| cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.2/css/all.min.css | 104.17.24.14 | 200 OK | 10 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.2/css/all.min.css IP104.17.24.14:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (59158) Hashc4af24ce595437830af0a401897698b2 06b7f92dd894a9edb0aeb9d040b489460ecff593 d1fb8d8337cd22568295b0ed998c85c58f0b4cd083af0b0db21cb0af80002f2d
GET /ajax/libs/font-awesome/5.15.2/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: text/css; charset=utf-8
content-length: 10472
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5fff7431-e7d0"
last-modified: Wed, 13 Jan 2021 22:29:05 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 4620
expires: Wed, 16 Apr 2025 05:05:07 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zSHwsyzLsVidcBN4P98%2FDvwVMmGqPZwI2dnZ1m2%2FGYWc%2F1ppkFVLedrAVigfdn4Vm4Ot1JSr5G7xleEhFasClnfZ92UqS0gSx9EM2CfQUSXnAipsmXXdDb%2FXK33%2BBMv8ZrbjkKoR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87a409376cb556a9-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css | 104.17.24.14 | 200 OK | 5.8 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css IP104.17.24.14:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hashe9365fe85b7e4db79a87015e52c3db6c 2e2b5eb6e08f0f3d11fe0ada97c962a23ba6a0d9 dec3e9f0190a504ed0c8f4a5e957c107206ba106cac4a1bbb6cbac6369a16d56
GET /ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: text/css; charset=utf-8
content-length: 5845
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ed9-1149f"
last-modified: Mon, 04 May 2020 16:12:09 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1289060
expires: Wed, 16 Apr 2025 05:05:07 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=C%2Ff3Dgi302NKfawzeLwsspK38qtYxX4e7kI0TxxwjOScWCYjn41QDFifVNEOodtnjpnqt%2B2RllcV7GtHJN1k0FoJApkp1DSavD1Cmlg%2F7lsQxY7YLPQyExh3lxbLKIbP1xKtpf%2FR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87a409379cce56a9-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/npm/bootstrap-icons@1.8.1/font/bootstrap-icons.css | 151.101.65.229 | | 11 kB |
URL cdn.jsdelivr.net/npm/bootstrap-icons@1.8.1/font/bootstrap-icons.css IP151.101.65.229:0
Hash79877fb82de8ca50845081e3c9a201c5 4f6ea69c0e03431ffa1a097a45453b5b3b246d8b af35cc6aba34e5005de77099dfa72d4c1a7715d28ddcec343f48031dc8cb08bc
GET /npm/bootstrap-icons@1.8.1/font/bootstrap-icons.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 1.8.1
x-jsd-version-type: version
etag: W/"13a7e-T26mnA4DQx/6Ggl6RUU7WzskbYs"
content-encoding: br
accept-ranges: bytes
date: Fri, 26 Apr 2024 05:05:07 GMT
age: 995672
x-served-by: cache-fra-etou8220090-FRA, cache-hel1410034-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 10883
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/gh/AlexHostX/mlbb@main/old/logo.png | 151.101.65.229 | 404 Not Found | 53 B |
URL GET HTTP/2cdn.jsdelivr.net/gh/AlexHostX/mlbb@main/old/logo.png IP151.101.65.229:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeASCII text, with no line terminators Hashcb71d2b197dd6af21b39e0261fb1497c 9ab080da6e72161e565846ba4fe9a3279f8f9acf a3abb1833e1a60b26006a99e3ca8c8aefff91c61003548a8f34fc6c92d62acd7
GET /gh/AlexHostX/mlbb@main/old/logo.png HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=600, s-maxage=600
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/plain; charset=utf-8
etag: W/"30-mrCA2m5yFh5WWEa6T+mjJ5+Pms8"
content-encoding: br
accept-ranges: bytes
date: Fri, 26 Apr 2024 05:05:07 GMT
age: 542
x-served-by: cache-fra-eddf8230118-FRA, cache-hel1410034-HEL
x-cache: HIT, MISS
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 53
X-Firefox-Spdy: h2
|
|
| voy27hj1qps.fcyz.my.id/img/senjata/8.jpg | 172.67.208.84 | 200 OK | 26 kB |
URL GET HTTP/3voy27hj1qps.fcyz.my.id/img/senjata/8.jpg IP172.67.208.84:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 335x354, components 3 Hash042df6ae6e2a48458b94a41111fce6da 7785d4cd7f9ab767f3ab8495e94c1888e29f0542 7b8542123bfc06f37312a1756361916d7e3f7a1af974877a63da2b2ff8dd03ab
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/senjata/8.jpg HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: image/jpeg
content-length: 25821
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 05:05:07 GMT
last-modified: Mon, 17 Jan 2022 19:33:16 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1WbLVheEuUWXdg46CVkK8mRa50ckriA1A%2FnnKqJtAcU9U%2B%2B2jkmEnYJuhD1CeuJz1EZ%2FKjsTNQ1L1BVQ0t%2Bb3HoC2p60IQJJvSr9h2NkB4f%2BGUEz79Eu7KdEmrFwyERH%2F0iXcDTKctCA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a409375c690b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cdn.jsdelivr.net/gh/gowebid/assets@main/go_login/facebook_white.png | 151.101.65.229 | 200 OK | 29 kB |
URL GET HTTP/2cdn.jsdelivr.net/gh/gowebid/assets@main/go_login/facebook_white.png IP151.101.65.229:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typePNG image data, 604 x 158, 8-bit/color RGBA, non-interlaced Hash74190b93fc4f5d88f0c8e6411ba20bd8 89ce2ecb660a90b8e6ed1b335443d7767c59f28a 092a3cd5f86b3f039feefdeb86694cd16ae545af214cfda614bdbbe2d1bde401
GET /gh/gowebid/assets@main/go_login/facebook_white.png HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: image/png
x-jsd-version: main
x-jsd-version-type: branch
etag: W/"7075-ic4uy2YKkLjm7RszVEPXdnxZ8oo"
accept-ranges: bytes
age: 6298
date: Fri, 26 Apr 2024 05:05:07 GMT
x-served-by: cache-fra-etou8220127-FRA, cache-hel1410034-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 28789
X-Firefox-Spdy: h2
|
|
| voy27hj1qps.fcyz.my.id/img/diamond/1.png | 172.67.208.84 | 200 OK | 2.8 kB |
URL GET HTTP/3voy27hj1qps.fcyz.my.id/img/diamond/1.png IP172.67.208.84:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 130x162, components 3 Hashbd1e125844fffc6d3485bcf93c224f9d 2782371542228b448959c8610cf3790b662185cc b8f4fec91600d5be6d465792f7f7fab635d01019e148fe8b6f7bf59f717041de
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/diamond/1.png HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: image/png
content-length: 2814
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 05:05:07 GMT
last-modified: Wed, 05 Apr 2023 14:30:48 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=panDKtJsXbjM45rAti9dYRXK7aD2jZo9kw0sF5AGedy%2FwwiZ8nP9%2B0Bg5ITm1bBSII8B6mb5Ltdh2tJsWQd8xrBWp%2BnRrgWgDWn3D9gD2e2mi697WFJr73XwPWVEA7ljG%2F2EfvkV3dgx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a409378c910b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js | 104.17.24.14 | 200 OK | 28 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js IP104.17.24.14:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hash8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e
GET /ajax/libs/jquery/3.6.0/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://voy27hj1qps.fcyz.my.id
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: application/javascript; charset=utf-8
content-length: 27938
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "603e8adc-15d9d"
last-modified: Tue, 02 Mar 2021 18:58:36 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 8290
expires: Wed, 16 Apr 2025 05:05:07 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pucZJJ54nwcEwuodsCj2xj9aXtRws%2BrLLADMOYy6y67hLNieG54k3GuvxNowpkCpyfPU%2ByX2s5591zieec5%2FHR2ye2oFxC62MWESALjXnZtaxWwSLVG8ct%2Fj0F6iD7U9sJZFLgB%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87a40937ed0856a9-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| voy27hj1qps.fcyz.my.id/img/diamond/2.png | 172.67.208.84 | 200 OK | 2.9 kB |
URL GET HTTP/3voy27hj1qps.fcyz.my.id/img/diamond/2.png IP172.67.208.84:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 130x162, components 3 Hash63344bf9eaf1a509a9f8a749a06a36e1 0ff516d19ef2ff1b9a44ab20e3eb9579a8894654 788c47722a4dc77173ab620f196bfc24a2d8668bcf08f9fd296574545cf700f1
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/diamond/2.png HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: image/png
content-length: 2878
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 05:05:07 GMT
last-modified: Wed, 05 Apr 2023 14:30:48 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RuOvln%2F9%2Bj%2BT7zy4odTsbqLKWUULnNJp4DexsflhBzL%2FluTPL2N3LfjZnIh0d9cbqiAImHbH%2BjNzvVhHM5CEmr4IzwMbYVcm5ySH7qIqHP1egNcl9RSD42wJuKWl8Hknjjv4LzCmqqGE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a409378c940b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cdn.jsdelivr.net/gh/gowebid/assets@main/go_login/vk.webp | 151.101.65.229 | 200 OK | 1.6 kB |
URL GET HTTP/2cdn.jsdelivr.net/gh/gowebid/assets@main/go_login/vk.webp IP151.101.65.229:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeRIFF (little-endian) data, Web/P image Hash8e2c62ec296ece5f6a69e2cfd1133310 a6ae37e62d2f201d0e783df0890df55bc11d52e0 ac250ff6fe61157727de9e17fedeb5c162452fc1aa031c4c1fe2f8eb3290ed98
GET /gh/gowebid/assets@main/go_login/vk.webp HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: image/webp
x-jsd-version: main
x-jsd-version-type: branch
etag: W/"63a-pq435i0vIB0OeD3wiQ31W8EdUuA"
accept-ranges: bytes
age: 14740
date: Fri, 26 Apr 2024 05:05:07 GMT
x-served-by: cache-fra-eddf8230049-FRA, cache-hel1410034-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1594
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/gh/gowebid/assets@main/go_login/google.svg | 151.101.65.229 | | 959 B |
URL cdn.jsdelivr.net/gh/gowebid/assets@main/go_login/google.svg IP151.101.65.229:0
File typeSVG Scalable Vector Graphics image Hash848700651ce9c04987e04f292c598cba 976fc1619e149ed6161d834d5e3c3be7b7957669 f0562ef3624d99ef205211177586097eb7ebd8f5b31711d335a74d368c75ec27
GET /gh/gowebid/assets@main/go_login/google.svg HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: image/svg+xml
x-jsd-version: main
x-jsd-version-type: branch
etag: W/"7ea-l2/BYZ4UntYWHYNNXjw757eVdmk"
content-encoding: br
accept-ranges: bytes
age: 19736
date: Fri, 26 Apr 2024 05:05:07 GMT
x-served-by: cache-fra-eddf8230119-FRA, cache-hel1410034-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 959
X-Firefox-Spdy: h2
|
|
| voy27hj1qps.fcyz.my.id/img/diamond/6.png | 172.67.208.84 | 200 OK | 2.8 kB |
URL GET HTTP/3voy27hj1qps.fcyz.my.id/img/diamond/6.png IP172.67.208.84:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 130x162, components 3 Hash2230594c80150378fe318c774eb216a4 918a13f5861c368c3b19c75cf8ca362b0b29a48c 43de460f27a0d3e43b13b5e75ac00da6ea6b54fb468afc4cffbd53709ee556b4
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/diamond/6.png HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: image/png
content-length: 2781
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 05:05:07 GMT
last-modified: Wed, 05 Apr 2023 14:30:48 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gM0vRuVYZp8KVpLTUEA37E7y15XyFwxhZWj5dic1YwopuiPPFYBT%2FwtGMI0hXAD471w3vvb%2BXbI96lZQb1G1bgMPO9zliF0pKR6tPCGOibV7AGWhD4dj4IlGldjBrRbg5%2FEHbUXyNoO9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a409379ca30b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| voy27hj1qps.fcyz.my.id/img/tittle2.png | 172.67.208.84 | 200 OK | 24 kB |
URL GET HTTP/3voy27hj1qps.fcyz.my.id/img/tittle2.png IP172.67.208.84:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typePNG image data, 151 x 45, 8-bit/color RGBA, non-interlaced Hash43b12100b99f0747a7d74c5eadd7f559 f2ee9778c4fc202120720817037040fc479825c8 10247b341cbfb00357771f67d54e8650b15a776829b91a1d8a6cd80418eee50c
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/tittle2.png HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: image/png
content-length: 24103
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 05:05:07 GMT
last-modified: Sat, 17 Feb 2024 06:14:04 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Nl%2FNNKXSIWrqC1GIhJLoCeFdWSgdED9GkEzT2drBbBr%2B54Ag4m%2FWAoPJInET%2FD3q%2F0OblDp1hqL8TVEMkc9AfGLy%2BAM0zGousdO6iu5L0R082269mEYqZdgVEJCPa8dXeSBQGuIeSfk2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a409373c520b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| voy27hj1qps.fcyz.my.id/img/diamond/4.png | 172.67.208.84 | 200 OK | 2.8 kB |
URL GET HTTP/3voy27hj1qps.fcyz.my.id/img/diamond/4.png IP172.67.208.84:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 130x162, components 3 Hash9322979ec6bc2f29f5f0215487d1be4b 17302260777757a2a811b76ad1d0e96a86781df7 6cc42f3ad3aa5606237a601793c1fb42458386d888adab6cf9077d23887eefed
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/diamond/4.png HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: image/png
content-length: 2761
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 05:05:07 GMT
last-modified: Wed, 05 Apr 2023 14:30:48 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uwFUyJJ2HYK5ArK%2BrINpPjZBv6u5YG04%2F6kzL3D%2Bj7hip6lz3KlvQ75%2B9en%2FPkQ84mjHylyU1YVPV1F%2F4PObtWnlJ%2BpiyL7TCnWB%2BGK3O5q1N%2F6JpBqo249ABCXC%2B%2BiaKfu7n78ZMo6I"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a409378c970b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| voy27hj1qps.fcyz.my.id/img/senjata/1.jpg | 172.67.208.84 | 200 OK | 78 kB |
URL GET HTTP/3voy27hj1qps.fcyz.my.id/img/senjata/1.jpg IP172.67.208.84:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 999x1024, components 3 Hash5b9bd06824081f3370d369a3bae652e7 d6e93b6128cede7828fbc922c6c55ca8a257b303 355c5fb2f6587040eb783d3348ff54ca3ee3939c0bdee1d508a7275cfd9c2ab4
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/senjata/1.jpg HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: image/jpeg
content-length: 78490
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 05:05:07 GMT
last-modified: Mon, 17 Jan 2022 19:33:16 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QJmtMlpoP%2BUd92KPerjj3HHZsXzyVOYgwERp5kO%2FluhHFD2DCinJxpl7%2BXnVdfakisEatkMYu9QzadY4PjUtVp25IqPbTLCAfFnvmJYIKVSc%2BX%2Be3OahHdzknYZHda92Qf38xHRyh6Hb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a409374c610b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| rawcdn.githack.com/AlexHostX/all.asset/3ddd40ca064d997b6655739e7a0e8a65acc106e8/alex-vikontakte.css | 104.21.234.231 | | 14 B |
URL rawcdn.githack.com/AlexHostX/all.asset/3ddd40ca064d997b6655739e7a0e8a65acc106e8/alex-vikontakte.css IP104.21.234.231:0
File typeASCII text, with no line terminators Hash3be7b8b182ccd96e48989b4e57311193 78fb38f212fa49029aff24c669a39648d9b4e68b d5558cd419c8d46bdc958064cb97f963d1ea793866414c025906ec15033512ed
GET /AlexHostX/all.asset/3ddd40ca064d997b6655739e7a0e8a65acc106e8/alex-vikontakte.css HTTP/1.1
Host: rawcdn.githack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Fri, 26 Apr 2024 05:05:07 GMT
content-length: 14
x-github-request-id: E6AA:9F2C5:6DBDA1:73B73B:662B352D
via: 1.1 varnish
x-served-by: cache-hel1410032-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1714107693.231937,VS0,VE173
vary: Authorization,Accept-Encoding,Origin
cross-origin-resource-policy: cross-origin
x-fastly-request-id: 1560e63977e11b152ad928c30065461ff339ebfe
source-age: 0
cache-control: max-age=60, public
x-githack-cache-status: HIT
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=g590D6OfgyWBQRXAjUn6ZzWPC703WHOs50f7EI%2F98iiApp5Z6rpss%2BxcHranFKBOTGJI0jwMcr2vJlhurUoKqCBFK6KLbX2rZ0rVJNYfOIGwDLZ5F9GjESHymYhNbGZvaOmZVY8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a40937cac27750-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| voy27hj1qps.fcyz.my.id/img/bingkai.gif | 172.67.208.84 | | 121 kB |
URL voy27hj1qps.fcyz.my.id/img/bingkai.gif IP172.67.208.84:0
CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeGIF image data, version 89a, 224 x 224 Size121 kB (120915 bytes) Hash127c4202ac37e7b0f72463cebc557b0c 84284b34dd377dbd4feb444aabeb959ac3e2b217 630f7fcbba5df4d44b11d2b9afb87d9ab75ba06f203485650f0fa26b2ca9db43
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/bingkai.gif HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: image/gif
content-length: 120915
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 05:05:07 GMT
last-modified: Mon, 19 Feb 2024 18:07:54 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LAfXdHZTRjApx4NcXziVcGqnewWUERNzo9XXhQ0%2B4QNIfLnKg2nCN5X85vrptSdRYcv6f5NfbvQzzXzBhoRtqnz3rb6h%2BSLqmejB5YuE5hCmqpoMPfnPx40iTbVpk5EJaGLOxOC3TCjV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a409373c530b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| voy27hj1qps.fcyz.my.id/img/senjata/t1.jpg | 172.67.208.84 | 200 OK | 108 kB |
URL GET HTTP/3voy27hj1qps.fcyz.my.id/img/senjata/t1.jpg IP172.67.208.84:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1080x1080, components 3 Size108 kB (107539 bytes) Hash3aa21e6dc07731eee8b81185daab135c 64fe84d381e69c370b271a64c4d7ea11fc5415aa bdd298959f024ab47802ce7092bc9e295f9b1de0993190e4e6fbc377cefc6564
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/senjata/t1.jpg HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: image/jpeg
content-length: 107539
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 05:05:07 GMT
last-modified: Mon, 22 May 2023 07:35:55 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9ZfybY4E29PPeubVGwaWFK27wkysney2GIkbLGn%2BdtA4bR7h3MF8WW%2Ba4gRdzEPR5DJoskBc9SNwtF9B1poVer7bwiql5gGSsnSLzby8L44P1RD28N3grcHyLwwOUaKxg5puNrqoOGtn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a409374c5e0b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| rawcdn.githack.com/AlexHostX/all.asset/3fce8843edde49a48905ae1ed9cf237534e547dd/alex-moonton.css | 104.21.234.231 | 404 Not Found | 14 B |
URL GET HTTP/2rawcdn.githack.com/AlexHostX/all.asset/3fce8843edde49a48905ae1ed9cf237534e547dd/alex-moonton.css IP104.21.234.231:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectgithack.com FingerprintA4:13:2F:80:0A:C6:7C:8B:08:12:12:22:60:76:15:7D:40:80:70:54 ValidityFri, 01 Mar 2024 13:12:36 GMT - Thu, 30 May 2024 13:12:35 GMT
File typeASCII text, with no line terminators Hash3be7b8b182ccd96e48989b4e57311193 78fb38f212fa49029aff24c669a39648d9b4e68b d5558cd419c8d46bdc958064cb97f963d1ea793866414c025906ec15033512ed
GET /AlexHostX/all.asset/3fce8843edde49a48905ae1ed9cf237534e547dd/alex-moonton.css HTTP/1.1
Host: rawcdn.githack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Fri, 26 Apr 2024 05:05:07 GMT
content-length: 14
x-github-request-id: 0996:BF8BE:7241FA:783F28:662B35C5
via: 1.1 varnish
x-served-by: cache-hel1410026-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1714107845.174504,VS0,VE168
vary: Authorization,Accept-Encoding,Origin
cross-origin-resource-policy: cross-origin
x-fastly-request-id: f253a4a694dc7cdfa5f6bf0f09d3416ac97e7529
source-age: 0
cache-control: max-age=60, public
x-githack-cache-status: HIT
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rPalPg2TmkBgR%2F%2Bbz11zrJ6m6Wa885fyCchtjoIF6lmlBvgvVnPtT7ebyc7tm3isSTCjp8bTkfJBAfVV%2BYw30gh0vXJ14aCn067A5gGJJ7DLYTPOmhsLrW2g96mNzpvY9zlf6S4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a40937daca7750-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| voy27hj1qps.fcyz.my.id/img/senjata/h1.jpeg | 172.67.208.84 | 200 OK | 49 kB |
URL GET HTTP/3voy27hj1qps.fcyz.my.id/img/senjata/h1.jpeg IP172.67.208.84:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 519x361, components 3 Hasha6a1ae291b8991edac5e40faa81ea050 b20a09ff8c6440b26ec9bab11df366f3fa11f9dd 4d9f7f3da20bb0794c6354e101e1d33b3c5a25b924a41e9479f1e7b4ada764f1
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/senjata/h1.jpeg HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: image/jpeg
content-length: 49433
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 05:05:07 GMT
last-modified: Sat, 17 Feb 2024 07:46:44 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WSbLrleAvj%2FSlyP%2FovSxWnpz8bVkiydQLnVYWy8RgsWjSDd2%2BCzCUGO18RQfhPyzqSkKcsu3djvDV8l8JFDEx96RD%2BVHf123AWuR6LsQyDnldqLRI39vdtlcKsRsOPaljAMiu1GjJJUm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a409374c5d0b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| voy27hj1qps.fcyz.my.id/img/senjata/t2.jpg | 172.67.208.84 | 200 OK | 120 kB |
URL GET HTTP/3voy27hj1qps.fcyz.my.id/img/senjata/t2.jpg IP172.67.208.84:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1080x1080, components 3 Size120 kB (119615 bytes) Hash390c51eba9889a3f8602c0c8a0d1fade 6a0574718588d909e19270dc76251fcf02ad4645 eedf5cf21bc0196270343c98473488a81bdfd5280abe8415bde3fbd046ff1e52
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/senjata/t2.jpg HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: image/jpeg
content-length: 119615
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 05:05:07 GMT
