host: md1td.arach4n.biz.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 27 Mar 2024 05:19:22 GMT
content-type: image/jpeg
content-length: 118838
cache-control: public, max-age=604800
expires: Wed, 03 Apr 2024 05:19:22 GMT
last-modified: Wed, 07 Feb 2024 18:54:45 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hsBLBJOqepmX206ndfK6D173FQOHRRPvLvFXUr8vcFNghflUkzb5PMY0XJfWFweIwEImH6mZ5HLzVkER3ot1gB8FTA5j8k6ZC%2BaejRRwODGVmtsWUl36LbbWWQv0xtSyDFgxBB5cjg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86acecd3ebf8b517-OSL
alt-svc: h3=":443"; ma=86400
|
|
| md1td.arach4n.biz.id/img/senjata/13v.jpg | 104.21.0.236 | 200 OK | 138 kB |
URL GET HTTP/3md1td.arach4n.biz.id/img/senjata/13v.jpg IP104.21.0.236:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGoogle Trust Services LLC Subjectarach4n.biz.id Fingerprint07:F9:B3:0C:44:50:44:4C:96:4C:10:98:3B:F2:85:3C:1F:11:BB:8E ValidityFri, 08 Mar 2024 21:03:49 GMT - Thu, 06 Jun 2024 21:03:48 GMT
File typePNG image data, 287 x 371, 8-bit/color RGB, non-interlaced Size138 kB (138176 bytes) Hashd206cfe0350b1aadb86f3bf1ec0d9499 3d17d8f07e20e3629e41198613c50f6a795e7137 0dba6d9a1fa03e83eb110343496eb100be71181cfc82c67f0f87cac80fa905d2
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/senjata/13v.jpg HTTP/1.1
Host: md1td.arach4n.biz.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 27 Mar 2024 05:19:22 GMT
content-type: image/jpeg
content-length: 138176
cache-control: public, max-age=604800
expires: Wed, 03 Apr 2024 05:19:22 GMT
last-modified: Wed, 07 Feb 2024 18:54:19 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=V0Fu8GrKH155KAyTtuFciGhC%2By8YlVZPWX8jxnvpY1%2BA%2FBBt%2ByEsRelOgaT3Yv%2BFGTGFLsCoSF9VL6iH1jqhoahXidP%2FHp%2BBOa0AyEKxvfBLrHvjAF%2BNLwt5OCmk%2FNqPy8p1hUideQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86acecd3ebfeb517-OSL
alt-svc: h3=":443"; ma=86400
|
|
| md1td.arach4n.biz.id/img/senjata/14v.jpg | 104.21.0.236 | 200 OK | 147 kB |
URL GET HTTP/3md1td.arach4n.biz.id/img/senjata/14v.jpg IP104.21.0.236:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGoogle Trust Services LLC Subjectarach4n.biz.id Fingerprint07:F9:B3:0C:44:50:44:4C:96:4C:10:98:3B:F2:85:3C:1F:11:BB:8E ValidityFri, 08 Mar 2024 21:03:49 GMT - Thu, 06 Jun 2024 21:03:48 GMT
File typePNG image data, 291 x 375, 8-bit/color RGB, non-interlaced Size147 kB (147219 bytes) Hashad4e70f5733d7d3896c581ac29374664 eae7806236ec07abbfb1b6bf1cb60359b7bc2b87 d61d1c9109bcb4e70a61765d3fca7e214d5f43f3e57b4e07004cfcfb88f7f124
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/senjata/14v.jpg HTTP/1.1
Host: md1td.arach4n.biz.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 27 Mar 2024 05:19:22 GMT
content-type: image/jpeg
content-length: 147219
cache-control: public, max-age=604800
expires: Wed, 03 Apr 2024 05:19:22 GMT
last-modified: Wed, 07 Feb 2024 18:53:06 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gUbGxv73yaqa5dAr%2FLyXxd8jQhTwcaGj%2BVh52qEo6F66LIpDn4LneVXuCgLUFSCAubcaGUtfE%2B5YkAVjf4SLefblH6MpekSnhNP6VCsxVBcA7Cp%2F1diE2vbKdnnzc7tTCQqXUosYzg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86acecd3ebffb517-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.youtube.com/s/player/2923e6f1/www-player.css | 142.250.74.14 | 200 OK | 48 kB |
URL GET HTTP/2www.youtube.com/s/player/2923e6f1/www-player.css IP142.250.74.14:443
Requested byhttps://www.youtube.com/embed/bIFObDLYgP4?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint23:75:5E:3D:EA:9F:A0:42:86:8D:14:AE:43:04:F0:B2:91:0B:DA:CF ValidityMon, 26 Feb 2024 08:03:58 GMT - Mon, 20 May 2024 08:03:57 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hash6fb93460361d0288b0b651af5b5d6680 09544b58d13b7d38318e59c2ced7e42b46e93734 d92695df8505f32e187619d97e4d80ddae4954306cc1171f42ef464998f27b8d
GET /s/player/2923e6f1/www-player.css HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/bIFObDLYgP4?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 48097
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 27 Mar 2024 02:04:50 GMT
expires: Thu, 27 Mar 2025 02:04:50 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 21 Mar 2024 04:22:17 GMT
content-type: text/css
vary: Accept-Encoding, Origin
age: 11673
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| dl.dir.freefiremobile.com/common/web_event/official2/dist/client/img/full_logo.969f536.png | 54.230.111.38 | 200 OK | 8.3 kB |
URL GET HTTP/2dl.dir.freefiremobile.com/common/web_event/official2/dist/client/img/full_logo.969f536.png IP54.230.111.38:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerAmazon Subjectdl.dir.freefiremobile.com FingerprintD7:4C:09:C2:7E:90:38:EA:18:D7:59:E0:F8:87:98:CF:8A:74:D3:D9 ValidityWed, 29 Nov 2023 00:00:00 GMT - Fri, 27 Dec 2024 23:59:59 GMT
File typePNG image data, 616 x 90, 8-bit/color RGBA, non-interlaced Hashc632e6bfd0076695e56477bdb3f7232c 5b4212f029814b5dfda946ac5e5a6ba97857feb9 86ccbc1dbeb58af3e6bce5ee52f86a47399da998ad34a0fd2ce9b0b539d92f6c
GET /common/web_event/official2/dist/client/img/full_logo.969f536.png HTTP/1.1
Host: dl.dir.freefiremobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
content-length: 8314
server: OBS
date: Wed, 27 Mar 2024 04:33:35 GMT
x-obs-request-id: 0000018E7E2F554E994973B081A088DD
content-md5: xjLmv9AHZpXlZHe9s/cjLA==
x-obs-replication-status: REPLICA
accept-ranges: bytes
last-modified: Tue, 19 Mar 2024 08:15:04 GMT
x-obs-id-2: 32AAAQAAEAABAAAQAAEAABAAAQAAEAABCS08iHVbnehXij0qnGd+7N3qDLOXWYaw
etag: "c632e6bfd0076695e56477bdb3f7232c"
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9jFLaXn7T8WCqzpwbTlkJuUwnOu43VvnbpHE7cPsGgevzQrHauBBFw==
age: 2748
vary: Origin
X-Firefox-Spdy: h2
|
|
| www.youtube.com/s/player/2923e6f1/www-embed-player.vflset/www-embed-player.js | 142.250.74.14 | 200 OK | 98 kB |
URL GET HTTP/2www.youtube.com/s/player/2923e6f1/www-embed-player.vflset/www-embed-player.js IP142.250.74.14:443
Requested byhttps://www.youtube.com/embed/bIFObDLYgP4?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint23:75:5E:3D:EA:9F:A0:42:86:8D:14:AE:43:04:F0:B2:91:0B:DA:CF ValidityMon, 26 Feb 2024 08:03:58 GMT - Mon, 20 May 2024 08:03:57 GMT
File typeJavaScript source, ASCII text, with very long lines (682) Hashdfc5dc7adaa004ad10889adc2b4f0242 7a2a768056a0aca6df370fbd215350a4814643ec abfe8b74c9107845a6866a21f7e1621cfc633e156b0934cf6a480138430d57e3
GET /s/player/2923e6f1/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/bIFObDLYgP4?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 97712
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 24 Mar 2024 15:49:21 GMT
expires: Mon, 24 Mar 2025 15:49:21 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 21 Mar 2024 04:22:17 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 221402
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.youtube.com/s/player/2923e6f1/player_ias.vflset/en_US/base.js | 142.250.74.14 | 200 OK | 801 kB |
URL GET HTTP/2www.youtube.com/s/player/2923e6f1/player_ias.vflset/en_US/base.js IP142.250.74.14:443
Requested byhttps://www.youtube.com/embed/bIFObDLYgP4?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint23:75:5E:3D:EA:9F:A0:42:86:8D:14:AE:43:04:F0:B2:91:0B:DA:CF ValidityMon, 26 Feb 2024 08:03:58 GMT - Mon, 20 May 2024 08:03:57 GMT
File typeJavaScript source, ASCII text, with very long lines (555) Size801 kB (801042 bytes) Hash1385d0cbed52e1539fcd4b743dd86e1e 7fbc708e94c378e62db6880e9349a6e05fe976b7 558d992451639264af288b3da48bb3ecff08fac68e9a05dae0333ffe8aa96a2e
GET /s/player/2923e6f1/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/bIFObDLYgP4?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 801042
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 25 Mar 2024 06:46:21 GMT
expires: Tue, 25 Mar 2025 06:46:21 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 21 Mar 2024 04:22:17 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 167582
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| md1td.arach4n.biz.id/img/senjata/15v.jpg | 104.21.0.236 | 200 OK | 121 kB |
URL GET HTTP/3md1td.arach4n.biz.id/img/senjata/15v.jpg IP104.21.0.236:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGoogle Trust Services LLC Subjectarach4n.biz.id Fingerprint07:F9:B3:0C:44:50:44:4C:96:4C:10:98:3B:F2:85:3C:1F:11:BB:8E ValidityFri, 08 Mar 2024 21:03:49 GMT - Thu, 06 Jun 2024 21:03:48 GMT
File typePNG image data, 283 x 372, 8-bit/color RGB, non-interlaced Size121 kB (121351 bytes) Hash578dc2f2d61b0006093be999423770f7 7cd14ebd7744ffa47552c727ba745a20a8815c92 1e97f0aedaf5f720dc8b4c0f75c4f1120e8096cde1804fb2eba5c9fedc089542
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/senjata/15v.jpg HTTP/1.1
Host: md1td.arach4n.biz.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 27 Mar 2024 05:19:22 GMT
content-type: image/jpeg
content-length: 121351
cache-control: public, max-age=604800
expires: Wed, 03 Apr 2024 05:19:22 GMT
last-modified: Wed, 07 Feb 2024 18:53:56 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=72GMcTcz2%2Fwia%2B%2Fx6v0cxz3Q22cgxq0gff1LVXqsoLtoIsOgn7JQ%2BvGD3UUghAISL%2Fz0LbUVhKffK3U6dfHlzKIhopR%2BKoyd4lVVAOOO1q%2Bxf3PazRBkJRRkAY15sPelGBtmzxekOA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86acecd3fc02b517-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.youtube.com/embed/bIFObDLYgP4?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com | 142.250.74.14 | 200 OK | 40 kB |
URL GET HTTP/2www.youtube.com/embed/bIFObDLYgP4?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com IP142.250.74.14:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint23:75:5E:3D:EA:9F:A0:42:86:8D:14:AE:43:04:F0:B2:91:0B:DA:CF ValidityMon, 26 Feb 2024 08:03:58 GMT - Mon, 20 May 2024 08:03:57 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (58088) Hash3a0f361f5ff70ee7ad0521eaf6347c4a 21adc1a5088ca150b7eafdfb50c78ed0d2783a56 887d367f71ac2a03a2f15ef0feea5706eee867bc54eba32dcfadba88414107b9
GET /embed/bIFObDLYgP4?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 27 Mar 2024 05:19:22 GMT
strict-transport-security: max-age=31536000
cross-origin-resource-policy: cross-origin
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
origin-trial: AvC9UlR6RDk2crliDsFl66RWLnTbHrDbp+DiY6AYz/PNQ4G4tdUTjrHYr2sghbkhGQAVxb7jaPTHpEVBz0uzQwkAAAB4eyJvcmlnaW4iOiJodHRwczovL3lvdXR1YmUuY29tOjQ0MyIsImZlYXR1cmUiOiJXZWJWaWV3WFJlcXVlc3RlZFdpdGhEZXByZWNhdGlvbiIsImV4cGlyeSI6MTcxOTUzMjc5OSwiaXNTdWJkb21haW4iOnRydWV9
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=he0Y6DAb43Y; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=myjkEA5j9Zo; Domain=.youtube.com; Expires=Mon, 23-Sep-2024 05:19:22 GMT; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_PRIVACY_METADATA=CgJOTxIIEgQSAgsMIG0%3D; Domain=.youtube.com; Expires=Mon, 23-Sep-2024 05:19:22 GMT; Path=/; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| md1td.arach4n.biz.id/alexFrontEnd/tiktok.png | 104.21.0.236 | 404 Not Found | 8.4 kB |
URL GET HTTP/3md1td.arach4n.biz.id/alexFrontEnd/tiktok.png IP104.21.0.236:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGoogle Trust Services LLC Subjectarach4n.biz.id Fingerprint07:F9:B3:0C:44:50:44:4C:96:4C:10:98:3B:F2:85:3C:1F:11:BB:8E ValidityFri, 08 Mar 2024 21:03:49 GMT - Thu, 06 Jun 2024 21:03:48 GMT
File typeHTML document, ASCII text, with CRLF, LF line terminators Hash8150f458ed6fb9b1db4e5cfa57a1a281 6e5726854d28687b560d7fdcb5c782c425c7dfb9 4c13d452dd5d49671bd93ca32f2b4f85c78e39b6ab0ad1f38d98ed267f8fd896
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /alexFrontEnd/tiktok.png HTTP/1.1
Host: md1td.arach4n.biz.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
date: Wed, 27 Mar 2024 05:19:22 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=08bxWLKc0zGnarSne9wczc3yGuhtuKW%2FhEYqkWmFL5ynmGzGO3atbdCv0qRdvPaL1XdVfZMJ3DfwSmrCeanPHzsuMXEx2ejLdY%2FqKg9JUPp1avvELJ%2FurCINDZ09qPdwUPgqg0mdHQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86acecd41c15b517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/teko/v20/LYjNdG7kmE0gfaN9pQ.woff2 | 216.58.207.227 | 200 OK | 15 kB |
URL GET HTTP/2fonts.gstatic.com/s/teko/v20/LYjNdG7kmE0gfaN9pQ.woff2 IP216.58.207.227:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF3:56:10:42:A8:3C:BF:F5:89:9C:4C:C0:F8:E3:DC:C4:1C:E9:34:9E ValidityMon, 26 Feb 2024 08:18:21 GMT - Mon, 20 May 2024 08:18:20 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15044, version 1.0 Hash4806226b885b3b3d0ae52142f6bfb3af 2ea5cc6d5e4adb874989a2b74bda062296fb1ad3 714088bef569d6981bfae79530ef315f4d6505f302a944ce9063601919977e6f
GET /s/teko/v20/LYjNdG7kmE0gfaN9pQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://md1td.arach4n.biz.id
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15044
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 21 Mar 2024 02:35:42 GMT
