| zhh3o.ktt55.my.id/hadiah/1.png | 172.67.175.76 | 200 OK | 52 kB |
URL GET HTTP/3zhh3o.ktt55.my.id/hadiah/1.png IP172.67.175.76:443
Requested byhttps://zhh3o.ktt55.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectktt55.my.id Fingerprint8A:ED:C5:91:EA:3A:47:4E:D2:1C:E4:11:78:2D:71:BC:1D:AA:DF:DE ValiditySat, 16 Mar 2024 07:53:55 GMT - Fri, 14 Jun 2024 07:53:54 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 537x824, components 3 Hash18d7879e3459cf3d30591fbe08250528 801549b4fab86cc04546c13857d52b0ccb15fcff 2faa2ad92f0af43b4f6a0b2b9c39b0a87073a928c451a12c19f61227f0d05d7a
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /hadiah/1.png HTTP/1.1
Host: zhh3o.ktt55.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zhh3o.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 04:55:14 GMT
content-type: image/png
content-length: 51741
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 00:17:41 GMT
last-modified: Sat, 18 Sep 2021 19:59:00 GMT
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 103052
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Wdw2zPCj2%2BvpxocN5bBbQlr2d9OIkMLqSNWlFq3%2BD9BwQLJnWvrGRqZ3RKXFlLs33VoJ%2BQtmDANNn5GyZSeFdi8RZ4mhLcJFy1KqdbM32l%2FW39MutOhHu%2BdEy2yCZVaVeHKYEA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87620fbd388e56ca-OSL
|
|
| zhh3o.ktt55.my.id/hadiah/2.png | 172.67.175.76 | 200 OK | 53 kB |
URL GET HTTP/3zhh3o.ktt55.my.id/hadiah/2.png IP172.67.175.76:443
Requested byhttps://zhh3o.ktt55.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectktt55.my.id Fingerprint8A:ED:C5:91:EA:3A:47:4E:D2:1C:E4:11:78:2D:71:BC:1D:AA:DF:DE ValiditySat, 16 Mar 2024 07:53:55 GMT - Fri, 14 Jun 2024 07:53:54 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 566x847, components 3 Hasheac78412ce1621cf15eae2186e14510a 422938c91bff2da79aa2d21f6deb7376af6ce393 88f2b3ad9a9c7361edf94eb80bba6a6081aba191746c92040727abc31e5fc1aa
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /hadiah/2.png HTTP/1.1
Host: zhh3o.ktt55.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zhh3o.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 04:55:14 GMT
content-type: image/png
content-length: 53179
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 00:17:41 GMT
last-modified: Sat, 18 Sep 2021 19:59:00 GMT
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 103052
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7znf7QDyUiniE5VeSWCiwVuK%2Bn6bxoa6eCPjUnf7bVtTWaw19FErUPtC6i4Tkgriqjk8ch2NRuUN9F7VykefJeh403AxKqU%2BavidqfZAzMcKaWEZPMRbTJIoUVNrzGcR5cqeFw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87620fbd389256ca-OSL
|
|
| cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.2/css/all.min.css | 104.17.25.14 | 200 OK | 10 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.2/css/all.min.css IP104.17.25.14:443
Requested byhttps://zhh3o.ktt55.my.id/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (59158) Hashc4af24ce595437830af0a401897698b2 06b7f92dd894a9edb0aeb9d040b489460ecff593 d1fb8d8337cd22568295b0ed998c85c58f0b4cd083af0b0db21cb0af80002f2d
GET /ajax/libs/font-awesome/5.15.2/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zhh3o.ktt55.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 04:55:14 GMT
content-type: text/css; charset=utf-8
content-length: 10472
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5fff7431-e7d0"
last-modified: Wed, 13 Jan 2021 22:29:05 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 212845