last-modified: Mon, 22 May 2023 07:35:53 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qAtaVu8xD9FyKpEBP89XqyjoVmfNLF2DVi1xSIU1ods5w37e9otp4fLmnToFQiDVIx6YkoY4F8pjYY6sjxaEgLzCCO22HTGOaoXAEyKt21GNk7c2UpUAMIcnX3Puu1el%2Bg7TVVxYPh%2Fy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a409374c5f0b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| voy27hj1qps.fcyz.my.id/img/senjata/t3.jpg | 172.67.208.84 | 200 OK | 186 kB |
URL GET HTTP/3voy27hj1qps.fcyz.my.id/img/senjata/t3.jpg IP172.67.208.84:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1080x1080, components 3 Size186 kB (185559 bytes) Hash1dd0e73b90ad26acb8d339a91e074e9c 6cb645ec8c8456146c81583abd133d5a633b3b68 de7e078ab4de666a20400e6fd1fcd815a6fe893ca77042b133f38a57de2bf556
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/senjata/t3.jpg HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: image/jpeg
content-length: 185559
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 05:05:07 GMT
last-modified: Mon, 22 May 2023 11:57:10 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HbA5TTykU%2FAZ83w1UnC%2BNlwvjvvToMKbcoSC%2FsFTwlsKT5H%2FwSxXxlQ22UVJipC1RvXOuAPp9gfJsBKyurPmlJt9oFwMhnPJxaR5fSlRYNk3A8tvpAaxfugOIt5tURftks2YPi%2BpHNn%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a409374c600b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| voy27hj1qps.fcyz.my.id/img/senjata/2.jpg | 172.67.208.84 | 200 OK | 49 kB |
URL GET HTTP/3voy27hj1qps.fcyz.my.id/img/senjata/2.jpg IP172.67.208.84:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 544x540, components 3 Hashb5a6d62277ce3509c4486c03278f5baa e0876453362058b662d85bc96b79d3e272f4b6e0 0e32e347f1375a0869711eb1589ecc0420c2e44ccaa19acaf2b625086a63e560
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/senjata/2.jpg HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: image/jpeg
content-length: 48611
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 05:05:07 GMT
last-modified: Mon, 17 Jan 2022 19:33:16 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4cPNhgdJTLCrel%2FV9Qo32Dc7ZlpJ5pJ9x%2Fcldi3ahJBi4zA2qm3EqrAS%2Bgx1UU%2Bj2yIYNQnJ%2Bd0RJEBhtQYOHLcWPKf5vgNSWsybuCELiKtLWXo3zBAyOoX4FfFgMROnETh%2BXFUjnuh8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a409374c620b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| voy27hj1qps.fcyz.my.id/img/senjata/3.jpg | 172.67.208.84 | 200 OK | 78 kB |
URL GET HTTP/3voy27hj1qps.fcyz.my.id/img/senjata/3.jpg IP172.67.208.84:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 997x1024, components 3 Hash22481399131d102cfd8f0a54a7cc2477 6d3d8b0ee6b75e568dc105596cd65b788a2d62a9 a932647f3f142202bc341dd50cb0c949fb4cca3f2dc39b6cc3aa749902946893
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/senjata/3.jpg HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: image/jpeg
content-length: 77540
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 05:05:07 GMT
last-modified: Mon, 17 Jan 2022 19:33:16 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1RriT1j5%2FxlxQDsx9tF3uK4sIe%2BTiTpaLTpo8l6AN0Fn00nuvXFmy%2FupNNM5xxhhijSRbf6d3zcmtMtrpWS2kfmmYK7ueTVpdPTUrm074aCEPu3NAb6dI22PmfLSbKr%2BOCCY%2BYg3JxH7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a409374c630b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| voy27hj1qps.fcyz.my.id/img/senjata/4.jpg | 172.67.208.84 | 200 OK | 73 kB |
URL GET HTTP/3voy27hj1qps.fcyz.my.id/img/senjata/4.jpg IP172.67.208.84:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1029x1280, components 3 Hashd078a634bb85179223fad3b606aa4cef ea158abcf539ce182bad1da6595b89951dae57a6 2876317ed4d3b97531299a3282da4ef8119cc0a6e653560adb827430fc59991e
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/senjata/4.jpg HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: image/jpeg
content-length: 72574
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 05:05:07 GMT
last-modified: Mon, 17 Jan 2022 19:33:16 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cZPcoXmVGmo0wGhLTpgRNarjiLDGWVipTUowhGFljk9NBgJoFsjRXnXXMgnBdP6XHwS%2BUJREhLJS2WG50cp9YcDNP%2F0sWUkayKjYQanIp6mGhlI0Y%2FQKRFECp5BWk%2BnuUVgnPfU9oTQH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a409374c640b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| voy27hj1qps.fcyz.my.id/img/senjata/5.jpg | 172.67.208.84 | 200 OK | 83 kB |
URL GET HTTP/3voy27hj1qps.fcyz.my.id/img/senjata/5.jpg IP172.67.208.84:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 796x1052, components 3 Hash3cccee9d57d94fdbf74c48a850f0f98e 98c88f308741de8229882af1cbd8f2a6baf4d4de 5711c16803d5ad559dfd341cf8366d2863d2e150cb54dd9c64a9a9a642967620
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/senjata/5.jpg HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: image/jpeg
content-length: 83104
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 05:05:07 GMT
last-modified: Mon, 17 Jan 2022 19:33:16 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yfCKo9re1DUTJmX9yCm3Ms6eyx%2BrDyf5C51z7d%2Ft7L2IR2CmLcqjNOUoUHDDhEMHPxEFkJ1e6q8tiOTZy0vNKeO9L5umFbN8kQvw4n0IoYYq2kTsiVNd6HCPz1uo4p2k4BROLTuZj4gc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a409374c650b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| voy27hj1qps.fcyz.my.id/img/senjata/6.jpg | 172.67.208.84 | 200 OK | 84 kB |
URL GET HTTP/3voy27hj1qps.fcyz.my.id/img/senjata/6.jpg IP172.67.208.84:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7], baseline, precision 8, 560x740, components 3 Hash6eed7fb4cf035039f3bba04778cc5db3 a8e6952294e705c92a86db9394874062958f8f47 9e42ff7e13eeea40c241c5406255e8efd322128dba76cfffbfa71263b41b1b8a
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/senjata/6.jpg HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: image/jpeg
content-length: 83638
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 05:05:07 GMT
last-modified: Mon, 17 Jan 2022 19:33:16 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=m4ihQHJbTzBvg7p6htvT%2F4Lk%2B%2BzdIXHw3efqvVXluvS44BZOLCxs8gEsymhLeXpBRzJtbnZ%2Fcj1Nu5Z8MEgdhx16tJQpirk3YnyeEU7IeV2Dn8W02W8o110Tc5KMGQWAkVV5p7MpcKCu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a409374c660b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| voy27hj1qps.fcyz.my.id/img/senjata/7.jpg | 172.67.208.84 | 200 OK | 44 kB |
URL GET HTTP/3voy27hj1qps.fcyz.my.id/img/senjata/7.jpg IP172.67.208.84:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 233x290, components 3 Hash3a2c83793835b5368b13d958c26b8490 3602414a07ac93f56d0a069352f1096803feaa21 cb529b14d072c791be4cb6c352e3fe0efae788e759034ebfd547c71a3f0d9bfe
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/senjata/7.jpg HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: image/jpeg
content-length: 43744
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 05:05:07 GMT
last-modified: Mon, 17 Jan 2022 19:33:16 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9bvm9uGTw5PL62w8UM5t4%2F5%2B6p2Hlt3XheSXP%2Fa5ImjKv%2F1SN694aSVzGh46%2FXBHgm%2Fqa%2FUrx9Gn%2FGGg7iTEXfPudSU7Q88%2BMXQVsCriqmu1NeEOg7bdGN%2FBt4ht3uCm9jNUN73TvV9a"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a409375c680b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| voy27hj1qps.fcyz.my.id/img/senjata/9.jpg | 172.67.208.84 | 200 OK | 119 kB |
URL GET HTTP/3voy27hj1qps.fcyz.my.id/img/senjata/9.jpg IP172.67.208.84:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 962x961, components 3 Size119 kB (118900 bytes) Hash1daecd6000bc56f1faf1d9cdffb67dd7 a0b0f2fcbb75bbaa84ec7857101cf93d39f3cdeb 3a124f7c8781af398764ba316b3fa7bad44e83520f78a90521b0cbb3012a783b
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/senjata/9.jpg HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: image/jpeg
content-length: 118900
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 05:05:07 GMT
last-modified: Mon, 17 Jan 2022 19:33:16 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=V6189D4Fa2s6SMEtLaQ4wwbqI%2BCUGS%2Fx0LD7cgL3JkjHFn6eMdqiQ%2FcR82u5uS3mpB7Hey%2FHrnf%2FNkjWylYXTCWhOgjOjb7Dog3EkAQX5Nik0cSqZ8YsGl35vZ2G5bKQPNd4YfgWGUjl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a409375c6a0b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| rawcdn.githack.com/AlexHostX/all.asset/c9f3ddecc56e688f8660a2d31a5beea4909fa5b9/alex-facebook.css | 104.21.234.231 | 404 Not Found | 14 B |
URL GET HTTP/2rawcdn.githack.com/AlexHostX/all.asset/c9f3ddecc56e688f8660a2d31a5beea4909fa5b9/alex-facebook.css IP104.21.234.231:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectgithack.com FingerprintA4:13:2F:80:0A:C6:7C:8B:08:12:12:22:60:76:15:7D:40:80:70:54 ValidityFri, 01 Mar 2024 13:12:36 GMT - Thu, 30 May 2024 13:12:35 GMT
File typeASCII text, with no line terminators Hash3be7b8b182ccd96e48989b4e57311193 78fb38f212fa49029aff24c669a39648d9b4e68b d5558cd419c8d46bdc958064cb97f963d1ea793866414c025906ec15033512ed
GET /AlexHostX/all.asset/c9f3ddecc56e688f8660a2d31a5beea4909fa5b9/alex-facebook.css HTTP/1.1
Host: rawcdn.githack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Fri, 26 Apr 2024 05:05:07 GMT
content-length: 14
x-github-request-id: 3F3E:3E0CB:6FC099:75BDB1:662B35BD
via: 1.1 varnish
x-served-by: cache-hel1410032-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1714107845.519819,VS0,VE171
vary: Authorization,Accept-Encoding,Origin
cross-origin-resource-policy: cross-origin
x-fastly-request-id: 262090f730f4668997055e3f2a9ba953c6cfa16e
source-age: 0
cache-control: max-age=60, public
x-githack-cache-status: HIT
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9l%2FUGzIqnyczwyY8UxHGYBJM4AATpQwFLmlpI26IunxdWee0iMe0t0dZ8kbCFdo3nN7C6e%2FCLWAJobbJSlpkBSyuv7%2FNdsSue%2B%2BeJM7AzVhPHho8DOKsHU7lLLEj0th84tGwE70%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a40937cac77750-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| voy27hj1qps.fcyz.my.id/img/senjata/10.jpg | 172.67.208.84 | 200 OK | 83 kB |
URL GET HTTP/3voy27hj1qps.fcyz.my.id/img/senjata/10.jpg IP172.67.208.84:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 796x1052, components 3 Hash3cccee9d57d94fdbf74c48a850f0f98e 98c88f308741de8229882af1cbd8f2a6baf4d4de 5711c16803d5ad559dfd341cf8366d2863d2e150cb54dd9c64a9a9a642967620
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/senjata/10.jpg HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: image/jpeg
content-length: 83104
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 05:05:07 GMT
last-modified: Mon, 17 Jan 2022 19:33:16 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1We59nkWzwcp5kJTzHmbdTw8R%2BnJoOlKN%2FehmMFAeRkt%2F7fTa9ZSxYYcdIa62G0BKdJ%2FqcEC5B2b%2FhpYk%2BITbd6QzbHWiFsMHbaH08wzUgDWVN10KNgaFq3PYpT3xXXmc78ZLq%2F035AY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a409375c6b0b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| voy27hj1qps.fcyz.my.id/img/senjata/11.jpg | 172.67.208.84 | 200 OK | 47 kB |
URL GET HTTP/3voy27hj1qps.fcyz.my.id/img/senjata/11.jpg IP172.67.208.84:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 560x740, components 3 Hashdae76322741301f8aa1384636c9a0b15 d1a9b81837d1660dd92b0fe3cc3439c4ece67cd0 516ec8f5074cc7e52bfc102e42923b36d36729496cc69aa6a84a1ecbd4bc44fd
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/senjata/11.jpg HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: image/jpeg
content-length: 47405
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 05:05:07 GMT
last-modified: Mon, 17 Jan 2022 19:33:16 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KsbckSIzWkDka6KqwumF0AkwwpILpGShao6SQmImDbDkhhdnRyEvsxou7M7N6wUQHRLz5EsFO1WkGLdupeiiwCs4qKKE%2BSQ6kokPhfCq8mdyblpKRPv0y6eYAHFVIV8LSuwf9QryjXVQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a409377c770b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| voy27hj1qps.fcyz.my.id/img/senjata/12.jpg | 172.67.208.84 | 200 OK | 47 kB |
URL GET HTTP/3voy27hj1qps.fcyz.my.id/img/senjata/12.jpg IP172.67.208.84:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 233x290, components 3 Hashda8902b3f1e8f5dbce0873022fe55ae5 b1956d7420881884baecf03d9739f8c82f857d1a 480e24cce7e7d225ffb50dc58b21a81bc99006e0894f0ef52a01203774495050
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/senjata/12.jpg HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: image/jpeg
content-length: 47259
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 05:05:07 GMT
last-modified: Mon, 17 Jan 2022 19:33:16 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8AtwmgwtGSNj%2FDWVu15iMUTykM%2FOzorvUwAwlxatYBCUC0ZmRo0dF%2FQOQiW%2BSry4Iu4cVO0Sw%2Be%2FbziKSTdOl4xfBaS0hAkQFqHMeq0ToncwQhiQvWh0bSlzs5bDm5xGr6BdYOHLGx2T"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a409377c780b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| voy27hj1qps.fcyz.my.id/img/old/1.jpg | 172.67.208.84 | 200 OK | 59 kB |
URL GET HTTP/3voy27hj1qps.fcyz.my.id/img/old/1.jpg IP172.67.208.84:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1280x1280, components 3 Hashd0c711d1ab95b03a1a1f733a60ba8984 eceaead218d602337bdd89ba90fdc31bd70f0156 8e50767bd0edcca88b3b611cd905e3d05b34b04447076fcf6a3567cf55f3bb20
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/old/1.jpg HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: image/jpeg
content-length: 58745
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 05:05:07 GMT
last-modified: Wed, 05 Apr 2023 14:32:58 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QPcYOxwXFaFXK2BBErQslAf7P7uXdK5AV0wS%2Brci5FYkH1I2%2BBICbBryHXovTcAfolLVn9RCFedbEyRss%2FBdIalHdSPjzIZgDiOSW40sOMog%2B2Ak%2F2qsW8eWD8xffVM%2FC4y2S71T80H%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a409377c790b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| voy27hj1qps.fcyz.my.id/img/old/2.jpg | 172.67.208.84 | | 43 kB |
URL voy27hj1qps.fcyz.my.id/img/old/2.jpg IP172.67.208.84:0
CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1280x1280, components 3 Hashd90e22f880ff0e9cc33ce41a6bb541b2 a4f08fe678a177545600ba36b25c83a8daf5fd16 10bc32127a5ceb3f33fc38029145931334f6f49bd7274b62697036fd59be2f65
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/old/2.jpg HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: image/jpeg
content-length: 42687
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 05:05:07 GMT
last-modified: Wed, 05 Apr 2023 14:32:56 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=P5ZIrRT%2BwD5YONePNAD5QVrf4FQ0unn0uHynATabU3xqvzDnw3x7fHzqFs2n89O8gQTYmMDeT2Q5QYyBfgyveHwbBxSLOY3dxkqzu2e7YPzYmh3dY2k8SyuG4%2FIUxGYAO5vOpdVl5LIS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a409377c7a0b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| rawcdn.githack.com/AlexHostX/all.asset/1591ba04a57c11f4b18d2ebb39e03e4a81715c83/alex-google.css | 104.21.234.231 | 404 Not Found | 14 B |
URL GET HTTP/2rawcdn.githack.com/AlexHostX/all.asset/1591ba04a57c11f4b18d2ebb39e03e4a81715c83/alex-google.css IP104.21.234.231:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectgithack.com FingerprintA4:13:2F:80:0A:C6:7C:8B:08:12:12:22:60:76:15:7D:40:80:70:54 ValidityFri, 01 Mar 2024 13:12:36 GMT - Thu, 30 May 2024 13:12:35 GMT
File typeASCII text, with no line terminators Hash3be7b8b182ccd96e48989b4e57311193 78fb38f212fa49029aff24c669a39648d9b4e68b d5558cd419c8d46bdc958064cb97f963d1ea793866414c025906ec15033512ed
GET /AlexHostX/all.asset/1591ba04a57c11f4b18d2ebb39e03e4a81715c83/alex-google.css HTTP/1.1
Host: rawcdn.githack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Fri, 26 Apr 2024 05:05:07 GMT
content-length: 14
x-github-request-id: C5D0:D517:6F56FA:7549D7:662B352D
via: 1.1 varnish
x-served-by: cache-hel1410031-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1714107693.265171,VS0,VE163
vary: Authorization,Accept-Encoding,Origin
cross-origin-resource-policy: cross-origin
x-fastly-request-id: 0bc867f5c12557e8f2041e7753d7f6f59a7ee3bf
source-age: 0
cache-control: max-age=60, public
x-githack-cache-status: HIT
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=69c80hTBbK%2FT0neFbF7O9LKFnhFvVBwWnl7VltuW5WakGK1%2BjOAluC2txUX0FwpCVe2%2BF%2Fqjdoom8IInb%2FKpwAK6iq2ra0qS4sh%2Bh0JL7%2FYF2s31%2FVmeghK0C1%2BDzI%2FDfYZi0Qw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a40937babb7750-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| voy27hj1qps.fcyz.my.id/img/old/3.jpg | 172.67.208.84 | 200 OK | 58 kB |
URL GET HTTP/3voy27hj1qps.fcyz.my.id/img/old/3.jpg IP172.67.208.84:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1280x1280, components 3 Hash316dfba4d81ad853bef7088dbe9737ca 38c7bdbdb9b227c060d6f5474ba807a0cdaff4a7 258a47a929eb483613c81aae8432b705d949ac9facf5a5c02d7d8d4a3db823af
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/old/3.jpg HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: image/jpeg
content-length: 58510
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 05:05:07 GMT
last-modified: Wed, 05 Apr 2023 14:32:56 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8zwD3YfWnnPePr04MeCLfyEYq84IfdZeBMUE8aFhqGGAPbOqyuSoBlwVCAb9P2sAL4IuZbBPMe%2Fm5zrj4mqFeKwCUtbhiE88tTojCWs908A1X3JGwUh%2F9%2BLxtNR%2FJPon0kXK5JWSA%2BLw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a409377c7c0b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| voy27hj1qps.fcyz.my.id/img/old/4.jpg | 172.67.208.84 | 200 OK | 78 kB |
URL GET HTTP/3voy27hj1qps.fcyz.my.id/img/old/4.jpg IP172.67.208.84:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1280x1280, components 3 Hash47bacaf7d9e42c0551f43472624e0b33 f069dea9f1f7c86358e1a5529ccac2f7e3b7369d 1a91aa8dc8c721db22e66f1f0911319aed59816a8c7e709970fbe9ca6b0c9773
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/old/4.jpg HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: image/jpeg
content-length: 77706
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 05:05:07 GMT
last-modified: Wed, 05 Apr 2023 14:32:56 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bSIdVmocY7hVjgsZ0f28Z2kinnKjnRT55fLVXmr7CkdgFGukBOL6ZNBLh7esG%2Ff84%2BxvyENk6oilojEPiV9DneRcRly7HUna6izcevE4aL0cAqclBPV7AsTuSeaHcTjCzLA61lhzefVV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a409377c7e0b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| voy27hj1qps.fcyz.my.id/img/old/5.jpg | 172.67.208.84 | 200 OK | 87 kB |
URL GET HTTP/3voy27hj1qps.fcyz.my.id/img/old/5.jpg IP172.67.208.84:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1280x1280, components 3 Hashbd612732360a5da1efb70d2f26b795bc 02d5ede707c6313e2335e7ff7a9164b5ee7ec877 9e5329360a8a2ef8a4ab0ce77f3230be443c093a3a3f02a007641e3f6fca5f5a
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/old/5.jpg HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: image/jpeg
content-length: 87053
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 05:05:07 GMT
last-modified: Wed, 05 Apr 2023 14:32:58 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=q8a574%2FsxheEmhsBn5fHpfdNNM5evYXyw9gzTfjOvCSAe0Oqvzfr7PPyWiG5juU93B4DoLhTpMFFXq%2FSvuCpraw7Y7NRq6V%2BNs1d%2FMAED1FMRruBltsx%2F61IwtzDq%2Bx0WpdQaXlzaVP6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a409377c800b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| voy27hj1qps.fcyz.my.id/img/old/6.jpg | 172.67.208.84 | 200 OK | 79 kB |
URL GET HTTP/3voy27hj1qps.fcyz.my.id/img/old/6.jpg IP172.67.208.84:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1280x1280, components 3 Hashe53f2f3d3d1abe0ab8119b8a87dc27c4 d702efd2b2011beaa297d87b9a93ad7b48fc20eb 51646465be1a3b745191c5cb6dceda47fb9be8a1c859beb345660fca8291e824
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/old/6.jpg HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: image/jpeg
content-length: 78581
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 05:05:07 GMT
last-modified: Wed, 05 Apr 2023 14:32:58 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xu5FUAh0Wx4jC%2FtAaJVbLU3S9MZEhIg5BpPOW2RVR%2BHWozsPbnQcgRKdt%2F3mcvkfFy2KOdUo4oVIEjJPn6i4rky5lLo9dNpOYeu6zdpwLoSgY3zARHUCxr83OM8uSU4EN2A510rHX%2BYC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a409377c810b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| voy27hj1qps.fcyz.my.id/img/old/7.jpg | 172.67.208.84 | 200 OK | 75 kB |
URL GET HTTP/3voy27hj1qps.fcyz.my.id/img/old/7.jpg IP172.67.208.84:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1280x1280, components 3 Hash473caf5f238322583e04e7aeee46c2a7 e56ebd24f2179527c21ab1262180ca834b6c5d24 622b5322352025505e01c71ff1d6520e62ce1f1211fc11efb3ede9d24a110c75
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/old/7.jpg HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: image/jpeg