expires: Fri, 21 Mar 2025 02:35:42 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 24 Aug 2023 21:55:11 GMT
content-type: font/woff2
age: 528222
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 15 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:443
Requested byhttps://www.youtube.com/embed/bIFObDLYgP4?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF3:56:10:42:A8:3C:BF:F5:89:9C:4C:C0:F8:E3:DC:C4:1C:E9:34:9E ValidityMon, 26 Feb 2024 08:18:21 GMT - Mon, 20 May 2024 08:18:20 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15344, version 1.0 Hash5d4aeb4e5f5ef754e307d7ffaef688bd 06db651cdf354c64a7383ea9c77024ef4fb4cef8 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 21 Mar 2024 02:43:03 GMT
expires: Fri, 21 Mar 2025 02:43:03 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 527781
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP216.58.207.227:443
Requested byhttps://www.youtube.com/embed/bIFObDLYgP4?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF3:56:10:42:A8:3C:BF:F5:89:9C:4C:C0:F8:E3:DC:C4:1C:E9:34:9E ValidityMon, 26 Feb 2024 08:18:21 GMT - Mon, 20 May 2024 08:18:20 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15552, version 1.0 Hash285467176f7fe6bb6a9c6873b3dad2cc ea04e4ff5142ddd69307c183def721a160e0a64e 5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 21 Mar 2024 02:32:45 GMT
expires: Fri, 21 Mar 2025 02:32:45 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
age: 528399
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.youtube.com/s/player/2923e6f1/player_ias.vflset/en_US/embed.js | 142.250.74.14 | 200 OK | 18 kB |
URL GET HTTP/3www.youtube.com/s/player/2923e6f1/player_ias.vflset/en_US/embed.js IP142.250.74.14:443
Requested byhttps://www.youtube.com/embed/bIFObDLYgP4?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint23:75:5E:3D:EA:9F:A0:42:86:8D:14:AE:43:04:F0:B2:91:0B:DA:CF ValidityMon, 26 Feb 2024 08:03:58 GMT - Mon, 20 May 2024 08:03:57 GMT
File typeJavaScript source, ASCII text, with very long lines (3391) Hash96d5277d6ffa49b094f9bdb4232d0185 6ac4e31af5f1e51cf9551974e8b4e676dae77a27 c72dbcb58f3ed87e0e2c18186dcfbb4a5405db86cd3ac7a9616a6c411b035375
GET /s/player/2923e6f1/player_ias.vflset/en_US/embed.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/bIFObDLYgP4?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 18068
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 25 Mar 2024 08:08:12 GMT
expires: Tue, 25 Mar 2025 08:08:12 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 21 Mar 2024 04:22:17 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 162672
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| ka-f.fontawesome.com/releases/v6.0.0/css/free.min.css?token=869e25b803 | 172.64.107.23 | 200 OK | 19 kB |
URL GET HTTP/2ka-f.fontawesome.com/releases/v6.0.0/css/free.min.css?token=869e25b803 IP172.64.107.23:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGoogle Trust Services LLC Subjectka-f.fontawesome.com Fingerprint8D:43:33:42:48:C0:F5:34:71:EC:49:69:9C:62:01:4A:6F:41:11:98 ValidityTue, 05 Mar 2024 09:23:28 GMT - Mon, 03 Jun 2024 09:23:27 GMT
File typeASCII text, with very long lines (65321) Hash345f5ecc270c94968998574a2d37e31a 4b1937ca073a8376a07161bc40549585493ffa3d efad9b46d0c00f2562eb53236717ff21ebd474f8d68f69b45f92c424bfd87e9c
GET /releases/v6.0.0/css/free.min.css?token=869e25b803 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://md1td.arach4n.biz.id/
Origin: https://md1td.arach4n.biz.id
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 27 Mar 2024 05:19:23 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 07 Feb 2022 20:11:39 GMT
etag: W/"345f5ecc270c94968998574a2d37e31a"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9724ab1ffbd159e13ec0a9fda972d3e.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR5-P6
x-amz-cf-id: rBPyIP_-QklszlYYZ-a9_2EH8hlHM7M4mRQzfnwl8Dmj4ieaBfiV6g==
age: 85430
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BGyadAoi6fSTLWDMsIxfB8%2BmKU3mPs2tNvei1FQXHEljEWXkRoveylfsqEfa6FJa%2Bwz2dyteMi7zmkNXni9lNlkVG0qaTnbjS2ZS6uJzs%2FSGC2HvGYie2mFt8m2XXzR9oGIIlOD%2B9Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86acecde0c468889-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| i.ibb.co/64zf4TJ/IMG-2421.gif | 162.19.58.156 | 200 OK | 3.2 MB |
URL GET HTTP/2i.ibb.co/64zf4TJ/IMG-2421.gif IP162.19.58.156:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerLet's Encrypt Subjectibb.co Fingerprint47:33:B4:39:55:FC:BC:18:08:79:9C:6C:9D:F3:CF:3A:89:C4:99:62 ValidityWed, 07 Feb 2024 12:41:56 GMT - Tue, 07 May 2024 12:41:55 GMT
File typeGIF image data, version 89a, 400 x 670 Size3.2 MB (3207154 bytes) Hash5dd5428b3a4c7c28c1027262255d3cef f4d600e1987393d95e35bb88c8766b717629138b f1d3544ec91a0a474f3229f762cde14f5adb03f091101fda2b7be2e670c139d9
GET /64zf4TJ/IMG-2421.gif HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 27 Mar 2024 05:19:23 GMT
content-type: image/gif
content-length: 3207154
last-modified: Wed, 07 Feb 2024 17:32:12 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create | 142.250.74.10 | 200 OK | 0 B |
URL POST HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create IP142.250.74.10:443
Requested byhttps://www.youtube.com/embed/bIFObDLYgP4?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint04:B9:D9:E0:01:DB:5E:AB:5A:FF:F0:D9:ED:39:0F:C1:63:18:51:0B ValidityMon, 26 Feb 2024 08:18:27 GMT - Mon, 20 May 2024 08:18:26 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Wed, 27 Mar 2024 05:19:24 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.youtube.com/youtubei/v1/player?prettyPrint=false | 142.250.74.14 | 200 OK | 30 kB |
URL POST HTTP/3www.youtube.com/youtubei/v1/player?prettyPrint=false IP142.250.74.14:443
Requested byhttps://www.youtube.com/embed/bIFObDLYgP4?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint23:75:5E:3D:EA:9F:A0:42:86:8D:14:AE:43:04:F0:B2:91:0B:DA:CF ValidityMon, 26 Feb 2024 08:03:58 GMT - Mon, 20 May 2024 08:03:57 GMT
Hashc64bc5bf738a3312587e2f60873f92f1 c19a82e7d4d106db2aeae0a10105d75268d12af1 8c77c813450fc349452e0fca463e097a182aef2c95e001cc56d2340777905392
POST /youtubei/v1/player?prettyPrint=false HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Goog-Visitor-Id: CgtteWprRUE1ajlabyja2I6wBjIOCgJOTxIIEgQSAgsMIG0%3D
X-Youtube-Bootstrap-Logged-In: false
X-Youtube-Client-Name: 56
X-Youtube-Client-Version: 1.20240320.00.00
Content-Length: 3091
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/bIFObDLYgP4?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Wed, 27 Mar 2024 05:19:24 GMT
server: scaffolding on HTTPServer2
content-length: 29506
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.com/js/th/ZsUwGEaTXaXoI738hgfiAxwmtaoYIPrUg4qZn7H1-gg.js | 216.58.211.4 | 200 OK | 20 kB |
URL GET HTTP/2www.google.com/js/th/ZsUwGEaTXaXoI738hgfiAxwmtaoYIPrUg4qZn7H1-gg.js IP216.58.211.4:443
Requested byhttps://www.youtube.com/embed/bIFObDLYgP4?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subjectwww.google.com Fingerprint32:A3:19:7A:6B:D5:C7:5E:CA:7C:C8:08:79:14:56:FD:FC:3E:06:F0 ValidityMon, 26 Feb 2024 08:18:59 GMT - Mon, 20 May 2024 08:18:58 GMT
File typeJavaScript source, ASCII text, with very long lines (51673) Hash699a13a50afaca0c62d136e97d0b573b 4e11ef26f79bace439e737b1c5f392c665357e69 66c5301846935da5e823bdfc8607e2031c26b5aa1820fad4838a999fb1f5fa08
GET /js/th/ZsUwGEaTXaXoI738hgfiAxwmtaoYIPrUg4qZn7H1-gg.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 20366
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 21 Mar 2024 02:40:22 GMT
expires: Fri, 21 Mar 2025 02:40:22 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 19 Mar 2024 16:00:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 527942
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| yt3.ggpht.com/lIpoIowWmXO0IxH_npHkX3EQ2VIcH43wbSMSDn41ffviZfBmRAsy6SDikeZ4fJvpd9xXuUnpy_c=s68-c-k-c0x00ffffff-no-rj | 142.250.74.65 | 200 OK | 3.6 kB |
URL GET HTTP/2yt3.ggpht.com/lIpoIowWmXO0IxH_npHkX3EQ2VIcH43wbSMSDn41ffviZfBmRAsy6SDikeZ4fJvpd9xXuUnpy_c=s68-c-k-c0x00ffffff-no-rj IP142.250.74.65:443
Requested byhttps://www.youtube.com/embed/bIFObDLYgP4?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.googleusercontent.com Fingerprint45:D1:C0:2D:E8:A2:E4:6C:89:C5:B6:FE:AE:99:83:B1:CA:66:17:CF ValidityMon, 26 Feb 2024 08:17:52 GMT - Mon, 20 May 2024 08:17:51 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 68x68, components 3 Hash2b857915e85b35a6dc9c2f758da7c0e3 5c5dae4ca32c5d8e5a090e92f7b8b5b45a705edf f364a613c302260f1862f99aa933ad90b6d96f273a6c0dfc4e06570d09c2d1ca
GET /lIpoIowWmXO0IxH_npHkX3EQ2VIcH43wbSMSDn41ffviZfBmRAsy6SDikeZ4fJvpd9xXuUnpy_c=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="channels4_profile.jpg"
x-content-type-options: nosniff
server: fife
content-length: 3560
x-xss-protection: 0
date: Wed, 27 Mar 2024 01:59:59 GMT
expires: Thu, 28 Mar 2024 01:59:59 GMT
cache-control: public, max-age=86400, no-transform
age: 11965
etag: "v1"
content-type: image/jpeg
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create | 142.250.74.10 | 200 OK | 42 kB |
URL POST HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create IP142.250.74.10:443
Requested byhttps://www.youtube.com/embed/bIFObDLYgP4?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint04:B9:D9:E0:01:DB:5E:AB:5A:FF:F0:D9:ED:39:0F:C1:63:18:51:0B ValidityMon, 26 Feb 2024 08:18:27 GMT - Mon, 20 May 2024 08:18:26 GMT
Hash97482368b2c080f4acd9aabda07e813e 0c5e3577674868034daeec9eb289721bf87e2374 59adf4252c444d58a4dba7d6c799477525901809b5f0ccdcea130164ee505cd6
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 27 Mar 2024 05:19:24 GMT
server: ESF
cache-control: private
content-length: 41651
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ka-f.fontawesome.com/releases/v6.0.0/css/free-v5-font-face.min.css?token=869e25b803 | 172.64.107.23 | 200 OK | 38 kB |
URL GET HTTP/2ka-f.fontawesome.com/releases/v6.0.0/css/free-v5-font-face.min.css?token=869e25b803 IP172.64.107.23:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGoogle Trust Services LLC Subjectka-f.fontawesome.com Fingerprint8D:43:33:42:48:C0:F5:34:71:EC:49:69:9C:62:01:4A:6F:41:11:98 ValidityTue, 05 Mar 2024 09:23:28 GMT - Mon, 03 Jun 2024 09:23:27 GMT
File typeASCII text, with very long lines (608) Hashe8ee688b3310772b65f39c69b76f4720 d57c6b7957aabb07762d473ea0b4bd3462f1175e 0e751f751587617116614deaf11f087ea82f7644196c1d0571f71fd549b556b5
GET /releases/v6.0.0/css/free-v5-font-face.min.css?token=869e25b803 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://md1td.arach4n.biz.id/
Origin: https://md1td.arach4n.biz.id
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 27 Mar 2024 05:19:23 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 07 Feb 2022 20:11:39 GMT
etag: W/"e8ee688b3310772b65f39c69b76f4720"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
x-cache: Hit from cloudfront
via: 1.1 532ff8019b690b232af4903307ca5eb4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR5-P6
x-amz-cf-id: mjNssZRlL34CuU94FTZDkcZMl1HxNpaWfLMPT_arWW2MWXjH8zgZnw==
age: 85430
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FRax7IhXdSbw%2F0LaB16NaakTdyTaq6XGuSA%2BfjXEd4YcpjQWtvyBqvhjoGiUm5zWDsHOwsPsevWjHMEMxcxXHAmWAHQUS8R8Ro9N4XpQfkrZ7T5lyljR4%2F6wgIgigFPEPYLejA9uDg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86acecddfc318889-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| i.ytimg.com/vi/bIFObDLYgP4/sddefault.jpg?sqp=-oaymwEmCIAFEOAD8quKqQMa8AEB-AH-CYAC0AWKAgwIABABGHIgUihEMA8=&rs=AOn4CLDT7uY0cSnBxlPvMT6SyK0VxGccsA | 142.250.74.22 | 200 OK | 31 kB |
URL GET HTTP/2i.ytimg.com/vi/bIFObDLYgP4/sddefault.jpg?sqp=-oaymwEmCIAFEOAD8quKqQMa8AEB-AH-CYAC0AWKAgwIABABGHIgUihEMA8=&rs=AOn4CLDT7uY0cSnBxlPvMT6SyK0VxGccsA IP142.250.74.22:443
Requested byhttps://www.youtube.com/embed/bIFObDLYgP4?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subjectedgestatic.com FingerprintD7:FC:10:C9:A8:81:6B:99:B6:4E:4D:B7:02:8F:80:C7:C2:F7:D8:7A ValidityMon, 26 Feb 2024 08:03:26 GMT - Mon, 20 May 2024 08:03:25 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 640x480, components 3 Hashf2ac4d8ac264e966e6d2d7318eca6ab6 3bcccc04045783c61c15917323db935d4c32504c 6a2e2358ae61498510bd8736a914c9b3e94497f291d76e906b8450a027bfb56f
GET /vi/bIFObDLYgP4/sddefault.jpg?sqp=-oaymwEmCIAFEOAD8quKqQMa8AEB-AH-CYAC0AWKAgwIABABGHIgUihEMA8=&rs=AOn4CLDT7uY0cSnBxlPvMT6SyK0VxGccsA HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 31409
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 27 Mar 2024 05:19:24 GMT
expires: Wed, 27 Mar 2024 07:19:24 GMT
cache-control: public, max-age=7200
etag: "0"
content-type: image/jpeg
vary: Origin