expires: Tue, 08 Apr 2025 04:55:14 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0BOkAb%2FdPRWtpcrTjBmq%2BMC5jg9IQUl0IalPTKEgDHlIpp%2Fyxy50xcx%2FFal2%2B%2FB8SpWVXTDxi1fMGaENjfhuAyS3SaqlSdQ7m7tqdR53prF41r0miEfvNFc4vE0%2BeKIKJwPWNuzd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87620fbd7a98b50f-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| zhh3o.ktt55.my.id/hadiah/3.png | 172.67.175.76 | 200 OK | 53 kB |
URL GET HTTP/3zhh3o.ktt55.my.id/hadiah/3.png IP172.67.175.76:443
Requested byhttps://zhh3o.ktt55.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectktt55.my.id Fingerprint8A:ED:C5:91:EA:3A:47:4E:D2:1C:E4:11:78:2D:71:BC:1D:AA:DF:DE ValiditySat, 16 Mar 2024 07:53:55 GMT - Fri, 14 Jun 2024 07:53:54 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 561x828, components 3 Hash1bf9b01e715147c6a75072906b2ec71f 223661494150392530a32559883c7b7c6c79d0b2 2e3bf52f33a6258303aeb310aaa4121db4ba002353d3d8d3bbbf1127a3ad2925
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /hadiah/3.png HTTP/1.1
Host: zhh3o.ktt55.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zhh3o.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 04:55:14 GMT
content-type: image/png
content-length: 53011
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 00:17:41 GMT
last-modified: Sat, 18 Sep 2021 19:59:00 GMT
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 103052
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=k3PMtYr4TUNxMRbuh5Ph6MjOeO4wbLaSpPG%2F0b0RJMSKqrQCI0WJz5%2FdiZbjwlXtz9%2FTGv6%2BWhjPjx1O7O%2Bo3i4dwIqm57m2h%2BZwXQsBseaZcGTkWwYQDvOKVOMnmcWcFThk8A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87620fbd389456ca-OSL
|
|
| zhh3o.ktt55.my.id/hadiah/6.png | 172.67.175.76 | 200 OK | 55 kB |
URL GET HTTP/3zhh3o.ktt55.my.id/hadiah/6.png IP172.67.175.76:443
Requested byhttps://zhh3o.ktt55.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectktt55.my.id Fingerprint8A:ED:C5:91:EA:3A:47:4E:D2:1C:E4:11:78:2D:71:BC:1D:AA:DF:DE ValiditySat, 16 Mar 2024 07:53:55 GMT - Fri, 14 Jun 2024 07:53:54 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 554x837, components 3 Hash5969fd22c7daa813287a12ef44109d49 789f33c53957ce8907fd9604ef46e1f97ba15cc4 7bd1e4557b769f1420306954ec799ae6d0918a209077531eb5cd0fc5ccb9c08e
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /hadiah/6.png HTTP/1.1
Host: zhh3o.ktt55.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zhh3o.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 04:55:14 GMT
content-type: image/png
content-length: 55330
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 00:17:41 GMT
last-modified: Sat, 18 Sep 2021 19:59:00 GMT
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 103052
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9H4IvtesNHDHvjEi73DT7IMhVyQs8rg0E7l7zTguhe4clJX9kNMS%2Bp8nJTpXKFZKcnPOF0hOKSi%2FZA3AC0N6TEJPMuIkw1tmat53TgvkbvetRM0R8FANeybXguVGKbBmZya42w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87620fbd389556ca-OSL
|
|
| zhh3o.ktt55.my.id/hadiah/9.png | 172.67.175.76 | 200 OK | 15 kB |
URL GET HTTP/3zhh3o.ktt55.my.id/hadiah/9.png IP172.67.175.76:443
Requested byhttps://zhh3o.ktt55.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectktt55.my.id Fingerprint8A:ED:C5:91:EA:3A:47:4E:D2:1C:E4:11:78:2D:71:BC:1D:AA:DF:DE ValiditySat, 16 Mar 2024 07:53:55 GMT - Fri, 14 Jun 2024 07:53:54 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 171x229, components 3 Hash3ca39831410c114cd628c096f0746a03 3518cd6ce86078f5251b2dfedc5abca0697c398f 91720cc832af5016e3bb65f1c44c497f3542824a8f13d636552c146792bb581a
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /hadiah/9.png HTTP/1.1