content-length: 75427
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 05:05:07 GMT
last-modified: Wed, 05 Apr 2023 14:32:58 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Dumm%2FHziWMwyqvRdd8%2Fpp9WP3GY21Tnip3I2s2P9q5674t7xqNrJi5PH6fnCfBy3nczD2YDPa%2BWGkxUCsOr5gpTFycqqj19Ddm89GVRhxSE7Mck5jHeaX7agvqwIz%2B1ajD0z%2FDWWCfhI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a409377c820b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| voy27hj1qps.fcyz.my.id/img/old/8.jpg | 172.67.208.84 | | 85 kB |
URL voy27hj1qps.fcyz.my.id/img/old/8.jpg IP172.67.208.84:0
CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1000x1000, components 3 Hash5b988ca12f0928c882f7ff50a32ffe01 a44b37e7bb7ecbbe76d47b084cd94effd6e9f552 0eb6a14eeb1c27e7c3c471db0f10c25eea89a65df20b2dbeea6c9ee3ccc0c78f
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/old/8.jpg HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: image/jpeg
content-length: 85199
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 05:05:07 GMT
last-modified: Wed, 05 Apr 2023 14:32:58 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kdt5QuKwbc7eDYpd6Yy%2BQ7%2BX6hLb%2B9J%2B6dqHDkmxMEWs0BgiTWELgE%2FQg6BCTKWSPv5p0rm4hrcvfKEWtplkGw2OtLUCcX9ddlWrE3eti4HOLEQ8LawFMJlTmrF6W46vWb8rl7%2FQIBcN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a409377c830b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| voy27hj1qps.fcyz.my.id/img/old/9.jpg | 172.67.208.84 | 200 OK | 92 kB |
URL GET HTTP/3voy27hj1qps.fcyz.my.id/img/old/9.jpg IP172.67.208.84:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1000x1000, components 3 Hashd3fa373bbd9a288f7162ffc76c179ebd 1add685f2def7f1c8d359fafe5f2ed3761e0188f 63fbe80d8ea4766ecc80faddd1387ef9681cb2ec2b4ad45164f4b36ffb4e2e43
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/old/9.jpg HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: image/jpeg
content-length: 91553
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 05:05:07 GMT
last-modified: Wed, 05 Apr 2023 14:32:58 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Enj0bDsCsfu7oOQlWGgKPeLL2lQhhwWgg4%2B6jlabtCvtX284bqtmfogTATGU0lz7%2BOfGTHRBghEIjueJLC7OiRzH5K9Jm33zheF%2BQZ6NmHfjUoeKJzZvb%2F7l1HH6Z0VkOpB%2FpyNiIL06"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a409377c840b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| voy27hj1qps.fcyz.my.id/img/old/10.jpg | 172.67.208.84 | | 39 kB |
URL voy27hj1qps.fcyz.my.id/img/old/10.jpg IP172.67.208.84:0
CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 684x916, components 3 Hashbf58fb6f6463a1720fb1d0e0f58a3896 e0b9c0a61b1c60fe8748c7d007b981a3b7056489 de9e872524b79699ce8b0624de9bba409dd246d16dd48f171e4ed1072c00cfeb
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/old/10.jpg HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: image/jpeg
content-length: 39371
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 05:05:07 GMT
last-modified: Wed, 05 Apr 2023 14:32:58 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fPvXdXAIrgU%2ByIjrJcVWHxI%2BsckExcgxIItdEWR4quzFLaq9kaJ0GiNTTGHSiWiJOW17kYKx8OLHSywAa4rtwclnb1KuhavA6rncayMhblK%2Bbi66l5tsLyFkmu4dgyVJXq9cB1wkFGIw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a409377c850b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| voy27hj1qps.fcyz.my.id/img/incubator/3.jpg | 172.67.208.84 | 200 OK | 59 kB |
URL GET HTTP/3voy27hj1qps.fcyz.my.id/img/incubator/3.jpg IP172.67.208.84:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 562x562, components 3 Hash979aa3e91bf0371884c91706db7a98c1 658497a52d5551d138d3401210ddf2ecacfb20fd f451a298d4843315ecb7bf2500d946295ecd6776aaf12cb69574bde1aa1f395c
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/incubator/3.jpg HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: image/jpeg
content-length: 58631
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 05:05:07 GMT
last-modified: Wed, 05 Apr 2023 14:31:48 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gBu%2F8fUl%2BUUbI2T%2BwjkR3h3IHPd1r6fz2lS0qKgQ%2FdPvu%2B%2FTZaOj1%2BeOBS2MGlwNRZpz0kYcrw8%2BetBEgA6w1%2F27n6JxPacTusy5v43sLSL1JegXdrJLivs6QNGyX48V%2BgAkMEgtuBqv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a40937bcb00b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| voy27hj1qps.fcyz.my.id/img/incubator/4.jpg | 172.67.208.84 | 200 OK | 64 kB |
URL GET HTTP/3voy27hj1qps.fcyz.my.id/img/incubator/4.jpg IP172.67.208.84:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 575x575, components 3 Hashb5204e496f3122192acd17b2b186b45f 7150bc610c3e4104dd5b101654c9f37406aa04a4 f95ed204614a3599b0bb6ffdcceecb74cd5dc7a60e26ca4e235f1a2a82c5c518
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/incubator/4.jpg HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: image/jpeg
content-length: 63944
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 05:05:07 GMT
last-modified: Wed, 05 Apr 2023 14:31:48 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KL8gXMSfe2xkKzj6UvXXAo5lykXBUIXqs%2FLybwQIq4cVQj2pjJgsMKZiEWQgeiPggjm%2BwUs1z8aaiCPNrYjbfrUTLZtjdTipiv81dQU%2BNRBD42eJug6SIgKajccQF6BKp%2Bl2nxsysjp7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a40937bcb10b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| voy27hj1qps.fcyz.my.id/img/incubator/5.jpg | 172.67.208.84 | 200 OK | 56 kB |
URL GET HTTP/3voy27hj1qps.fcyz.my.id/img/incubator/5.jpg IP172.67.208.84:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 568x568, components 3 Hash5e7b7e726f0f5182f4268a38b3a5ceab 6495856bce9af91b8e9d728e0e3625189e7e452b a04ed1b5cf22b5ae79a1bbca52ee14f9ca03a83a36c6ce16e7ecb870e95aab55
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/incubator/5.jpg HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: image/jpeg
content-length: 55457
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 05:05:07 GMT
last-modified: Wed, 05 Apr 2023 14:31:48 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Lal7ZyqYe2TIskYG3CQAFqsQQQ55%2F5q4o0ZOf4VVDu8LNGQpyiE%2BMd7F8I5xUYNccvp9f1HkZCallXq6L%2B4vlR6l%2FNEz5VO1Yd09n%2FdsCF%2BhpA5fohUq8O%2B6zQ0pi5GmMNBn7pkISNyO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a40937bcb20b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| voy27hj1qps.fcyz.my.id/img/old/11.jpg | 172.67.208.84 | | 46 kB |
URL voy27hj1qps.fcyz.my.id/img/old/11.jpg IP172.67.208.84:0
CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 940x1052, components 3 Hash0a4bc07510a030baffb2ec9ef5870aea 453b316a4e3fa4d955e1395280d506761156a06c 908c3acad2bff2c347166113be45b73a35869eed538a900acca3fedd81ff5183
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/old/11.jpg HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: image/jpeg
content-length: 46471
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 05:05:07 GMT
last-modified: Wed, 05 Apr 2023 14:32:58 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pkll2JDpiHLf%2FKDKPLEBOipbptXOnU3VZXjDwuz5dJBpS7%2Fp%2FYFk0Fz%2FXzhKUWh383R6kXMMpjQsFfrsMhSPhOh7re6YfiP4nXtsMrG6%2B7c1udP1qImZzPYJNXojQ7nze8pzksl%2BY%2Be3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a409378c8a0b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| voy27hj1qps.fcyz.my.id/img/old/12.jpg | 172.67.208.84 | 200 OK | 17 kB |
URL GET HTTP/3voy27hj1qps.fcyz.my.id/img/old/12.jpg IP172.67.208.84:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 540x688, components 3 Hashf8351c5498cd1e97e3db1dc2e21f6cef 1b831a0dc34a8bf15ba6a10ee8b02bc010f59016 b9b545590950ff252a5b53bfc9b3d64ed373aee3ae94dec68033d0c857e8b3d8
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/old/12.jpg HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: image/jpeg
content-length: 17081
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 05:05:07 GMT
last-modified: Wed, 05 Apr 2023 14:32:58 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YWhejhohT1jrhYvZO96fmPvAhfNxR7ApCqv%2BVChhD3kKwqUtPjl2GxUPSKgcsrdmAnXVkQyIfiotNeEeJunUqYxgVQTOwiAtuGnQ%2FjV%2Fidis7OxxBl%2B4ixBdYOluXkR0Sv4QaxXDK3do"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a409378c8f0b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| voy27hj1qps.fcyz.my.id/img/diamond/3.png | 172.67.208.84 | 200 OK | 2.9 kB |
URL GET HTTP/3voy27hj1qps.fcyz.my.id/img/diamond/3.png IP172.67.208.84:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 130x162, components 3 Hashdf5bfc626761a05e26222598f27cdf15 ed37075f86574bdeb39a5608384d722f8347df03 762fe8a43c859633d41642dd93c10478d3dacf62ff1310ddcefa17db5fa61f29
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/diamond/3.png HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: image/png
content-length: 2875
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 05:05:07 GMT
last-modified: Wed, 05 Apr 2023 14:30:48 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fm%2BUUmQae6iW5dDRj70HVCuIahrtWKze%2BCj%2BiM9JejEeeZfM1oKXuLo4sBNigj7kn5OE0s55NRbu5ZsXpPNtygnFZPaS785oIxfOrkkjlfrzvzIEalXVXJOLPZgQAww3kzpRz0RWgelb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a409378c960b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| voy27hj1qps.fcyz.my.id/img/diamond/5.png | 172.67.208.84 | 200 OK | 2.8 kB |
URL GET HTTP/3voy27hj1qps.fcyz.my.id/img/diamond/5.png IP172.67.208.84:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 130x162, components 3 Hashf7fe1bdb99bdc8d0685e5f4bb5bf4e4c 965db0214225f37399495346a972e83c83f3fcdd e436ac38500431763697f5bd387d494324f320b76b25c97e29938d90bd7b1557
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/diamond/5.png HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: image/png
content-length: 2779
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 05:05:07 GMT
last-modified: Wed, 05 Apr 2023 14:30:48 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3qVFx5JfVq06u265qWbV4Okgts7RnFeevpHphiUZv5BKXNIzaUZdzrO2UQ7H3rhHIuRryN0SLxmYB3oTOPjCdGguEronKqnzQtFon3lj3ae38Q0DNo%2F6j2ymN8QEg99EsU0aa0li4Az8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a409379ca20b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| voy27hj1qps.fcyz.my.id/img/diamond/7.png | 172.67.208.84 | 200 OK | 12 kB |
URL GET HTTP/3voy27hj1qps.fcyz.my.id/img/diamond/7.png IP172.67.208.84:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 233x290, components 3 Hash31c0214a044bb8cc98cab002fdf9bb94 c2b483949f3267aa679d364ce059d1babc3e8f93 585cf192d586d254d46a7a066980137a06e5a23592e66dfc4b54bd6c4b63e088
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/diamond/7.png HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: image/png
content-length: 11823
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 05:05:07 GMT
last-modified: Wed, 05 Apr 2023 14:30:48 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FF7dxJUnX541U1bL2CB1hg7DAP6ZdiqzKNFIhanri5rG96ZbDnLEXJgdR8GoSFjhwxFbsUYzm5wBgguIk8PpkFpBEX6nW5uPW9t%2BGv%2BKDHB2ckh8RufcJ59BpRfVKeydGu9S8LEobaZe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a40937aca50b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| voy27hj1qps.fcyz.my.id/img/diamond/8.png | 172.67.208.84 | 200 OK | 13 kB |
URL GET HTTP/3voy27hj1qps.fcyz.my.id/img/diamond/8.png IP172.67.208.84:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 233x290, components 3 Hash18d7331b2312b85b1bfba110763c7574 9186a2527194478a524ffe4b7ceb5e61410bdd42 6afcc18ffa172755862f5c6dc3f20d9c3d6ee6f5f399df00e8568bf747e1cdb9
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/diamond/8.png HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: image/png
content-length: 13341
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 05:05:07 GMT
last-modified: Wed, 05 Apr 2023 14:30:48 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Lecmnbvcn6RBJxZx1Lf3lXzLUBHSsvcKIX0cTZkPC194fLTuyLYTCFakzCOhyV23j9RlXFQhtPXvTHj%2BYhhc7KAoeN%2F%2Fl2AcAJyiUVXqNTu5qjZus6eSpGRQ3JlKRj5q9nlqqdSTnuxV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a40937aca60b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| voy27hj1qps.fcyz.my.id/img/incubator/n1.jpeg | 172.67.208.84 | 200 OK | 100 kB |
URL GET HTTP/3voy27hj1qps.fcyz.my.id/img/incubator/n1.jpeg IP172.67.208.84:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 582x773, components 3 Hashdb1fa213e1d17d31fe863149c067eb65 feb589647e77221e77477f577d3c1c8ba6a75477 d2973dde5839f76cfa57932df4f4813939a0061a89376edb063f6bde3b0047b5
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/incubator/n1.jpeg HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: image/jpeg
content-length: 99696
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 05:05:07 GMT
last-modified: Mon, 19 Feb 2024 01:49:40 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SGSdLZNJYKwqAcf%2BOMDuuVQ0vf59%2BVud1hebhdD0BU3KdDzQMgEZ4NrGfjdAQQSEp%2FvSGXMClqJxay4dLenpfAHLC3%2BC3umsjZ1uAWYkLZ4k1Wl70qoq2ljIFzqT8AeWwUNGXrNXOlbh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a40937aca70b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| voy27hj1qps.fcyz.my.id/img/incubator/n2.jpeg | 172.67.208.84 | 200 OK | 16 kB |
URL GET HTTP/3voy27hj1qps.fcyz.my.id/img/incubator/n2.jpeg IP172.67.208.84:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 242x323, components 3 Hashf666661cf0db48fd27b6beeeac106697 f051aad9f454044593fde4caddff97f5ae1ec247 81b9c32b27f445fb1bbacbefd4bdeece209f23838d9e7e4f4e392faca2f82080
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/incubator/n2.jpeg HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: image/jpeg
content-length: 15570
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 05:05:07 GMT
last-modified: Mon, 19 Feb 2024 01:49:36 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GtktLYQsfaMlSCj14PDu%2B80%2FLjmHixiDBCcMc9ZODKDzsb%2BA6e02PsjcXwbVvtQN%2B9SRblUZ5eRLm%2BDK1gKInAIZubTPBEnKFtzcWKSxM8ZY%2F9sE%2FaTIiuklM6UaOnLThwhiPspFCq0Q"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a40937aca80b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| voy27hj1qps.fcyz.my.id/img/incubator/n3.jpeg | 172.67.208.84 | 200 OK | 63 kB |
URL GET HTTP/3voy27hj1qps.fcyz.my.id/img/incubator/n3.jpeg IP172.67.208.84:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 540x663, components 3 Hash3ba15ab32066f05ac8ae42e77a723e85 116021696ee50fb51cb0c44f683cde855c59a291 f83b1564472584afdac9157172bf634ef3ccd4bcfd947987c1a059395627a387
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/incubator/n3.jpeg HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: image/jpeg
content-length: 63129
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 05:05:07 GMT
last-modified: Mon, 19 Feb 2024 01:49:44 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GKykmNXrYX%2B7NAn9mOU8%2F4oKVUSca%2BbY%2BGAMXhg4%2F8A5aLAVoMpBMc7hynwAyWsJ0%2Bpa4iGSwrXIIY6Rhjbk%2B5oW1r8LC4%2F7iz%2F0Nw3aOEGuDToIOHQv7Im0%2BC7MODKqTCcOoNTj8ZsT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a40937acaa0b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| voy27hj1qps.fcyz.my.id/img/incubator/1.jpg | 172.67.208.84 | 200 OK | 64 kB |
URL GET HTTP/3voy27hj1qps.fcyz.my.id/img/incubator/1.jpg IP172.67.208.84:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 559x559, components 3 Hash7c17b4a223a7baf1931ddf915972a1d7 49fa779105da34bc66ef240ed71719d837f1813e 7eb51057deb30db7c6c2900040a45178726b5a63c262f50ff58fdcf876cfa463
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/incubator/1.jpg HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: image/jpeg
content-length: 63579
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 05:05:07 GMT
last-modified: Wed, 05 Apr 2023 14:31:48 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EBUnYIvqvwjwxSh%2BFTOIVGP8Em1yRp2SrhSUceJUMZhEhiG1Cx1VNxRIneHIqlDeyPCs4iYLcnXjOpVdtv2SeD%2FXBl8MHSVDG%2FOLpUckJBI6BcUlwMD8KSErvBRq2kwH8BAAzIRQHAhu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a40937bcad0b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| voy27hj1qps.fcyz.my.id/img/incubator/2.jpg | 172.67.208.84 | 200 OK | 60 kB |
URL GET HTTP/3voy27hj1qps.fcyz.my.id/img/incubator/2.jpg IP172.67.208.84:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 565x565, components 3 Hashcaa25bdeee31b9bf65b0558ee9ba03d8 7fda495e1ba5939dacaa87e1231a72e40111e600 35d68e25f22f6688e3a8f7cb2f354cd45b09c8523ba6d4ff53c7ca64d3c9e1bd
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/incubator/2.jpg HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: image/jpeg
content-length: 59531
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 05:05:07 GMT
last-modified: Wed, 05 Apr 2023 14:31:48 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=La0x5mzOpxcdtZRc8Z6updOalQMpU2rBBt2ChoDzcnT3TLrMIhXv4FnwNWbRajrPyHwEpcgGRVgUhskcF1oHfQJIqpUZh4in5XPmV2ugDf%2FSiRHBT5JiIue7xMt8XSLYM%2Bl6wtDuP%2FX4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a40937bcae0b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| voy27hj1qps.fcyz.my.id/img/incubator/6.jpg | 172.67.208.84 | 200 OK | 58 kB |
URL GET HTTP/3voy27hj1qps.fcyz.my.id/img/incubator/6.jpg IP172.67.208.84:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 568x568, components 3 Hash933113087a731f60a1b1612d67f969cd db40cd025a4738ef85cf2c514f00e69b5d817df3 54fad0de66506819441abb12f48b499596b374f441fe0aaa7a6e9d7ec0668a5e
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/incubator/6.jpg HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: image/jpeg
content-length: 57623
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 05:05:07 GMT
last-modified: Wed, 05 Apr 2023 14:31:48 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7CY9f4gepAfWAlRHQyTJ7ylrIA8CFEw7TkSPCFwXdpVK1dmh0YbiDGK9FJd2xG0HPCOI67ZZGKCFuhmUubFyn3pw77XbxBB5NS1vSezt6W3mK7y%2FyI7gSu%2BsU1yr1KNYS8sj9e1K4xog"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a40937ccb70b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| voy27hj1qps.fcyz.my.id/img/incubator/7.jpg | 172.67.208.84 | 200 OK | 18 kB |
URL GET HTTP/3voy27hj1qps.fcyz.my.id/img/incubator/7.jpg IP172.67.208.84:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 203x273, components 3 Hash2e1e3735e5def5bccf44e87f9ae76a95 f3b503d9632acd9e0cb700f7f5d3712da6fc8eb6 f3c3093e4cc9c4988c843918b523d35b42ea7d5ebca79ea89c04c0e661def0cd
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/incubator/7.jpg HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: image/jpeg
content-length: 17868
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 05:05:07 GMT
last-modified: Wed, 05 Apr 2023 14:31:48 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kWbn5apXTELEF8p3IbbuWqxvqEl79%2BGv4e3ykyo9NIqMbp16FvhKcOaSlzqxyb1xS0mDlvYpwGBnJzsrR%2B025nqMXEgbFJz7WAICHXOFkXFZG4IgHitrU7UoqNiAa%2BNlWq8Zi96uNDNU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a40937ccb90b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| voy27hj1qps.fcyz.my.id/img/incubator/8.jpg | 172.67.208.84 | 200 OK | 17 kB |
URL GET HTTP/3voy27hj1qps.fcyz.my.id/img/incubator/8.jpg IP172.67.208.84:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 201x272, components 3 Hashbb4c22bbf88632acaf74735969c09661 06ec1ada0909e6a314640ea32195f77a6ea832b9 46a89f72eddd4c6b4447622c23bdde5e861bb7afd8a4d1edef030841d373093a
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/incubator/8.jpg HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: image/jpeg
content-length: 16726
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 05:05:07 GMT
last-modified: Wed, 05 Apr 2023 14:31:48 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=S8t3YqKEyhcsUQRgCt0eF%2FX%2FfViOBfYBi4VFvLn8cT%2FbEbmDalFXbdJFtms%2BpZ24FCwXLw8S28dhA%2FYm9zAIX5GiReh5VBHeS8zMqFA%2BtRP5FO8xpPW9GoWCtaf%2BqTCmphptFeOwW9C8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a40937ccba0b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| voy27hj1qps.fcyz.my.id/img/incubator/9.jpg | 172.67.208.84 | 200 OK | 18 kB |
URL GET HTTP/3voy27hj1qps.fcyz.my.id/img/incubator/9.jpg IP172.67.208.84:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 202x273, components 3 Hash324fa71ceab25917b1b39275f0510c34 b15a87ed1e0d8915f9bbddcc634e5c19cb9c09c7 37e9b832341a9e17a95ef5f3d8d1175cc4d72cb67847b8a2eea9025ffe0570c9
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/incubator/9.jpg HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: image/jpeg
content-length: 17945
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 05:05:07 GMT