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.youtube.com/generate_204?Y7p-1g | 142.250.74.14 | 204 No Content | 0 B |
URL GET HTTP/3www.youtube.com/generate_204?Y7p-1g IP142.250.74.14:443
Requested byhttps://www.youtube.com/embed/bIFObDLYgP4?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint23:75:5E:3D:EA:9F:A0:42:86:8D:14:AE:43:04:F0:B2:91:0B:DA:CF ValidityMon, 26 Feb 2024 08:03:58 GMT - Mon, 20 May 2024 08:03:57 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /generate_204?Y7p-1g HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/bIFObDLYgP4?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-length: 0
cross-origin-resource-policy: cross-origin
date: Wed, 27 Mar 2024 05:19:24 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.googleapis.com/css2?family=Teko:wght@300;400;500;600;700&display=swap | 142.250.74.138 | 200 OK | 8.9 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Teko:wght@300;400;500;600;700&display=swap IP142.250.74.138:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint04:B9:D9:E0:01:DB:5E:AB:5A:FF:F0:D9:ED:39:0F:C1:63:18:51:0B ValidityMon, 26 Feb 2024 08:18:27 GMT - Mon, 20 May 2024 08:18:26 GMT
File typegzip compressed data, max compression Hash85d46a5637ba22067b0fe060eb144386 64185d10dcae8f853f76dd9974c7fa0205009b4e 536a961351319bc5f15a0cede9d45fb54dfae2a3404f7a13060926767144cbcb
GET /css2?family=Teko:wght@300;400;500;600;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 27 Mar 2024 05:19:22 GMT
date: Wed, 27 Mar 2024 05:19:22 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.youtube.com/s/player/2923e6f1/player_ias.vflset/en_US/captions.js | 142.250.74.14 | 200 OK | 24 kB |
URL GET HTTP/3www.youtube.com/s/player/2923e6f1/player_ias.vflset/en_US/captions.js IP142.250.74.14:443
Requested byhttps://www.youtube.com/embed/bIFObDLYgP4?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint23:75:5E:3D:EA:9F:A0:42:86:8D:14:AE:43:04:F0:B2:91:0B:DA:CF ValidityMon, 26 Feb 2024 08:03:58 GMT - Mon, 20 May 2024 08:03:57 GMT
File typeJavaScript source, ASCII text, with very long lines (546) Hash328ea3f542e9560300467c684d34178f 1449fb58de18f8bdc97213d94d22a7b8dd118666 ee43184e22392f2162bf3274df11a5421f4bc893543ba1df44b947279d8bc6ef
GET /s/player/2923e6f1/player_ias.vflset/en_US/captions.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/bIFObDLYgP4?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 24417
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 21 Mar 2024 07:32:47 GMT
expires: Fri, 21 Mar 2025 07:32:47 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 21 Mar 2024 04:22:17 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 510397
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.youtube.com/api/stats/qoe?fmt=243&cpn=bOrdH36k65Y027Gy&el=embedded&ns=yt&fexp=v1%2C23983296%2C21348%2C76094%2C54572%2C304051%2C60172%2C24565%2C36318%2C6271%2C26439494%2C4054%2C7111%2C9369%2C10825%2C16149%2C9954%2C1191%2C26497%2C1598%2C3460%2C1908%2C2%2C6689%2C880%2C1127%2C663%2C5478%2C15449%2C593%2C6168%2C796%2C643%2C57%2C5833%2C2544%2C3102&cl=617698619&seq=1&docid=bIFObDLYgP4&ei=XKwDZoHLB5ONv_IP_YqfgAc&event=streamingstats&plid=AAYUnYzBSfFhrNoj&referrer=https%3A%2F%2Fwww.youtube.com%2Fembed%2FbIFObDLYgP4%3Fcontrols%3D0%26loop%3D1%26autoplay%3D1%26fs%3D1%26iv_load_policy%3D3%26showinfo%3D0%26rel%3D0%26cc_load_policy%3D0%26start%3D0%26end%3D0%26origin%3Dhttps%3A%2F%2Fyoutubeembedcode.com&qclc=ChBiT3JkSDM2azY1WTAyN0d5EAE&embargoed=0&cbr=Firefox&cbrver=96.0&c=WEB_EMBEDDED_PLAYER&cver=1.20240320.00.00&cplayer=UNIPLAYER&cos=X11&cplatform=DESKTOP&vps=0.000:N,0.012:B,0.330:B,0.330:B&cat=streaming&cmt=0.012:0.000,0.330:0.000&vfs=0.330:243:243::r&view=0.330:390:190&bwe=0.330:130000&vis=0.330:0&bh=0.330:0.000 | 142.250.74.14 | 204 No Content | 0 B |
URL POST HTTP/3www.youtube.com/api/stats/qoe?fmt=243&cpn=bOrdH36k65Y027Gy&el=embedded&ns=yt&fexp=v1%2C23983296%2C21348%2C76094%2C54572%2C304051%2C60172%2C24565%2C36318%2C6271%2C26439494%2C4054%2C7111%2C9369%2C10825%2C16149%2C9954%2C1191%2C26497%2C1598%2C3460%2C1908%2C2%2C6689%2C880%2C1127%2C663%2C5478%2C15449%2C593%2C6168%2C796%2C643%2C57%2C5833%2C2544%2C3102&cl=617698619&seq=1&docid=bIFObDLYgP4&ei=XKwDZoHLB5ONv_IP_YqfgAc&event=streamingstats&plid=AAYUnYzBSfFhrNoj&referrer=https%3A%2F%2Fwww.youtube.com%2Fembed%2FbIFObDLYgP4%3Fcontrols%3D0%26loop%3D1%26autoplay%3D1%26fs%3D1%26iv_load_policy%3D3%26showinfo%3D0%26rel%3D0%26cc_load_policy%3D0%26start%3D0%26end%3D0%26origin%3Dhttps%3A%2F%2Fyoutubeembedcode.com&qclc=ChBiT3JkSDM2azY1WTAyN0d5EAE&embargoed=0&cbr=Firefox&cbrver=96.0&c=WEB_EMBEDDED_PLAYER&cver=1.20240320.00.00&cplayer=UNIPLAYER&cos=X11&cplatform=DESKTOP&vps=0.000:N,0.012:B,0.330:B,0.330:B&cat=streaming&cmt=0.012:0.000,0.330:0.000&vfs=0.330:243:243::r&view=0.330:390:190&bwe=0.330:130000&vis=0.330:0&bh=0.330:0.000 IP142.250.74.14:443
Requested byhttps://www.youtube.com/embed/bIFObDLYgP4?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint23:75:5E:3D:EA:9F:A0:42:86:8D:14:AE:43:04:F0:B2:91:0B:DA:CF ValidityMon, 26 Feb 2024 08:03:58 GMT - Mon, 20 May 2024 08:03:57 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/stats/qoe?fmt=243&cpn=bOrdH36k65Y027Gy&el=embedded&ns=yt&fexp=v1%2C23983296%2C21348%2C76094%2C54572%2C304051%2C60172%2C24565%2C36318%2C6271%2C26439494%2C4054%2C7111%2C9369%2C10825%2C16149%2C9954%2C1191%2C26497%2C1598%2C3460%2C1908%2C2%2C6689%2C880%2C1127%2C663%2C5478%2C15449%2C593%2C6168%2C796%2C643%2C57%2C5833%2C2544%2C3102&cl=617698619&seq=1&docid=bIFObDLYgP4&ei=XKwDZoHLB5ONv_IP_YqfgAc&event=streamingstats&plid=AAYUnYzBSfFhrNoj&referrer=https%3A%2F%2Fwww.youtube.com%2Fembed%2FbIFObDLYgP4%3Fcontrols%3D0%26loop%3D1%26autoplay%3D1%26fs%3D1%26iv_load_policy%3D3%26showinfo%3D0%26rel%3D0%26cc_load_policy%3D0%26start%3D0%26end%3D0%26origin%3Dhttps%3A%2F%2Fyoutubeembedcode.com&qclc=ChBiT3JkSDM2azY1WTAyN0d5EAE&embargoed=0&cbr=Firefox&cbrver=96.0&c=WEB_EMBEDDED_PLAYER&cver=1.20240320.00.00&cplayer=UNIPLAYER&cos=X11&cplatform=DESKTOP&vps=0.000:N,0.012:B,0.330:B,0.330:B&cat=streaming&cmt=0.012:0.000,0.330:0.000&vfs=0.330:243:243::r&view=0.330:390:190&bwe=0.330:130000&vis=0.330:0&bh=0.330:0.000 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Visitor-Id: CgtteWprRUE1ajlabyja2I6wBjIOCgJOTxIIEgQSAgsMIG0%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20240320.00.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1711516763749&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C390%2C190&vis=1&wgl=true&ca_type=image
Content-Type: application/x-www-form-urlencoded
Content-Length: 226
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/bIFObDLYgP4?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
date: Wed, 27 Mar 2024 05:19:24 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
x-content-type-options: nosniff
server: Video Stats Server
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1711538364&ei=XKwDZoHLB5ONv_IP_YqfgAc&ip=91.90.42.154&id=o-AMLsGcTOE-I4oTmR0qk5EFSFOB3i2qmU5xTYSM9i5sbQ&itag=251&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=WK&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeen7y&ms=au%2Crdu&mv=u&mvi=1&pl=23&pcm2=no&bui=AaUN6a1o-LdaYRqh9Mh-4LuJ6pHFO8SFduBjcragq7_xUxqa_oc6fLfgJwrY3WpFlE8JRlH2L55Mx0o2&spc=UWF9fwfWQLkh0R41gqg67lh4UYJGQyb4MrkAJvI4YcG4CVc&vprv=1&svpuc=1&mime=audio%2Fwebm&ns=b_aLS39_B6AOkd-CmWa3GoAQ&gir=yes&clen=942363&dur=60.021&lmt=1706356634419309&mt=1711514812&fvip=4&keepalive=yes&fexp=51141541&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=5318224&n=o0qwlbq_TWzCSQ&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cxpc%2Cpcm2%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRQIhAM932EHehJyVng6UNt8Bl7ShnIY6pm05xkhVI_rJ7Q5wAiBHBsl6-6Qv4-ZAujNPM5uqYsiqJWghrdiymyv1AEKdHA%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl&lsig=ALClDIEwRgIhAI7kBPCC2V7PlkHyQ0UEfLJscuhZfW2UILwNlvd1nAPdAiEA4jS0KekWcxMLjHqL_5r5KKhxOUTwDSNYBzytuodK6Fs%3D&alr=yes&cpn=bOrdH36k65Y027Gy&cver=1.20240320.00.00&range=0-65916&rn=2&rbuf=0&pot=Ijpbc1twPXD3LxgULwc-JCsBCSYeQjoZNxI5CjESaTptBBkZEjwYFBE8DwsSOh4UCiAaFCg-EjRrVmg3&ump=1&srfvp=1 | 91.90.45.172 | 200 OK | 66 kB |
URL POST HTTP/1.1rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1711538364&ei=XKwDZoHLB5ONv_IP_YqfgAc&ip=91.90.42.154&id=o-AMLsGcTOE-I4oTmR0qk5EFSFOB3i2qmU5xTYSM9i5sbQ&itag=251&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=WK&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeen7y&ms=au%2Crdu&mv=u&mvi=1&pl=23&pcm2=no&bui=AaUN6a1o-LdaYRqh9Mh-4LuJ6pHFO8SFduBjcragq7_xUxqa_oc6fLfgJwrY3WpFlE8JRlH2L55Mx0o2&spc=UWF9fwfWQLkh0R41gqg67lh4UYJGQyb4MrkAJvI4YcG4CVc&vprv=1&svpuc=1&mime=audio%2Fwebm&ns=b_aLS39_B6AOkd-CmWa3GoAQ&gir=yes&clen=942363&dur=60.021&lmt=1706356634419309&mt=1711514812&fvip=4&keepalive=yes&fexp=51141541&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=5318224&n=o0qwlbq_TWzCSQ&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cxpc%2Cpcm2%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRQIhAM932EHehJyVng6UNt8Bl7ShnIY6pm05xkhVI_rJ7Q5wAiBHBsl6-6Qv4-ZAujNPM5uqYsiqJWghrdiymyv1AEKdHA%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl&lsig=ALClDIEwRgIhAI7kBPCC2V7PlkHyQ0UEfLJscuhZfW2UILwNlvd1nAPdAiEA4jS0KekWcxMLjHqL_5r5KKhxOUTwDSNYBzytuodK6Fs%3D&alr=yes&cpn=bOrdH36k65Y027Gy&cver=1.20240320.00.00&range=0-65916&rn=2&rbuf=0&pot=Ijpbc1twPXD3LxgULwc-JCsBCSYeQjoZNxI5CjESaTptBBkZEjwYFBE8DwsSOh4UCiAaFCg-EjRrVmg3&ump=1&srfvp=1 IP91.90.45.172:443 ASN#50304 Blix Solutions AS
Requested byhttps://www.youtube.com/embed/bIFObDLYgP4?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.googlevideo.com Fingerprint43:60:0A:FE:45:5A:88:DF:D4:70:59:65:97:40:04:76:D8:63:CB:29 ValidityTue, 12 Mar 2024 14:32:56 GMT - Tue, 21 May 2024 14:32:55 GMT
Hashc17ba15bd05b7fc6a94e05c67d4f04bc 0a895654985353b8e48a83b76c4bc8561af08741 451ba701019a5731948466a387cf2ca6f0037e306410b57ccb0421f8e1f7d4b1
POST /videoplayback?expire=1711538364&ei=XKwDZoHLB5ONv_IP_YqfgAc&ip=91.90.42.154&id=o-AMLsGcTOE-I4oTmR0qk5EFSFOB3i2qmU5xTYSM9i5sbQ&itag=251&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=WK&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeen7y&ms=au%2Crdu&mv=u&mvi=1&pl=23&pcm2=no&bui=AaUN6a1o-LdaYRqh9Mh-4LuJ6pHFO8SFduBjcragq7_xUxqa_oc6fLfgJwrY3WpFlE8JRlH2L55Mx0o2&spc=UWF9fwfWQLkh0R41gqg67lh4UYJGQyb4MrkAJvI4YcG4CVc&vprv=1&svpuc=1&mime=audio%2Fwebm&ns=b_aLS39_B6AOkd-CmWa3GoAQ&gir=yes&clen=942363&dur=60.021&lmt=1706356634419309&mt=1711514812&fvip=4&keepalive=yes&fexp=51141541&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=5318224&n=o0qwlbq_TWzCSQ&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cxpc%2Cpcm2%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRQIhAM932EHehJyVng6UNt8Bl7ShnIY6pm05xkhVI_rJ7Q5wAiBHBsl6-6Qv4-ZAujNPM5uqYsiqJWghrdiymyv1AEKdHA%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl&lsig=ALClDIEwRgIhAI7kBPCC2V7PlkHyQ0UEfLJscuhZfW2UILwNlvd1nAPdAiEA4jS0KekWcxMLjHqL_5r5KKhxOUTwDSNYBzytuodK6Fs%3D&alr=yes&cpn=bOrdH36k65Y027Gy&cver=1.20240320.00.00&range=0-65916&rn=2&rbuf=0&pot=Ijpbc1twPXD3LxgULwc-JCsBCSYeQjoZNxI5CjESaTptBBkZEjwYFBE8DwsSOh4UCiAaFCg-EjRrVmg3&ump=1&srfvp=1 HTTP/1.1
Host: rr1---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.youtube.com/
Content-Length: 2
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Last-Modified: Sat, 27 Jan 2024 11:57:14 GMT
Content-Type: application/vnd.yt-ump
Date: Wed, 27 Mar 2024 05:19:25 GMT
Expires: Wed, 27 Mar 2024 05:19:25 GMT
Cache-Control: private, max-age=21299
Transfer-Encoding: chunked
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,quic=":443"; ma=2592000; v="46"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Content-Type-Options: nosniff
Server: gvs 1.0
|
|
| rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1711538364&ei=XKwDZoHLB5ONv_IP_YqfgAc&ip=91.90.42.154&id=o-AMLsGcTOE-I4oTmR0qk5EFSFOB3i2qmU5xTYSM9i5sbQ&itag=243&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=WK&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeen7y&ms=au%2Crdu&mv=u&mvi=1&pl=23&pcm2=no&bui=AaUN6a1o-LdaYRqh9Mh-4LuJ6pHFO8SFduBjcragq7_xUxqa_oc6fLfgJwrY3WpFlE8JRlH2L55Mx0o2&spc=UWF9fwfWQLkh0R41gqg67lh4UYJGQyb4MrkAJvI4YcG4CVc&vprv=1&svpuc=1&mime=video%2Fwebm&ns=b_aLS39_B6AOkd-CmWa3GoAQ&gir=yes&clen=2714332&dur=59.999&lmt=1706356620906908&mt=1711514812&fvip=4&keepalive=yes&fexp=51141541&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=530F224&n=o0qwlbq_TWzCSQ&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cpcm2%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRQIhAP8FvdNB6vskyoW_JkusTnAww4cU2YruvckytKAXoBzJAiA0SYwIP2Kt117Z_y8aChlfBIpqiY9Y2eCoTQTMHGT0iA%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl&lsig=ALClDIEwRgIhAI7kBPCC2V7PlkHyQ0UEfLJscuhZfW2UILwNlvd1nAPdAiEA4jS0KekWcxMLjHqL_5r5KKhxOUTwDSNYBzytuodK6Fs%3D&alr=yes&cpn=bOrdH36k65Y027Gy&cver=1.20240320.00.00&range=0-119729&rn=1&rbuf=0&pot=IjrlQOVDg0NJHKYnkTSAF5UytxWgcYQqiSGHOY8h1wnTN6cqrA-mJ68PsTisCaAntBOkJ5YNrAfVZdYE&ump=1&srfvp=1 | 91.90.45.172 | 200 OK | 120 kB |