Host: zhh3o.ktt55.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zhh3o.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 04:55:14 GMT
content-type: image/png
content-length: 14610
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 00:17:41 GMT
last-modified: Sat, 18 Sep 2021 19:59:00 GMT
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 103052
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=i8b5F5J%2BZ9aT%2F0XvYFKgnw6NF7LZnXLp%2FasK2Sg7TWzfj%2FYTXo%2BPS%2BwbWpwp%2FkKv1qTH2FzobrLpVIusQFFown59dpumP0mbFcGOt6OLhMhRTa8AEhH0Yf0k17ieAqDiCIwp1w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87620fbd389656ca-OSL
|
|
| zhh3o.ktt55.my.id/hadiah/7.png | 172.67.175.76 | 200 OK | 24 kB |
URL GET HTTP/3zhh3o.ktt55.my.id/hadiah/7.png IP172.67.175.76:443
Requested byhttps://zhh3o.ktt55.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectktt55.my.id Fingerprint8A:ED:C5:91:EA:3A:47:4E:D2:1C:E4:11:78:2D:71:BC:1D:AA:DF:DE ValiditySat, 16 Mar 2024 07:53:55 GMT - Fri, 14 Jun 2024 07:53:54 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 270x344, components 3 Hash247d941ec211c1011eb36382af80fe6d 46f4aed3061612e9a4d2adeedcb82babf443247d b1a212ba42e56d054647c28e79c04f745569523cd3082ebdd30898271507e2fe
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /hadiah/7.png HTTP/1.1
Host: zhh3o.ktt55.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zhh3o.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 04:55:14 GMT
content-type: image/png
content-length: 24340
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 00:17:41 GMT
last-modified: Sat, 18 Sep 2021 19:59:00 GMT
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 103052
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YWhwRO%2BGTwtHGCM%2FQHYMMzxHyHhnaGUEVFmh9dTceeh%2Bu9eFk3Yh2Asan%2BOsp1lVxn0FgLuWGJ5kyxk8P%2BsaO7c9BzMobxjeU3i9eGFG1L5TGLLwfK0NlxSJMYwu89vWHPPPig%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87620fbd389756ca-OSL
|
|
| zhh3o.ktt55.my.id/img/reward/season/m1014.png | 172.67.175.76 | 200 OK | 7.4 kB |
URL GET HTTP/3zhh3o.ktt55.my.id/img/reward/season/m1014.png IP172.67.175.76:443
Requested byhttps://zhh3o.ktt55.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectktt55.my.id Fingerprint8A:ED:C5:91:EA:3A:47:4E:D2:1C:E4:11:78:2D:71:BC:1D:AA:DF:DE ValiditySat, 16 Mar 2024 07:53:55 GMT - Fri, 14 Jun 2024 07:53:54 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 255x279, components 3 Hash21656287a79f813c24a29dd3214eea75 c68604a72eea42128a05754611b03de60cb1391f ccedebc3d5fd56d5b6b408ef8351a577d4c9334d422d005ab557c9e6f9ac0b06
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/reward/season/m1014.png HTTP/1.1
Host: zhh3o.ktt55.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zhh3o.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 04:55:14 GMT
content-type: image/png
content-length: 7416
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 00:17:41 GMT
last-modified: Sat, 18 Sep 2021 19:58:58 GMT
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 103053
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SRLenoyeOe4sGfoe97VnpweYmcdX5TvO05Lmr5qEK%2Bm6WV4Z8KNKUmwiwWAG5R6ZQX%2BRfev8q%2Fro1rzfMGL3iBSbcBJ1p1RzotUOw3TJH%2FJ%2BufLRis2%2FXr1aKLRQYPrxKmMYbg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87620fbd58af56ca-OSL
|
|
| zhh3o.ktt55.my.id/img/reward/season/sg2.png | 172.67.175.76 | 200 OK | 6.7 kB |
URL GET HTTP/3zhh3o.ktt55.my.id/img/reward/season/sg2.png IP172.67.175.76:443