last-modified: Wed, 05 Apr 2023 14:31:48 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kPeRTn4GSMbid%2BJ7bz1RmSOKhqm%2FJ7KNBjd8vv5t4qQsVPTgzvyMqGr0eqYQyJ5lta2vmQ5mgR6yA96QXKcmNvyjJppTNBKMBRPx%2Bt0yqmv%2FP4v5xcXXpNZiSBme1Z%2BMcd5zrv9H%2FxKd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a40937ccbb0b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| voy27hj1qps.fcyz.my.id/img/incubator/10.jpg | 172.67.208.84 | 200 OK | 15 kB |
URL GET HTTP/3voy27hj1qps.fcyz.my.id/img/incubator/10.jpg IP172.67.208.84:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 205x270, components 3 Hash6662119a701a284803239bd63e60a9f1 331dcad42c43585899aef4049ee759c48b47a464 7dad6721e95be42ff263df89e177b04725f23b7b37a2e7ab7f97e35e5fd02b16
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/incubator/10.jpg HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: image/jpeg
content-length: 15353
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 05:05:07 GMT
last-modified: Wed, 05 Apr 2023 14:31:48 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pTlm%2BuW9xw3VWt%2FtfaQKA5CBNEAs4HTEJFo1nFaO8lFVwn1Sf8UmNxLXECQG17QlqZUgizOBTFTjXRUQk189271VxRMKbtwSnZ7ufnx36MAolfA2nXHsbLe%2BKwnzRwV96DvJT7wcOQ%2B7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a40937ccbc0b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| voy27hj1qps.fcyz.my.id/img/incubator/11.jpg | 172.67.208.84 | 200 OK | 17 kB |
URL GET HTTP/3voy27hj1qps.fcyz.my.id/img/incubator/11.jpg IP172.67.208.84:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 201x269, components 3 Hashff130cc7c9b4f2b0b8da9df733b6e46c 7552f1af69a3fe64f388d89efc0c2afccbeba941 a738fedb10c230981aea2faeb99e56ba0f4b80d576559bbe99bc569abc28967f
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/incubator/11.jpg HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: image/jpeg
content-length: 16631
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 05:05:07 GMT
last-modified: Wed, 05 Apr 2023 14:31:48 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CaWTPHy2NrHmXfccefjRE9f%2Bjq8nI1l%2B9i2waQMOcAMFWBUOF240V49drmbcr4AdvQheirwCWEJUcpsdRjGnm9IFbn5uqg10LDWoxLFuqOQ4obfY1kpCVGDX4FK2wo398xvEPZfkSEbE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a40937ccbe0b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| voy27hj1qps.fcyz.my.id/img/incubator/12.jpg | 172.67.208.84 | 200 OK | 17 kB |
URL GET HTTP/3voy27hj1qps.fcyz.my.id/img/incubator/12.jpg IP172.67.208.84:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 203x273, components 3 Hash89bf879f77e2c739090f65670e1d543e 10a037660ba66df86c1e1dfdc309425a5b81a691 da57aa220b2f676a0dfe336fa5410675c9801312cbd50ccb59f81028e6cb4213
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/incubator/12.jpg HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: image/jpeg
content-length: 16838
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 05:05:07 GMT
last-modified: Wed, 05 Apr 2023 14:31:48 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CHOrpN8bHABrZsVryK9RBgyFjErWnhZEFssmcgJrQeaSk58hNidsCHgG6nynH%2FgIqEGwO%2FHexWwLhAD0TvgJy9ps%2BV1tR9fht4owyLEMPJO%2BYVRwQEC5rT2q6SuPCcwvzVgsSe7rL8G1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a40937dcc00b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| i.postimg.cc/nVkV8M0W/FfMaxx.jpg | 162.19.88.68 | 200 OK | 37 kB |
URL GET HTTP/2i.postimg.cc/nVkV8M0W/FfMaxx.jpg IP162.19.88.68:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerLet's Encrypt Subjectpostimg.cc Fingerprint53:90:A2:AC:6E:D0:9C:56:06:D5:4F:6E:EE:C9:67:58:10:CF:9A:D6 ValidityMon, 22 Apr 2024 06:32:22 GMT - Sun, 21 Jul 2024 06:32:21 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 512x512, components 3 Hash61aa45bf291755caa8f0664e4e8b91e9 33f6c6304486ce8004d9d459f08aa6b95982f0ba 323b5ffc0bc7f906cf266b1622e4de3f8dfddcb3f38c460e58b468906d51ebf3
GET /nVkV8M0W/FfMaxx.jpg HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 05:05:08 GMT
content-type: image/jpeg
content-length: 37166
last-modified: Sat, 04 Mar 2023 14:21:43 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| filebagasarya.com/img/border/borderatasorange.png | 172.67.195.69 | 200 OK | 82 kB |
URL GET HTTP/2filebagasarya.com/img/border/borderatasorange.png IP172.67.195.69:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfilebagasarya.com Fingerprint54:41:7F:EA:A0:EC:B2:B5:41:D7:9C:20:41:0E:BE:28:02:6C:00:C4 ValidityThu, 25 Apr 2024 21:52:17 GMT - Wed, 24 Jul 2024 21:52:16 GMT
File typePNG image data, 979 x 578, 8-bit/color RGBA, non-interlaced Hash06868c2454d9d8c0a17e49c915f6aca3 d4584aac766db94d6617cbc4494cd42b44b9a24a 4923c888864d76243b116d6ac21e4e24049b195098809f6e0540aabb38ef9a88
GET /img/border/borderatasorange.png HTTP/1.1
Host: filebagasarya.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 05:05:08 GMT
content-type: image/png
content-length: 82404
cache-control: public, max-age=604800
expires: Tue, 30 Apr 2024 00:21:31 GMT
last-modified: Thu, 04 May 2023 03:26:42 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 276217
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UWc1a9EwRCALGWZ1kqq3W35Nydfh6bztC4N%2Fs9Nd7rHZV5J9%2Fo9DjYmSAKtYGRVwe6wbhOhesOwucAlVWinoKg7wiQB3ONPRC8U%2B4uJ08q0CKRBfE3Hbj1Y%2Baq7w1FNfXqUxcg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a4093b6d0b56c9-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| dl.dir.freefiremobile.com/common/web_event/official2/dist/client/img/full_logo.969f536.png | 54.230.111.45 | 200 OK | 8.3 kB |
URL GET HTTP/2dl.dir.freefiremobile.com/common/web_event/official2/dist/client/img/full_logo.969f536.png IP54.230.111.45:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerAmazon Subjectdl.dir.freefiremobile.com FingerprintD7:4C:09:C2:7E:90:38:EA:18:D7:59:E0:F8:87:98:CF:8A:74:D3:D9 ValidityWed, 29 Nov 2023 00:00:00 GMT - Fri, 27 Dec 2024 23:59:59 GMT
File typePNG image data, 616 x 90, 8-bit/color RGBA, non-interlaced Hashc632e6bfd0076695e56477bdb3f7232c 5b4212f029814b5dfda946ac5e5a6ba97857feb9 86ccbc1dbeb58af3e6bce5ee52f86a47399da998ad34a0fd2ce9b0b539d92f6c
GET /common/web_event/official2/dist/client/img/full_logo.969f536.png HTTP/1.1
Host: dl.dir.freefiremobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
content-length: 8314
server: OBS
date: Fri, 26 Apr 2024 04:50:28 GMT
x-obs-request-id: 0000018F18BD93E2941F776EE646E237
content-md5: xjLmv9AHZpXlZHe9s/cjLA==
x-obs-replication-status: REPLICA
accept-ranges: bytes
last-modified: Wed, 10 Apr 2024 03:54:58 GMT
x-obs-id-2: 32AAAQAAEAABAAAQAAEAABAAAQAAEAABCS8TtoJ3wDAzFnn9ikUN6gv2ldSa0R9s
etag: "c632e6bfd0076695e56477bdb3f7232c"
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ma4ErzATcObFTW4FhW3N-myqxWN4fLQG9K5V3W4jSvi7D1Gx64Bg2g==
age: 880
vary: Origin
X-Firefox-Spdy: h2
|
|
| filebagasarya.com/img/border/claimepepgold.jpg | 172.67.195.69 | 200 OK | 17 kB |
URL GET HTTP/3filebagasarya.com/img/border/claimepepgold.jpg IP172.67.195.69:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfilebagasarya.com Fingerprint54:41:7F:EA:A0:EC:B2:B5:41:D7:9C:20:41:0E:BE:28:02:6C:00:C4 ValidityThu, 25 Apr 2024 21:52:17 GMT - Wed, 24 Jul 2024 21:52:16 GMT
File typePNG image data, 193 x 59, 8-bit/color RGBA, non-interlaced Hashc61321f52aeff74693795602cf069eae 835e9f7d87c963a4f443130277f6a8074b1abc71 ac8a111bd0d029a03e1301abdec8d372b71c7e021f62c34c9050455f07b76995
GET /img/border/claimepepgold.jpg HTTP/1.1
Host: filebagasarya.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 05:05:08 GMT
content-type: image/jpeg
content-length: 16891
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 00:15:28 GMT
last-modified: Wed, 03 May 2023 01:21:06 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 17380
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nOKTMPuLeDgAfT%2BwAXE8YpLUcbaO58hkn%2FvaQVT2ztalcoypzV1bVYGbm4GtQd1cyJEUzbJHNbxclXKqI18ucTpB26U86XsgKbZGIjnp%2BcTv4KVXSrjVFIreWPWEBnR4v8Dc7A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a4093d4a851bfa-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cdn.jsdelivr.net/gh/AlexHostX/mlbb@main/old/IMG-20220417-184327.jpg | 151.101.65.229 | 404 Not Found | 53 B |
URL GET HTTP/3cdn.jsdelivr.net/gh/AlexHostX/mlbb@main/old/IMG-20220417-184327.jpg IP151.101.65.229:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeASCII text, with no line terminators Hashcb71d2b197dd6af21b39e0261fb1497c 9ab080da6e72161e565846ba4fe9a3279f8f9acf a3abb1833e1a60b26006a99e3ca8c8aefff91c61003548a8f34fc6c92d62acd7
GET /gh/AlexHostX/mlbb@main/old/IMG-20220417-184327.jpg HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
content-length: 53
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=600, s-maxage=600
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/plain; charset=utf-8
etag: W/"30-mrCA2m5yFh5WWEa6T+mjJ5+Pms8"
content-encoding: br
accept-ranges: bytes
age: 542
date: Fri, 26 Apr 2024 05:05:08 GMT
x-served-by: cache-fra-eddf8230046-FRA, cache-hel1410031-HEL
x-cache: HIT, MISS
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
|
|
| voy27hj1qps.fcyz.my.id/img/back3.jpg | 172.67.208.84 | 200 OK | 37 kB |
URL GET HTTP/3voy27hj1qps.fcyz.my.id/img/back3.jpg IP172.67.208.84:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 675x1280, components 3 Hashd49a9d65d02c88f1d08a2d529c3ce262 a48830b010894c7ff4f8b0755b45c0529258564b 6127febdf5ed95db07f069979e91266e2f68c9d4eb09e161e906052cb850023a
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/back3.jpg HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 05:05:08 GMT
content-type: image/jpeg
content-length: 37092
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 05:05:08 GMT
last-modified: Sat, 17 Feb 2024 01:07:56 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=okzYPgZCoFrhxS8RwsueXQqVAxfJk7%2Bhy3ONtSzbRL9oIlM9nEbgHgUgwmfAC8YR0D26MN7MUyrkaNFheMtrJqmQxcvg%2BWOwporkqbFVDoS%2BoVEaKBfAOI7Xkb2PudkYRUFafYhAUvJ7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a4093d4eec0b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/teko/v20/LYjNdG7kmE0gfaN9pQ.woff2 | 216.58.207.227 | 200 OK | 15 kB |
URL GET HTTP/2fonts.gstatic.com/s/teko/v20/LYjNdG7kmE0gfaN9pQ.woff2 IP216.58.207.227:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15044, version 1.0 Hash4806226b885b3b3d0ae52142f6bfb3af 2ea5cc6d5e4adb874989a2b74bda062296fb1ad3 714088bef569d6981bfae79530ef315f4d6505f302a944ce9063601919977e6f
GET /s/teko/v20/LYjNdG7kmE0gfaN9pQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://voy27hj1qps.fcyz.my.id
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15044
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 Apr 2024 20:39:45 GMT
expires: Tue, 22 Apr 2025 20:39:45 GMT
cache-control: public, max-age=31536000
age: 289523
last-modified: Thu, 24 Aug 2023 21:55:11 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 15 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:443
Requested byhttps://www.youtube.com/embed/4hIMRUTqARM?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15344, version 1.0 Hash5d4aeb4e5f5ef754e307d7ffaef688bd 06db651cdf354c64a7383ea9c77024ef4fb4cef8 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 02:43:03 GMT
expires: Fri, 25 Apr 2025 02:43:03 GMT
cache-control: public, max-age=31536000
age: 94926
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ka-f.fontawesome.com/releases/v6.0.0/css/free-v4-font-face.min.css?token=869e25b803 | 104.21.26.223 | 200 OK | 1.1 kB |
URL GET HTTP/2ka-f.fontawesome.com/releases/v6.0.0/css/free-v4-font-face.min.css?token=869e25b803 IP104.21.26.223:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectka-f.fontawesome.com Fingerprint8D:43:33:42:48:C0:F5:34:71:EC:49:69:9C:62:01:4A:6F:41:11:98 ValidityTue, 05 Mar 2024 09:23:28 GMT - Mon, 03 Jun 2024 09:23:27 GMT
File typeASCII text, with very long lines (1574) Hash369cbeaee8e26da69cc5b0a0700cd62c 6410e6e42ef9c1964e102d34f9284bee7f055151 85b4b6b94b60580f6b44fd4f8152947eefdaf52fd5866219d86d5cfea0ee010d
GET /releases/v6.0.0/css/free-v4-font-face.min.css?token=869e25b803 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://voy27hj1qps.fcyz.my.id/
Origin: https://voy27hj1qps.fcyz.my.id
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 05:05:08 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 07 Feb 2022 20:11:39 GMT
etag: W/"369cbeaee8e26da69cc5b0a0700cd62c"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: SxdncNzffnhQNJDWJh8dTyGkEi2CQKhrNNRMc2XGjxEAdUYaW54Pqw==
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JQtwvM7ixevwkV0WcCT7NsIOwVWGIAKlhomFIb9pLNetcw6pi8BL7Qf5MvPrrL6CTBiGRsdEXLkWxeEksYL4aufAaWyVIlDKp5ixrm0MKUkXHSLw2W%2FxbpOyzAGWsWVJIpDNBDNaVw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a4093e29ab56af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| i.postimg.cc/nVkV8M0W/FfMaxx.jpg | 162.19.88.68 | 200 OK | 37 kB |
URL GET HTTP/2i.postimg.cc/nVkV8M0W/FfMaxx.jpg IP162.19.88.68:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerLet's Encrypt Subjectpostimg.cc Fingerprint53:90:A2:AC:6E:D0:9C:56:06:D5:4F:6E:EE:C9:67:58:10:CF:9A:D6 ValidityMon, 22 Apr 2024 06:32:22 GMT - Sun, 21 Jul 2024 06:32:21 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 512x512, components 3 Hash61aa45bf291755caa8f0664e4e8b91e9 33f6c6304486ce8004d9d459f08aa6b95982f0ba 323b5ffc0bc7f906cf266b1622e4de3f8dfddcb3f38c460e58b468906d51ebf3
GET /nVkV8M0W/FfMaxx.jpg HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 05:05:09 GMT
content-type: image/jpeg
content-length: 37166
last-modified: Sat, 04 Mar 2023 14:21:43 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP216.58.207.227:443
Requested byhttps://www.youtube.com/embed/4hIMRUTqARM?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15552, version 1.0 Hash285467176f7fe6bb6a9c6873b3dad2cc ea04e4ff5142ddd69307c183def721a160e0a64e 5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 17:25:07 GMT
expires: Fri, 25 Apr 2025 17:25:07 GMT
cache-control: public, max-age=31536000
age: 42002
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.youtube.com/s/player/652ba3a2/www-player.css | 142.250.74.14 | 200 OK | 48 kB |
URL GET HTTP/3www.youtube.com/s/player/652ba3a2/www-player.css IP142.250.74.14:443
Requested byhttps://www.youtube.com/embed/4hIMRUTqARM?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hashc0aca454c0a9b539d3af1213a20c6625 9893a760290f6d8a9fed3a9f3129e7285b702430 13a3fa279a6816ddd952f42fd82f5bc170ac2ff89410d14d43954b342ad40040
GET /s/player/652ba3a2/www-player.css HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/4hIMRUTqARM?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 48109
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 Apr 2024 07:31:32 GMT
expires: Thu, 24 Apr 2025 07:31:32 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 24 Apr 2024 04:20:05 GMT
content-type: text/css
vary: Accept-Encoding, Origin
age: 164017
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| ka-f.fontawesome.com/releases/v6.0.0/css/free.min.css?token=869e25b803 | 104.21.26.223 | 200 OK | 116 kB |
URL GET HTTP/2ka-f.fontawesome.com/releases/v6.0.0/css/free.min.css?token=869e25b803 IP104.21.26.223:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectka-f.fontawesome.com Fingerprint8D:43:33:42:48:C0:F5:34:71:EC:49:69:9C:62:01:4A:6F:41:11:98 ValidityTue, 05 Mar 2024 09:23:28 GMT - Mon, 03 Jun 2024 09:23:27 GMT
File typeASCII text, with very long lines (65321) Size116 kB (115944 bytes) Hash345f5ecc270c94968998574a2d37e31a 4b1937ca073a8376a07161bc40549585493ffa3d efad9b46d0c00f2562eb53236717ff21ebd474f8d68f69b45f92c424bfd87e9c
GET /releases/v6.0.0/css/free.min.css?token=869e25b803 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://voy27hj1qps.fcyz.my.id/
Origin: https://voy27hj1qps.fcyz.my.id
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 05:05:08 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 07 Feb 2022 20:11:39 GMT
etag: W/"345f5ecc270c94968998574a2d37e31a"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 6J0NYtcxKZYDtYOhpNEcHGQ_HRIZ26E0xFR5p3k19kCHTkFk5E6log==
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1PTS6pOs1VQpdXHZjnQuTQDG2tts6LXbkTjBsO%2Bg1Y14ScsFGKkHvxSXnayRYT0%2FtaAleFkbyInAoa4tK%2BqIamDwivLkQhSnK6Io3QRjnvBmB%2FqAB%2FmaE25w2wfjuI%2B6xtYWrrT0lw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a4093e19a056af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ka-f.fontawesome.com/releases/v6.0.0/css/free-v4-shims.min.css?token=869e25b803 | 104.21.26.223 | 200 OK | 814 kB |
URL GET HTTP/2ka-f.fontawesome.com/releases/v6.0.0/css/free-v4-shims.min.css?token=869e25b803 IP104.21.26.223:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectka-f.fontawesome.com Fingerprint8D:43:33:42:48:C0:F5:34:71:EC:49:69:9C:62:01:4A:6F:41:11:98 ValidityTue, 05 Mar 2024 09:23:28 GMT - Mon, 03 Jun 2024 09:23:27 GMT
File typeASCII text, with very long lines (26019) Size814 kB (813847 bytes) Hashc32e971c7d11c2407f847b61c515f1e2 85ac47a05e49f01cd62301ee121a2ca0dfdc0f83 a7fb3a26d569bec0139baaae950e43c1e10b0afbcf6e9d7654aa1181a8319759
GET /releases/v6.0.0/css/free-v4-shims.min.css?token=869e25b803 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://voy27hj1qps.fcyz.my.id/
Origin: https://voy27hj1qps.fcyz.my.id
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 05:05:08 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 07 Feb 2022 20:11:39 GMT
etag: W/"c32e971c7d11c2407f847b61c515f1e2"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: fen-1xdbWEFMcE6LVOB7tutiElEksQso7D3qiYxeEMzwZxfruwXEdg==
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=W4DOo%2FhFrFXdwLRfabyn4iTbvrOoP9O8c%2B6L1Ow6AqadPWQVXQjZQE6hjSOuuCFOoxjimmbkzI5rP%2BJsgkaIjYna4A9JUWEicN9Aogvltr8MHxUCc6yWjLQYAfU7%2FL%2FiXidK1%2BkS%2BQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a4093e19a256af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create | 142.250.74.138 | 200 OK | 0 B |
URL OPTIONS HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create IP142.250.74.138:443
Requested byhttps://www.youtube.com/embed/4hIMRUTqARM?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Fri, 26 Apr 2024 05:05:09 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.youtube.com/s/player/652ba3a2/player_ias.vflset/en_US/embed.js | 142.250.74.14 | 200 OK | 18 kB |
URL GET HTTP/3www.youtube.com/s/player/652ba3a2/player_ias.vflset/en_US/embed.js IP142.250.74.14:443
Requested byhttps://www.youtube.com/embed/4hIMRUTqARM?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT
File typeJavaScript source, ASCII text, with very long lines (3391) Hashb8a3c4fd7c1fb6f69956d1bea9121dd2 57de75008387d06257afd0f49dd6be0604d86152 e37861096c74b59c925c2effffcda0d899e4ec45dbee22b9546e9f511a7dcede
GET /s/player/652ba3a2/player_ias.vflset/en_US/embed.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/4hIMRUTqARM?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 18315
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 Apr 2024 07:31:32 GMT
expires: Thu, 24 Apr 2025 07:31:32 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 24 Apr 2024 04:20:05 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 164018
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.com/js/th/8MCXU0AIro2_0_rmGrwQkiCikxcMmBfRkjB6mvS6TbY.js | 142.250.74.164 | 200 OK | 20 kB |
URL GET HTTP/2www.google.com/js/th/8MCXU0AIro2_0_rmGrwQkiCikxcMmBfRkjB6mvS6TbY.js IP142.250.74.164:443
Requested byhttps://www.youtube.com/embed/4hIMRUTqARM?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subjectwww.google.com FingerprintCD:48:2A:0C:60:1D:37:5A:D4:D5:A9:F7:DE:A0:2B:5E:2F:29:76:73 ValidityMon, 18 Mar 2024 20:38:49 GMT - Mon, 10 Jun 2024 20:38:48 GMT
File typeJavaScript source, ASCII text, with very long lines (51575) Hash75aaf723d5862a8eb3eb263cef614157 c62cf17173a0c4155902b80f13f360936de119f9 f0c097534008ae8dbfd3fae61abc109220a293170c9817d192307a9af4ba4db6
GET /js/th/8MCXU0AIro2_0_rmGrwQkiCikxcMmBfRkjB6mvS6TbY.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 20286
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 19 Apr 2024 11:06:15 GMT
expires: Sat, 19 Apr 2025 11:06:15 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 16 Apr 2024 13:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 583135
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create | 142.250.74.138 | 200 OK | 42 kB |
URL OPTIONS HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create IP142.250.74.138:443
Requested byhttps://www.youtube.com/embed/4hIMRUTqARM?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
Hash7b1271f1b93ac95b815973bd761e1187 ac72499adb63f413c1e4199da78c3676da3dd189 48d03b370a9cf4434e82da62a673e2831199f36e9d4d7beeabab831d67b770c0
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 26 Apr 2024 05:05:10 GMT
server: ESF