URL POST HTTP/1.1rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1711538364&ei=XKwDZoHLB5ONv_IP_YqfgAc&ip=91.90.42.154&id=o-AMLsGcTOE-I4oTmR0qk5EFSFOB3i2qmU5xTYSM9i5sbQ&itag=243&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=WK&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeen7y&ms=au%2Crdu&mv=u&mvi=1&pl=23&pcm2=no&bui=AaUN6a1o-LdaYRqh9Mh-4LuJ6pHFO8SFduBjcragq7_xUxqa_oc6fLfgJwrY3WpFlE8JRlH2L55Mx0o2&spc=UWF9fwfWQLkh0R41gqg67lh4UYJGQyb4MrkAJvI4YcG4CVc&vprv=1&svpuc=1&mime=video%2Fwebm&ns=b_aLS39_B6AOkd-CmWa3GoAQ&gir=yes&clen=2714332&dur=59.999&lmt=1706356620906908&mt=1711514812&fvip=4&keepalive=yes&fexp=51141541&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=530F224&n=o0qwlbq_TWzCSQ&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cpcm2%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRQIhAP8FvdNB6vskyoW_JkusTnAww4cU2YruvckytKAXoBzJAiA0SYwIP2Kt117Z_y8aChlfBIpqiY9Y2eCoTQTMHGT0iA%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl&lsig=ALClDIEwRgIhAI7kBPCC2V7PlkHyQ0UEfLJscuhZfW2UILwNlvd1nAPdAiEA4jS0KekWcxMLjHqL_5r5KKhxOUTwDSNYBzytuodK6Fs%3D&alr=yes&cpn=bOrdH36k65Y027Gy&cver=1.20240320.00.00&range=0-119729&rn=1&rbuf=0&pot=IjrlQOVDg0NJHKYnkTSAF5UytxWgcYQqiSGHOY8h1wnTN6cqrA-mJ68PsTisCaAntBOkJ5YNrAfVZdYE&ump=1&srfvp=1 IP91.90.45.172:443 ASN#50304 Blix Solutions AS
Requested byhttps://www.youtube.com/embed/bIFObDLYgP4?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.googlevideo.com Fingerprint43:60:0A:FE:45:5A:88:DF:D4:70:59:65:97:40:04:76:D8:63:CB:29 ValidityTue, 12 Mar 2024 14:32:56 GMT - Tue, 21 May 2024 14:32:55 GMT
Size120 kB (119787 bytes) Hash955a0f7a506b71d573c01d50cce269fb 6aa91aaf0b40d2eba92310842cc040d77f4e492c 0ec1b365ab86f9920dbd983acd120b1e0a9e3c550d6f8a03391b3660222be407
POST /videoplayback?expire=1711538364&ei=XKwDZoHLB5ONv_IP_YqfgAc&ip=91.90.42.154&id=o-AMLsGcTOE-I4oTmR0qk5EFSFOB3i2qmU5xTYSM9i5sbQ&itag=243&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=WK&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeen7y&ms=au%2Crdu&mv=u&mvi=1&pl=23&pcm2=no&bui=AaUN6a1o-LdaYRqh9Mh-4LuJ6pHFO8SFduBjcragq7_xUxqa_oc6fLfgJwrY3WpFlE8JRlH2L55Mx0o2&spc=UWF9fwfWQLkh0R41gqg67lh4UYJGQyb4MrkAJvI4YcG4CVc&vprv=1&svpuc=1&mime=video%2Fwebm&ns=b_aLS39_B6AOkd-CmWa3GoAQ&gir=yes&clen=2714332&dur=59.999&lmt=1706356620906908&mt=1711514812&fvip=4&keepalive=yes&fexp=51141541&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=530F224&n=o0qwlbq_TWzCSQ&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cpcm2%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRQIhAP8FvdNB6vskyoW_JkusTnAww4cU2YruvckytKAXoBzJAiA0SYwIP2Kt117Z_y8aChlfBIpqiY9Y2eCoTQTMHGT0iA%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl&lsig=ALClDIEwRgIhAI7kBPCC2V7PlkHyQ0UEfLJscuhZfW2UILwNlvd1nAPdAiEA4jS0KekWcxMLjHqL_5r5KKhxOUTwDSNYBzytuodK6Fs%3D&alr=yes&cpn=bOrdH36k65Y027Gy&cver=1.20240320.00.00&range=0-119729&rn=1&rbuf=0&pot=IjrlQOVDg0NJHKYnkTSAF5UytxWgcYQqiSGHOY8h1wnTN6cqrA-mJ68PsTisCaAntBOkJ5YNrAfVZdYE&ump=1&srfvp=1 HTTP/1.1
Host: rr1---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.youtube.com/
Content-Length: 2
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Last-Modified: Sat, 27 Jan 2024 11:57:00 GMT
Content-Type: application/vnd.yt-ump
Date: Wed, 27 Mar 2024 05:19:25 GMT
Expires: Wed, 27 Mar 2024 05:19:25 GMT
Cache-Control: private, max-age=21299
Transfer-Encoding: chunked
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,quic=":443"; ma=2592000; v="46"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Restrict-Formats-Hint: None
X-Content-Type-Options: nosniff
Server: gvs 1.0
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT | 142.250.74.10 | 200 OK | 0 B |
URL OPTIONS HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT IP142.250.74.10:443
Requested byhttps://www.youtube.com/embed/bIFObDLYgP4?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint04:B9:D9:E0:01:DB:5E:AB:5A:FF:F0:D9:ED:39:0F:C1:63:18:51:0B ValidityMon, 26 Feb 2024 08:18:27 GMT - Mon, 20 May 2024 08:18:26 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Wed, 27 Mar 2024 05:19:25 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1711538364&ei=XKwDZoHLB5ONv_IP_YqfgAc&ip=91.90.42.154&id=o-AMLsGcTOE-I4oTmR0qk5EFSFOB3i2qmU5xTYSM9i5sbQ&itag=251&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=WK&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeen7y&ms=au%2Crdu&mv=u&mvi=1&pl=23&pcm2=no&bui=AaUN6a1o-LdaYRqh9Mh-4LuJ6pHFO8SFduBjcragq7_xUxqa_oc6fLfgJwrY3WpFlE8JRlH2L55Mx0o2&spc=UWF9fwfWQLkh0R41gqg67lh4UYJGQyb4MrkAJvI4YcG4CVc&vprv=1&svpuc=1&mime=audio%2Fwebm&ns=b_aLS39_B6AOkd-CmWa3GoAQ&gir=yes&clen=942363&dur=60.021&lmt=1706356634419309&mt=1711514812&fvip=4&keepalive=yes&fexp=51141541&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=5318224&n=o0qwlbq_TWzCSQ&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cxpc%2Cpcm2%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRQIhAM932EHehJyVng6UNt8Bl7ShnIY6pm05xkhVI_rJ7Q5wAiBHBsl6-6Qv4-ZAujNPM5uqYsiqJWghrdiymyv1AEKdHA%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl&lsig=ALClDIEwRgIhAI7kBPCC2V7PlkHyQ0UEfLJscuhZfW2UILwNlvd1nAPdAiEA4jS0KekWcxMLjHqL_5r5KKhxOUTwDSNYBzytuodK6Fs%3D&alr=yes&cpn=bOrdH36k65Y027Gy&cver=1.20240320.00.00&range=65917-131452&rn=3&rbuf=3961&pot=IjrikOKWhJNOzaH3luSHx5LisMWnoYP6jvGA6Yjx0NnU56D6q9-h96jftuir2af3s8Oj95Hdq9fStdHU&ump=1&srfvp=1 | 91.90.45.172 | 200 OK | 66 kB |
URL POST HTTP/1.1rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1711538364&ei=XKwDZoHLB5ONv_IP_YqfgAc&ip=91.90.42.154&id=o-AMLsGcTOE-I4oTmR0qk5EFSFOB3i2qmU5xTYSM9i5sbQ&itag=251&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=WK&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeen7y&ms=au%2Crdu&mv=u&mvi=1&pl=23&pcm2=no&bui=AaUN6a1o-LdaYRqh9Mh-4LuJ6pHFO8SFduBjcragq7_xUxqa_oc6fLfgJwrY3WpFlE8JRlH2L55Mx0o2&spc=UWF9fwfWQLkh0R41gqg67lh4UYJGQyb4MrkAJvI4YcG4CVc&vprv=1&svpuc=1&mime=audio%2Fwebm&ns=b_aLS39_B6AOkd-CmWa3GoAQ&gir=yes&clen=942363&dur=60.021&lmt=1706356634419309&mt=1711514812&fvip=4&keepalive=yes&fexp=51141541&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=5318224&n=o0qwlbq_TWzCSQ&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cxpc%2Cpcm2%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRQIhAM932EHehJyVng6UNt8Bl7ShnIY6pm05xkhVI_rJ7Q5wAiBHBsl6-6Qv4-ZAujNPM5uqYsiqJWghrdiymyv1AEKdHA%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl&lsig=ALClDIEwRgIhAI7kBPCC2V7PlkHyQ0UEfLJscuhZfW2UILwNlvd1nAPdAiEA4jS0KekWcxMLjHqL_5r5KKhxOUTwDSNYBzytuodK6Fs%3D&alr=yes&cpn=bOrdH36k65Y027Gy&cver=1.20240320.00.00&range=65917-131452&rn=3&rbuf=3961&pot=IjrikOKWhJNOzaH3luSHx5LisMWnoYP6jvGA6Yjx0NnU56D6q9-h96jftuir2af3s8Oj95Hdq9fStdHU&ump=1&srfvp=1 IP91.90.45.172:443 ASN#50304 Blix Solutions AS
Requested byhttps://www.youtube.com/embed/bIFObDLYgP4?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.googlevideo.com Fingerprint43:60:0A:FE:45:5A:88:DF:D4:70:59:65:97:40:04:76:D8:63:CB:29 ValidityTue, 12 Mar 2024 14:32:56 GMT - Tue, 21 May 2024 14:32:55 GMT
Hash27f60b0d7566ce35aa3af28ae39059d5 6617ae3c6bed5efd7da31c4ce3786c505d6b78ba 2bf9536306d7d35053ce73cd8e7e6ffad6390575ae536cf765d24ae15c437ef9
POST /videoplayback?expire=1711538364&ei=XKwDZoHLB5ONv_IP_YqfgAc&ip=91.90.42.154&id=o-AMLsGcTOE-I4oTmR0qk5EFSFOB3i2qmU5xTYSM9i5sbQ&itag=251&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=WK&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeen7y&ms=au%2Crdu&mv=u&mvi=1&pl=23&pcm2=no&bui=AaUN6a1o-LdaYRqh9Mh-4LuJ6pHFO8SFduBjcragq7_xUxqa_oc6fLfgJwrY3WpFlE8JRlH2L55Mx0o2&spc=UWF9fwfWQLkh0R41gqg67lh4UYJGQyb4MrkAJvI4YcG4CVc&vprv=1&svpuc=1&mime=audio%2Fwebm&ns=b_aLS39_B6AOkd-CmWa3GoAQ&gir=yes&clen=942363&dur=60.021&lmt=1706356634419309&mt=1711514812&fvip=4&keepalive=yes&fexp=51141541&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=5318224&n=o0qwlbq_TWzCSQ&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cxpc%2Cpcm2%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRQIhAM932EHehJyVng6UNt8Bl7ShnIY6pm05xkhVI_rJ7Q5wAiBHBsl6-6Qv4-ZAujNPM5uqYsiqJWghrdiymyv1AEKdHA%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl&lsig=ALClDIEwRgIhAI7kBPCC2V7PlkHyQ0UEfLJscuhZfW2UILwNlvd1nAPdAiEA4jS0KekWcxMLjHqL_5r5KKhxOUTwDSNYBzytuodK6Fs%3D&alr=yes&cpn=bOrdH36k65Y027Gy&cver=1.20240320.00.00&range=65917-131452&rn=3&rbuf=3961&pot=IjrikOKWhJNOzaH3luSHx5LisMWnoYP6jvGA6Yjx0NnU56D6q9-h96jftuir2af3s8Oj95Hdq9fStdHU&ump=1&srfvp=1 HTTP/1.1
Host: rr1---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.youtube.com/
Content-Length: 2
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Last-Modified: Sat, 27 Jan 2024 11:57:14 GMT
Content-Type: application/vnd.yt-ump
Date: Wed, 27 Mar 2024 05:19:25 GMT
Expires: Wed, 27 Mar 2024 05:19:25 GMT
Cache-Control: private, max-age=21299
Transfer-Encoding: chunked
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,quic=":443"; ma=2592000; v="46"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Content-Type-Options: nosniff
Server: gvs 1.0
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT | 142.250.74.10 | 200 OK | 110 B |
URL OPTIONS HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT IP142.250.74.10:443
Requested byhttps://www.youtube.com/embed/bIFObDLYgP4?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint04:B9:D9:E0:01:DB:5E:AB:5A:FF:F0:D9:ED:39:0F:C1:63:18:51:0B ValidityMon, 26 Feb 2024 08:18:27 GMT - Mon, 20 May 2024 08:18:26 GMT
Hashe3826dd3d5d05ae5caa7bd840686346e 73938d6caa0f265e46c74f795550da02b08b3fad e5076153fae83436dac297899eb3585cac4045ce63a0759b5f89e1b6614fd8e5
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1043
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 27 Mar 2024 05:19:25 GMT
server: ESF
cache-control: private
content-length: 110
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.youtube.com/youtubei/v1/next?prettyPrint=false | 142.250.74.14 | 200 OK | 5.8 kB |
URL POST HTTP/3www.youtube.com/youtubei/v1/next?prettyPrint=false IP142.250.74.14:443
Requested byhttps://www.youtube.com/embed/bIFObDLYgP4?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint23:75:5E:3D:EA:9F:A0:42:86:8D:14:AE:43:04:F0:B2:91:0B:DA:CF ValidityMon, 26 Feb 2024 08:03:58 GMT - Mon, 20 May 2024 08:03:57 GMT
Hash4c18e11d2615434f96e0e8ad7a2daf10 d48efa23e27248f2b17f7a8e7bdc8f4217ee7f51 03afaa1b8d26354c2186f6d2f33388db937e89e098ec5b14c5a432ea8c2a1530
POST /youtubei/v1/next?prettyPrint=false HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Goog-Visitor-Id: CgtteWprRUE1ajlabyja2I6wBjIOCgJOTxIIEgQSAgsMIG0%3D
X-Youtube-Bootstrap-Logged-In: false
X-Youtube-Client-Name: 56
X-Youtube-Client-Version: 1.20240320.00.00
Content-Length: 2702
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/bIFObDLYgP4?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Wed, 27 Mar 2024 05:19:25 GMT
server: scaffolding on HTTPServer2
content-length: 5809
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| yt3.ggpht.com/lIpoIowWmXO0IxH_npHkX3EQ2VIcH43wbSMSDn41ffviZfBmRAsy6SDikeZ4fJvpd9xXuUnpy_c=s88-c-k-c0x00ffffff-no-rj | 142.250.74.65 | 200 OK | 5.1 kB |
URL GET HTTP/3yt3.ggpht.com/lIpoIowWmXO0IxH_npHkX3EQ2VIcH43wbSMSDn41ffviZfBmRAsy6SDikeZ4fJvpd9xXuUnpy_c=s88-c-k-c0x00ffffff-no-rj IP142.250.74.65:443
Requested byhttps://www.youtube.com/embed/bIFObDLYgP4?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.googleusercontent.com Fingerprint45:D1:C0:2D:E8:A2:E4:6C:89:C5:B6:FE:AE:99:83:B1:CA:66:17:CF ValidityMon, 26 Feb 2024 08:17:52 GMT - Mon, 20 May 2024 08:17:51 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 88x88, components 3 Hash606c02f62863b9cd24b0a287f45b8458 11db632881e2cdc995047ff9e22954940da08b91 47b918bc7397572355eceb7fe84d978d365cd2ec50e517e89478392109b3dc09
GET /lIpoIowWmXO0IxH_npHkX3EQ2VIcH43wbSMSDn41ffviZfBmRAsy6SDikeZ4fJvpd9xXuUnpy_c=s88-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="channels4_profile.jpg"
x-content-type-options: nosniff
server: fife
content-length: 5109
x-xss-protection: 0
date: Wed, 27 Mar 2024 02:46:11 GMT
expires: Thu, 28 Mar 2024 02:46:11 GMT
cache-control: public, max-age=86400, no-transform
age: 9194
etag: "v1"
content-type: image/jpeg
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 | 142.250.74.14 | 200 OK | 31 B |
URL POST HTTP/3www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 IP142.250.74.14:443
Requested byhttps://www.youtube.com/embed/bIFObDLYgP4?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint23:75:5E:3D:EA:9F:A0:42:86:8D:14:AE:43:04:F0:B2:91:0B:DA:CF ValidityMon, 26 Feb 2024 08:03:58 GMT - Mon, 20 May 2024 08:03:57 GMT