Requested byhttps://zhh3o.ktt55.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectktt55.my.id Fingerprint8A:ED:C5:91:EA:3A:47:4E:D2:1C:E4:11:78:2D:71:BC:1D:AA:DF:DE ValiditySat, 16 Mar 2024 07:53:55 GMT - Fri, 14 Jun 2024 07:53:54 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 256x281, components 3 Hashc2bbb2493e91d8db0d47b58a9fbd819a edbc9815e543fa043d3c3a9a0dda904bb178a3a4 fe648eab2bbfecd429d31533b10d395de19bff2a836956b53c059fecedf0e5c3
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/reward/season/sg2.png HTTP/1.1
Host: zhh3o.ktt55.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zhh3o.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 04:55:14 GMT
content-type: image/png
content-length: 6671
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 00:17:41 GMT
last-modified: Sat, 18 Sep 2021 19:58:58 GMT
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 103053
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zV7GhxMXG744aQgY6DfJX%2BlWiZ3OI3tPuLWOtZrNmCTRsBES0p5rOZJ7xW42dzArqN5TAGNIm564Gk7r8bFtWEwvslsz1egnfXNUcLGUEZgpL3w6A80PIPBZyEM1nUbEBKbCLA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87620fbd58b056ca-OSL
|
|
| zhh3o.ktt55.my.id/hadiah/13.png | 172.67.175.76 | 200 OK | 49 kB |
URL GET HTTP/3zhh3o.ktt55.my.id/hadiah/13.png IP172.67.175.76:443
Requested byhttps://zhh3o.ktt55.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectktt55.my.id Fingerprint8A:ED:C5:91:EA:3A:47:4E:D2:1C:E4:11:78:2D:71:BC:1D:AA:DF:DE ValiditySat, 16 Mar 2024 07:53:55 GMT - Fri, 14 Jun 2024 07:53:54 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=5, height=540, software=Android Gallery, orientation=[*0*], width=544], baseline, precision 8, 544x540, components 3 Hash211f77eadfb913d3c373845665fbc80d a745750da7fbd89f99b70c6ac18057f16f1fda41 1713a10e9eda3a010054e07979f957f79409b853679f9a30051fd144bfcdf03a
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /hadiah/13.png HTTP/1.1
Host: zhh3o.ktt55.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zhh3o.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 04:55:14 GMT
content-type: image/png
content-length: 48829
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 00:17:41 GMT
last-modified: Sat, 18 Sep 2021 19:59:00 GMT
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 103052
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FLc9ArcHrWWBzCtvXVSgFKDMUuhUognz2lOuiYxOZHElCe8%2Bl4nobi1NPGXJULqpBMk2ZIyQyQffWvD4RAiZPkYYm1jNkr6CqBrDDihmq%2FKACYft6yopQRL6PHQufL6LF%2FtVCg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87620fbd58b256ca-OSL
|
|
| cdnjs.cloudflare.com/ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css | 104.17.25.14 | 200 OK | 5.8 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css IP104.17.25.14:443
Requested byhttps://zhh3o.ktt55.my.id/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hashe9365fe85b7e4db79a87015e52c3db6c 2e2b5eb6e08f0f3d11fe0ada97c962a23ba6a0d9 dec3e9f0190a504ed0c8f4a5e957c107206ba106cac4a1bbb6cbac6369a16d56
GET /ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zhh3o.ktt55.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 04:55:14 GMT
content-type: text/css; charset=utf-8
content-length: 5845
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ed9-1149f"
last-modified: Mon, 04 May 2020 16:12:09 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 597267
expires: Tue, 08 Apr 2025 04:55:14 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sIQWRC4V0sQruaw1v0q%2FQ2qZFHh71scjkVKIOePaTurnjnzlILyazPijq53cLAaJ8kkMwXVJ3uWrswc37YyS7%2F%2FEN4hGS3JhuUVJhXWP2zEkYntM7OBKocLyM%2FWfCo0HM0qxp2ni"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87620fbddb08b50f-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/npm/bootstrap-icons@1.8.1/font/bootstrap-icons.css | 151.101.129.229 | 200 OK | 11 kB |