cache-control: private
content-length: 41697
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.youtube.com/youtubei/v1/player?prettyPrint=false | 142.250.74.14 | 200 OK | 30 kB |
URL POST HTTP/3www.youtube.com/youtubei/v1/player?prettyPrint=false IP142.250.74.14:443
Requested byhttps://www.youtube.com/embed/4hIMRUTqARM?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT
Hash63d0301078022cc56fc4574e74565f7f 301f34a9fe3048793fe502c065121542d1084051 0f06348861d65fba3a61ba9d3f76f0bf1956afee85da21211dbe7276fd8abcb4
POST /youtubei/v1/player?prettyPrint=false HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Goog-Visitor-Id: Cgt0bFF6TE9OZlo4byiE7KyxBjIOCgJOTxIIEgQSAgsMICE%3D
X-Youtube-Bootstrap-Logged-In: false
X-Youtube-Client-Name: 56
X-Youtube-Client-Version: 1.20240423.01.00
Content-Length: 3079
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/4hIMRUTqARM?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Fri, 26 Apr 2024 05:05:10 GMT
server: scaffolding on HTTPServer2
content-length: 30107
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| yt3.ggpht.com/Pwnw9qWQuKgdKS72XPcRYHnZ4yIIyryaBkn_6IF9yR7jugDpwcGNqOCbAa5paa3ddEY31MHuOCM=s68-c-k-c0x00ffffff-no-rj | 142.250.74.161 | 200 OK | 4.6 kB |
URL GET HTTP/2yt3.ggpht.com/Pwnw9qWQuKgdKS72XPcRYHnZ4yIIyryaBkn_6IF9yR7jugDpwcGNqOCbAa5paa3ddEY31MHuOCM=s68-c-k-c0x00ffffff-no-rj IP142.250.74.161:443
Requested byhttps://www.youtube.com/embed/4hIMRUTqARM?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.googleusercontent.com Fingerprint6E:66:E1:45:85:5C:3A:EB:60:4A:8E:EF:62:B8:7C:E3:C7:1B:FA:47 ValidityMon, 18 Mar 2024 20:34:07 GMT - Mon, 10 Jun 2024 20:34:06 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 68x68, components 3 Hashbc57ab4f932a6079d620bddcedebfb98 64a2dd45f35a54ada4e2cd3d2fecce7742847e08 aa83c68bd76b28466287ab4f1d12527fa8f305192e89060106f509768188a304
GET /Pwnw9qWQuKgdKS72XPcRYHnZ4yIIyryaBkn_6IF9yR7jugDpwcGNqOCbAa5paa3ddEY31MHuOCM=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="channels4_profile.jpg"
x-content-type-options: nosniff
server: fife
content-length: 4564
x-xss-protection: 0
date: Fri, 26 Apr 2024 04:18:30 GMT
expires: Sat, 27 Apr 2024 04:18:30 GMT
cache-control: public, max-age=86400, no-transform
age: 2800
etag: "v1"
content-type: image/jpeg
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT | 142.250.74.138 | 200 OK | 0 B |
URL POST HTTP/3jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT IP142.250.74.138:443
Requested byhttps://www.youtube.com/embed/4hIMRUTqARM?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Fri, 26 Apr 2024 05:05:10 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT | 142.250.74.138 | 200 OK | 114 B |
URL POST HTTP/3jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT IP142.250.74.138:443
Requested byhttps://www.youtube.com/embed/4hIMRUTqARM?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
Hashbf8b28fb8fddb4d63c7983effce0d86b fa094b00bf090be59e3ccc7487ff9586e76296b8 502f4b3a231d8d231b2e0968b69a76edd9ee4b9f518d4cb2fa819ba9114124e1
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1126
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 26 Apr 2024 05:05:10 GMT
server: ESF
cache-control: private
content-length: 114
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.youtube.com/api/stats/qoe?fmt=396&cpn=GWu8Dj_t_e204KEv&el=embedded&ns=yt&fexp=v1%2C23983296%2C21348%2C76094%2C54572%2C304051%2C84737%2C36318%2C6271%2C26443548%2C7111%2C36343%2C9954%2C1192%2C26496%2C6966%2C2%2C6689%2C2007%2C663%2C8409%2C20075%2C9077%2C530%2C1666%2C8970%2C1025%2C1104%2C20%2C6933%2C100%2C53%2C2606%2C54%2C496%2C142%2C9%2C41%2C2%2C289%2C2%2C78%2C637%2C4454%2C6&cl=627399198&seq=1&docid=4hIMRUTqARM&ei=BTYrZuS1PLGt0u8Pwc-MuAk&event=streamingstats&plid=AAYW-NkVX46EmRSn&referrer=https%3A%2F%2Fwww.youtube.com%2Fembed%2F4hIMRUTqARM%3Fcontrols%3D0%26loop%3D1%26autoplay%3D1%26fs%3D1%26iv_load_policy%3D3%26showinfo%3D0%26rel%3D0%26cc_load_policy%3D0%26start%3D0%26end%3D0%26origin%3Dhttps%3A%2F%2Fyoutubeembedcode.com&qclc=ChBHV3U4RGpfdF9lMjA0S0V2EAE&cbr=Firefox&cbrver=96.0&c=WEB_EMBEDDED_PLAYER&cver=1.20240423.01.00&cplayer=UNIPLAYER&cos=X11&cplatform=DESKTOP&vps=0.000:N,0.036:B,0.425:B,0.425:B&cat=streaming&cmt=0.036:0.000,0.425:0.000&vfs=0.425:396:396::r&view=0.425:390:190&bwe=0.425:130000&vis=0.425:0&bh=0.425:0.000 | 142.250.74.14 | 204 No Content | 0 B |
URL POST HTTP/3www.youtube.com/api/stats/qoe?fmt=396&cpn=GWu8Dj_t_e204KEv&el=embedded&ns=yt&fexp=v1%2C23983296%2C21348%2C76094%2C54572%2C304051%2C84737%2C36318%2C6271%2C26443548%2C7111%2C36343%2C9954%2C1192%2C26496%2C6966%2C2%2C6689%2C2007%2C663%2C8409%2C20075%2C9077%2C530%2C1666%2C8970%2C1025%2C1104%2C20%2C6933%2C100%2C53%2C2606%2C54%2C496%2C142%2C9%2C41%2C2%2C289%2C2%2C78%2C637%2C4454%2C6&cl=627399198&seq=1&docid=4hIMRUTqARM&ei=BTYrZuS1PLGt0u8Pwc-MuAk&event=streamingstats&plid=AAYW-NkVX46EmRSn&referrer=https%3A%2F%2Fwww.youtube.com%2Fembed%2F4hIMRUTqARM%3Fcontrols%3D0%26loop%3D1%26autoplay%3D1%26fs%3D1%26iv_load_policy%3D3%26showinfo%3D0%26rel%3D0%26cc_load_policy%3D0%26start%3D0%26end%3D0%26origin%3Dhttps%3A%2F%2Fyoutubeembedcode.com&qclc=ChBHV3U4RGpfdF9lMjA0S0V2EAE&cbr=Firefox&cbrver=96.0&c=WEB_EMBEDDED_PLAYER&cver=1.20240423.01.00&cplayer=UNIPLAYER&cos=X11&cplatform=DESKTOP&vps=0.000:N,0.036:B,0.425:B,0.425:B&cat=streaming&cmt=0.036:0.000,0.425:0.000&vfs=0.425:396:396::r&view=0.425:390:190&bwe=0.425:130000&vis=0.425:0&bh=0.425:0.000 IP142.250.74.14:443
Requested byhttps://www.youtube.com/embed/4hIMRUTqARM?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/stats/qoe?fmt=396&cpn=GWu8Dj_t_e204KEv&el=embedded&ns=yt&fexp=v1%2C23983296%2C21348%2C76094%2C54572%2C304051%2C84737%2C36318%2C6271%2C26443548%2C7111%2C36343%2C9954%2C1192%2C26496%2C6966%2C2%2C6689%2C2007%2C663%2C8409%2C20075%2C9077%2C530%2C1666%2C8970%2C1025%2C1104%2C20%2C6933%2C100%2C53%2C2606%2C54%2C496%2C142%2C9%2C41%2C2%2C289%2C2%2C78%2C637%2C4454%2C6&cl=627399198&seq=1&docid=4hIMRUTqARM&ei=BTYrZuS1PLGt0u8Pwc-MuAk&event=streamingstats&plid=AAYW-NkVX46EmRSn&referrer=https%3A%2F%2Fwww.youtube.com%2Fembed%2F4hIMRUTqARM%3Fcontrols%3D0%26loop%3D1%26autoplay%3D1%26fs%3D1%26iv_load_policy%3D3%26showinfo%3D0%26rel%3D0%26cc_load_policy%3D0%26start%3D0%26end%3D0%26origin%3Dhttps%3A%2F%2Fyoutubeembedcode.com&qclc=ChBHV3U4RGpfdF9lMjA0S0V2EAE&cbr=Firefox&cbrver=96.0&c=WEB_EMBEDDED_PLAYER&cver=1.20240423.01.00&cplayer=UNIPLAYER&cos=X11&cplatform=DESKTOP&vps=0.000:N,0.036:B,0.425:B,0.425:B&cat=streaming&cmt=0.036:0.000,0.425:0.000&vfs=0.425:396:396::r&view=0.425:390:190&bwe=0.425:130000&vis=0.425:0&bh=0.425:0.000 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Visitor-Id: Cgt0bFF6TE9OZlo4byiE7KyxBjIOCgJOTxIIEgQSAgsMICE%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20240423.01.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1714107909725&flash=0&frm=2&u_tz&u_his=3&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C390%2C190&vis=1&wgl=true&ca_type=image
Content-Type: application/x-www-form-urlencoded
Content-Length: 226
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/4hIMRUTqARM?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
date: Fri, 26 Apr 2024 05:05:10 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
x-content-type-options: nosniff
server: Video Stats Server
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.youtube.com/s/player/652ba3a2/player_ias.vflset/en_US/annotations_module.js | 142.250.74.14 | | 19 kB |
URL www.youtube.com/s/player/652ba3a2/player_ias.vflset/en_US/annotations_module.js IP142.250.74.14:0
CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT
File typeJavaScript source, ASCII text, with very long lines (1115) Hash9b642442e66b25ea8e7aa93ed4f22d20 f99aa73ad83e281b62900c1b8af5022a88beb432 1b49463a62c160cced438ad55217cab3d260fc16cbcbaf9e3379a847c517251c
GET /s/player/652ba3a2/player_ias.vflset/en_US/annotations_module.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/4hIMRUTqARM?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 18893
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 Apr 2024 07:35:52 GMT
expires: Thu, 24 Apr 2025 07:35:52 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 24 Apr 2024 04:20:05 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 163758
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.youtube.com/s/player/652ba3a2/player_ias.vflset/en_US/captions.js | 142.250.74.14 | 200 OK | 24 kB |
URL GET HTTP/3www.youtube.com/s/player/652ba3a2/player_ias.vflset/en_US/captions.js IP142.250.74.14:443
Requested byhttps://www.youtube.com/embed/4hIMRUTqARM?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT
File typeJavaScript source, ASCII text, with very long lines (546) Hashf399168a998189a8edeacfb29aaf30e0 8ebe1024b84202472013f240631d8452b1c394e9 a7caf503e6ce75b45d4ecb8a956fa1cc0add47d6dc7c693da39de6f4d85f6406
GET /s/player/652ba3a2/player_ias.vflset/en_US/captions.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/4hIMRUTqARM?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 24424
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 Apr 2024 07:34:19 GMT
expires: Thu, 24 Apr 2025 07:34:19 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 24 Apr 2024 04:20:05 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 163851
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.youtube.com/s/player/652ba3a2/player_ias.vflset/en_US/endscreen.js | 142.250.74.14 | 200 OK | 8.4 kB |
URL GET HTTP/3www.youtube.com/s/player/652ba3a2/player_ias.vflset/en_US/endscreen.js IP142.250.74.14:443
Requested byhttps://www.youtube.com/embed/4hIMRUTqARM?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT
File typeJavaScript source, ASCII text, with very long lines (607) Hash5dc855da373c24138b72a7cf41b3101d b270877c6afcb7ac42e7b06d14e799ea01845344 6644a9bb151aed4f49f22b05e84271442932b835b5f61b04f0f71b5ed82870d5
GET /s/player/652ba3a2/player_ias.vflset/en_US/endscreen.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/4hIMRUTqARM?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 8383
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 Apr 2024 07:34:19 GMT
expires: Thu, 24 Apr 2025 07:34:19 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 24 Apr 2024 04:20:05 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 163851
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1714129510&ei=BTYrZuS1PLGt0u8Pwc-MuAk&ip=91.90.42.154&id=o-AKEG5mwdGhB2blEFmccmT_dc1ImpfJYFnSqN22QQTbCw&itag=251&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=fM&mm=31%2C29&mn=sn-capm-vnae%2Csn-5go7ynl6&ms=au%2Crdu&mv=m&mvi=2&pl=21&pcm2=no&initcwndbps=2185000&bui=AWRWj2Q_LF7eil_AXAqvUuuV3-cWMPYJ0-5F8MM8aj55QCoJb9tBggjQA0YyccUwLFaCmEdXR1Bkwyb1&spc=UWF9f96ojtvTwcrDzym9HbSiXSO3sgLd2rFaePNKMfoM_AzsJBGzlGYmFg&vprv=1&svpuc=1&mime=audio%2Fwebm&ns=9EPn-7IBeZStQsfVnGBJWPsQ&gir=yes&clen=946205&dur=59.821&lmt=1712095373244492&mt=1714107426&fvip=3&keepalive=yes&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=5532434&n=bP8u8N5m46wDQw&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cxpc%2Cpcm2%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRgIhAKuDi8835idUeVODbMxku-z91YsnZX6X8iqz3aMweRDDAiEA6-47TxbpK_c9nw2xsrymV1FsmPYHX_ofBdEjE2bwHD8%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AHWaYeowRQIhAJbOuBr3cZLXP61qom-NpTirWSRIZsIg8szRENL5B8m-AiBYCl52GaKHIc0EIGYkxKe4Wl0VP-XZjT2PRS2zIFc7eA%3D%3D&alr=yes&cpn=GWu8Dj_t_e204KEv&cver=1.20240423.01.00&range=0-65900&rn=2&rbuf=0&pot=IjpJbElqL0d_agoLPVwrKg9aHSlwIxMAJlgrFSApficwFAsGACMKCwMjHRQAJQwLGD8ICzohAC8MSXoo&ump=1&srfvp=1 | 91.90.45.173 | 200 OK | 1.3 kB |
URL POST HTTP/1.1rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1714129510&ei=BTYrZuS1PLGt0u8Pwc-MuAk&ip=91.90.42.154&id=o-AKEG5mwdGhB2blEFmccmT_dc1ImpfJYFnSqN22QQTbCw&itag=251&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=fM&mm=31%2C29&mn=sn-capm-vnae%2Csn-5go7ynl6&ms=au%2Crdu&mv=m&mvi=2&pl=21&pcm2=no&initcwndbps=2185000&bui=AWRWj2Q_LF7eil_AXAqvUuuV3-cWMPYJ0-5F8MM8aj55QCoJb9tBggjQA0YyccUwLFaCmEdXR1Bkwyb1&spc=UWF9f96ojtvTwcrDzym9HbSiXSO3sgLd2rFaePNKMfoM_AzsJBGzlGYmFg&vprv=1&svpuc=1&mime=audio%2Fwebm&ns=9EPn-7IBeZStQsfVnGBJWPsQ&gir=yes&clen=946205&dur=59.821&lmt=1712095373244492&mt=1714107426&fvip=3&keepalive=yes&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=5532434&n=bP8u8N5m46wDQw&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cxpc%2Cpcm2%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRgIhAKuDi8835idUeVODbMxku-z91YsnZX6X8iqz3aMweRDDAiEA6-47TxbpK_c9nw2xsrymV1FsmPYHX_ofBdEjE2bwHD8%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AHWaYeowRQIhAJbOuBr3cZLXP61qom-NpTirWSRIZsIg8szRENL5B8m-AiBYCl52GaKHIc0EIGYkxKe4Wl0VP-XZjT2PRS2zIFc7eA%3D%3D&alr=yes&cpn=GWu8Dj_t_e204KEv&cver=1.20240423.01.00&range=0-65900&rn=2&rbuf=0&pot=IjpJbElqL0d_agoLPVwrKg9aHSlwIxMAJlgrFSApficwFAsGACMKCwMjHRQAJQwLGD8ICzohAC8MSXoo&ump=1&srfvp=1 IP91.90.45.173:443 ASN#50304 Blix Solutions AS
Requested byhttps://www.youtube.com/embed/4hIMRUTqARM?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.googlevideo.com Fingerprint05:65:DE:5B:B7:CF:9A:4A:22:AF:57:DB:9B:EC:B9:BD:E5:B0:57:E2 ValidityTue, 09 Apr 2024 14:31:07 GMT - Tue, 18 Jun 2024 14:31:06 GMT
Hasha2458a913c1211e176a25183b09e242e bd99b1f6717050f6aa39c41f8bc40b784d32b17f 64f25ee2f77d0f175c4822be510711cd29918755bb4a2f032cbc0272172682c1
POST /videoplayback?expire=1714129510&ei=BTYrZuS1PLGt0u8Pwc-MuAk&ip=91.90.42.154&id=o-AKEG5mwdGhB2blEFmccmT_dc1ImpfJYFnSqN22QQTbCw&itag=251&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=fM&mm=31%2C29&mn=sn-capm-vnae%2Csn-5go7ynl6&ms=au%2Crdu&mv=m&mvi=2&pl=21&pcm2=no&initcwndbps=2185000&bui=AWRWj2Q_LF7eil_AXAqvUuuV3-cWMPYJ0-5F8MM8aj55QCoJb9tBggjQA0YyccUwLFaCmEdXR1Bkwyb1&spc=UWF9f96ojtvTwcrDzym9HbSiXSO3sgLd2rFaePNKMfoM_AzsJBGzlGYmFg&vprv=1&svpuc=1&mime=audio%2Fwebm&ns=9EPn-7IBeZStQsfVnGBJWPsQ&gir=yes&clen=946205&dur=59.821&lmt=1712095373244492&mt=1714107426&fvip=3&keepalive=yes&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=5532434&n=bP8u8N5m46wDQw&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cxpc%2Cpcm2%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRgIhAKuDi8835idUeVODbMxku-z91YsnZX6X8iqz3aMweRDDAiEA6-47TxbpK_c9nw2xsrymV1FsmPYHX_ofBdEjE2bwHD8%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AHWaYeowRQIhAJbOuBr3cZLXP61qom-NpTirWSRIZsIg8szRENL5B8m-AiBYCl52GaKHIc0EIGYkxKe4Wl0VP-XZjT2PRS2zIFc7eA%3D%3D&alr=yes&cpn=GWu8Dj_t_e204KEv&cver=1.20240423.01.00&range=0-65900&rn=2&rbuf=0&pot=IjpJbElqL0d_agoLPVwrKg9aHSlwIxMAJlgrFSApficwFAsGACMKCwMjHRQAJQwLGD8ICzohAC8MSXoo&ump=1&srfvp=1 HTTP/1.1
Host: rr2---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.youtube.com/
Content-Length: 2
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Last-Modified: Wed, 02 May 2007 10:26:10 GMT
Date: Fri, 26 Apr 2024 05:05:10 GMT
Expires: Fri, 26 Apr 2024 05:05:10 GMT
Cache-Control: private, max-age=21300
Content-Type: application/vnd.yt-ump
Transfer-Encoding: chunked
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,quic=":443"; ma=2592000; v="46"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Content-Type-Options: nosniff
Server: gvs 1.0
|
|
| rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1714129510&ei=BTYrZuS1PLGt0u8Pwc-MuAk&ip=91.90.42.154&id=o-AKEG5mwdGhB2blEFmccmT_dc1ImpfJYFnSqN22QQTbCw&itag=396&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278%2C394%2C395%2C396%2C397%2C398%2C399&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=fM&mm=31%2C29&mn=sn-capm-vnae%2Csn-5go7ynl6&ms=au%2Crdu&mv=m&mvi=2&pl=21&pcm2=no&initcwndbps=2185000&bui=AWRWj2Q_LF7eil_AXAqvUuuV3-cWMPYJ0-5F8MM8aj55QCoJb9tBggjQA0YyccUwLFaCmEdXR1Bkwyb1&spc=UWF9f96ojtvTwcrDzym9HbSiXSO3sgLd2rFaePNKMfoM_AzsJBGzlGYmFg&vprv=1&svpuc=1&mime=video%2Fmp4&ns=9EPn-7IBeZStQsfVnGBJWPsQ&gir=yes&clen=2160384&dur=59.791&lmt=1712142908082106&mt=1714107426&fvip=3&keepalive=yes&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=553C434&n=bP8u8N5m46wDQw&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cpcm2%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRQIhAJubwlVDYPbhQsd5NYexWnfWXuFTPPvjYfg6Na6umbnUAiA2FxybeAeb3eOF5H0fRc9yqKSA_LOwRzwflHbfJxMBiA%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AHWaYeowRQIhAJbOuBr3cZLXP61qom-NpTirWSRIZsIg8szRENL5B8m-AiBYCl52GaKHIc0EIGYkxKe4Wl0VP-XZjT2PRS2zIFc7eA%3D%3D&alr=yes&cpn=GWu8Dj_t_e204KEv&cver=1.20240423.01.00&range=0-84349&rn=1&rbuf=0&pot=IjrROtE8txHnPJJdpQqzfJcMhX_odYtWvg6zQ7h_5nGoQpNQmHWSXZt1hUKYc5RdgGmQXaJ3mHmUH-J-&ump=1&srfvp=1 | 91.90.45.173 | 200 OK | 1.5 kB |
URL POST HTTP/1.1rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1714129510&ei=BTYrZuS1PLGt0u8Pwc-MuAk&ip=91.90.42.154&id=o-AKEG5mwdGhB2blEFmccmT_dc1ImpfJYFnSqN22QQTbCw&itag=396&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278%2C394%2C395%2C396%2C397%2C398%2C399&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=fM&mm=31%2C29&mn=sn-capm-vnae%2Csn-5go7ynl6&ms=au%2Crdu&mv=m&mvi=2&pl=21&pcm2=no&initcwndbps=2185000&bui=AWRWj2Q_LF7eil_AXAqvUuuV3-cWMPYJ0-5F8MM8aj55QCoJb9tBggjQA0YyccUwLFaCmEdXR1Bkwyb1&spc=UWF9f96ojtvTwcrDzym9HbSiXSO3sgLd2rFaePNKMfoM_AzsJBGzlGYmFg&vprv=1&svpuc=1&mime=video%2Fmp4&ns=9EPn-7IBeZStQsfVnGBJWPsQ&gir=yes&clen=2160384&dur=59.791&lmt=1712142908082106&mt=1714107426&fvip=3&keepalive=yes&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=553C434&n=bP8u8N5m46wDQw&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cpcm2%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRQIhAJubwlVDYPbhQsd5NYexWnfWXuFTPPvjYfg6Na6umbnUAiA2FxybeAeb3eOF5H0fRc9yqKSA_LOwRzwflHbfJxMBiA%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AHWaYeowRQIhAJbOuBr3cZLXP61qom-NpTirWSRIZsIg8szRENL5B8m-AiBYCl52GaKHIc0EIGYkxKe4Wl0VP-XZjT2PRS2zIFc7eA%3D%3D&alr=yes&cpn=GWu8Dj_t_e204KEv&cver=1.20240423.01.00&range=0-84349&rn=1&rbuf=0&pot=IjrROtE8txHnPJJdpQqzfJcMhX_odYtWvg6zQ7h_5nGoQpNQmHWSXZt1hUKYc5RdgGmQXaJ3mHmUH-J-&ump=1&srfvp=1 IP91.90.45.173:443 ASN#50304 Blix Solutions AS
Requested byhttps://www.youtube.com/embed/4hIMRUTqARM?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.googlevideo.com Fingerprint05:65:DE:5B:B7:CF:9A:4A:22:AF:57:DB:9B:EC:B9:BD:E5:B0:57:E2 ValidityTue, 09 Apr 2024 14:31:07 GMT - Tue, 18 Jun 2024 14:31:06 GMT
Hash4b4ab58f0f4d408b36ddc7d11401f7f6 0951b6bd5783cff949b59e63d7909a1f75380ae4 3ed445efe3d77ad43a5ae6c4e62648661b57301f4586b3802f602806a12cf5e3
POST /videoplayback?expire=1714129510&ei=BTYrZuS1PLGt0u8Pwc-MuAk&ip=91.90.42.154&id=o-AKEG5mwdGhB2blEFmccmT_dc1ImpfJYFnSqN22QQTbCw&itag=396&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278%2C394%2C395%2C396%2C397%2C398%2C399&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=fM&mm=31%2C29&mn=sn-capm-vnae%2Csn-5go7ynl6&ms=au%2Crdu&mv=m&mvi=2&pl=21&pcm2=no&initcwndbps=2185000&bui=AWRWj2Q_LF7eil_AXAqvUuuV3-cWMPYJ0-5F8MM8aj55QCoJb9tBggjQA0YyccUwLFaCmEdXR1Bkwyb1&spc=UWF9f96ojtvTwcrDzym9HbSiXSO3sgLd2rFaePNKMfoM_AzsJBGzlGYmFg&vprv=1&svpuc=1&mime=video%2Fmp4&ns=9EPn-7IBeZStQsfVnGBJWPsQ&gir=yes&clen=2160384&dur=59.791&lmt=1712142908082106&mt=1714107426&fvip=3&keepalive=yes&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=553C434&n=bP8u8N5m46wDQw&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cpcm2%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRQIhAJubwlVDYPbhQsd5NYexWnfWXuFTPPvjYfg6Na6umbnUAiA2FxybeAeb3eOF5H0fRc9yqKSA_LOwRzwflHbfJxMBiA%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AHWaYeowRQIhAJbOuBr3cZLXP61qom-NpTirWSRIZsIg8szRENL5B8m-AiBYCl52GaKHIc0EIGYkxKe4Wl0VP-XZjT2PRS2zIFc7eA%3D%3D&alr=yes&cpn=GWu8Dj_t_e204KEv&cver=1.20240423.01.00&range=0-84349&rn=1&rbuf=0&pot=IjrROtE8txHnPJJdpQqzfJcMhX_odYtWvg6zQ7h_5nGoQpNQmHWSXZt1hUKYc5RdgGmQXaJ3mHmUH-J-&ump=1&srfvp=1 HTTP/1.1
Host: rr2---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.youtube.com/
Content-Length: 2
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Last-Modified: Wed, 02 May 2007 10:26:10 GMT
Date: Fri, 26 Apr 2024 05:05:10 GMT
Expires: Fri, 26 Apr 2024 05:05:10 GMT
Cache-Control: private, max-age=21300
Content-Type: application/vnd.yt-ump
Transfer-Encoding: chunked
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,quic=":443"; ma=2592000; v="46"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Restrict-Formats-Hint: None
X-Content-Type-Options: nosniff
Server: gvs 1.0
|
|
| www.youtube.com/generate_204?Igx1ag | 142.250.74.14 | 204 No Content | 0 B |
URL GET HTTP/3www.youtube.com/generate_204?Igx1ag IP142.250.74.14:443