Hash5e1fa6fd9abd549a576f3f24b1d3c8d4 d5335d7f7d33be6a0b663f03b2df4df2521c4a87 d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336
POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1711516765408
Content-Type: application/json
X-Goog-Visitor-Id: CgtteWprRUE1ajlabyja2I6wBjIOCgJOTxIIEgQSAgsMIG0%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20240320.00.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1711516763749&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C390%2C190&vis=1&wgl=true&ca_type=image
Content-Length: 17198
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/bIFObDLYgP4?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Wed, 27 Mar 2024 05:19:25 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 | 142.250.74.14 | 200 OK | 31 B |
URL POST HTTP/3www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 IP142.250.74.14:443
Requested byhttps://www.youtube.com/embed/bIFObDLYgP4?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint23:75:5E:3D:EA:9F:A0:42:86:8D:14:AE:43:04:F0:B2:91:0B:DA:CF ValidityMon, 26 Feb 2024 08:03:58 GMT - Mon, 20 May 2024 08:03:57 GMT
Hash5e1fa6fd9abd549a576f3f24b1d3c8d4 d5335d7f7d33be6a0b663f03b2df4df2521c4a87 d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336
POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1711516767079
Content-Type: application/json
X-Goog-Visitor-Id: CgtteWprRUE1ajlabyja2I6wBjIOCgJOTxIIEgQSAgsMIG0%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20240320.00.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1711516763348&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C390%2C190&vis=1&wgl=true&ca_type=image
Content-Length: 1286
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/bIFObDLYgP4?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Wed, 27 Mar 2024 05:19:27 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1711538364&ei=XKwDZoHLB5ONv_IP_YqfgAc&ip=91.90.42.154&id=o-AMLsGcTOE-I4oTmR0qk5EFSFOB3i2qmU5xTYSM9i5sbQ&itag=251&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=WK&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeen7y&ms=au%2Crdu&mv=u&mvi=1&pl=23&pcm2=no&bui=AaUN6a1o-LdaYRqh9Mh-4LuJ6pHFO8SFduBjcragq7_xUxqa_oc6fLfgJwrY3WpFlE8JRlH2L55Mx0o2&spc=UWF9fwfWQLkh0R41gqg67lh4UYJGQyb4MrkAJvI4YcG4CVc&vprv=1&svpuc=1&mime=audio%2Fwebm&ns=b_aLS39_B6AOkd-CmWa3GoAQ&gir=yes&clen=942363&dur=60.021&lmt=1706356634419309&mt=1711514812&fvip=4&keepalive=yes&fexp=51141541&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=5318224&n=o0qwlbq_TWzCSQ&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cxpc%2Cpcm2%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRQIhAM932EHehJyVng6UNt8Bl7ShnIY6pm05xkhVI_rJ7Q5wAiBHBsl6-6Qv4-ZAujNPM5uqYsiqJWghrdiymyv1AEKdHA%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl&lsig=ALClDIEwRgIhAI7kBPCC2V7PlkHyQ0UEfLJscuhZfW2UILwNlvd1nAPdAiEA4jS0KekWcxMLjHqL_5r5KKhxOUTwDSNYBzytuodK6Fs%3D&alr=yes&cpn=bOrdH36k65Y027Gy&cver=1.20240320.00.00&range=131453-262825&rn=5&rbuf=7923&pot=Mnbt_kfya8fzSO3Gkil8mzeo3CZ50rhwPqt7oZT2u64K_O93r2KXpjzQCAigD3ZxVizx2mttNMyl0_BQlIW2W6F2rdFk3glvy5GggR8UAW_p2HZ97YAlociMWFKe3pYoVN2y3yTgG0jNv426ImMHVFCTvPn3ch3A&ump=1&srfvp=1 | 91.90.45.172 | 200 OK | 140 kB |
URL POST HTTP/3rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1711538364&ei=XKwDZoHLB5ONv_IP_YqfgAc&ip=91.90.42.154&id=o-AMLsGcTOE-I4oTmR0qk5EFSFOB3i2qmU5xTYSM9i5sbQ&itag=251&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=WK&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeen7y&ms=au%2Crdu&mv=u&mvi=1&pl=23&pcm2=no&bui=AaUN6a1o-LdaYRqh9Mh-4LuJ6pHFO8SFduBjcragq7_xUxqa_oc6fLfgJwrY3WpFlE8JRlH2L55Mx0o2&spc=UWF9fwfWQLkh0R41gqg67lh4UYJGQyb4MrkAJvI4YcG4CVc&vprv=1&svpuc=1&mime=audio%2Fwebm&ns=b_aLS39_B6AOkd-CmWa3GoAQ&gir=yes&clen=942363&dur=60.021&lmt=1706356634419309&mt=1711514812&fvip=4&keepalive=yes&fexp=51141541&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=5318224&n=o0qwlbq_TWzCSQ&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cxpc%2Cpcm2%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRQIhAM932EHehJyVng6UNt8Bl7ShnIY6pm05xkhVI_rJ7Q5wAiBHBsl6-6Qv4-ZAujNPM5uqYsiqJWghrdiymyv1AEKdHA%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl&lsig=ALClDIEwRgIhAI7kBPCC2V7PlkHyQ0UEfLJscuhZfW2UILwNlvd1nAPdAiEA4jS0KekWcxMLjHqL_5r5KKhxOUTwDSNYBzytuodK6Fs%3D&alr=yes&cpn=bOrdH36k65Y027Gy&cver=1.20240320.00.00&range=131453-262825&rn=5&rbuf=7923&pot=Mnbt_kfya8fzSO3Gkil8mzeo3CZ50rhwPqt7oZT2u64K_O93r2KXpjzQCAigD3ZxVizx2mttNMyl0_BQlIW2W6F2rdFk3glvy5GggR8UAW_p2HZ97YAlociMWFKe3pYoVN2y3yTgG0jNv426ImMHVFCTvPn3ch3A&ump=1&srfvp=1 IP91.90.45.172:443 ASN#50304 Blix Solutions AS
Requested byhttps://www.youtube.com/embed/bIFObDLYgP4?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.googlevideo.com Fingerprint43:60:0A:FE:45:5A:88:DF:D4:70:59:65:97:40:04:76:D8:63:CB:29 ValidityTue, 12 Mar 2024 14:32:56 GMT - Tue, 21 May 2024 14:32:55 GMT
Size140 kB (139800 bytes) Hashef09f82c2aac35c92bb662624ec6d209 80b4e21749a351b9e80efa371579bb6541ea3646 ea4190567d8a6f86d4ea48326de9f8e66bf254f131c2254909dae77f25932205
POST /videoplayback?expire=1711538364&ei=XKwDZoHLB5ONv_IP_YqfgAc&ip=91.90.42.154&id=o-AMLsGcTOE-I4oTmR0qk5EFSFOB3i2qmU5xTYSM9i5sbQ&itag=251&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=WK&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeen7y&ms=au%2Crdu&mv=u&mvi=1&pl=23&pcm2=no&bui=AaUN6a1o-LdaYRqh9Mh-4LuJ6pHFO8SFduBjcragq7_xUxqa_oc6fLfgJwrY3WpFlE8JRlH2L55Mx0o2&spc=UWF9fwfWQLkh0R41gqg67lh4UYJGQyb4MrkAJvI4YcG4CVc&vprv=1&svpuc=1&mime=audio%2Fwebm&ns=b_aLS39_B6AOkd-CmWa3GoAQ&gir=yes&clen=942363&dur=60.021&lmt=1706356634419309&mt=1711514812&fvip=4&keepalive=yes&fexp=51141541&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=5318224&n=o0qwlbq_TWzCSQ&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cxpc%2Cpcm2%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRQIhAM932EHehJyVng6UNt8Bl7ShnIY6pm05xkhVI_rJ7Q5wAiBHBsl6-6Qv4-ZAujNPM5uqYsiqJWghrdiymyv1AEKdHA%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl&lsig=ALClDIEwRgIhAI7kBPCC2V7PlkHyQ0UEfLJscuhZfW2UILwNlvd1nAPdAiEA4jS0KekWcxMLjHqL_5r5KKhxOUTwDSNYBzytuodK6Fs%3D&alr=yes&cpn=bOrdH36k65Y027Gy&cver=1.20240320.00.00&range=131453-262825&rn=5&rbuf=7923&pot=Mnbt_kfya8fzSO3Gkil8mzeo3CZ50rhwPqt7oZT2u64K_O93r2KXpjzQCAigD3ZxVizx2mttNMyl0_BQlIW2W6F2rdFk3glvy5GggR8UAW_p2HZ97YAlociMWFKe3pYoVN2y3yTgG0jNv426ImMHVFCTvPn3ch3A&ump=1&srfvp=1 HTTP/1.1
Host: rr1---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.youtube.com/
Content-Length: 2
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
last-modified: Sat, 27 Jan 2024 11:57:14 GMT
content-type: application/vnd.yt-ump
date: Wed, 27 Mar 2024 05:19:25 GMT
expires: Wed, 27 Mar 2024 05:19:25 GMT
cache-control: private, max-age=21299
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,quic=":443"; ma=2592000; v="46"
client-protocol: quic
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
timing-allow-origin: https://www.youtube.com
access-control-expose-headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
vary: Origin
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
server: gvs 1.0
|
|
| www.youtube.com/api/stats/qoe?fmt=243&afmt=251&cpn=bOrdH36k65Y027Gy&el=embedded&ns=yt&fexp=v1%2C23983296%2C21348%2C76094%2C54572%2C304051%2C60172%2C24565%2C36318%2C6271%2C26439494%2C4054%2C7111%2C9369%2C10825%2C16149%2C9954%2C1191%2C26497%2C1598%2C3460%2C1908%2C2%2C6689%2C880%2C1127%2C663%2C5478%2C15449%2C593%2C6168%2C796%2C643%2C57%2C5833%2C2544%2C3102&cl=617698619&seq=2&docid=bIFObDLYgP4&ei=XKwDZoHLB5ONv_IP_YqfgAc&event=streamingstats&plid=AAYUnYzBSfFhrNoj&referrer=https%3A%2F%2Fwww.youtube.com%2Fembed%2FbIFObDLYgP4%3Fcontrols%3D0%26loop%3D1%26autoplay%3D1%26fs%3D1%26iv_load_policy%3D3%26showinfo%3D0%26rel%3D0%26cc_load_policy%3D0%26start%3D0%26end%3D0%26origin%3Dhttps%3A%2F%2Fyoutubeembedcode.com&qclc=ChBiT3JkSDM2azY1WTAyN0d5EAI&embargoed=0&cbr=Firefox&cbrver=96.0&c=WEB_EMBEDDED_PLAYER&cver=1.20240320.00.00&cplayer=UNIPLAYER&cos=X11&cplatform=DESKTOP&afs=0.333:251::i&cmt=0.359:0.000,10.002:0.000&vps=0.359:N&ctmp=dompaused:t.362;r.promise;m.NotAllowedError&bwm=10.002:1077548:1.828&bwe=10.002:5493121&bh=10.002:16.061 | 142.250.74.14 | 204 No Content | 0 B |
URL POST HTTP/3www.youtube.com/api/stats/qoe?fmt=243&afmt=251&cpn=bOrdH36k65Y027Gy&el=embedded&ns=yt&fexp=v1%2C23983296%2C21348%2C76094%2C54572%2C304051%2C60172%2C24565%2C36318%2C6271%2C26439494%2C4054%2C7111%2C9369%2C10825%2C16149%2C9954%2C1191%2C26497%2C1598%2C3460%2C1908%2C2%2C6689%2C880%2C1127%2C663%2C5478%2C15449%2C593%2C6168%2C796%2C643%2C57%2C5833%2C2544%2C3102&cl=617698619&seq=2&docid=bIFObDLYgP4&ei=XKwDZoHLB5ONv_IP_YqfgAc&event=streamingstats&plid=AAYUnYzBSfFhrNoj&referrer=https%3A%2F%2Fwww.youtube.com%2Fembed%2FbIFObDLYgP4%3Fcontrols%3D0%26loop%3D1%26autoplay%3D1%26fs%3D1%26iv_load_policy%3D3%26showinfo%3D0%26rel%3D0%26cc_load_policy%3D0%26start%3D0%26end%3D0%26origin%3Dhttps%3A%2F%2Fyoutubeembedcode.com&qclc=ChBiT3JkSDM2azY1WTAyN0d5EAI&embargoed=0&cbr=Firefox&cbrver=96.0&c=WEB_EMBEDDED_PLAYER&cver=1.20240320.00.00&cplayer=UNIPLAYER&cos=X11&cplatform=DESKTOP&afs=0.333:251::i&cmt=0.359:0.000,10.002:0.000&vps=0.359:N&ctmp=dompaused:t.362;r.promise;m.NotAllowedError&bwm=10.002:1077548:1.828&bwe=10.002:5493121&bh=10.002:16.061 IP142.250.74.14:443
Requested byhttps://www.youtube.com/embed/bIFObDLYgP4?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint23:75:5E:3D:EA:9F:A0:42:86:8D:14:AE:43:04:F0:B2:91:0B:DA:CF ValidityMon, 26 Feb 2024 08:03:58 GMT - Mon, 20 May 2024 08:03:57 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/stats/qoe?fmt=243&afmt=251&cpn=bOrdH36k65Y027Gy&el=embedded&ns=yt&fexp=v1%2C23983296%2C21348%2C76094%2C54572%2C304051%2C60172%2C24565%2C36318%2C6271%2C26439494%2C4054%2C7111%2C9369%2C10825%2C16149%2C9954%2C1191%2C26497%2C1598%2C3460%2C1908%2C2%2C6689%2C880%2C1127%2C663%2C5478%2C15449%2C593%2C6168%2C796%2C643%2C57%2C5833%2C2544%2C3102&cl=617698619&seq=2&docid=bIFObDLYgP4&ei=XKwDZoHLB5ONv_IP_YqfgAc&event=streamingstats&plid=AAYUnYzBSfFhrNoj&referrer=https%3A%2F%2Fwww.youtube.com%2Fembed%2FbIFObDLYgP4%3Fcontrols%3D0%26loop%3D1%26autoplay%3D1%26fs%3D1%26iv_load_policy%3D3%26showinfo%3D0%26rel%3D0%26cc_load_policy%3D0%26start%3D0%26end%3D0%26origin%3Dhttps%3A%2F%2Fyoutubeembedcode.com&qclc=ChBiT3JkSDM2azY1WTAyN0d5EAI&embargoed=0&cbr=Firefox&cbrver=96.0&c=WEB_EMBEDDED_PLAYER&cver=1.20240320.00.00&cplayer=UNIPLAYER&cos=X11&cplatform=DESKTOP&afs=0.333:251::i&cmt=0.359:0.000,10.002:0.000&vps=0.359:N&ctmp=dompaused:t.362;r.promise;m.NotAllowedError&bwm=10.002:1077548:1.828&bwe=10.002:5493121&bh=10.002:16.061 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Visitor-Id: CgtteWprRUE1ajlabyja2I6wBjIOCgJOTxIIEgQSAgsMIG0%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20240320.00.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1711516763749&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C390%2C190&vis=1&wgl=true&ca_type=image
Content-Type: application/x-www-form-urlencoded
Content-Length: 226
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/bIFObDLYgP4?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
date: Wed, 27 Mar 2024 05:19:33 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
x-content-type-options: nosniff
server: Video Stats Server
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1711538364&ei=XKwDZoHLB5ONv_IP_YqfgAc&ip=91.90.42.154&id=o-AMLsGcTOE-I4oTmR0qk5EFSFOB3i2qmU5xTYSM9i5sbQ&itag=243&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=WK&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeen7y&ms=au%2Crdu&mv=u&mvi=1&pl=23&pcm2=no&bui=AaUN6a1o-LdaYRqh9Mh-4LuJ6pHFO8SFduBjcragq7_xUxqa_oc6fLfgJwrY3WpFlE8JRlH2L55Mx0o2&spc=UWF9fwfWQLkh0R41gqg67lh4UYJGQyb4MrkAJvI4YcG4CVc&vprv=1&svpuc=1&mime=video%2Fwebm&ns=b_aLS39_B6AOkd-CmWa3GoAQ&gir=yes&clen=2714332&dur=59.999&lmt=1706356620906908&mt=1711514812&fvip=4&keepalive=yes&fexp=51141541&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=530F224&n=o0qwlbq_TWzCSQ&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cpcm2%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRQIhAP8FvdNB6vskyoW_JkusTnAww4cU2YruvckytKAXoBzJAiA0SYwIP2Kt117Z_y8aChlfBIpqiY9Y2eCoTQTMHGT0iA%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl&lsig=ALClDIEwRgIhAI7kBPCC2V7PlkHyQ0UEfLJscuhZfW2UILwNlvd1nAPdAiEA4jS0KekWcxMLjHqL_5r5KKhxOUTwDSNYBzytuodK6Fs%3D&alr=yes&cpn=bOrdH36k65Y027Gy&cver=1.20240320.00.00&range=314060-814371&rn=6&rbuf=10000&pot=Mnbt_kfya8fzSO3Gkil8mzeo3CZ50rhwPqt7oZT2u64K_O93r2KXpjzQCAigD3ZxVizx2mttNMyl0_BQlIW2W6F2rdFk3glvy5GggR8UAW_p2HZ97YAlociMWFKe3pYoVN2y3yTgG0jNv426ImMHVFCTvPn3ch3A&ump=1&srfvp=1 | 91.90.45.172 | 200 OK | 511 kB |