URL GET HTTP/2cdn.jsdelivr.net/npm/bootstrap-icons@1.8.1/font/bootstrap-icons.css IP151.101.129.229:443
Requested byhttps://zhh3o.ktt55.my.id/ CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
Hash79877fb82de8ca50845081e3c9a201c5 4f6ea69c0e03431ffa1a097a45453b5b3b246d8b af35cc6aba34e5005de77099dfa72d4c1a7715d28ddcec343f48031dc8cb08bc
GET /npm/bootstrap-icons@1.8.1/font/bootstrap-icons.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zhh3o.ktt55.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 1.8.1
x-jsd-version-type: version
etag: W/"13a7e-T26mnA4DQx/6Ggl6RUU7WzskbYs"
content-encoding: br
accept-ranges: bytes
date: Thu, 18 Apr 2024 04:55:14 GMT
age: 303878
x-served-by: cache-fra-etou8220090-FRA, cache-hel1410020-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 10883
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/gh/gowebid/assets@main/go_login/facebook_white.png | 151.101.129.229 | 200 OK | 29 kB |
URL GET HTTP/2cdn.jsdelivr.net/gh/gowebid/assets@main/go_login/facebook_white.png IP151.101.129.229:443
Requested byhttps://zhh3o.ktt55.my.id/ CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typePNG image data, 604 x 158, 8-bit/color RGBA, non-interlaced Hash74190b93fc4f5d88f0c8e6411ba20bd8 89ce2ecb660a90b8e6ed1b335443d7767c59f28a 092a3cd5f86b3f039feefdeb86694cd16ae545af214cfda614bdbbe2d1bde401
GET /gh/gowebid/assets@main/go_login/facebook_white.png HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zhh3o.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: image/png
x-jsd-version: main
x-jsd-version-type: branch
etag: W/"7075-ic4uy2YKkLjm7RszVEPXdnxZ8oo"
accept-ranges: bytes
date: Thu, 18 Apr 2024 04:55:14 GMT
age: 22439
x-served-by: cache-fra-etou8220127-FRA, cache-hel1410020-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 28789
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/gh/gowebid/assets@main/go_login/google.svg | 151.101.129.229 | | 959 B |
URL cdn.jsdelivr.net/gh/gowebid/assets@main/go_login/google.svg IP151.101.129.229:0
CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeSVG Scalable Vector Graphics image Hash848700651ce9c04987e04f292c598cba 976fc1619e149ed6161d834d5e3c3be7b7957669 f0562ef3624d99ef205211177586097eb7ebd8f5b31711d335a74d368c75ec27
GET /gh/gowebid/assets@main/go_login/google.svg HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zhh3o.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: image/svg+xml
x-jsd-version: main
x-jsd-version-type: branch
etag: W/"7ea-l2/BYZ4UntYWHYNNXjw757eVdmk"
content-encoding: br
accept-ranges: bytes
age: 24478
date: Thu, 18 Apr 2024 04:55:14 GMT
x-served-by: cache-fra-eddf8230119-FRA, cache-hel1410020-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 959
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/gh/gowebid/assets@main/go_login/vk.webp | 151.101.129.229 | 200 OK | 1.6 kB |
URL GET HTTP/2cdn.jsdelivr.net/gh/gowebid/assets@main/go_login/vk.webp IP151.101.129.229:443
Requested byhttps://zhh3o.ktt55.my.id/ CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeRIFF (little-endian) data, Web/P image Hash8e2c62ec296ece5f6a69e2cfd1133310 a6ae37e62d2f201d0e783df0890df55bc11d52e0 ac250ff6fe61157727de9e17fedeb5c162452fc1aa031c4c1fe2f8eb3290ed98
GET /gh/gowebid/assets@main/go_login/vk.webp HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zhh3o.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: image/webp
x-jsd-version: main