Requested byhttps://www.youtube.com/embed/4hIMRUTqARM?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /generate_204?Igx1ag HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/4hIMRUTqARM?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-length: 0
cross-origin-resource-policy: cross-origin
date: Fri, 26 Apr 2024 05:05:10 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| i.ytimg.com/vi/4hIMRUTqARM/sddefault.jpg?sqp=-oaymwEmCIAFEOAD8quKqQMa8AEB-AH-DoACuAiKAgwIABABGHIgRCg0MA8=&rs=AOn4CLDmkIQtr7VBGEWd49tclJs4Rocw9Q | 216.58.211.22 | 200 OK | 26 kB |
URL GET HTTP/2i.ytimg.com/vi/4hIMRUTqARM/sddefault.jpg?sqp=-oaymwEmCIAFEOAD8quKqQMa8AEB-AH-DoACuAiKAgwIABABGHIgRCg0MA8=&rs=AOn4CLDmkIQtr7VBGEWd49tclJs4Rocw9Q IP216.58.211.22:443
Requested byhttps://www.youtube.com/embed/4hIMRUTqARM?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subjectedgestatic.com FingerprintF5:71:D6:56:B9:45:4B:F5:FD:12:4B:A7:FF:5F:1D:C9:74:FE:B0:C8 ValidityMon, 18 Mar 2024 19:37:13 GMT - Mon, 10 Jun 2024 19:37:12 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 640x480, components 3 Hashcc85d6cc54c5003dee041117e5aed1d9 bd70735bd30376af98a8abc455633928bd5defbf 0c66f7ec0695b90aacd63bde4b84f7c97392cd92189ee42fb810d6a214c177a3
GET /vi/4hIMRUTqARM/sddefault.jpg?sqp=-oaymwEmCIAFEOAD8quKqQMa8AEB-AH-DoACuAiKAgwIABABGHIgRCg0MA8=&rs=AOn4CLDmkIQtr7VBGEWd49tclJs4Rocw9Q HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 26512
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 05:05:10 GMT
expires: Fri, 26 Apr 2024 07:05:10 GMT
cache-control: public, max-age=7200
etag: "1705996351"
content-type: image/jpeg
vary: Origin
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.youtube.com/youtubei/v1/next?prettyPrint=false | 142.250.74.14 | 200 OK | 2.0 kB |
URL POST HTTP/3www.youtube.com/youtubei/v1/next?prettyPrint=false IP142.250.74.14:443
Requested byhttps://www.youtube.com/embed/4hIMRUTqARM?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT
Hash05b3769e893d71634953f750d05029b9 2d18a437d9f5c28890aeecd73efaaefef8aa8a79 cd2e89c15894eb303fb6c2230fb0f202a026f6ce2f0b3f7c715c9861d475c4c8
POST /youtubei/v1/next?prettyPrint=false HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Goog-Visitor-Id: Cgt0bFF6TE9OZlo4byiE7KyxBjIOCgJOTxIIEgQSAgsMICE%3D
X-Youtube-Bootstrap-Logged-In: false
X-Youtube-Client-Name: 56
X-Youtube-Client-Version: 1.20240423.01.00
Content-Length: 2690
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/4hIMRUTqARM?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Fri, 26 Apr 2024 05:05:10 GMT
server: scaffolding on HTTPServer2
content-length: 2041
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| yt3.ggpht.com/Pwnw9qWQuKgdKS72XPcRYHnZ4yIIyryaBkn_6IF9yR7jugDpwcGNqOCbAa5paa3ddEY31MHuOCM=s88-c-k-c0x00ffffff-no-rj | 142.250.74.161 | 200 OK | 6.2 kB |
URL GET HTTP/3yt3.ggpht.com/Pwnw9qWQuKgdKS72XPcRYHnZ4yIIyryaBkn_6IF9yR7jugDpwcGNqOCbAa5paa3ddEY31MHuOCM=s88-c-k-c0x00ffffff-no-rj IP142.250.74.161:443
Requested byhttps://www.youtube.com/embed/4hIMRUTqARM?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.googleusercontent.com Fingerprint6E:66:E1:45:85:5C:3A:EB:60:4A:8E:EF:62:B8:7C:E3:C7:1B:FA:47 ValidityMon, 18 Mar 2024 20:34:07 GMT - Mon, 10 Jun 2024 20:34:06 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 88x88, components 3 Hash9f092f0c78bcebf9e84d404501b93b8c 4f05c7e0d4c5d9ebd11eb86124a49fe89f82c26a 4d981d6f52640ccfa70a557943339d5daaf64d139d925304309472eb037319bd
GET /Pwnw9qWQuKgdKS72XPcRYHnZ4yIIyryaBkn_6IF9yR7jugDpwcGNqOCbAa5paa3ddEY31MHuOCM=s88-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="channels4_profile.jpg"
x-content-type-options: nosniff
server: fife
content-length: 6244
x-xss-protection: 0
date: Fri, 26 Apr 2024 01:35:16 GMT
expires: Sat, 27 Apr 2024 01:35:16 GMT
cache-control: public, max-age=86400, no-transform
age: 12594
etag: "v1"
content-type: image/jpeg
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| rr3---sn-5go7ynl6.googlevideo.com/videoplayback?expire=1714129510&ei=BTYrZuS1PLGt0u8Pwc-MuAk&ip=91.90.42.154&id=o-AKEG5mwdGhB2blEFmccmT_dc1ImpfJYFnSqN22QQTbCw&itag=251&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&pcm2=no&bui=AWRWj2Q_LF7eil_AXAqvUuuV3-cWMPYJ0-5F8MM8aj55QCoJb9tBggjQA0YyccUwLFaCmEdXR1Bkwyb1&spc=UWF9f96ojtvTwcrDzym9HbSiXSO3sgLd2rFaePNKMfoM_AzsJBGzlGYmFg&vprv=1&svpuc=1&mime=audio%2Fwebm&ns=9EPn-7IBeZStQsfVnGBJWPsQ&gir=yes&clen=946205&dur=59.821&lmt=1712095373244492&keepalive=yes&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=5532434&n=bP8u8N5m46wDQw&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cxpc%2Cpcm2%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRgIhAKuDi8835idUeVODbMxku-z91YsnZX6X8iqz3aMweRDDAiEA6-47TxbpK_c9nw2xsrymV1FsmPYHX_ofBdEjE2bwHD8%3D&alr=yes&cpn=GWu8Dj_t_e204KEv&cver=1.20240423.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&fexp=24350295,24350324,24350328,24350330,24350379,24350412,24350424,24350443&cms_redirect=yes&cmsv=e&mh=fM&mm=29&mn=sn-5go7ynl6&ms=rdu&mt=1714107664&mv=m&mvi=3&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AHWaYeowRgIhAI1jlBi8zoKjKBryL74kKFXUiG35j8IYxkZjjdDiuBd-AiEAh8ZAHzvrkEzYu28413hDXnYiJ8l9eqm2m3E-0eKlQ68%3D&range=0-65900&rn=4&rbuf=0&pot=Mnnn0eU9U6IggufqziU15vQlC7a6lbneQsRLLRtL3f_aj-v1lV684MZkrQ_2htetLy9LfqWtTvJ5rT41yZg4oAxzIjBQJ-qZ3BvXzSAIVzcOPI9D-3tlJKeH3bhLmxfh5dRtchS6mXINxUYxUS0yz0IFsC3QVdMTojCV&ump=1&srfvp=1 | 74.125.111.40 | | 66 kB |
URL rr3---sn-5go7ynl6.googlevideo.com/videoplayback?expire=1714129510&ei=BTYrZuS1PLGt0u8Pwc-MuAk&ip=91.90.42.154&id=o-AKEG5mwdGhB2blEFmccmT_dc1ImpfJYFnSqN22QQTbCw&itag=251&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&pcm2=no&bui=AWRWj2Q_LF7eil_AXAqvUuuV3-cWMPYJ0-5F8MM8aj55QCoJb9tBggjQA0YyccUwLFaCmEdXR1Bkwyb1&spc=UWF9f96ojtvTwcrDzym9HbSiXSO3sgLd2rFaePNKMfoM_AzsJBGzlGYmFg&vprv=1&svpuc=1&mime=audio%2Fwebm&ns=9EPn-7IBeZStQsfVnGBJWPsQ&gir=yes&clen=946205&dur=59.821&lmt=1712095373244492&keepalive=yes&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=5532434&n=bP8u8N5m46wDQw&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cxpc%2Cpcm2%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRgIhAKuDi8835idUeVODbMxku-z91YsnZX6X8iqz3aMweRDDAiEA6-47TxbpK_c9nw2xsrymV1FsmPYHX_ofBdEjE2bwHD8%3D&alr=yes&cpn=GWu8Dj_t_e204KEv&cver=1.20240423.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&fexp=24350295,24350324,24350328,24350330,24350379,24350412,24350424,24350443&cms_redirect=yes&cmsv=e&mh=fM&mm=29&mn=sn-5go7ynl6&ms=rdu&mt=1714107664&mv=m&mvi=3&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AHWaYeowRgIhAI1jlBi8zoKjKBryL74kKFXUiG35j8IYxkZjjdDiuBd-AiEAh8ZAHzvrkEzYu28413hDXnYiJ8l9eqm2m3E-0eKlQ68%3D&range=0-65900&rn=4&rbuf=0&pot=Mnnn0eU9U6IggufqziU15vQlC7a6lbneQsRLLRtL3f_aj-v1lV684MZkrQ_2htetLy9LfqWtTvJ5rT41yZg4oAxzIjBQJ-qZ3BvXzSAIVzcOPI9D-3tlJKeH3bhLmxfh5dRtchS6mXINxUYxUS0yz0IFsC3QVdMTojCV&ump=1&srfvp=1 IP74.125.111.40:0
Hash1cc212aa97fc69d07790f0a17b6a36bd 43b44c6e8c14ef5a83f8956f52de9dcfbba3ae30 9c87a2aab6fc1e6e5596700c8eeddfca07fc703ce1c853d19929c207465d3101
POST /videoplayback?expire=1714129510&ei=BTYrZuS1PLGt0u8Pwc-MuAk&ip=91.90.42.154&id=o-AKEG5mwdGhB2blEFmccmT_dc1ImpfJYFnSqN22QQTbCw&itag=251&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&pcm2=no&bui=AWRWj2Q_LF7eil_AXAqvUuuV3-cWMPYJ0-5F8MM8aj55QCoJb9tBggjQA0YyccUwLFaCmEdXR1Bkwyb1&spc=UWF9f96ojtvTwcrDzym9HbSiXSO3sgLd2rFaePNKMfoM_AzsJBGzlGYmFg&vprv=1&svpuc=1&mime=audio%2Fwebm&ns=9EPn-7IBeZStQsfVnGBJWPsQ&gir=yes&clen=946205&dur=59.821&lmt=1712095373244492&keepalive=yes&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=5532434&n=bP8u8N5m46wDQw&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cxpc%2Cpcm2%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRgIhAKuDi8835idUeVODbMxku-z91YsnZX6X8iqz3aMweRDDAiEA6-47TxbpK_c9nw2xsrymV1FsmPYHX_ofBdEjE2bwHD8%3D&alr=yes&cpn=GWu8Dj_t_e204KEv&cver=1.20240423.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&fexp=24350295,24350324,24350328,24350330,24350379,24350412,24350424,24350443&cms_redirect=yes&cmsv=e&mh=fM&mm=29&mn=sn-5go7ynl6&ms=rdu&mt=1714107664&mv=m&mvi=3&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AHWaYeowRgIhAI1jlBi8zoKjKBryL74kKFXUiG35j8IYxkZjjdDiuBd-AiEAh8ZAHzvrkEzYu28413hDXnYiJ8l9eqm2m3E-0eKlQ68%3D&range=0-65900&rn=4&rbuf=0&pot=Mnnn0eU9U6IggufqziU15vQlC7a6lbneQsRLLRtL3f_aj-v1lV684MZkrQ_2htetLy9LfqWtTvJ5rT41yZg4oAxzIjBQJ-qZ3BvXzSAIVzcOPI9D-3tlJKeH3bhLmxfh5dRtchS6mXINxUYxUS0yz0IFsC3QVdMTojCV&ump=1&srfvp=1 HTTP/1.1
Host: rr3---sn-5go7ynl6.googlevideo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.youtube.com/
Content-Length: 2
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Last-Modified: Tue, 02 Apr 2024 22:02:53 GMT
Content-Type: application/vnd.yt-ump
Date: Fri, 26 Apr 2024 05:05:10 GMT
Expires: Fri, 26 Apr 2024 05:05:10 GMT
Cache-Control: private, max-age=21300
Transfer-Encoding: chunked
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,quic=":443"; ma=2592000; v="46"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Content-Type-Options: nosniff
Server: gvs 1.0
|
|
| rr3---sn-5go7ynl6.googlevideo.com/videoplayback?expire=1714129510&ei=BTYrZuS1PLGt0u8Pwc-MuAk&ip=91.90.42.154&id=o-AKEG5mwdGhB2blEFmccmT_dc1ImpfJYFnSqN22QQTbCw&itag=396&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278%2C394%2C395%2C396%2C397%2C398%2C399&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&pcm2=no&bui=AWRWj2Q_LF7eil_AXAqvUuuV3-cWMPYJ0-5F8MM8aj55QCoJb9tBggjQA0YyccUwLFaCmEdXR1Bkwyb1&spc=UWF9f96ojtvTwcrDzym9HbSiXSO3sgLd2rFaePNKMfoM_AzsJBGzlGYmFg&vprv=1&svpuc=1&mime=video%2Fmp4&ns=9EPn-7IBeZStQsfVnGBJWPsQ&gir=yes&clen=2160384&dur=59.791&lmt=1712142908082106&keepalive=yes&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=553C434&n=bP8u8N5m46wDQw&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cpcm2%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRQIhAJubwlVDYPbhQsd5NYexWnfWXuFTPPvjYfg6Na6umbnUAiA2FxybeAeb3eOF5H0fRc9yqKSA_LOwRzwflHbfJxMBiA%3D%3D&alr=yes&cpn=GWu8Dj_t_e204KEv&cver=1.20240423.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&fexp=24350295,24350324,24350328,24350330,24350379,24350412,24350424,24350443&cms_redirect=yes&cmsv=e&mh=fM&mm=29&mn=sn-5go7ynl6&ms=rdu&mt=1714107664&mv=m&mvi=3&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AHWaYeowRQIhANY9cMLVZRSYjfHzNYdGkfwcKjXwMC950poH7TG8VESIAiAMEgb-OLaO6ftZhYJc5b0X-ap29MhbR-cW93sBt1WvYA%3D%3D&range=0-84349&rn=3&rbuf=0&pot=Mnnn0eU9U6IggufqziU15vQlC7a6lbneQsRLLRtL3f_aj-v1lV684MZkrQ_2htetLy9LfqWtTvJ5rT41yZg4oAxzIjBQJ-qZ3BvXzSAIVzcOPI9D-3tlJKeH3bhLmxfh5dRtchS6mXINxUYxUS0yz0IFsC3QVdMTojCV&ump=1&srfvp=1 | 74.125.111.40 | 200 OK | 84 kB |
URL POST HTTP/1.1rr3---sn-5go7ynl6.googlevideo.com/videoplayback?expire=1714129510&ei=BTYrZuS1PLGt0u8Pwc-MuAk&ip=91.90.42.154&id=o-AKEG5mwdGhB2blEFmccmT_dc1ImpfJYFnSqN22QQTbCw&itag=396&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278%2C394%2C395%2C396%2C397%2C398%2C399&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&pcm2=no&bui=AWRWj2Q_LF7eil_AXAqvUuuV3-cWMPYJ0-5F8MM8aj55QCoJb9tBggjQA0YyccUwLFaCmEdXR1Bkwyb1&spc=UWF9f96ojtvTwcrDzym9HbSiXSO3sgLd2rFaePNKMfoM_AzsJBGzlGYmFg&vprv=1&svpuc=1&mime=video%2Fmp4&ns=9EPn-7IBeZStQsfVnGBJWPsQ&gir=yes&clen=2160384&dur=59.791&lmt=1712142908082106&keepalive=yes&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=553C434&n=bP8u8N5m46wDQw&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cpcm2%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRQIhAJubwlVDYPbhQsd5NYexWnfWXuFTPPvjYfg6Na6umbnUAiA2FxybeAeb3eOF5H0fRc9yqKSA_LOwRzwflHbfJxMBiA%3D%3D&alr=yes&cpn=GWu8Dj_t_e204KEv&cver=1.20240423.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&fexp=24350295,24350324,24350328,24350330,24350379,24350412,24350424,24350443&cms_redirect=yes&cmsv=e&mh=fM&mm=29&mn=sn-5go7ynl6&ms=rdu&mt=1714107664&mv=m&mvi=3&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AHWaYeowRQIhANY9cMLVZRSYjfHzNYdGkfwcKjXwMC950poH7TG8VESIAiAMEgb-OLaO6ftZhYJc5b0X-ap29MhbR-cW93sBt1WvYA%3D%3D&range=0-84349&rn=3&rbuf=0&pot=Mnnn0eU9U6IggufqziU15vQlC7a6lbneQsRLLRtL3f_aj-v1lV684MZkrQ_2htetLy9LfqWtTvJ5rT41yZg4oAxzIjBQJ-qZ3BvXzSAIVzcOPI9D-3tlJKeH3bhLmxfh5dRtchS6mXINxUYxUS0yz0IFsC3QVdMTojCV&ump=1&srfvp=1 IP74.125.111.40:443
Requested byhttps://www.youtube.com/embed/4hIMRUTqARM?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.c.docs.google.com Fingerprint6D:7D:79:1B:2A:53:90:00:60:42:78:46:75:80:C3:2A:F8:BF:1E:BB ValidityTue, 09 Apr 2024 14:31:07 GMT - Tue, 18 Jun 2024 14:31:06 GMT
Hashf7dc5c74173b342887b03e86dc303804 2d18f71b55246cb647122a27be22e1c5a7663a37 66f6e0b789ba82948cfbbc464821f8341bdb4f21b3a1072741036503adfcb76b
POST /videoplayback?expire=1714129510&ei=BTYrZuS1PLGt0u8Pwc-MuAk&ip=91.90.42.154&id=o-AKEG5mwdGhB2blEFmccmT_dc1ImpfJYFnSqN22QQTbCw&itag=396&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278%2C394%2C395%2C396%2C397%2C398%2C399&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&pcm2=no&bui=AWRWj2Q_LF7eil_AXAqvUuuV3-cWMPYJ0-5F8MM8aj55QCoJb9tBggjQA0YyccUwLFaCmEdXR1Bkwyb1&spc=UWF9f96ojtvTwcrDzym9HbSiXSO3sgLd2rFaePNKMfoM_AzsJBGzlGYmFg&vprv=1&svpuc=1&mime=video%2Fmp4&ns=9EPn-7IBeZStQsfVnGBJWPsQ&gir=yes&clen=2160384&dur=59.791&lmt=1712142908082106&keepalive=yes&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=553C434&n=bP8u8N5m46wDQw&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cpcm2%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRQIhAJubwlVDYPbhQsd5NYexWnfWXuFTPPvjYfg6Na6umbnUAiA2FxybeAeb3eOF5H0fRc9yqKSA_LOwRzwflHbfJxMBiA%3D%3D&alr=yes&cpn=GWu8Dj_t_e204KEv&cver=1.20240423.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&fexp=24350295,24350324,24350328,24350330,24350379,24350412,24350424,24350443&cms_redirect=yes&cmsv=e&mh=fM&mm=29&mn=sn-5go7ynl6&ms=rdu&mt=1714107664&mv=m&mvi=3&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AHWaYeowRQIhANY9cMLVZRSYjfHzNYdGkfwcKjXwMC950poH7TG8VESIAiAMEgb-OLaO6ftZhYJc5b0X-ap29MhbR-cW93sBt1WvYA%3D%3D&range=0-84349&rn=3&rbuf=0&pot=Mnnn0eU9U6IggufqziU15vQlC7a6lbneQsRLLRtL3f_aj-v1lV684MZkrQ_2htetLy9LfqWtTvJ5rT41yZg4oAxzIjBQJ-qZ3BvXzSAIVzcOPI9D-3tlJKeH3bhLmxfh5dRtchS6mXINxUYxUS0yz0IFsC3QVdMTojCV&ump=1&srfvp=1 HTTP/1.1
Host: rr3---sn-5go7ynl6.googlevideo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.youtube.com/
Content-Length: 2
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Last-Modified: Wed, 03 Apr 2024 11:15:08 GMT
Content-Type: application/vnd.yt-ump
Date: Fri, 26 Apr 2024 05:05:10 GMT
Expires: Fri, 26 Apr 2024 05:05:10 GMT
Cache-Control: private, max-age=21300
Transfer-Encoding: chunked
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,quic=":443"; ma=2592000; v="46"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Restrict-Formats-Hint: None
X-Content-Type-Options: nosniff
Server: gvs 1.0
|
|
| www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 | 142.250.74.14 | 200 OK | 31 B |
URL POST HTTP/3www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 IP142.250.74.14:443
Requested byhttps://www.youtube.com/embed/4hIMRUTqARM?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT
Hash5e1fa6fd9abd549a576f3f24b1d3c8d4 d5335d7f7d33be6a0b663f03b2df4df2521c4a87 d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336
POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1714107910886
Content-Type: application/json
X-Goog-Visitor-Id: Cgt0bFF6TE9OZlo4byiE7KyxBjIOCgJOTxIIEgQSAgsMICE%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20240423.01.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1714107909725&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C390%2C190&vis=1&wgl=true&ca_type=image
Content-Length: 17094
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/4hIMRUTqARM?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Fri, 26 Apr 2024 05:05:10 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 | 142.250.74.14 | 200 OK | 31 B |
URL POST HTTP/3www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 IP142.250.74.14:443
Requested byhttps://www.youtube.com/embed/4hIMRUTqARM?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT
Hash5e1fa6fd9abd549a576f3f24b1d3c8d4 d5335d7f7d33be6a0b663f03b2df4df2521c4a87 d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336
POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1714107912007
Content-Type: application/json
X-Goog-Visitor-Id: Cgt0bFF6TE9OZlo4byiE7KyxBjIOCgJOTxIIEgQSAgsMICE%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20240423.01.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1714107909254&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C390%2C190&vis=1&wgl=true&ca_type=image
Content-Length: 1781
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/4hIMRUTqARM?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Fri, 26 Apr 2024 05:05:12 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| rr3---sn-5go7ynl6.googlevideo.com/videoplayback?expire=1714129510&ei=BTYrZuS1PLGt0u8Pwc-MuAk&ip=91.90.42.154&id=o-AKEG5mwdGhB2blEFmccmT_dc1ImpfJYFnSqN22QQTbCw&itag=251&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&pcm2=no&bui=AWRWj2Q_LF7eil_AXAqvUuuV3-cWMPYJ0-5F8MM8aj55QCoJb9tBggjQA0YyccUwLFaCmEdXR1Bkwyb1&spc=UWF9f96ojtvTwcrDzym9HbSiXSO3sgLd2rFaePNKMfoM_AzsJBGzlGYmFg&vprv=1&svpuc=1&mime=audio%2Fwebm&ns=9EPn-7IBeZStQsfVnGBJWPsQ&gir=yes&clen=946205&dur=59.821&lmt=1712095373244492&keepalive=yes&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=5532434&n=bP8u8N5m46wDQw&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cxpc%2Cpcm2%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRgIhAKuDi8835idUeVODbMxku-z91YsnZX6X8iqz3aMweRDDAiEA6-47TxbpK_c9nw2xsrymV1FsmPYHX_ofBdEjE2bwHD8%3D&alr=yes&cpn=GWu8Dj_t_e204KEv&cver=1.20240423.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&fexp=24350295,24350324,24350328,24350330,24350379,24350412,24350424,24350443&cms_redirect=yes&cmsv=e&mh=fM&mm=29&mn=sn-5go7ynl6&ms=rdu&mt=1714107664&mv=m&mvi=3&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AHWaYeowRgIhAI1jlBi8zoKjKBryL74kKFXUiG35j8IYxkZjjdDiuBd-AiEAh8ZAHzvrkEzYu28413hDXnYiJ8l9eqm2m3E-0eKlQ68%3D&range=131437-262796&rn=7&rbuf=7886&pot=Mnnn0eU9U6IggufqziU15vQlC7a6lbneQsRLLRtL3f_aj-v1lV684MZkrQ_2htetLy9LfqWtTvJ5rT41yZg4oAxzIjBQJ-qZ3BvXzSAIVzcOPI9D-3tlJKeH3bhLmxfh5dRtchS6mXINxUYxUS0yz0IFsC3QVdMTojCV&ump=1&srfvp=1 | 74.125.111.40 | 200 OK | 141 kB |
URL POST HTTP/3rr3---sn-5go7ynl6.googlevideo.com/videoplayback?expire=1714129510&ei=BTYrZuS1PLGt0u8Pwc-MuAk&ip=91.90.42.154&id=o-AKEG5mwdGhB2blEFmccmT_dc1ImpfJYFnSqN22QQTbCw&itag=251&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&pcm2=no&bui=AWRWj2Q_LF7eil_AXAqvUuuV3-cWMPYJ0-5F8MM8aj55QCoJb9tBggjQA0YyccUwLFaCmEdXR1Bkwyb1&spc=UWF9f96ojtvTwcrDzym9HbSiXSO3sgLd2rFaePNKMfoM_AzsJBGzlGYmFg&vprv=1&svpuc=1&mime=audio%2Fwebm&ns=9EPn-7IBeZStQsfVnGBJWPsQ&gir=yes&clen=946205&dur=59.821&lmt=1712095373244492&keepalive=yes&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=5532434&n=bP8u8N5m46wDQw&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cxpc%2Cpcm2%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRgIhAKuDi8835idUeVODbMxku-z91YsnZX6X8iqz3aMweRDDAiEA6-47TxbpK_c9nw2xsrymV1FsmPYHX_ofBdEjE2bwHD8%3D&alr=yes&cpn=GWu8Dj_t_e204KEv&cver=1.20240423.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&fexp=24350295,24350324,24350328,24350330,24350379,24350412,24350424,24350443&cms_redirect=yes&cmsv=e&mh=fM&mm=29&mn=sn-5go7ynl6&ms=rdu&mt=1714107664&mv=m&mvi=3&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AHWaYeowRgIhAI1jlBi8zoKjKBryL74kKFXUiG35j8IYxkZjjdDiuBd-AiEAh8ZAHzvrkEzYu28413hDXnYiJ8l9eqm2m3E-0eKlQ68%3D&range=131437-262796&rn=7&rbuf=7886&pot=Mnnn0eU9U6IggufqziU15vQlC7a6lbneQsRLLRtL3f_aj-v1lV684MZkrQ_2htetLy9LfqWtTvJ5rT41yZg4oAxzIjBQJ-qZ3BvXzSAIVzcOPI9D-3tlJKeH3bhLmxfh5dRtchS6mXINxUYxUS0yz0IFsC3QVdMTojCV&ump=1&srfvp=1 IP74.125.111.40:443
Requested byhttps://www.youtube.com/embed/4hIMRUTqARM?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.c.docs.google.com Fingerprint6D:7D:79:1B:2A:53:90:00:60:42:78:46:75:80:C3:2A:F8:BF:1E:BB ValidityTue, 09 Apr 2024 14:31:07 GMT - Tue, 18 Jun 2024 14:31:06 GMT
Size141 kB (141065 bytes) Hasheedde544219ec9f0236ce07f664cc13b 54c16838512f362e0057ccd49d4bcba336ea1b92 8a0d2df70bdcd249976f90bb5b8ba8317e6611ffae5dc797e29972e8ee02246a