URL POST HTTP/3rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1711538364&ei=XKwDZoHLB5ONv_IP_YqfgAc&ip=91.90.42.154&id=o-AMLsGcTOE-I4oTmR0qk5EFSFOB3i2qmU5xTYSM9i5sbQ&itag=243&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=WK&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeen7y&ms=au%2Crdu&mv=u&mvi=1&pl=23&pcm2=no&bui=AaUN6a1o-LdaYRqh9Mh-4LuJ6pHFO8SFduBjcragq7_xUxqa_oc6fLfgJwrY3WpFlE8JRlH2L55Mx0o2&spc=UWF9fwfWQLkh0R41gqg67lh4UYJGQyb4MrkAJvI4YcG4CVc&vprv=1&svpuc=1&mime=video%2Fwebm&ns=b_aLS39_B6AOkd-CmWa3GoAQ&gir=yes&clen=2714332&dur=59.999&lmt=1706356620906908&mt=1711514812&fvip=4&keepalive=yes&fexp=51141541&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=530F224&n=o0qwlbq_TWzCSQ&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cpcm2%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRQIhAP8FvdNB6vskyoW_JkusTnAww4cU2YruvckytKAXoBzJAiA0SYwIP2Kt117Z_y8aChlfBIpqiY9Y2eCoTQTMHGT0iA%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl&lsig=ALClDIEwRgIhAI7kBPCC2V7PlkHyQ0UEfLJscuhZfW2UILwNlvd1nAPdAiEA4jS0KekWcxMLjHqL_5r5KKhxOUTwDSNYBzytuodK6Fs%3D&alr=yes&cpn=bOrdH36k65Y027Gy&cver=1.20240320.00.00&range=314060-814371&rn=6&rbuf=10000&pot=Mnbt_kfya8fzSO3Gkil8mzeo3CZ50rhwPqt7oZT2u64K_O93r2KXpjzQCAigD3ZxVizx2mttNMyl0_BQlIW2W6F2rdFk3glvy5GggR8UAW_p2HZ97YAlociMWFKe3pYoVN2y3yTgG0jNv426ImMHVFCTvPn3ch3A&ump=1&srfvp=1 IP91.90.45.172:443 ASN#50304 Blix Solutions AS
Requested byhttps://www.youtube.com/embed/bIFObDLYgP4?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.googlevideo.com Fingerprint43:60:0A:FE:45:5A:88:DF:D4:70:59:65:97:40:04:76:D8:63:CB:29 ValidityTue, 12 Mar 2024 14:32:56 GMT - Tue, 21 May 2024 14:32:55 GMT
Size511 kB (511266 bytes) Hash460b6d0c1152f9d5429a957165820aed e77a16857c0a4ca471a098c8cb1a4622159eadbc db38d985edc305fc97cc4897dfce6b5bb1f641961895ffcd4a2ea25a0e15753f
POST /videoplayback?expire=1711538364&ei=XKwDZoHLB5ONv_IP_YqfgAc&ip=91.90.42.154&id=o-AMLsGcTOE-I4oTmR0qk5EFSFOB3i2qmU5xTYSM9i5sbQ&itag=243&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=WK&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeen7y&ms=au%2Crdu&mv=u&mvi=1&pl=23&pcm2=no&bui=AaUN6a1o-LdaYRqh9Mh-4LuJ6pHFO8SFduBjcragq7_xUxqa_oc6fLfgJwrY3WpFlE8JRlH2L55Mx0o2&spc=UWF9fwfWQLkh0R41gqg67lh4UYJGQyb4MrkAJvI4YcG4CVc&vprv=1&svpuc=1&mime=video%2Fwebm&ns=b_aLS39_B6AOkd-CmWa3GoAQ&gir=yes&clen=2714332&dur=59.999&lmt=1706356620906908&mt=1711514812&fvip=4&keepalive=yes&fexp=51141541&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=530F224&n=o0qwlbq_TWzCSQ&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cpcm2%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRQIhAP8FvdNB6vskyoW_JkusTnAww4cU2YruvckytKAXoBzJAiA0SYwIP2Kt117Z_y8aChlfBIpqiY9Y2eCoTQTMHGT0iA%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl&lsig=ALClDIEwRgIhAI7kBPCC2V7PlkHyQ0UEfLJscuhZfW2UILwNlvd1nAPdAiEA4jS0KekWcxMLjHqL_5r5KKhxOUTwDSNYBzytuodK6Fs%3D&alr=yes&cpn=bOrdH36k65Y027Gy&cver=1.20240320.00.00&range=314060-814371&rn=6&rbuf=10000&pot=Mnbt_kfya8fzSO3Gkil8mzeo3CZ50rhwPqt7oZT2u64K_O93r2KXpjzQCAigD3ZxVizx2mttNMyl0_BQlIW2W6F2rdFk3glvy5GggR8UAW_p2HZ97YAlociMWFKe3pYoVN2y3yTgG0jNv426ImMHVFCTvPn3ch3A&ump=1&srfvp=1 HTTP/1.1
Host: rr1---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.youtube.com/
Content-Length: 2
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
last-modified: Sat, 27 Jan 2024 11:57:00 GMT
content-type: application/vnd.yt-ump
date: Wed, 27 Mar 2024 05:19:25 GMT
expires: Wed, 27 Mar 2024 05:19:25 GMT
cache-control: private, max-age=21299
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,quic=":443"; ma=2592000; v="46"
client-protocol: quic
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
timing-allow-origin: https://www.youtube.com
access-control-expose-headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
vary: Origin
cross-origin-resource-policy: cross-origin
x-restrict-formats-hint: None
x-content-type-options: nosniff
server: gvs 1.0
|
|
| www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 | 142.250.74.14 | 200 OK | 31 B |
URL POST HTTP/3www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 IP142.250.74.14:443
Requested byhttps://www.youtube.com/embed/bIFObDLYgP4?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint23:75:5E:3D:EA:9F:A0:42:86:8D:14:AE:43:04:F0:B2:91:0B:DA:CF ValidityMon, 26 Feb 2024 08:03:58 GMT - Mon, 20 May 2024 08:03:57 GMT
Hash5e1fa6fd9abd549a576f3f24b1d3c8d4 d5335d7f7d33be6a0b663f03b2df4df2521c4a87 d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336
POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1711516789989
Content-Type: application/json
X-Goog-Visitor-Id: CgtteWprRUE1ajlabyja2I6wBjIOCgJOTxIIEgQSAgsMIG0%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20240320.00.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1711516763348&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C390%2C190&vis=1&wgl=true&ca_type=image
Content-Length: 965
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/bIFObDLYgP4?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Wed, 27 Mar 2024 05:19:50 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| file.gifan.id/fontawesome.js | 104.21.234.35 | 200 OK | 11 kB |
URL GET HTTP/2file.gifan.id/fontawesome.js IP104.21.234.35:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGoogle Trust Services LLC Subjectgifan.id Fingerprint65:21:CF:78:C6:F3:9C:82:42:72:2D:29:CC:E1:28:F9:68:C7:DA:50 ValidityTue, 26 Mar 2024 02:33:24 GMT - Mon, 24 Jun 2024 02:33:23 GMT
File typeJavaScript source, ASCII text, with very long lines (10594), with CRLF line terminators Hash7653d4719abf98a98d6e9412e33976e6 0b4414adc9da488b97830ce789a79994ba55aa23 051afcaea280590a5c6a5c472ad0852783d794a8923c4d26e388656fc9dcd791
GET /fontawesome.js HTTP/1.1
Host: file.gifan.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 27 Mar 2024 05:19:22 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Fri, 29 Mar 2024 21:02:27 GMT
last-modified: Tue, 03 Jan 2023 12:39:32 GMT
vary: Accept-Encoding,User-Agent
x-powered-by: Niagahoster
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 375415
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=r1AoXFm7J8WRRFd%2BgrvwnmtVJs14cfhW6Q13lIg4nz%2FYuR11h31YuduqDOx3zTQ5rgNTRyB363yCWwWy94lC76%2BH91iFyBWAvCnkkLdJBQOcmBjevA8xzdhMu1erNLwm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86acecd4fbdc94c6-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1711538364&ei=XKwDZoHLB5ONv_IP_YqfgAc&ip=91.90.42.154&id=o-AMLsGcTOE-I4oTmR0qk5EFSFOB3i2qmU5xTYSM9i5sbQ&itag=243&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=WK&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeen7y&ms=au%2Crdu&mv=u&mvi=1&pl=23&pcm2=no&bui=AaUN6a1o-LdaYRqh9Mh-4LuJ6pHFO8SFduBjcragq7_xUxqa_oc6fLfgJwrY3WpFlE8JRlH2L55Mx0o2&spc=UWF9fwfWQLkh0R41gqg67lh4UYJGQyb4MrkAJvI4YcG4CVc&vprv=1&svpuc=1&mime=video%2Fwebm&ns=b_aLS39_B6AOkd-CmWa3GoAQ&gir=yes&clen=2714332&dur=59.999&lmt=1706356620906908&mt=1711514812&fvip=4&keepalive=yes&fexp=51141541&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=530F224&n=o0qwlbq_TWzCSQ&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cpcm2%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRQIhAP8FvdNB6vskyoW_JkusTnAww4cU2YruvckytKAXoBzJAiA0SYwIP2Kt117Z_y8aChlfBIpqiY9Y2eCoTQTMHGT0iA%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl&lsig=ALClDIEwRgIhAI7kBPCC2V7PlkHyQ0UEfLJscuhZfW2UILwNlvd1nAPdAiEA4jS0KekWcxMLjHqL_5r5KKhxOUTwDSNYBzytuodK6Fs%3D&alr=yes&cpn=bOrdH36k65Y027Gy&cver=1.20240320.00.00&range=814372-1783423&rn=8&rbuf=20000&pot=Mnbt_kfya8fzSO3Gkil8mzeo3CZ50rhwPqt7oZT2u64K_O93r2KXpjzQCAigD3ZxVizx2mttNMyl0_BQlIW2W6F2rdFk3glvy5GggR8UAW_p2HZ97YAlociMWFKe3pYoVN2y3yTgG0jNv426ImMHVFCTvPn3ch3A&ump=1&srfvp=1 | 91.90.45.172 | 200 OK | 969 kB |
URL POST HTTP/3rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1711538364&ei=XKwDZoHLB5ONv_IP_YqfgAc&ip=91.90.42.154&id=o-AMLsGcTOE-I4oTmR0qk5EFSFOB3i2qmU5xTYSM9i5sbQ&itag=243&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=WK&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeen7y&ms=au%2Crdu&mv=u&mvi=1&pl=23&pcm2=no&bui=AaUN6a1o-LdaYRqh9Mh-4LuJ6pHFO8SFduBjcragq7_xUxqa_oc6fLfgJwrY3WpFlE8JRlH2L55Mx0o2&spc=UWF9fwfWQLkh0R41gqg67lh4UYJGQyb4MrkAJvI4YcG4CVc&vprv=1&svpuc=1&mime=video%2Fwebm&ns=b_aLS39_B6AOkd-CmWa3GoAQ&gir=yes&clen=2714332&dur=59.999&lmt=1706356620906908&mt=1711514812&fvip=4&keepalive=yes&fexp=51141541&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=530F224&n=o0qwlbq_TWzCSQ&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cpcm2%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRQIhAP8FvdNB6vskyoW_JkusTnAww4cU2YruvckytKAXoBzJAiA0SYwIP2Kt117Z_y8aChlfBIpqiY9Y2eCoTQTMHGT0iA%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl&lsig=ALClDIEwRgIhAI7kBPCC2V7PlkHyQ0UEfLJscuhZfW2UILwNlvd1nAPdAiEA4jS0KekWcxMLjHqL_5r5KKhxOUTwDSNYBzytuodK6Fs%3D&alr=yes&cpn=bOrdH36k65Y027Gy&cver=1.20240320.00.00&range=814372-1783423&rn=8&rbuf=20000&pot=Mnbt_kfya8fzSO3Gkil8mzeo3CZ50rhwPqt7oZT2u64K_O93r2KXpjzQCAigD3ZxVizx2mttNMyl0_BQlIW2W6F2rdFk3glvy5GggR8UAW_p2HZ97YAlociMWFKe3pYoVN2y3yTgG0jNv426ImMHVFCTvPn3ch3A&ump=1&srfvp=1 IP91.90.45.172:443 ASN#50304 Blix Solutions AS
Requested byhttps://www.youtube.com/embed/bIFObDLYgP4?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.googlevideo.com Fingerprint43:60:0A:FE:45:5A:88:DF:D4:70:59:65:97:40:04:76:D8:63:CB:29 ValidityTue, 12 Mar 2024 14:32:56 GMT - Tue, 21 May 2024 14:32:55 GMT
Size969 kB (969111 bytes) Hash16f80f76e6e2f94b2b72a0faade65ed2 72883d31ab65e93412ba386ef8e3f68ab908be05 fefd1c9aaffcbc74173a88e83aad19e21970691edd04509308298a91e84949a1
POST /videoplayback?expire=1711538364&ei=XKwDZoHLB5ONv_IP_YqfgAc&ip=91.90.42.154&id=o-AMLsGcTOE-I4oTmR0qk5EFSFOB3i2qmU5xTYSM9i5sbQ&itag=243&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=WK&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeen7y&ms=au%2Crdu&mv=u&mvi=1&pl=23&pcm2=no&bui=AaUN6a1o-LdaYRqh9Mh-4LuJ6pHFO8SFduBjcragq7_xUxqa_oc6fLfgJwrY3WpFlE8JRlH2L55Mx0o2&spc=UWF9fwfWQLkh0R41gqg67lh4UYJGQyb4MrkAJvI4YcG4CVc&vprv=1&svpuc=1&mime=video%2Fwebm&ns=b_aLS39_B6AOkd-CmWa3GoAQ&gir=yes&clen=2714332&dur=59.999&lmt=1706356620906908&mt=1711514812&fvip=4&keepalive=yes&fexp=51141541&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=530F224&n=o0qwlbq_TWzCSQ&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cpcm2%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRQIhAP8FvdNB6vskyoW_JkusTnAww4cU2YruvckytKAXoBzJAiA0SYwIP2Kt117Z_y8aChlfBIpqiY9Y2eCoTQTMHGT0iA%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl&lsig=ALClDIEwRgIhAI7kBPCC2V7PlkHyQ0UEfLJscuhZfW2UILwNlvd1nAPdAiEA4jS0KekWcxMLjHqL_5r5KKhxOUTwDSNYBzytuodK6Fs%3D&alr=yes&cpn=bOrdH36k65Y027Gy&cver=1.20240320.00.00&range=814372-1783423&rn=8&rbuf=20000&pot=Mnbt_kfya8fzSO3Gkil8mzeo3CZ50rhwPqt7oZT2u64K_O93r2KXpjzQCAigD3ZxVizx2mttNMyl0_BQlIW2W6F2rdFk3glvy5GggR8UAW_p2HZ97YAlociMWFKe3pYoVN2y3yTgG0jNv426ImMHVFCTvPn3ch3A&ump=1&srfvp=1 HTTP/1.1
Host: rr1---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.youtube.com/
Content-Length: 2
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
last-modified: Sat, 27 Jan 2024 11:57:00 GMT
content-type: application/vnd.yt-ump
date: Wed, 27 Mar 2024 05:19:34 GMT
expires: Wed, 27 Mar 2024 05:19:34 GMT
cache-control: private, max-age=21290
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,quic=":443"; ma=2592000; v="46"
client-protocol: quic
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
timing-allow-origin: https://www.youtube.com
access-control-expose-headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
vary: Origin
cross-origin-resource-policy: cross-origin
x-restrict-formats-hint: None
x-content-type-options: nosniff
server: gvs 1.0
|
|
| rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1711538364&ei=XKwDZoHLB5ONv_IP_YqfgAc&ip=91.90.42.154&id=o-AMLsGcTOE-I4oTmR0qk5EFSFOB3i2qmU5xTYSM9i5sbQ&itag=251&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=WK&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeen7y&ms=au%2Crdu&mv=u&mvi=1&pl=23&pcm2=no&bui=AaUN6a1o-LdaYRqh9Mh-4LuJ6pHFO8SFduBjcragq7_xUxqa_oc6fLfgJwrY3WpFlE8JRlH2L55Mx0o2&spc=UWF9fwfWQLkh0R41gqg67lh4UYJGQyb4MrkAJvI4YcG4CVc&vprv=1&svpuc=1&mime=audio%2Fwebm&ns=b_aLS39_B6AOkd-CmWa3GoAQ&gir=yes&clen=942363&dur=60.021&lmt=1706356634419309&mt=1711514812&fvip=4&keepalive=yes&fexp=51141541&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=5318224&n=o0qwlbq_TWzCSQ&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cxpc%2Cpcm2%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRQIhAM932EHehJyVng6UNt8Bl7ShnIY6pm05xkhVI_rJ7Q5wAiBHBsl6-6Qv4-ZAujNPM5uqYsiqJWghrdiymyv1AEKdHA%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl&lsig=ALClDIEwRgIhAI7kBPCC2V7PlkHyQ0UEfLJscuhZfW2UILwNlvd1nAPdAiEA4jS0KekWcxMLjHqL_5r5KKhxOUTwDSNYBzytuodK6Fs%3D&alr=yes&cpn=bOrdH36k65Y027Gy&cver=1.20240320.00.00&range=262826-478659&rn=7&rbuf=16141&pot=Mnbt_kfya8fzSO3Gkil8mzeo3CZ50rhwPqt7oZT2u64K_O93r2KXpjzQCAigD3ZxVizx2mttNMyl0_BQlIW2W6F2rdFk3glvy5GggR8UAW_p2HZ97YAlociMWFKe3pYoVN2y3yTgG0jNv426ImMHVFCTvPn3ch3A&ump=1&srfvp=1 | 91.90.45.172 | 200 OK | 216 kB |