x-jsd-version-type: branch
etag: W/"63a-pq435i0vIB0OeD3wiQ31W8EdUuA"
accept-ranges: bytes
age: 15031
date: Thu, 18 Apr 2024 04:55:14 GMT
x-served-by: cache-fra-eddf8230049-FRA, cache-hel1410020-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1594
X-Firefox-Spdy: h2
|
|
| | 172.67.175.76 | 200 OK | 7.4 kB |
URL User Request GET HTTP/2IP172.67.175.76:443
CertificateIssuerGoogle Trust Services LLC Subjectktt55.my.id Fingerprint8A:ED:C5:91:EA:3A:47:4E:D2:1C:E4:11:78:2D:71:BC:1D:AA:DF:DE ValiditySat, 16 Mar 2024 07:53:55 GMT - Fri, 14 Jun 2024 07:53:54 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (1979), with CRLF, LF line terminators Hasha6095801640c7f473bc11d6ec2f0cc74 66492912b18075150ffc2d325a847359865bec3a ade8a4ef32423adda33cc39974edfb13a71c24f8b4cdc65eb2fd8e0dad2d794f
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET / HTTP/1.1
Host: zhh3o.ktt55.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 04:55:14 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QTGlcetj%2BW4zcYbGFsc2w5SCGexfdqmYZP610its26O6EWH2JiHdgUOvi2QIk9TpEk252GLwDmmZwt10TzNh1EyIyUZtsCxbLxORtNQn08nVNf3gxZUIq2hMc9UYF5fNggE9hw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87620fb7aa2b56c3-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| filebagasarya.com/img/border/kotakepep.png | 104.21.21.5 | | 363 kB |
URL filebagasarya.com/img/border/kotakepep.png IP104.21.21.5:0
File typePNG image data, 961 x 629, 8-bit/color RGBA, non-interlaced Size363 kB (363097 bytes) Hash6a0d6db85cb8f20004a16ca4a3460a97 6c5aeba02f9302fab56fd73dcf4cdf75651f5a21 8ed2ebbb47a51b8fffb523a1d6654a8cabc41fa2ed10398d0ce64f76fcc63eb0
GET /img/border/kotakepep.png HTTP/1.1
Host: filebagasarya.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zhh3o.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 04:55:14 GMT
content-type: image/png
content-length: 363097
cache-control: public, max-age=604800
expires: Mon, 22 Apr 2024 17:36:07 GMT
last-modified: Sat, 04 Mar 2023 12:09:25 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 213547
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iHhsaa0PKXxKTVOtZCT%2BLwzcVKoZznBuD3ZaEHAgNggntM%2BrU0ltsGi1r0Xx3oNaipzD%2BhcZbEUSSz3dXI8CbYEqfMx%2B%2FSxtsi%2BOtMCcq8NW10oP4mNVEvZO%2Ba3aDB7%2FqBy2YA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87620fbe7d69b505-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js | 104.17.25.14 | 200 OK | 28 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js IP104.17.25.14:443
Requested byhttps://zhh3o.ktt55.my.id/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hash8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e
GET /ajax/libs/jquery/3.6.0/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://zhh3o.ktt55.my.id
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 04:55:15 GMT
content-type: application/javascript; charset=utf-8
content-length: 27938
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "603e8adc-15d9d"
last-modified: Tue, 02 Mar 2021 18:58:36 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2941622
expires: Tue, 08 Apr 2025 04:55:15 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QZOQsYAiA5jNTnbWIApTdoFQCe%2BWdt%2BOfIGC71zdoGz6%2FgvD6thucDN%2Bi8CmAodojOVJeg774h2xtkWZrAnLpe823%2Bhpio%2B82AAVyzoKoJCAwc7rDMuav1mqg3slM8TmS4r763aO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87620fbebe64b515-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| rawcdn.githack.com/AlexHostX/all.asset/3fce8843edde49a48905ae1ed9cf237534e547dd/alex-moonton.css | 104.21.234.231 | 404 Not Found | 14 B |