POST /videoplayback?expire=1714129510&ei=BTYrZuS1PLGt0u8Pwc-MuAk&ip=91.90.42.154&id=o-AKEG5mwdGhB2blEFmccmT_dc1ImpfJYFnSqN22QQTbCw&itag=251&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&pcm2=no&bui=AWRWj2Q_LF7eil_AXAqvUuuV3-cWMPYJ0-5F8MM8aj55QCoJb9tBggjQA0YyccUwLFaCmEdXR1Bkwyb1&spc=UWF9f96ojtvTwcrDzym9HbSiXSO3sgLd2rFaePNKMfoM_AzsJBGzlGYmFg&vprv=1&svpuc=1&mime=audio%2Fwebm&ns=9EPn-7IBeZStQsfVnGBJWPsQ&gir=yes&clen=946205&dur=59.821&lmt=1712095373244492&keepalive=yes&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=5532434&n=bP8u8N5m46wDQw&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cxpc%2Cpcm2%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRgIhAKuDi8835idUeVODbMxku-z91YsnZX6X8iqz3aMweRDDAiEA6-47TxbpK_c9nw2xsrymV1FsmPYHX_ofBdEjE2bwHD8%3D&alr=yes&cpn=GWu8Dj_t_e204KEv&cver=1.20240423.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&fexp=24350295,24350324,24350328,24350330,24350379,24350412,24350424,24350443&cms_redirect=yes&cmsv=e&mh=fM&mm=29&mn=sn-5go7ynl6&ms=rdu&mt=1714107664&mv=m&mvi=3&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AHWaYeowRgIhAI1jlBi8zoKjKBryL74kKFXUiG35j8IYxkZjjdDiuBd-AiEAh8ZAHzvrkEzYu28413hDXnYiJ8l9eqm2m3E-0eKlQ68%3D&range=131437-262796&rn=7&rbuf=7886&pot=Mnnn0eU9U6IggufqziU15vQlC7a6lbneQsRLLRtL3f_aj-v1lV684MZkrQ_2htetLy9LfqWtTvJ5rT41yZg4oAxzIjBQJ-qZ3BvXzSAIVzcOPI9D-3tlJKeH3bhLmxfh5dRtchS6mXINxUYxUS0yz0IFsC3QVdMTojCV&ump=1&srfvp=1 HTTP/1.1
Host: rr3---sn-5go7ynl6.googlevideo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.youtube.com/
Content-Length: 2
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
last-modified: Tue, 02 Apr 2024 22:02:53 GMT
content-type: application/vnd.yt-ump
date: Fri, 26 Apr 2024 05:05:10 GMT
expires: Fri, 26 Apr 2024 05:05:10 GMT
cache-control: private, max-age=21300
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,quic=":443"; ma=2592000; v="46"
client-protocol: quic
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
timing-allow-origin: https://www.youtube.com
access-control-expose-headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
vary: Origin
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
server: gvs 1.0
|
|
| www.youtube.com/api/stats/qoe?fmt=396&afmt=251&cpn=GWu8Dj_t_e204KEv&el=embedded&ns=yt&fexp=v1%2C23983296%2C21348%2C76094%2C54572%2C304051%2C84737%2C36318%2C6271%2C26443548%2C7111%2C36343%2C9954%2C1192%2C26496%2C6966%2C2%2C6689%2C2007%2C663%2C8409%2C20075%2C9077%2C530%2C1666%2C8970%2C1025%2C1104%2C20%2C6933%2C100%2C53%2C2606%2C54%2C496%2C142%2C9%2C41%2C2%2C289%2C2%2C78%2C637%2C4454%2C6&cl=627399198&seq=2&docid=4hIMRUTqARM&ei=BTYrZuS1PLGt0u8Pwc-MuAk&event=streamingstats&plid=AAYW-NkVX46EmRSn&referrer=https%3A%2F%2Fwww.youtube.com%2Fembed%2F4hIMRUTqARM%3Fcontrols%3D0%26loop%3D1%26autoplay%3D1%26fs%3D1%26iv_load_policy%3D3%26showinfo%3D0%26rel%3D0%26cc_load_policy%3D0%26start%3D0%26end%3D0%26origin%3Dhttps%3A%2F%2Fyoutubeembedcode.com&qclc=ChBHV3U4RGpfdF9lMjA0S0V2EAI&cbr=Firefox&cbrver=96.0&c=WEB_EMBEDDED_PLAYER&cver=1.20240423.01.00&cplayer=UNIPLAYER&cos=X11&cplatform=DESKTOP&afs=0.431:251::i&cmt=0.465:0.000,10.001:0.000&vps=0.465:N&ctmp=dompaused:t.469;r.promise;m.NotAllowedError,itr:t.685;&bwm=10.001:544041:1.158&bwe=10.001:2129745&bh=10.001:12.583 | 142.250.74.14 | 204 No Content | 0 B |
URL POST HTTP/3www.youtube.com/api/stats/qoe?fmt=396&afmt=251&cpn=GWu8Dj_t_e204KEv&el=embedded&ns=yt&fexp=v1%2C23983296%2C21348%2C76094%2C54572%2C304051%2C84737%2C36318%2C6271%2C26443548%2C7111%2C36343%2C9954%2C1192%2C26496%2C6966%2C2%2C6689%2C2007%2C663%2C8409%2C20075%2C9077%2C530%2C1666%2C8970%2C1025%2C1104%2C20%2C6933%2C100%2C53%2C2606%2C54%2C496%2C142%2C9%2C41%2C2%2C289%2C2%2C78%2C637%2C4454%2C6&cl=627399198&seq=2&docid=4hIMRUTqARM&ei=BTYrZuS1PLGt0u8Pwc-MuAk&event=streamingstats&plid=AAYW-NkVX46EmRSn&referrer=https%3A%2F%2Fwww.youtube.com%2Fembed%2F4hIMRUTqARM%3Fcontrols%3D0%26loop%3D1%26autoplay%3D1%26fs%3D1%26iv_load_policy%3D3%26showinfo%3D0%26rel%3D0%26cc_load_policy%3D0%26start%3D0%26end%3D0%26origin%3Dhttps%3A%2F%2Fyoutubeembedcode.com&qclc=ChBHV3U4RGpfdF9lMjA0S0V2EAI&cbr=Firefox&cbrver=96.0&c=WEB_EMBEDDED_PLAYER&cver=1.20240423.01.00&cplayer=UNIPLAYER&cos=X11&cplatform=DESKTOP&afs=0.431:251::i&cmt=0.465:0.000,10.001:0.000&vps=0.465:N&ctmp=dompaused:t.469;r.promise;m.NotAllowedError,itr:t.685;&bwm=10.001:544041:1.158&bwe=10.001:2129745&bh=10.001:12.583 IP142.250.74.14:443
Requested byhttps://www.youtube.com/embed/4hIMRUTqARM?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/stats/qoe?fmt=396&afmt=251&cpn=GWu8Dj_t_e204KEv&el=embedded&ns=yt&fexp=v1%2C23983296%2C21348%2C76094%2C54572%2C304051%2C84737%2C36318%2C6271%2C26443548%2C7111%2C36343%2C9954%2C1192%2C26496%2C6966%2C2%2C6689%2C2007%2C663%2C8409%2C20075%2C9077%2C530%2C1666%2C8970%2C1025%2C1104%2C20%2C6933%2C100%2C53%2C2606%2C54%2C496%2C142%2C9%2C41%2C2%2C289%2C2%2C78%2C637%2C4454%2C6&cl=627399198&seq=2&docid=4hIMRUTqARM&ei=BTYrZuS1PLGt0u8Pwc-MuAk&event=streamingstats&plid=AAYW-NkVX46EmRSn&referrer=https%3A%2F%2Fwww.youtube.com%2Fembed%2F4hIMRUTqARM%3Fcontrols%3D0%26loop%3D1%26autoplay%3D1%26fs%3D1%26iv_load_policy%3D3%26showinfo%3D0%26rel%3D0%26cc_load_policy%3D0%26start%3D0%26end%3D0%26origin%3Dhttps%3A%2F%2Fyoutubeembedcode.com&qclc=ChBHV3U4RGpfdF9lMjA0S0V2EAI&cbr=Firefox&cbrver=96.0&c=WEB_EMBEDDED_PLAYER&cver=1.20240423.01.00&cplayer=UNIPLAYER&cos=X11&cplatform=DESKTOP&afs=0.431:251::i&cmt=0.465:0.000,10.001:0.000&vps=0.465:N&ctmp=dompaused:t.469;r.promise;m.NotAllowedError,itr:t.685;&bwm=10.001:544041:1.158&bwe=10.001:2129745&bh=10.001:12.583 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Visitor-Id: Cgt0bFF6TE9OZlo4byiE7KyxBjIOCgJOTxIIEgQSAgsMICE%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20240423.01.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1714107909725&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C390%2C190&vis=1&wgl=true&ca_type=image
Content-Type: application/x-www-form-urlencoded
Content-Length: 226
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/4hIMRUTqARM?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
date: Fri, 26 Apr 2024 05:05:19 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
x-content-type-options: nosniff
server: Video Stats Server
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| rr3---sn-5go7ynl6.googlevideo.com/videoplayback?expire=1714129510&ei=BTYrZuS1PLGt0u8Pwc-MuAk&ip=91.90.42.154&id=o-AKEG5mwdGhB2blEFmccmT_dc1ImpfJYFnSqN22QQTbCw&itag=396&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278%2C394%2C395%2C396%2C397%2C398%2C399&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&pcm2=no&bui=AWRWj2Q_LF7eil_AXAqvUuuV3-cWMPYJ0-5F8MM8aj55QCoJb9tBggjQA0YyccUwLFaCmEdXR1Bkwyb1&spc=UWF9f96ojtvTwcrDzym9HbSiXSO3sgLd2rFaePNKMfoM_AzsJBGzlGYmFg&vprv=1&svpuc=1&mime=video%2Fmp4&ns=9EPn-7IBeZStQsfVnGBJWPsQ&gir=yes&clen=2160384&dur=59.791&lmt=1712142908082106&keepalive=yes&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=553C434&n=bP8u8N5m46wDQw&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cpcm2%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRQIhAJubwlVDYPbhQsd5NYexWnfWXuFTPPvjYfg6Na6umbnUAiA2FxybeAeb3eOF5H0fRc9yqKSA_LOwRzwflHbfJxMBiA%3D%3D&alr=yes&cpn=GWu8Dj_t_e204KEv&cver=1.20240423.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&fexp=24350295,24350324,24350328,24350330,24350379,24350412,24350424,24350443&cms_redirect=yes&cmsv=e&mh=fM&mm=29&mn=sn-5go7ynl6&ms=rdu&mt=1714107664&mv=m&mvi=3&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AHWaYeowRQIhANY9cMLVZRSYjfHzNYdGkfwcKjXwMC950poH7TG8VESIAiAMEgb-OLaO6ftZhYJc5b0X-ap29MhbR-cW93sBt1WvYA%3D%3D&range=84350-278133&rn=6&rbuf=6110&pot=Mnnn0eU9U6IggufqziU15vQlC7a6lbneQsRLLRtL3f_aj-v1lV684MZkrQ_2htetLy9LfqWtTvJ5rT41yZg4oAxzIjBQJ-qZ3BvXzSAIVzcOPI9D-3tlJKeH3bhLmxfh5dRtchS6mXINxUYxUS0yz0IFsC3QVdMTojCV&ump=1&srfvp=1 | 74.125.111.40 | 200 OK | 420 kB |
URL POST HTTP/3rr3---sn-5go7ynl6.googlevideo.com/videoplayback?expire=1714129510&ei=BTYrZuS1PLGt0u8Pwc-MuAk&ip=91.90.42.154&id=o-AKEG5mwdGhB2blEFmccmT_dc1ImpfJYFnSqN22QQTbCw&itag=396&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278%2C394%2C395%2C396%2C397%2C398%2C399&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&pcm2=no&bui=AWRWj2Q_LF7eil_AXAqvUuuV3-cWMPYJ0-5F8MM8aj55QCoJb9tBggjQA0YyccUwLFaCmEdXR1Bkwyb1&spc=UWF9f96ojtvTwcrDzym9HbSiXSO3sgLd2rFaePNKMfoM_AzsJBGzlGYmFg&vprv=1&svpuc=1&mime=video%2Fmp4&ns=9EPn-7IBeZStQsfVnGBJWPsQ&gir=yes&clen=2160384&dur=59.791&lmt=1712142908082106&keepalive=yes&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=553C434&n=bP8u8N5m46wDQw&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cpcm2%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRQIhAJubwlVDYPbhQsd5NYexWnfWXuFTPPvjYfg6Na6umbnUAiA2FxybeAeb3eOF5H0fRc9yqKSA_LOwRzwflHbfJxMBiA%3D%3D&alr=yes&cpn=GWu8Dj_t_e204KEv&cver=1.20240423.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&fexp=24350295,24350324,24350328,24350330,24350379,24350412,24350424,24350443&cms_redirect=yes&cmsv=e&mh=fM&mm=29&mn=sn-5go7ynl6&ms=rdu&mt=1714107664&mv=m&mvi=3&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AHWaYeowRQIhANY9cMLVZRSYjfHzNYdGkfwcKjXwMC950poH7TG8VESIAiAMEgb-OLaO6ftZhYJc5b0X-ap29MhbR-cW93sBt1WvYA%3D%3D&range=84350-278133&rn=6&rbuf=6110&pot=Mnnn0eU9U6IggufqziU15vQlC7a6lbneQsRLLRtL3f_aj-v1lV684MZkrQ_2htetLy9LfqWtTvJ5rT41yZg4oAxzIjBQJ-qZ3BvXzSAIVzcOPI9D-3tlJKeH3bhLmxfh5dRtchS6mXINxUYxUS0yz0IFsC3QVdMTojCV&ump=1&srfvp=1 IP74.125.111.40:443
Requested byhttps://www.youtube.com/embed/4hIMRUTqARM?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.c.docs.google.com Fingerprint6D:7D:79:1B:2A:53:90:00:60:42:78:46:75:80:C3:2A:F8:BF:1E:BB ValidityTue, 09 Apr 2024 14:31:07 GMT - Tue, 18 Jun 2024 14:31:06 GMT
Size420 kB (419683 bytes) Hash10ff8f1ec04816bf9e6a75411acc7af3 8bf677b895038a9e9898f84e888b8ffdafa64a98 9470ade6ab35822d63e189b800ea3de30fd4c4156b90f3858a6d664cb7999e02
POST /videoplayback?expire=1714129510&ei=BTYrZuS1PLGt0u8Pwc-MuAk&ip=91.90.42.154&id=o-AKEG5mwdGhB2blEFmccmT_dc1ImpfJYFnSqN22QQTbCw&itag=396&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278%2C394%2C395%2C396%2C397%2C398%2C399&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&pcm2=no&bui=AWRWj2Q_LF7eil_AXAqvUuuV3-cWMPYJ0-5F8MM8aj55QCoJb9tBggjQA0YyccUwLFaCmEdXR1Bkwyb1&spc=UWF9f96ojtvTwcrDzym9HbSiXSO3sgLd2rFaePNKMfoM_AzsJBGzlGYmFg&vprv=1&svpuc=1&mime=video%2Fmp4&ns=9EPn-7IBeZStQsfVnGBJWPsQ&gir=yes&clen=2160384&dur=59.791&lmt=1712142908082106&keepalive=yes&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=553C434&n=bP8u8N5m46wDQw&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cpcm2%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRQIhAJubwlVDYPbhQsd5NYexWnfWXuFTPPvjYfg6Na6umbnUAiA2FxybeAeb3eOF5H0fRc9yqKSA_LOwRzwflHbfJxMBiA%3D%3D&alr=yes&cpn=GWu8Dj_t_e204KEv&cver=1.20240423.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&fexp=24350295,24350324,24350328,24350330,24350379,24350412,24350424,24350443&cms_redirect=yes&cmsv=e&mh=fM&mm=29&mn=sn-5go7ynl6&ms=rdu&mt=1714107664&mv=m&mvi=3&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AHWaYeowRQIhANY9cMLVZRSYjfHzNYdGkfwcKjXwMC950poH7TG8VESIAiAMEgb-OLaO6ftZhYJc5b0X-ap29MhbR-cW93sBt1WvYA%3D%3D&range=84350-278133&rn=6&rbuf=6110&pot=Mnnn0eU9U6IggufqziU15vQlC7a6lbneQsRLLRtL3f_aj-v1lV684MZkrQ_2htetLy9LfqWtTvJ5rT41yZg4oAxzIjBQJ-qZ3BvXzSAIVzcOPI9D-3tlJKeH3bhLmxfh5dRtchS6mXINxUYxUS0yz0IFsC3QVdMTojCV&ump=1&srfvp=1 HTTP/1.1
Host: rr3---sn-5go7ynl6.googlevideo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.youtube.com/
Content-Length: 2
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
last-modified: Wed, 03 Apr 2024 11:15:08 GMT
content-type: application/vnd.yt-ump
date: Fri, 26 Apr 2024 05:05:10 GMT
expires: Fri, 26 Apr 2024 05:05:10 GMT
cache-control: private, max-age=21300
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,quic=":443"; ma=2592000; v="46"
client-protocol: quic
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
timing-allow-origin: https://www.youtube.com
access-control-expose-headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
vary: Origin
cross-origin-resource-policy: cross-origin
x-restrict-formats-hint: None
x-content-type-options: nosniff
server: gvs 1.0
|
|
| www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 | 142.250.74.14 | 200 OK | 31 B |
URL POST HTTP/3www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 IP142.250.74.14:443
Requested byhttps://www.youtube.com/embed/4hIMRUTqARM?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT
Hash5e1fa6fd9abd549a576f3f24b1d3c8d4 d5335d7f7d33be6a0b663f03b2df4df2521c4a87 d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336
POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1714107936180
Content-Type: application/json
X-Goog-Visitor-Id: Cgt0bFF6TE9OZlo4byiE7KyxBjIOCgJOTxIIEgQSAgsMICE%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20240423.01.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1714107909254&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C390%2C190&vis=1&wgl=true&ca_type=image
Content-Length: 953
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/4hIMRUTqARM?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Fri, 26 Apr 2024 05:05:36 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.youtube.com/embed/4hIMRUTqARM?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com | 142.250.74.14 | 200 OK | 93 kB |
URL GET HTTP/2www.youtube.com/embed/4hIMRUTqARM?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com IP142.250.74.14:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /embed/4hIMRUTqARM?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 26 Apr 2024 05:05:08 GMT
strict-transport-security: max-age=31536000
cross-origin-resource-policy: cross-origin
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
origin-trial: AmhMBR6zCLzDDxpW+HfpP67BqwIknWnyMOXOQGfzYswFmJe+fgaI6XZgAzcxOrzNtP7hEDsOo1jdjFnVr2IdxQ4AAAB4eyJvcmlnaW4iOiJodHRwczovL3lvdXR1YmUuY29tOjQ0MyIsImZlYXR1cmUiOiJXZWJWaWV3WFJlcXVlc3RlZFdpdGhEZXByZWNhdGlvbiIsImV4cGlyeSI6MTc1ODA2NzE5OSwiaXNTdWJkb21haW4iOnRydWV9
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=lEl1aQN8xvo; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=tlQzLONfZ8o; Domain=.youtube.com; Expires=Wed, 23-Oct-2024 05:05:08 GMT; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_PRIVACY_METADATA=CgJOTxIIEgQSAgsMICE%3D; Domain=.youtube.com; Expires=Wed, 23-Oct-2024 05:05:08 GMT; Path=/; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| voy27hj1qps.fcyz.my.id/bagas/css/facebook.css | 172.67.208.84 | 200 OK | 5.2 kB |
URL GET HTTP/3voy27hj1qps.fcyz.my.id/bagas/css/facebook.css IP172.67.208.84:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeASCII text, with very long lines (5644), with no line terminators Hash6c6eede9c902bf0866eeddd6e031b122 25ae33158196270672483a1e0dbda68509485a5f 80b152572eaf6ad6ebc58b3983d99fede9df16c73de5d0e9bf4a8857bcce7201
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /bagas/css/facebook.css HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 05:05:07 GMT
last-modified: Mon, 06 Nov 2023 16:44:36 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SrGxLY%2BvsDkQ4CO4MdnV2xmWUksFuyASRBt8RgFzO2X7P7j1D3ZYPrPL7A7lo%2FQNbJPURO%2FyUblMvLINBCl2lLY9o7daPGwRZhEjFM%2BRU1gsnrP3yJpXqutcMetYyrCDFxuvE%2BENNSHY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a409372c4f0b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| voy27hj1qps.fcyz.my.id/alexFrontEnd/tiktok.png | 172.67.208.84 | 404 Not Found | 1.3 kB |
URL GET HTTP/3voy27hj1qps.fcyz.my.id/alexFrontEnd/tiktok.png IP172.67.208.84:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeHTML document, ASCII text, with very long lines (1285), with no line terminators Hash94f08a3a6562f7f079c4f5a67b7260e2 cc5d03e17c41ee6bb2ebf0d26d4354a486ca1823 44ea069d9a3f7dcea953ac173384578b6185f4b2ece05a6f4513b9fda29c4c29
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /alexFrontEnd/tiktok.png HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RM2yCXymfR4liLcyKmRBUPAVuOuc13MPSq58Mq8lyQ73UjQF8krSwoTNERYRLGY7WYPIWj1QCmfSRKVszLykMfR%2FCjQHViX9f9UtYNaYVMX5AULT67OSlIb8bJFmFEKkK%2BT9VPJmSGdn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a40937ecce0b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.youtube.com/s/player/652ba3a2/player_ias.vflset/en_US/base.js | 142.250.74.14 | 200 OK | 2.5 MB |
URL GET HTTP/3www.youtube.com/s/player/652ba3a2/player_ias.vflset/en_US/base.js IP142.250.74.14:443
Requested byhttps://www.youtube.com/embed/4hIMRUTqARM?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT
Size2.5 MB (2546075 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s/player/652ba3a2/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/4hIMRUTqARM?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-encoding: gzip
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 809632
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 Apr 2024 07:31:32 GMT
expires: Thu, 24 Apr 2025 07:31:32 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 24 Apr 2024 04:20:05 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 164017
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css | 104.18.11.207 | 200 OK | 31 kB |
URL GET HTTP/2stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css IP104.18.11.207:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectbootstrapcdn.com Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63 ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT
File typeASCII text, with very long lines (30837) Hash269550530cc127b6aa5a35925a7de6ce 512c7d79033e3028a9be61b540cf1a6870c896f8 799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"269550530cc127b6aa5a35925a7de6ce"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 10/31/2023 18:48:06
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 722
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: dd809c84048d5afa8e77adc8acacd559
cdn-cache: HIT
cf-cache-status: HIT
age: 13482082
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87a409377d7e56ca-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| rr3---sn-5go7ynl6.googlevideo.com/videoplayback?expire=1714129510&ei=BTYrZuS1PLGt0u8Pwc-MuAk&ip=91.90.42.154&id=o-AKEG5mwdGhB2blEFmccmT_dc1ImpfJYFnSqN22QQTbCw&itag=251&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&pcm2=no&bui=AWRWj2Q_LF7eil_AXAqvUuuV3-cWMPYJ0-5F8MM8aj55QCoJb9tBggjQA0YyccUwLFaCmEdXR1Bkwyb1&spc=UWF9f96ojtvTwcrDzym9HbSiXSO3sgLd2rFaePNKMfoM_AzsJBGzlGYmFg&vprv=1&svpuc=1&mime=audio%2Fwebm&ns=9EPn-7IBeZStQsfVnGBJWPsQ&gir=yes&clen=946205&dur=59.821&lmt=1712095373244492&keepalive=yes&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=5532434&n=bP8u8N5m46wDQw&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cxpc%2Cpcm2%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRgIhAKuDi8835idUeVODbMxku-z91YsnZX6X8iqz3aMweRDDAiEA6-47TxbpK_c9nw2xsrymV1FsmPYHX_ofBdEjE2bwHD8%3D&alr=yes&cpn=GWu8Dj_t_e204KEv&cver=1.20240423.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&fexp=24350295,24350324,24350328,24350330,24350379,24350412,24350424,24350443&cms_redirect=yes&cmsv=e&mh=fM&mm=29&mn=sn-5go7ynl6&ms=rdu&mt=1714107664&mv=m&mvi=3&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AHWaYeowRgIhAI1jlBi8zoKjKBryL74kKFXUiG35j8IYxkZjjdDiuBd-AiEAh8ZAHzvrkEzYu28413hDXnYiJ8l9eqm2m3E-0eKlQ68%3D&range=262797-481395&rn=9&rbuf=16140&pot=Mnnn0eU9U6IggufqziU15vQlC7a6lbneQsRLLRtL3f_aj-v1lV684MZkrQ_2htetLy9LfqWtTvJ5rT41yZg4oAxzIjBQJ-qZ3BvXzSAIVzcOPI9D-3tlJKeH3bhLmxfh5dRtchS6mXINxUYxUS0yz0IFsC3QVdMTojCV&ump=1&srfvp=1 | 74.125.111.40 | 200 OK | 219 kB |
URL POST HTTP/3rr3---sn-5go7ynl6.googlevideo.com/videoplayback?expire=1714129510&ei=BTYrZuS1PLGt0u8Pwc-MuAk&ip=91.90.42.154&id=o-AKEG5mwdGhB2blEFmccmT_dc1ImpfJYFnSqN22QQTbCw&itag=251&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&pcm2=no&bui=AWRWj2Q_LF7eil_AXAqvUuuV3-cWMPYJ0-5F8MM8aj55QCoJb9tBggjQA0YyccUwLFaCmEdXR1Bkwyb1&spc=UWF9f96ojtvTwcrDzym9HbSiXSO3sgLd2rFaePNKMfoM_AzsJBGzlGYmFg&vprv=1&svpuc=1&mime=audio%2Fwebm&ns=9EPn-7IBeZStQsfVnGBJWPsQ&gir=yes&clen=946205&dur=59.821&lmt=1712095373244492&keepalive=yes&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=5532434&n=bP8u8N5m46wDQw&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cxpc%2Cpcm2%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRgIhAKuDi8835idUeVODbMxku-z91YsnZX6X8iqz3aMweRDDAiEA6-47TxbpK_c9nw2xsrymV1FsmPYHX_ofBdEjE2bwHD8%3D&alr=yes&cpn=GWu8Dj_t_e204KEv&cver=1.20240423.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&fexp=24350295,24350324,24350328,24350330,24350379,24350412,24350424,24350443&cms_redirect=yes&cmsv=e&mh=fM&mm=29&mn=sn-5go7ynl6&ms=rdu&mt=1714107664&mv=m&mvi=3&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AHWaYeowRgIhAI1jlBi8zoKjKBryL74kKFXUiG35j8IYxkZjjdDiuBd-AiEAh8ZAHzvrkEzYu28413hDXnYiJ8l9eqm2m3E-0eKlQ68%3D&range=262797-481395&rn=9&rbuf=16140&pot=Mnnn0eU9U6IggufqziU15vQlC7a6lbneQsRLLRtL3f_aj-v1lV684MZkrQ_2htetLy9LfqWtTvJ5rT41yZg4oAxzIjBQJ-qZ3BvXzSAIVzcOPI9D-3tlJKeH3bhLmxfh5dRtchS6mXINxUYxUS0yz0IFsC3QVdMTojCV&ump=1&srfvp=1 IP74.125.111.40:443