URL POST HTTP/3rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1711538364&ei=XKwDZoHLB5ONv_IP_YqfgAc&ip=91.90.42.154&id=o-AMLsGcTOE-I4oTmR0qk5EFSFOB3i2qmU5xTYSM9i5sbQ&itag=251&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=WK&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeen7y&ms=au%2Crdu&mv=u&mvi=1&pl=23&pcm2=no&bui=AaUN6a1o-LdaYRqh9Mh-4LuJ6pHFO8SFduBjcragq7_xUxqa_oc6fLfgJwrY3WpFlE8JRlH2L55Mx0o2&spc=UWF9fwfWQLkh0R41gqg67lh4UYJGQyb4MrkAJvI4YcG4CVc&vprv=1&svpuc=1&mime=audio%2Fwebm&ns=b_aLS39_B6AOkd-CmWa3GoAQ&gir=yes&clen=942363&dur=60.021&lmt=1706356634419309&mt=1711514812&fvip=4&keepalive=yes&fexp=51141541&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=5318224&n=o0qwlbq_TWzCSQ&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cxpc%2Cpcm2%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRQIhAM932EHehJyVng6UNt8Bl7ShnIY6pm05xkhVI_rJ7Q5wAiBHBsl6-6Qv4-ZAujNPM5uqYsiqJWghrdiymyv1AEKdHA%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl&lsig=ALClDIEwRgIhAI7kBPCC2V7PlkHyQ0UEfLJscuhZfW2UILwNlvd1nAPdAiEA4jS0KekWcxMLjHqL_5r5KKhxOUTwDSNYBzytuodK6Fs%3D&alr=yes&cpn=bOrdH36k65Y027Gy&cver=1.20240320.00.00&range=262826-478659&rn=7&rbuf=16141&pot=Mnbt_kfya8fzSO3Gkil8mzeo3CZ50rhwPqt7oZT2u64K_O93r2KXpjzQCAigD3ZxVizx2mttNMyl0_BQlIW2W6F2rdFk3glvy5GggR8UAW_p2HZ97YAlociMWFKe3pYoVN2y3yTgG0jNv426ImMHVFCTvPn3ch3A&ump=1&srfvp=1 IP91.90.45.172:443 ASN#50304 Blix Solutions AS
Requested byhttps://www.youtube.com/embed/bIFObDLYgP4?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.googlevideo.com Fingerprint43:60:0A:FE:45:5A:88:DF:D4:70:59:65:97:40:04:76:D8:63:CB:29 ValidityTue, 12 Mar 2024 14:32:56 GMT - Tue, 21 May 2024 14:32:55 GMT
Size216 kB (215893 bytes) Hash4eaf9dc576e7eec877c415af408cee90 588f34526a4aa0e4fd3a3657fd69239ff0cd66d9 b28aad4942c693fff1a3613bf34a94819eb5429bbe49c6fbed9e26ec36c682e1
POST /videoplayback?expire=1711538364&ei=XKwDZoHLB5ONv_IP_YqfgAc&ip=91.90.42.154&id=o-AMLsGcTOE-I4oTmR0qk5EFSFOB3i2qmU5xTYSM9i5sbQ&itag=251&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=WK&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeen7y&ms=au%2Crdu&mv=u&mvi=1&pl=23&pcm2=no&bui=AaUN6a1o-LdaYRqh9Mh-4LuJ6pHFO8SFduBjcragq7_xUxqa_oc6fLfgJwrY3WpFlE8JRlH2L55Mx0o2&spc=UWF9fwfWQLkh0R41gqg67lh4UYJGQyb4MrkAJvI4YcG4CVc&vprv=1&svpuc=1&mime=audio%2Fwebm&ns=b_aLS39_B6AOkd-CmWa3GoAQ&gir=yes&clen=942363&dur=60.021&lmt=1706356634419309&mt=1711514812&fvip=4&keepalive=yes&fexp=51141541&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=5318224&n=o0qwlbq_TWzCSQ&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cxpc%2Cpcm2%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRQIhAM932EHehJyVng6UNt8Bl7ShnIY6pm05xkhVI_rJ7Q5wAiBHBsl6-6Qv4-ZAujNPM5uqYsiqJWghrdiymyv1AEKdHA%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl&lsig=ALClDIEwRgIhAI7kBPCC2V7PlkHyQ0UEfLJscuhZfW2UILwNlvd1nAPdAiEA4jS0KekWcxMLjHqL_5r5KKhxOUTwDSNYBzytuodK6Fs%3D&alr=yes&cpn=bOrdH36k65Y027Gy&cver=1.20240320.00.00&range=262826-478659&rn=7&rbuf=16141&pot=Mnbt_kfya8fzSO3Gkil8mzeo3CZ50rhwPqt7oZT2u64K_O93r2KXpjzQCAigD3ZxVizx2mttNMyl0_BQlIW2W6F2rdFk3glvy5GggR8UAW_p2HZ97YAlociMWFKe3pYoVN2y3yTgG0jNv426ImMHVFCTvPn3ch3A&ump=1&srfvp=1 HTTP/1.1
Host: rr1---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.youtube.com/
Content-Length: 2
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
last-modified: Sat, 27 Jan 2024 11:57:14 GMT
content-type: application/vnd.yt-ump
date: Wed, 27 Mar 2024 05:19:34 GMT
expires: Wed, 27 Mar 2024 05:19:34 GMT
cache-control: private, max-age=21290
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,quic=":443"; ma=2592000; v="46"
client-protocol: quic
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
timing-allow-origin: https://www.youtube.com
access-control-expose-headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
vary: Origin
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
server: gvs 1.0
|
|
| i.postimg.cc/nVkV8M0W/FfMaxx.jpg | 162.19.88.69 | 200 OK | 37 kB |
URL GET HTTP/2i.postimg.cc/nVkV8M0W/FfMaxx.jpg IP162.19.88.69:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerLet's Encrypt Subjectpostimg.cc FingerprintF9:1B:A9:B2:AB:2D:30:75:4E:44:3F:7A:6F:40:77:77:39:CE:1B:13 ValidityWed, 21 Feb 2024 07:13:33 GMT - Tue, 21 May 2024 07:13:32 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 512x512, components 3 Hash61aa45bf291755caa8f0664e4e8b91e9 33f6c6304486ce8004d9d459f08aa6b95982f0ba 323b5ffc0bc7f906cf266b1622e4de3f8dfddcb3f38c460e58b468906d51ebf3
GET /nVkV8M0W/FfMaxx.jpg HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 27 Mar 2024 05:19:24 GMT
content-type: image/jpeg
content-length: 37166
last-modified: Sat, 04 Mar 2023 14:21:43 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| filebagasarya.com/css/ff/facebook.css | 188.114.96.1 | 200 OK | 5.2 kB |
URL GET HTTP/2filebagasarya.com/css/ff/facebook.css IP188.114.96.1:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGoogle Trust Services LLC Subjectfilebagasarya.com FingerprintF8:10:79:DD:D9:42:FF:FD:E3:35:9B:09:62:4F:9B:40:07:DD:BA:85 ValidityMon, 26 Feb 2024 19:06:41 GMT - Sun, 26 May 2024 19:06:40 GMT
File typeASCII text, with very long lines (5644), with no line terminators Hash6c6eede9c902bf0866eeddd6e031b122 25ae33158196270672483a1e0dbda68509485a5f 80b152572eaf6ad6ebc58b3983d99fede9df16c73de5d0e9bf4a8857bcce7201
GET /css/ff/facebook.css HTTP/1.1
Host: filebagasarya.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 27 Mar 2024 05:19:22 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Tue, 02 Apr 2024 18:28:48 GMT
last-modified: Mon, 06 Nov 2023 21:44:36 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 39034
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jAN1tSLQZPVwpYhJ9Rio%2F8TUuFSYNrDNc09%2BMiKiMoDbiu97Yb06%2FVn1xUcppqct8nv0WyNKzXgsm7ijg%2FahucOGIs2JsW4u2OxsUYX6lYn29Ba9fDXZ3o3xlws7Lq%2FyQ4ppKg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86acecd45bad56c4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1711538364&ei=XKwDZoHLB5ONv_IP_YqfgAc&ip=91.90.42.154&id=o-AMLsGcTOE-I4oTmR0qk5EFSFOB3i2qmU5xTYSM9i5sbQ&itag=243&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=WK&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeen7y&ms=au%2Crdu&mv=u&mvi=1&pl=23&pcm2=no&bui=AaUN6a1o-LdaYRqh9Mh-4LuJ6pHFO8SFduBjcragq7_xUxqa_oc6fLfgJwrY3WpFlE8JRlH2L55Mx0o2&spc=UWF9fwfWQLkh0R41gqg67lh4UYJGQyb4MrkAJvI4YcG4CVc&vprv=1&svpuc=1&mime=video%2Fwebm&ns=b_aLS39_B6AOkd-CmWa3GoAQ&gir=yes&clen=2714332&dur=59.999&lmt=1706356620906908&mt=1711514812&fvip=4&keepalive=yes&fexp=51141541&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=530F224&n=o0qwlbq_TWzCSQ&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cpcm2%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRQIhAP8FvdNB6vskyoW_JkusTnAww4cU2YruvckytKAXoBzJAiA0SYwIP2Kt117Z_y8aChlfBIpqiY9Y2eCoTQTMHGT0iA%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl&lsig=ALClDIEwRgIhAI7kBPCC2V7PlkHyQ0UEfLJscuhZfW2UILwNlvd1nAPdAiEA4jS0KekWcxMLjHqL_5r5KKhxOUTwDSNYBzytuodK6Fs%3D&alr=yes&cpn=bOrdH36k65Y027Gy&cver=1.20240320.00.00&range=119730-314059&rn=4&rbuf=5111&pot=Mnbt_kfya8fzSO3Gkil8mzeo3CZ50rhwPqt7oZT2u64K_O93r2KXpjzQCAigD3ZxVizx2mttNMyl0_BQlIW2W6F2rdFk3glvy5GggR8UAW_p2HZ97YAlociMWFKe3pYoVN2y3yTgG0jNv426ImMHVFCTvPn3ch3A&ump=1&srfvp=1 | 91.90.45.172 | 200 OK | 194 kB |
URL POST HTTP/3rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1711538364&ei=XKwDZoHLB5ONv_IP_YqfgAc&ip=91.90.42.154&id=o-AMLsGcTOE-I4oTmR0qk5EFSFOB3i2qmU5xTYSM9i5sbQ&itag=243&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=WK&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeen7y&ms=au%2Crdu&mv=u&mvi=1&pl=23&pcm2=no&bui=AaUN6a1o-LdaYRqh9Mh-4LuJ6pHFO8SFduBjcragq7_xUxqa_oc6fLfgJwrY3WpFlE8JRlH2L55Mx0o2&spc=UWF9fwfWQLkh0R41gqg67lh4UYJGQyb4MrkAJvI4YcG4CVc&vprv=1&svpuc=1&mime=video%2Fwebm&ns=b_aLS39_B6AOkd-CmWa3GoAQ&gir=yes&clen=2714332&dur=59.999&lmt=1706356620906908&mt=1711514812&fvip=4&keepalive=yes&fexp=51141541&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=530F224&n=o0qwlbq_TWzCSQ&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cpcm2%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRQIhAP8FvdNB6vskyoW_JkusTnAww4cU2YruvckytKAXoBzJAiA0SYwIP2Kt117Z_y8aChlfBIpqiY9Y2eCoTQTMHGT0iA%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl&lsig=ALClDIEwRgIhAI7kBPCC2V7PlkHyQ0UEfLJscuhZfW2UILwNlvd1nAPdAiEA4jS0KekWcxMLjHqL_5r5KKhxOUTwDSNYBzytuodK6Fs%3D&alr=yes&cpn=bOrdH36k65Y027Gy&cver=1.20240320.00.00&range=119730-314059&rn=4&rbuf=5111&pot=Mnbt_kfya8fzSO3Gkil8mzeo3CZ50rhwPqt7oZT2u64K_O93r2KXpjzQCAigD3ZxVizx2mttNMyl0_BQlIW2W6F2rdFk3glvy5GggR8UAW_p2HZ97YAlociMWFKe3pYoVN2y3yTgG0jNv426ImMHVFCTvPn3ch3A&ump=1&srfvp=1 IP91.90.45.172:443 ASN#50304 Blix Solutions AS
Requested byhttps://www.youtube.com/embed/bIFObDLYgP4?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.googlevideo.com Fingerprint43:60:0A:FE:45:5A:88:DF:D4:70:59:65:97:40:04:76:D8:63:CB:29 ValidityTue, 12 Mar 2024 14:32:56 GMT - Tue, 21 May 2024 14:32:55 GMT
Size194 kB (194389 bytes) Hash0e432e38e6483ab9430cb2d1c42e048a ac691595c303336f807e714df0e08c7d4b74b83e 678a4ba2015b8110cd7c997fbd8ce9fdf6c81144cfa4351a785b9f306d003e4d
POST /videoplayback?expire=1711538364&ei=XKwDZoHLB5ONv_IP_YqfgAc&ip=91.90.42.154&id=o-AMLsGcTOE-I4oTmR0qk5EFSFOB3i2qmU5xTYSM9i5sbQ&itag=243&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=WK&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeen7y&ms=au%2Crdu&mv=u&mvi=1&pl=23&pcm2=no&bui=AaUN6a1o-LdaYRqh9Mh-4LuJ6pHFO8SFduBjcragq7_xUxqa_oc6fLfgJwrY3WpFlE8JRlH2L55Mx0o2&spc=UWF9fwfWQLkh0R41gqg67lh4UYJGQyb4MrkAJvI4YcG4CVc&vprv=1&svpuc=1&mime=video%2Fwebm&ns=b_aLS39_B6AOkd-CmWa3GoAQ&gir=yes&clen=2714332&dur=59.999&lmt=1706356620906908&mt=1711514812&fvip=4&keepalive=yes&fexp=51141541&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=530F224&n=o0qwlbq_TWzCSQ&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cpcm2%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRQIhAP8FvdNB6vskyoW_JkusTnAww4cU2YruvckytKAXoBzJAiA0SYwIP2Kt117Z_y8aChlfBIpqiY9Y2eCoTQTMHGT0iA%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl&lsig=ALClDIEwRgIhAI7kBPCC2V7PlkHyQ0UEfLJscuhZfW2UILwNlvd1nAPdAiEA4jS0KekWcxMLjHqL_5r5KKhxOUTwDSNYBzytuodK6Fs%3D&alr=yes&cpn=bOrdH36k65Y027Gy&cver=1.20240320.00.00&range=119730-314059&rn=4&rbuf=5111&pot=Mnbt_kfya8fzSO3Gkil8mzeo3CZ50rhwPqt7oZT2u64K_O93r2KXpjzQCAigD3ZxVizx2mttNMyl0_BQlIW2W6F2rdFk3glvy5GggR8UAW_p2HZ97YAlociMWFKe3pYoVN2y3yTgG0jNv426ImMHVFCTvPn3ch3A&ump=1&srfvp=1 HTTP/1.1
Host: rr1---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.youtube.com/
Content-Length: 2
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
last-modified: Sat, 27 Jan 2024 11:57:00 GMT
content-type: application/vnd.yt-ump
date: Wed, 27 Mar 2024 05:19:25 GMT
expires: Wed, 27 Mar 2024 05:19:25 GMT
cache-control: private, max-age=21299
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,quic=":443"; ma=2592000; v="46"
client-protocol: quic
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
timing-allow-origin: https://www.youtube.com
access-control-expose-headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
vary: Origin
cross-origin-resource-policy: cross-origin
x-restrict-formats-hint: None
x-content-type-options: nosniff
server: gvs 1.0
|
|
| cdn.jsdelivr.net/gh/AlexHostX/mlbb@main/old/logo.png | 151.101.129.229 | 404 Not Found | 0 B |
URL GET HTTP/2cdn.jsdelivr.net/gh/AlexHostX/mlbb@main/old/logo.png IP151.101.129.229:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /gh/AlexHostX/mlbb@main/old/logo.png HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=600, s-maxage=600
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/plain; charset=utf-8
etag: W/"30-mrCA2m5yFh5WWEa6T+mjJ5+Pms8"
content-encoding: br
accept-ranges: bytes
date: Wed, 27 Mar 2024 05:19:22 GMT
age: 294
x-served-by: cache-fra-eddf8230118-FRA, cache-hel1410028-HEL
x-cache: HIT, MISS
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 53
X-Firefox-Spdy: h2
|
|
| ka-f.fontawesome.com/releases/v6.0.0/css/free-v4-shims.min.css?token=869e25b803 | 172.64.107.23 | 200 OK | 26 kB |
URL GET HTTP/2ka-f.fontawesome.com/releases/v6.0.0/css/free-v4-shims.min.css?token=869e25b803 IP172.64.107.23:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGoogle Trust Services LLC Subjectka-f.fontawesome.com Fingerprint8D:43:33:42:48:C0:F5:34:71:EC:49:69:9C:62:01:4A:6F:41:11:98 ValidityTue, 05 Mar 2024 09:23:28 GMT - Mon, 03 Jun 2024 09:23:27 GMT