URL GET HTTP/2rawcdn.githack.com/AlexHostX/all.asset/3fce8843edde49a48905ae1ed9cf237534e547dd/alex-moonton.css IP104.21.234.231:443
Requested byhttps://zhh3o.ktt55.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectgithack.com FingerprintA4:13:2F:80:0A:C6:7C:8B:08:12:12:22:60:76:15:7D:40:80:70:54 ValidityFri, 01 Mar 2024 13:12:36 GMT - Thu, 30 May 2024 13:12:35 GMT
File typeASCII text, with no line terminators Hash3be7b8b182ccd96e48989b4e57311193 78fb38f212fa49029aff24c669a39648d9b4e68b d5558cd419c8d46bdc958064cb97f963d1ea793866414c025906ec15033512ed
GET /AlexHostX/all.asset/3fce8843edde49a48905ae1ed9cf237534e547dd/alex-moonton.css HTTP/1.1
Host: rawcdn.githack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zhh3o.ktt55.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Thu, 18 Apr 2024 04:55:15 GMT
content-length: 14
x-github-request-id: 1798:157115:17716E9:18BFBA4:6620A771
via: 1.1 varnish
x-served-by: cache-hel1410030-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1713416049.186810,VS0,VE162
vary: Authorization,Accept-Encoding,Origin
cross-origin-resource-policy: cross-origin
x-fastly-request-id: 08a056c2ce9a45ceca6739604f5824c870ed9700
source-age: 0
cache-control: max-age=60, public
x-githack-cache-status: HIT
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7lZmmrnm9s5HkDQqo8HmFGDrRTbZ%2BwUJLXtBRiW35NzzLd8KP2WyljcddC8QaEyDl1oxG4lMDvVWLJzAmOG%2B6fdL1KxrrCT%2FzcKpXsNGXxJfw3lBvCeQOYdgCgM83fOdxYdOCQs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87620fbe8a8b71f2-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| rawcdn.githack.com/AlexHostX/all.asset/1591ba04a57c11f4b18d2ebb39e03e4a81715c83/alex-google.css | 104.21.234.231 | | 14 B |
URL rawcdn.githack.com/AlexHostX/all.asset/1591ba04a57c11f4b18d2ebb39e03e4a81715c83/alex-google.css IP104.21.234.231:0
CertificateIssuerGoogle Trust Services LLC Subjectgithack.com FingerprintA4:13:2F:80:0A:C6:7C:8B:08:12:12:22:60:76:15:7D:40:80:70:54 ValidityFri, 01 Mar 2024 13:12:36 GMT - Thu, 30 May 2024 13:12:35 GMT
File typeASCII text, with no line terminators Hash3be7b8b182ccd96e48989b4e57311193 78fb38f212fa49029aff24c669a39648d9b4e68b d5558cd419c8d46bdc958064cb97f963d1ea793866414c025906ec15033512ed
GET /AlexHostX/all.asset/1591ba04a57c11f4b18d2ebb39e03e4a81715c83/alex-google.css HTTP/1.1
Host: rawcdn.githack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zhh3o.ktt55.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Thu, 18 Apr 2024 04:55:15 GMT
content-length: 14
x-github-request-id: 90A0:2C8EFD:2DC9045:306A5D0:6620A6F1
via: 1.1 varnish
x-served-by: cache-hel1410033-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1713415921.385126,VS0,VE171
vary: Authorization,Accept-Encoding,Origin
cross-origin-resource-policy: cross-origin
x-fastly-request-id: d1a4788f01bc5161698b681a38f1c304c6e58505
source-age: 0
cache-control: max-age=60, public
x-githack-cache-status: HIT
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8zXSGdr0imu8vvcTC8W1qsUGUcob4xREKmIHoKa4bCg6MWQopEhShqSprK3F%2FUgZJAwhXfRzU58Od5lo4mlc38USshp8nJ7CSRyA467VZzGhVyywHGgDlPswQ634s1OudkeelT0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87620fbe9a8e71f2-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| rawcdn.githack.com/AlexHostX/all.asset/3ddd40ca064d997b6655739e7a0e8a65acc106e8/alex-vikontakte.css | 104.21.234.231 | 404 Not Found | 14 B |
URL GET HTTP/2rawcdn.githack.com/AlexHostX/all.asset/3ddd40ca064d997b6655739e7a0e8a65acc106e8/alex-vikontakte.css IP104.21.234.231:443