Requested byhttps://www.youtube.com/embed/4hIMRUTqARM?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.c.docs.google.com Fingerprint6D:7D:79:1B:2A:53:90:00:60:42:78:46:75:80:C3:2A:F8:BF:1E:BB ValidityTue, 09 Apr 2024 14:31:07 GMT - Tue, 18 Jun 2024 14:31:06 GMT
Size219 kB (218662 bytes) Hash094fec439651ad362f30416dcd813555 52fea50ab4c01cd06fb2fc7896d5ba21ea786347 550b169aab08d85046c6b337ab8d84cbd2d1c31872085e5f18ba587b5438609b
POST /videoplayback?expire=1714129510&ei=BTYrZuS1PLGt0u8Pwc-MuAk&ip=91.90.42.154&id=o-AKEG5mwdGhB2blEFmccmT_dc1ImpfJYFnSqN22QQTbCw&itag=251&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&pcm2=no&bui=AWRWj2Q_LF7eil_AXAqvUuuV3-cWMPYJ0-5F8MM8aj55QCoJb9tBggjQA0YyccUwLFaCmEdXR1Bkwyb1&spc=UWF9f96ojtvTwcrDzym9HbSiXSO3sgLd2rFaePNKMfoM_AzsJBGzlGYmFg&vprv=1&svpuc=1&mime=audio%2Fwebm&ns=9EPn-7IBeZStQsfVnGBJWPsQ&gir=yes&clen=946205&dur=59.821&lmt=1712095373244492&keepalive=yes&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=5532434&n=bP8u8N5m46wDQw&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cxpc%2Cpcm2%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRgIhAKuDi8835idUeVODbMxku-z91YsnZX6X8iqz3aMweRDDAiEA6-47TxbpK_c9nw2xsrymV1FsmPYHX_ofBdEjE2bwHD8%3D&alr=yes&cpn=GWu8Dj_t_e204KEv&cver=1.20240423.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&fexp=24350295,24350324,24350328,24350330,24350379,24350412,24350424,24350443&cms_redirect=yes&cmsv=e&mh=fM&mm=29&mn=sn-5go7ynl6&ms=rdu&mt=1714107664&mv=m&mvi=3&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AHWaYeowRgIhAI1jlBi8zoKjKBryL74kKFXUiG35j8IYxkZjjdDiuBd-AiEAh8ZAHzvrkEzYu28413hDXnYiJ8l9eqm2m3E-0eKlQ68%3D&range=262797-481395&rn=9&rbuf=16140&pot=Mnnn0eU9U6IggufqziU15vQlC7a6lbneQsRLLRtL3f_aj-v1lV684MZkrQ_2htetLy9LfqWtTvJ5rT41yZg4oAxzIjBQJ-qZ3BvXzSAIVzcOPI9D-3tlJKeH3bhLmxfh5dRtchS6mXINxUYxUS0yz0IFsC3QVdMTojCV&ump=1&srfvp=1 HTTP/1.1
Host: rr3---sn-5go7ynl6.googlevideo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.youtube.com/
Content-Length: 2
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
last-modified: Tue, 02 Apr 2024 22:02:53 GMT
content-type: application/vnd.yt-ump
date: Fri, 26 Apr 2024 05:05:20 GMT
expires: Fri, 26 Apr 2024 05:05:20 GMT
cache-control: private, max-age=21290
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,quic=":443"; ma=2592000; v="46"
client-protocol: quic
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
timing-allow-origin: https://www.youtube.com
access-control-expose-headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
vary: Origin
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
server: gvs 1.0
|
|
| | 172.67.208.84 | 200 OK | 68 kB |
URL User Request GET HTTP/2IP172.67.208.84:443
CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET / HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4aDXwJOWI32dYsC4ADUIrpx6WN3mAhNfydG55tN8gnfqC76rMR9zAeV2AuP2vJ7f4yUyJLUzhliEXHM66yk4xGAZ7FP2MFzkjCI7mJ%2FH4X7ABsKi79nTL%2FOG9Gb3QD5ODowbeIDR%2FPsT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a40934af1e56b4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| site-assets.fontawesome.com/releases/v6.1.1/css/all.css | 104.18.40.68 | 200 OK | 498 kB |
URL GET HTTP/2site-assets.fontawesome.com/releases/v6.1.1/css/all.css IP104.18.40.68:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerDigiCert Inc Subject*.fontawesome.com Fingerprint93:F9:69:8C:73:B0:08:60:65:F3:39:41:39:66:D3:2B:78:3A:6E:3D ValidityMon, 04 Dec 2023 00:00:00 GMT - Fri, 03 Jan 2025 23:59:59 GMT
File typeASCII text, with very long lines (65360) Size498 kB (498160 bytes) Hash325672b036bab9b57f6873aed5eccc43 264f5db348311950380ad1bca79754ff593d87e2 a35f901d01118e5649091bd03ac5784a7db52e111fb3806524c412f3d1dcfc5d
GET /releases/v6.1.1/css/all.css HTTP/1.1
Host: site-assets.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: text/css
x-amz-id-2: Y1TmNuBPJ2aktX68kJThHqHYS+UBzLzvigLuxqSKGropAjQHJXqctJ8cMj8EZaj3hWZqBw7vjseo/ptPWK0rIs/nC5bnGezhyLprTTXGcJA=
x-amz-request-id: 9ZNBHYHZ9G1WY9FS
last-modified: Tue, 22 Mar 2022 15:39:41 GMT
etag: W/"325672b036bab9b57f6873aed5eccc43"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 13402189
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a4093799b4b4f1-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.youtube.com/s/player/652ba3a2/www-embed-player.vflset/www-embed-player.js | 142.250.74.14 | 200 OK | 327 kB |
URL GET HTTP/3www.youtube.com/s/player/652ba3a2/www-embed-player.vflset/www-embed-player.js IP142.250.74.14:443
Requested byhttps://www.youtube.com/embed/4hIMRUTqARM?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT
File typeJavaScript source, ASCII text, with very long lines (829) Size327 kB (326912 bytes) Hash41348652979d359653fe6322a97908b4 8d8ff77af710d82f82b98bc4502f2ffc3f370f08 948bc1d531b416dc2a97f59988fcd3e17dd0d65822d742f4cec0708611efc443
GET /s/player/652ba3a2/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/4hIMRUTqARM?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 97332
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 Apr 2024 07:31:32 GMT
expires: Thu, 24 Apr 2025 07:31:32 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 24 Apr 2024 04:20:05 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 164017
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| rr3---sn-5go7ynl6.googlevideo.com/videoplayback?expire=1714129510&ei=BTYrZuS1PLGt0u8Pwc-MuAk&ip=91.90.42.154&id=o-AKEG5mwdGhB2blEFmccmT_dc1ImpfJYFnSqN22QQTbCw&itag=396&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278%2C394%2C395%2C396%2C397%2C398%2C399&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&pcm2=no&bui=AWRWj2Q_LF7eil_AXAqvUuuV3-cWMPYJ0-5F8MM8aj55QCoJb9tBggjQA0YyccUwLFaCmEdXR1Bkwyb1&spc=UWF9f96ojtvTwcrDzym9HbSiXSO3sgLd2rFaePNKMfoM_AzsJBGzlGYmFg&vprv=1&svpuc=1&mime=video%2Fmp4&ns=9EPn-7IBeZStQsfVnGBJWPsQ&gir=yes&clen=2160384&dur=59.791&lmt=1712142908082106&keepalive=yes&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=553C434&n=bP8u8N5m46wDQw&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cpcm2%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRQIhAJubwlVDYPbhQsd5NYexWnfWXuFTPPvjYfg6Na6umbnUAiA2FxybeAeb3eOF5H0fRc9yqKSA_LOwRzwflHbfJxMBiA%3D%3D&alr=yes&cpn=GWu8Dj_t_e204KEv&cver=1.20240423.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&fexp=24350295,24350324,24350328,24350330,24350379,24350412,24350424,24350443&cms_redirect=yes&cmsv=e&mh=fM&mm=29&mn=sn-5go7ynl6&ms=rdu&mt=1714107664&mv=m&mvi=3&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AHWaYeowRQIhANY9cMLVZRSYjfHzNYdGkfwcKjXwMC950poH7TG8VESIAiAMEgb-OLaO6ftZhYJc5b0X-ap29MhbR-cW93sBt1WvYA%3D%3D&range=278134-670584&rn=8&rbuf=12583&pot=Mnnn0eU9U6IggufqziU15vQlC7a6lbneQsRLLRtL3f_aj-v1lV684MZkrQ_2htetLy9LfqWtTvJ5rT41yZg4oAxzIjBQJ-qZ3BvXzSAIVzcOPI9D-3tlJKeH3bhLmxfh5dRtchS6mXINxUYxUS0yz0IFsC3QVdMTojCV&ump=1&srfvp=1 | 74.125.111.40 | 200 OK | 392 kB |
URL POST HTTP/3rr3---sn-5go7ynl6.googlevideo.com/videoplayback?expire=1714129510&ei=BTYrZuS1PLGt0u8Pwc-MuAk&ip=91.90.42.154&id=o-AKEG5mwdGhB2blEFmccmT_dc1ImpfJYFnSqN22QQTbCw&itag=396&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278%2C394%2C395%2C396%2C397%2C398%2C399&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&pcm2=no&bui=AWRWj2Q_LF7eil_AXAqvUuuV3-cWMPYJ0-5F8MM8aj55QCoJb9tBggjQA0YyccUwLFaCmEdXR1Bkwyb1&spc=UWF9f96ojtvTwcrDzym9HbSiXSO3sgLd2rFaePNKMfoM_AzsJBGzlGYmFg&vprv=1&svpuc=1&mime=video%2Fmp4&ns=9EPn-7IBeZStQsfVnGBJWPsQ&gir=yes&clen=2160384&dur=59.791&lmt=1712142908082106&keepalive=yes&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=553C434&n=bP8u8N5m46wDQw&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cpcm2%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRQIhAJubwlVDYPbhQsd5NYexWnfWXuFTPPvjYfg6Na6umbnUAiA2FxybeAeb3eOF5H0fRc9yqKSA_LOwRzwflHbfJxMBiA%3D%3D&alr=yes&cpn=GWu8Dj_t_e204KEv&cver=1.20240423.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&fexp=24350295,24350324,24350328,24350330,24350379,24350412,24350424,24350443&cms_redirect=yes&cmsv=e&mh=fM&mm=29&mn=sn-5go7ynl6&ms=rdu&mt=1714107664&mv=m&mvi=3&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AHWaYeowRQIhANY9cMLVZRSYjfHzNYdGkfwcKjXwMC950poH7TG8VESIAiAMEgb-OLaO6ftZhYJc5b0X-ap29MhbR-cW93sBt1WvYA%3D%3D&range=278134-670584&rn=8&rbuf=12583&pot=Mnnn0eU9U6IggufqziU15vQlC7a6lbneQsRLLRtL3f_aj-v1lV684MZkrQ_2htetLy9LfqWtTvJ5rT41yZg4oAxzIjBQJ-qZ3BvXzSAIVzcOPI9D-3tlJKeH3bhLmxfh5dRtchS6mXINxUYxUS0yz0IFsC3QVdMTojCV&ump=1&srfvp=1 IP74.125.111.40:443
Requested byhttps://www.youtube.com/embed/4hIMRUTqARM?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.c.docs.google.com Fingerprint6D:7D:79:1B:2A:53:90:00:60:42:78:46:75:80:C3:2A:F8:BF:1E:BB ValidityTue, 09 Apr 2024 14:31:07 GMT - Tue, 18 Jun 2024 14:31:06 GMT
Size392 kB (392514 bytes) Hash485c2d37a34548003914e9ef423c099c c0fc3150c7ac5b820207e6c96f590233f63a275d bbee47da50e003961c229c3b0e9ee9ac31ac68dc4482b09c65ca88d6ad52f70e
POST /videoplayback?expire=1714129510&ei=BTYrZuS1PLGt0u8Pwc-MuAk&ip=91.90.42.154&id=o-AKEG5mwdGhB2blEFmccmT_dc1ImpfJYFnSqN22QQTbCw&itag=396&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278%2C394%2C395%2C396%2C397%2C398%2C399&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&pcm2=no&bui=AWRWj2Q_LF7eil_AXAqvUuuV3-cWMPYJ0-5F8MM8aj55QCoJb9tBggjQA0YyccUwLFaCmEdXR1Bkwyb1&spc=UWF9f96ojtvTwcrDzym9HbSiXSO3sgLd2rFaePNKMfoM_AzsJBGzlGYmFg&vprv=1&svpuc=1&mime=video%2Fmp4&ns=9EPn-7IBeZStQsfVnGBJWPsQ&gir=yes&clen=2160384&dur=59.791&lmt=1712142908082106&keepalive=yes&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=553C434&n=bP8u8N5m46wDQw&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cpcm2%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRQIhAJubwlVDYPbhQsd5NYexWnfWXuFTPPvjYfg6Na6umbnUAiA2FxybeAeb3eOF5H0fRc9yqKSA_LOwRzwflHbfJxMBiA%3D%3D&alr=yes&cpn=GWu8Dj_t_e204KEv&cver=1.20240423.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&fexp=24350295,24350324,24350328,24350330,24350379,24350412,24350424,24350443&cms_redirect=yes&cmsv=e&mh=fM&mm=29&mn=sn-5go7ynl6&ms=rdu&mt=1714107664&mv=m&mvi=3&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AHWaYeowRQIhANY9cMLVZRSYjfHzNYdGkfwcKjXwMC950poH7TG8VESIAiAMEgb-OLaO6ftZhYJc5b0X-ap29MhbR-cW93sBt1WvYA%3D%3D&range=278134-670584&rn=8&rbuf=12583&pot=Mnnn0eU9U6IggufqziU15vQlC7a6lbneQsRLLRtL3f_aj-v1lV684MZkrQ_2htetLy9LfqWtTvJ5rT41yZg4oAxzIjBQJ-qZ3BvXzSAIVzcOPI9D-3tlJKeH3bhLmxfh5dRtchS6mXINxUYxUS0yz0IFsC3QVdMTojCV&ump=1&srfvp=1 HTTP/1.1
Host: rr3---sn-5go7ynl6.googlevideo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.youtube.com/
Content-Length: 2
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
last-modified: Wed, 03 Apr 2024 11:15:08 GMT
content-type: application/vnd.yt-ump
date: Fri, 26 Apr 2024 05:05:20 GMT
expires: Fri, 26 Apr 2024 05:05:20 GMT
cache-control: private, max-age=21290
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,quic=":443"; ma=2592000; v="46"
client-protocol: quic
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
timing-allow-origin: https://www.youtube.com
access-control-expose-headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
vary: Origin
cross-origin-resource-policy: cross-origin
x-restrict-formats-hint: None
x-content-type-options: nosniff
server: gvs 1.0
|
|
| fonts.googleapis.com/css2?family=Teko:wght@300;400;500;600;700&display=swap | 142.250.74.106 | 200 OK | 5.5 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Teko:wght@300;400;500;600;700&display=swap IP142.250.74.106:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typeASCII text, with very long lines (5645), with no line terminators Hash7e8ccf34cfbd7681f3b6a7b967e632c9 8550d37535c577c1f2454fe033691a280d1a473a 984f7fcf1514b4faf8b84587104475a20d12627f7b3ec5f8fcd6b72d6ccf2d4f
GET /css2?family=Teko:wght@300;400;500;600;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 26 Apr 2024 05:05:07 GMT
date: Fri, 26 Apr 2024 05:05:07 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| voy27hj1qps.fcyz.my.id/bagas/css/moonton.css | 172.67.208.84 | 200 OK | 3.1 kB |
URL GET HTTP/3voy27hj1qps.fcyz.my.id/bagas/css/moonton.css IP172.67.208.84:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfcyz.my.id Fingerprint4E:DD:47:65:E3:FA:D8:81:E3:A7:B4:86:FC:92:8F:24:8B:0E:73:25 ValidityTue, 26 Mar 2024 06:26:09 GMT - Mon, 24 Jun 2024 06:26:08 GMT
File typeASCII text, with very long lines (3408), with no line terminators Hash0a020123bc9db4c625c9ef87128ad8c5 7ab30f92d8ea4781105f036cfc539e4c716e2deb 4495250e8276a3f612d8157706372c1497dd00048f4f63dcf4c36fcaf573802d
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /bagas/css/moonton.css HTTP/1.1
Host: voy27hj1qps.fcyz.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voy27hj1qps.fcyz.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 05:05:07 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 05:05:07 GMT
last-modified: Mon, 06 Nov 2023 17:15:52 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=81jYupcNvalUGuNROUkCNr3%2BoaqPHSOLIPUKvab%2BJaLjclUir59vJkFNPJsFyy%2FD%2B3DxGWgAy0PQjm737k0eBPgwqhZuoBbl0Vn5uJ7Tq5lLfCKAE7S1WaI%2Fn3bYQRjKrgHqmnwKNlp4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a409372c4e0b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| rr3---sn-5go7ynl6.googlevideo.com/videoplayback?expire=1714129510&ei=BTYrZuS1PLGt0u8Pwc-MuAk&ip=91.90.42.154&id=o-AKEG5mwdGhB2blEFmccmT_dc1ImpfJYFnSqN22QQTbCw&itag=251&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&pcm2=no&bui=AWRWj2Q_LF7eil_AXAqvUuuV3-cWMPYJ0-5F8MM8aj55QCoJb9tBggjQA0YyccUwLFaCmEdXR1Bkwyb1&spc=UWF9f96ojtvTwcrDzym9HbSiXSO3sgLd2rFaePNKMfoM_AzsJBGzlGYmFg&vprv=1&svpuc=1&mime=audio%2Fwebm&ns=9EPn-7IBeZStQsfVnGBJWPsQ&gir=yes&clen=946205&dur=59.821&lmt=1712095373244492&keepalive=yes&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=5532434&n=bP8u8N5m46wDQw&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cxpc%2Cpcm2%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRgIhAKuDi8835idUeVODbMxku-z91YsnZX6X8iqz3aMweRDDAiEA6-47TxbpK_c9nw2xsrymV1FsmPYHX_ofBdEjE2bwHD8%3D&alr=yes&cpn=GWu8Dj_t_e204KEv&cver=1.20240423.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&fexp=24350295,24350324,24350328,24350330,24350379,24350412,24350424,24350443&cms_redirect=yes&cmsv=e&mh=fM&mm=29&mn=sn-5go7ynl6&ms=rdu&mt=1714107664&mv=m&mvi=3&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AHWaYeowRgIhAI1jlBi8zoKjKBryL74kKFXUiG35j8IYxkZjjdDiuBd-AiEAh8ZAHzvrkEzYu28413hDXnYiJ8l9eqm2m3E-0eKlQ68%3D&range=65901-131436&rn=5&rbuf=3943&pot=Mnnn0eU9U6IggufqziU15vQlC7a6lbneQsRLLRtL3f_aj-v1lV684MZkrQ_2htetLy9LfqWtTvJ5rT41yZg4oAxzIjBQJ-qZ3BvXzSAIVzcOPI9D-3tlJKeH3bhLmxfh5dRtchS6mXINxUYxUS0yz0IFsC3QVdMTojCV&ump=1&srfvp=1 | 74.125.111.40 | 200 OK | 66 kB |
URL POST HTTP/3rr3---sn-5go7ynl6.googlevideo.com/videoplayback?expire=1714129510&ei=BTYrZuS1PLGt0u8Pwc-MuAk&ip=91.90.42.154&id=o-AKEG5mwdGhB2blEFmccmT_dc1ImpfJYFnSqN22QQTbCw&itag=251&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&pcm2=no&bui=AWRWj2Q_LF7eil_AXAqvUuuV3-cWMPYJ0-5F8MM8aj55QCoJb9tBggjQA0YyccUwLFaCmEdXR1Bkwyb1&spc=UWF9f96ojtvTwcrDzym9HbSiXSO3sgLd2rFaePNKMfoM_AzsJBGzlGYmFg&vprv=1&svpuc=1&mime=audio%2Fwebm&ns=9EPn-7IBeZStQsfVnGBJWPsQ&gir=yes&clen=946205&dur=59.821&lmt=1712095373244492&keepalive=yes&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=5532434&n=bP8u8N5m46wDQw&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cxpc%2Cpcm2%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRgIhAKuDi8835idUeVODbMxku-z91YsnZX6X8iqz3aMweRDDAiEA6-47TxbpK_c9nw2xsrymV1FsmPYHX_ofBdEjE2bwHD8%3D&alr=yes&cpn=GWu8Dj_t_e204KEv&cver=1.20240423.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&fexp=24350295,24350324,24350328,24350330,24350379,24350412,24350424,24350443&cms_redirect=yes&cmsv=e&mh=fM&mm=29&mn=sn-5go7ynl6&ms=rdu&mt=1714107664&mv=m&mvi=3&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AHWaYeowRgIhAI1jlBi8zoKjKBryL74kKFXUiG35j8IYxkZjjdDiuBd-AiEAh8ZAHzvrkEzYu28413hDXnYiJ8l9eqm2m3E-0eKlQ68%3D&range=65901-131436&rn=5&rbuf=3943&pot=Mnnn0eU9U6IggufqziU15vQlC7a6lbneQsRLLRtL3f_aj-v1lV684MZkrQ_2htetLy9LfqWtTvJ5rT41yZg4oAxzIjBQJ-qZ3BvXzSAIVzcOPI9D-3tlJKeH3bhLmxfh5dRtchS6mXINxUYxUS0yz0IFsC3QVdMTojCV&ump=1&srfvp=1 IP74.125.111.40:443
Requested byhttps://www.youtube.com/embed/4hIMRUTqARM?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.c.docs.google.com Fingerprint6D:7D:79:1B:2A:53:90:00:60:42:78:46:75:80:C3:2A:F8:BF:1E:BB ValidityTue, 09 Apr 2024 14:31:07 GMT - Tue, 18 Jun 2024 14:31:06 GMT
Hash87d3cb4c1ac278291a5e8c718b362776 6615a42c9c2e37778148a6d7a5166c2b2bbc1b8a 117df233eb50918266ee00a14796f8312b6a50dfebe767c59fd3c50f89e75e83
POST /videoplayback?expire=1714129510&ei=BTYrZuS1PLGt0u8Pwc-MuAk&ip=91.90.42.154&id=o-AKEG5mwdGhB2blEFmccmT_dc1ImpfJYFnSqN22QQTbCw&itag=251&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&pcm2=no&bui=AWRWj2Q_LF7eil_AXAqvUuuV3-cWMPYJ0-5F8MM8aj55QCoJb9tBggjQA0YyccUwLFaCmEdXR1Bkwyb1&spc=UWF9f96ojtvTwcrDzym9HbSiXSO3sgLd2rFaePNKMfoM_AzsJBGzlGYmFg&vprv=1&svpuc=1&mime=audio%2Fwebm&ns=9EPn-7IBeZStQsfVnGBJWPsQ&gir=yes&clen=946205&dur=59.821&lmt=1712095373244492&keepalive=yes&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=5532434&n=bP8u8N5m46wDQw&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cxpc%2Cpcm2%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRgIhAKuDi8835idUeVODbMxku-z91YsnZX6X8iqz3aMweRDDAiEA6-47TxbpK_c9nw2xsrymV1FsmPYHX_ofBdEjE2bwHD8%3D&alr=yes&cpn=GWu8Dj_t_e204KEv&cver=1.20240423.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&fexp=24350295,24350324,24350328,24350330,24350379,24350412,24350424,24350443&cms_redirect=yes&cmsv=e&mh=fM&mm=29&mn=sn-5go7ynl6&ms=rdu&mt=1714107664&mv=m&mvi=3&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AHWaYeowRgIhAI1jlBi8zoKjKBryL74kKFXUiG35j8IYxkZjjdDiuBd-AiEAh8ZAHzvrkEzYu28413hDXnYiJ8l9eqm2m3E-0eKlQ68%3D&range=65901-131436&rn=5&rbuf=3943&pot=Mnnn0eU9U6IggufqziU15vQlC7a6lbneQsRLLRtL3f_aj-v1lV684MZkrQ_2htetLy9LfqWtTvJ5rT41yZg4oAxzIjBQJ-qZ3BvXzSAIVzcOPI9D-3tlJKeH3bhLmxfh5dRtchS6mXINxUYxUS0yz0IFsC3QVdMTojCV&ump=1&srfvp=1 HTTP/1.1
Host: rr3---sn-5go7ynl6.googlevideo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.youtube.com/
Content-Length: 2
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
last-modified: Tue, 02 Apr 2024 22:02:53 GMT
content-type: application/vnd.yt-ump
date: Fri, 26 Apr 2024 05:05:10 GMT
expires: Fri, 26 Apr 2024 05:05:10 GMT
cache-control: private, max-age=21300
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,quic=":443"; ma=2592000; v="46"
client-protocol: quic
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
timing-allow-origin: https://www.youtube.com
access-control-expose-headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
vary: Origin
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
server: gvs 1.0
|
|
| ka-f.fontawesome.com/releases/v6.0.0/css/free-v5-font-face.min.css?token=869e25b803 | 104.21.26.223 | 200 OK | 823 B |
URL GET HTTP/2ka-f.fontawesome.com/releases/v6.0.0/css/free-v5-font-face.min.css?token=869e25b803 IP104.21.26.223:443
Requested byhttps://voy27hj1qps.fcyz.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectka-f.fontawesome.com Fingerprint8D:43:33:42:48:C0:F5:34:71:EC:49:69:9C:62:01:4A:6F:41:11:98 ValidityTue, 05 Mar 2024 09:23:28 GMT - Mon, 03 Jun 2024 09:23:27 GMT
File typeASCII text, with very long lines (845), with no line terminators Hash1af9af6e84d6fcbedffbf79321ca46b2 0f8c679ef763d2ecdc4d775dbe9af668b2284644 ebb1355be44fef0caf09c3740d278ab9461238e988fd43375d389a16e39bed8a
GET /releases/v6.0.0/css/free-v5-font-face.min.css?token=869e25b803 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://voy27hj1qps.fcyz.my.id/
Origin: https://voy27hj1qps.fcyz.my.id
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 05:05:08 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 07 Feb 2022 20:11:39 GMT
etag: W/"e8ee688b3310772b65f39c69b76f4720"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 2ST5mbyyELrGIedeO3SC5j1r_jaQb6tth09qNzXrjTH8vbFfRZn__A==
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=598JOck6uYGU2ypGNAaMqJaxoSWkpm3zBlde1u5OAnUXFos7iTvZWQoKZN2AAgdCzO8KN5EgX%2Fv5X3tSeOXglEEgGcfLfYNmzEq45fyDGfYwsHKsAD8oiOIQ%2FIzFxm%2FL3%2Bquv5Y20g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a4093e199e56af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|