File typeASCII text, with very long lines (26019) Hashc32e971c7d11c2407f847b61c515f1e2 85ac47a05e49f01cd62301ee121a2ca0dfdc0f83 a7fb3a26d569bec0139baaae950e43c1e10b0afbcf6e9d7654aa1181a8319759
GET /releases/v6.0.0/css/free-v4-shims.min.css?token=869e25b803 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://md1td.arach4n.biz.id/
Origin: https://md1td.arach4n.biz.id
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 27 Mar 2024 05:19:23 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 07 Feb 2022 20:11:39 GMT
etag: W/"c32e971c7d11c2407f847b61c515f1e2"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 67c28c3777e19eb797bcdb8909f34c46.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR5-P6
x-amz-cf-id: tO-k9jpYB7Zogdy435GoKEdfWTKwkSq7jrlv-f1g_5t3CMNNmMWjxA==
age: 85430
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9J4V4CpSkYJyT9a1RMu79rzKxBPl77N2wGEKe%2B7BK7wHOHDi0urBVGpFWoCGQyVTPKCOy4C%2Fs41bA9z7n%2BpcjVcZsOHzgGuOIXSsdibNPpSR1DLyP3QaLu8xqGnvOA2Mzcu04mwKRw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86acecddfc378889-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ka-f.fontawesome.com/releases/v6.0.0/css/free-v4-font-face.min.css?token=869e25b803 | 172.64.107.23 | 200 OK | 1.8 kB |
URL GET HTTP/2ka-f.fontawesome.com/releases/v6.0.0/css/free-v4-font-face.min.css?token=869e25b803 IP172.64.107.23:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGoogle Trust Services LLC Subjectka-f.fontawesome.com Fingerprint8D:43:33:42:48:C0:F5:34:71:EC:49:69:9C:62:01:4A:6F:41:11:98 ValidityTue, 05 Mar 2024 09:23:28 GMT - Mon, 03 Jun 2024 09:23:27 GMT
File typeASCII text, with very long lines (1817), with no line terminators Hash3dedc00973400e03c5ede855beb3e8b5 c72d245eb6fa18840821a7d53634a4f8ac5119d0 a45344d4b89aadfcddc80ff5e6de83bcbb2799a2af99a046e1cea1dd6fe0f28c
GET /releases/v6.0.0/css/free-v4-font-face.min.css?token=869e25b803 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://md1td.arach4n.biz.id/
Origin: https://md1td.arach4n.biz.id
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 27 Mar 2024 05:19:23 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 07 Feb 2022 20:11:39 GMT
etag: W/"369cbeaee8e26da69cc5b0a0700cd62c"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 788e7cec8a9b6bde5e20bba996dbd1d8.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR5-P6
x-amz-cf-id: ceGX_mD5nWFdkhHLbyWOIU0s_5J_PDXaViwojF9rI6RZ9ZeDEjY0xw==
age: 85430
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9Z3tsAOWIx6fCrCq9umr6zJjNm5Mcl20ar3bLpKsEb94vqocNWF%2BticLyCtnvMZr2Dx%2Bh77fx0QyL3FmLtrqY7Gj42XtECE4X6P%2FwPNalDv%2FCTpa11Bqz9tgMYLPbD%2B%2FI3D6TSH35Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86acecddec288889-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css | 104.18.10.207 | 200 OK | 31 kB |
URL GET HTTP/2stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css IP104.18.10.207:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerGoogle Trust Services LLC Subjectbootstrapcdn.com Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63 ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT
File typeASCII text, with very long lines (30837) Hash269550530cc127b6aa5a35925a7de6ce 512c7d79033e3028a9be61b540cf1a6870c896f8 799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 27 Mar 2024 05:19:22 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"269550530cc127b6aa5a35925a7de6ce"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 10/31/2023 18:48:06
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 722
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: dd809c84048d5afa8e77adc8acacd559
cdn-cache: HIT
cf-cache-status: HIT
age: 10890937
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 86acecd3ef35b505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.youtube.com/s/player/2923e6f1/player_ias.vflset/en_US/annotations_module.js | 142.250.74.14 | 200 OK | 70 kB |
URL GET HTTP/3www.youtube.com/s/player/2923e6f1/player_ias.vflset/en_US/annotations_module.js IP142.250.74.14:443
Requested byhttps://www.youtube.com/embed/bIFObDLYgP4?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint23:75:5E:3D:EA:9F:A0:42:86:8D:14:AE:43:04:F0:B2:91:0B:DA:CF ValidityMon, 26 Feb 2024 08:03:58 GMT - Mon, 20 May 2024 08:03:57 GMT
File typeJavaScript source, ASCII text, with very long lines (1115) Hashc7c5ee3e15afb711333bd0768f7e9816 3011d529775421a8f706240d873ce9cc9b01120e c06f8fcb452c2072b61e39420a5fa015c92585a536fdfcf5da72106ebbc5d231
GET /s/player/2923e6f1/player_ias.vflset/en_US/annotations_module.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/bIFObDLYgP4?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 18863
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 21 Mar 2024 07:32:02 GMT
expires: Fri, 21 Mar 2025 07:32:02 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 21 Mar 2024 04:22:17 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 510442
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.youtube.com/s/player/2923e6f1/player_ias.vflset/en_US/endscreen.js | 142.250.74.14 | 200 OK | 34 kB |
URL GET HTTP/3www.youtube.com/s/player/2923e6f1/player_ias.vflset/en_US/endscreen.js IP142.250.74.14:443
Requested byhttps://www.youtube.com/embed/bIFObDLYgP4?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint23:75:5E:3D:EA:9F:A0:42:86:8D:14:AE:43:04:F0:B2:91:0B:DA:CF ValidityMon, 26 Feb 2024 08:03:58 GMT - Mon, 20 May 2024 08:03:57 GMT
File typeJavaScript source, ASCII text, with very long lines (607) Hashb3b49468987f81b0ceb04e5ee6b4f6d7 4c02e2339ef373f64198a4bb798105f3552a65aa aaf245f809d1a34574eda4db375b4793a58ab7fcc57c1333738fc3bd521c122c
GET /s/player/2923e6f1/player_ias.vflset/en_US/endscreen.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/bIFObDLYgP4?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 8433
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 21 Mar 2024 07:32:02 GMT
expires: Fri, 21 Mar 2025 07:32:02 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 21 Mar 2024 04:22:17 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 510442
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1711538364&ei=XKwDZoHLB5ONv_IP_YqfgAc&ip=91.90.42.154&id=o-AMLsGcTOE-I4oTmR0qk5EFSFOB3i2qmU5xTYSM9i5sbQ&itag=251&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=WK&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeen7y&ms=au%2Crdu&mv=u&mvi=1&pl=23&pcm2=no&bui=AaUN6a1o-LdaYRqh9Mh-4LuJ6pHFO8SFduBjcragq7_xUxqa_oc6fLfgJwrY3WpFlE8JRlH2L55Mx0o2&spc=UWF9fwfWQLkh0R41gqg67lh4UYJGQyb4MrkAJvI4YcG4CVc&vprv=1&svpuc=1&mime=audio%2Fwebm&ns=b_aLS39_B6AOkd-CmWa3GoAQ&gir=yes&clen=942363&dur=60.021&lmt=1706356634419309&mt=1711514812&fvip=4&keepalive=yes&fexp=51141541&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=5318224&n=o0qwlbq_TWzCSQ&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cxpc%2Cpcm2%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRQIhAM932EHehJyVng6UNt8Bl7ShnIY6pm05xkhVI_rJ7Q5wAiBHBsl6-6Qv4-ZAujNPM5uqYsiqJWghrdiymyv1AEKdHA%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl&lsig=ALClDIEwRgIhAI7kBPCC2V7PlkHyQ0UEfLJscuhZfW2UILwNlvd1nAPdAiEA4jS0KekWcxMLjHqL_5r5KKhxOUTwDSNYBzytuodK6Fs%3D&alr=yes&cpn=bOrdH36k65Y027Gy&cver=1.20240320.00.00&range=478660-942362&rn=9&rbuf=30001&pot=Mnbt_kfya8fzSO3Gkil8mzeo3CZ50rhwPqt7oZT2u64K_O93r2KXpjzQCAigD3ZxVizx2mttNMyl0_BQlIW2W6F2rdFk3glvy5GggR8UAW_p2HZ97YAlociMWFKe3pYoVN2y3yTgG0jNv426ImMHVFCTvPn3ch3A&ump=1&srfvp=1 | 91.90.45.172 | 200 OK | 464 kB |
URL POST HTTP/3rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1711538364&ei=XKwDZoHLB5ONv_IP_YqfgAc&ip=91.90.42.154&id=o-AMLsGcTOE-I4oTmR0qk5EFSFOB3i2qmU5xTYSM9i5sbQ&itag=251&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=WK&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeen7y&ms=au%2Crdu&mv=u&mvi=1&pl=23&pcm2=no&bui=AaUN6a1o-LdaYRqh9Mh-4LuJ6pHFO8SFduBjcragq7_xUxqa_oc6fLfgJwrY3WpFlE8JRlH2L55Mx0o2&spc=UWF9fwfWQLkh0R41gqg67lh4UYJGQyb4MrkAJvI4YcG4CVc&vprv=1&svpuc=1&mime=audio%2Fwebm&ns=b_aLS39_B6AOkd-CmWa3GoAQ&gir=yes&clen=942363&dur=60.021&lmt=1706356634419309&mt=1711514812&fvip=4&keepalive=yes&fexp=51141541&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=5318224&n=o0qwlbq_TWzCSQ&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cxpc%2Cpcm2%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRQIhAM932EHehJyVng6UNt8Bl7ShnIY6pm05xkhVI_rJ7Q5wAiBHBsl6-6Qv4-ZAujNPM5uqYsiqJWghrdiymyv1AEKdHA%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl&lsig=ALClDIEwRgIhAI7kBPCC2V7PlkHyQ0UEfLJscuhZfW2UILwNlvd1nAPdAiEA4jS0KekWcxMLjHqL_5r5KKhxOUTwDSNYBzytuodK6Fs%3D&alr=yes&cpn=bOrdH36k65Y027Gy&cver=1.20240320.00.00&range=478660-942362&rn=9&rbuf=30001&pot=Mnbt_kfya8fzSO3Gkil8mzeo3CZ50rhwPqt7oZT2u64K_O93r2KXpjzQCAigD3ZxVizx2mttNMyl0_BQlIW2W6F2rdFk3glvy5GggR8UAW_p2HZ97YAlociMWFKe3pYoVN2y3yTgG0jNv426ImMHVFCTvPn3ch3A&ump=1&srfvp=1 IP91.90.45.172:443 ASN#50304 Blix Solutions AS
Requested byhttps://www.youtube.com/embed/bIFObDLYgP4?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.googlevideo.com Fingerprint43:60:0A:FE:45:5A:88:DF:D4:70:59:65:97:40:04:76:D8:63:CB:29 ValidityTue, 12 Mar 2024 14:32:56 GMT - Tue, 21 May 2024 14:32:55 GMT
Size464 kB (463762 bytes) Hashd8d31b88df07327113ed4fa6674cf6f6 0ed2a93698ae375175624516683428f2c11598a8 a1943b241ee1884700e84807ebba5902103df9230b9b1b6b2798df572ce59ba0
POST /videoplayback?expire=1711538364&ei=XKwDZoHLB5ONv_IP_YqfgAc&ip=91.90.42.154&id=o-AMLsGcTOE-I4oTmR0qk5EFSFOB3i2qmU5xTYSM9i5sbQ&itag=251&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=WK&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeen7y&ms=au%2Crdu&mv=u&mvi=1&pl=23&pcm2=no&bui=AaUN6a1o-LdaYRqh9Mh-4LuJ6pHFO8SFduBjcragq7_xUxqa_oc6fLfgJwrY3WpFlE8JRlH2L55Mx0o2&spc=UWF9fwfWQLkh0R41gqg67lh4UYJGQyb4MrkAJvI4YcG4CVc&vprv=1&svpuc=1&mime=audio%2Fwebm&ns=b_aLS39_B6AOkd-CmWa3GoAQ&gir=yes&clen=942363&dur=60.021&lmt=1706356634419309&mt=1711514812&fvip=4&keepalive=yes&fexp=51141541&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=5318224&n=o0qwlbq_TWzCSQ&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cxpc%2Cpcm2%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRQIhAM932EHehJyVng6UNt8Bl7ShnIY6pm05xkhVI_rJ7Q5wAiBHBsl6-6Qv4-ZAujNPM5uqYsiqJWghrdiymyv1AEKdHA%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl&lsig=ALClDIEwRgIhAI7kBPCC2V7PlkHyQ0UEfLJscuhZfW2UILwNlvd1nAPdAiEA4jS0KekWcxMLjHqL_5r5KKhxOUTwDSNYBzytuodK6Fs%3D&alr=yes&cpn=bOrdH36k65Y027Gy&cver=1.20240320.00.00&range=478660-942362&rn=9&rbuf=30001&pot=Mnbt_kfya8fzSO3Gkil8mzeo3CZ50rhwPqt7oZT2u64K_O93r2KXpjzQCAigD3ZxVizx2mttNMyl0_BQlIW2W6F2rdFk3glvy5GggR8UAW_p2HZ97YAlociMWFKe3pYoVN2y3yTgG0jNv426ImMHVFCTvPn3ch3A&ump=1&srfvp=1 HTTP/1.1
Host: rr1---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.youtube.com/
Content-Length: 2
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
last-modified: Sat, 27 Jan 2024 11:57:14 GMT
content-type: application/vnd.yt-ump
date: Wed, 27 Mar 2024 05:19:44 GMT
expires: Wed, 27 Mar 2024 05:19:44 GMT
cache-control: private, max-age=21280
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,quic=":443"; ma=2592000; v="46"
client-protocol: quic
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
timing-allow-origin: https://www.youtube.com
access-control-expose-headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
vary: Origin
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
server: gvs 1.0
|
|
| site-assets.fontawesome.com/releases/v6.1.1/css/all.css | 104.18.40.68 | 200 OK | 498 kB |
URL GET HTTP/2site-assets.fontawesome.com/releases/v6.1.1/css/all.css IP104.18.40.68:443
Requested byhttps://md1td.arach4n.biz.id/ CertificateIssuerDigiCert Inc Subject*.fontawesome.com Fingerprint93:F9:69:8C:73:B0:08:60:65:F3:39:41:39:66:D3:2B:78:3A:6E:3D ValidityMon, 04 Dec 2023 00:00:00 GMT - Fri, 03 Jan 2025 23:59:59 GMT
File typeASCII text, with very long lines (65360) Size498 kB (498160 bytes) Hash325672b036bab9b57f6873aed5eccc43 264f5db348311950380ad1bca79754ff593d87e2 a35f901d01118e5649091bd03ac5784a7db52e111fb3806524c412f3d1dcfc5d
GET /releases/v6.1.1/css/all.css HTTP/1.1
Host: site-assets.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://md1td.arach4n.biz.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 27 Mar 2024 05:19:22 GMT
content-type: text/css
x-amz-id-2: Y1TmNuBPJ2aktX68kJThHqHYS+UBzLzvigLuxqSKGropAjQHJXqctJ8cMj8EZaj3hWZqBw7vjseo/ptPWK0rIs/nC5bnGezhyLprTTXGcJA=
x-amz-request-id: 9ZNBHYHZ9G1WY9FS
last-modified: Tue, 22 Mar 2022 15:39:41 GMT
etag: W/"325672b036bab9b57f6873aed5eccc43"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 10811044
vary: Accept-Encoding
server: cloudflare
cf-ray: 86acecd3c960b4f1-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|