Requested byhttps://zhh3o.ktt55.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectgithack.com FingerprintA4:13:2F:80:0A:C6:7C:8B:08:12:12:22:60:76:15:7D:40:80:70:54 ValidityFri, 01 Mar 2024 13:12:36 GMT - Thu, 30 May 2024 13:12:35 GMT
File typeASCII text, with no line terminators Hash3be7b8b182ccd96e48989b4e57311193 78fb38f212fa49029aff24c669a39648d9b4e68b d5558cd419c8d46bdc958064cb97f963d1ea793866414c025906ec15033512ed
GET /AlexHostX/all.asset/3ddd40ca064d997b6655739e7a0e8a65acc106e8/alex-vikontakte.css HTTP/1.1
Host: rawcdn.githack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zhh3o.ktt55.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Thu, 18 Apr 2024 04:55:15 GMT
content-length: 14
x-github-request-id: D13A:19F23A:17E7347:193856B:6620A6A9
via: 1.1 varnish
x-served-by: cache-hel1410020-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1713415849.304292,VS0,VE163
vary: Authorization,Accept-Encoding,Origin
cross-origin-resource-policy: cross-origin
x-fastly-request-id: 1a2b46f1b9fcd3c42981783782511de9ffbfd64c
source-age: 0
cache-control: max-age=60, public
x-githack-cache-status: HIT
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aqHVAlc7mCsCtit4sl9mqBcvMV%2FqdqQrLELgk8dw4LfZLkQHGC74gUi%2FYQsY453b50o4CQylzBIpNlbrTr1NKc%2FXA0gungPCYIzAYL3J%2F7MdqmeUf0TzuNhvsqDmOE%2BK%2F%2FB6etU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87620fbecaab71f2-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| g.top4top.io/p_2161d4yf50.jpg | 65.21.235.194 | | 27 kB |
URL g.top4top.io/p_2161d4yf50.jpg IP65.21.235.194:0 ASN#24940 Hetzner Online GmbH
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 741x449, components 3 Hasha394277f4484ece10208cf117bf6e728 b2db4cd80a2ff82d6b36d668af1490118600920a 44ecbfd88cbeb543445070e72e299f2adec8f19af7b38d5966aa7e83c33e38b1
GET /p_2161d4yf50.jpg HTTP/1.1
Host: g.top4top.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zhh3o.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 04:55:15 GMT
content-type: image/jpeg
content-length: 26586
set-cookie: klj_40d147_downloads=pfjbi; Max-Age=85000; Domain=.top4top.io; Path=/; Expires=Fri, 19 Apr 2024 04:31:55 GMT
last-modified: Wed, 01 Dec 2021 15:51:38 GMT
content-disposition: inline; filename="2.jpg"
etag: "61a79a0a-67da"
expires: Thu, 18 Apr 2024 06:55:15 GMT
cache-control: max-age=7200
x-file-id: x42715278x
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| k.top4top.io/p_21612pf750.jpg | 65.21.235.194 | 200 OK | 37 kB |
URL GET HTTP/2k.top4top.io/p_21612pf750.jpg IP65.21.235.194:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://zhh3o.ktt55.my.id/ CertificateIssuerLet's Encrypt Subject*.top4top.co Fingerprint8E:68:31:71:67:48:80:97:18:D7:75:1F:EF:2C:6E:F5:43:2B:3E:B2 ValidityMon, 01 Apr 2024 00:05:12 GMT - Sun, 30 Jun 2024 00:05:11 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 727x435, components 3 Hash1d0964f7711856391340235b6d4a3984 77809d3e96c3bd51074e8553db998f9de4df6fea 2ed58aed0b708834055729c0c59e78399595187687d7ae2e128c9700cffd11b6
GET /p_21612pf750.jpg HTTP/1.1
Host: k.top4top.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zhh3o.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 04:55:15 GMT
content-type: image/jpeg
content-length: 37110
set-cookie: klj_40d147_downloads=pfjaa; Max-Age=85000; Domain=.top4top.io; Path=/; Expires=Fri, 19 Apr 2024 04:31:55 GMT
last-modified: Wed, 01 Dec 2021 15:49:18 GMT
content-disposition: inline; filename="1.jpg"
etag: "61a7997e-90f6"
expires: Thu, 18 Apr 2024 06:55:15 GMT
cache-control: max-age=7200
x-file-id: x42715234x
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| k.top4top.io/p_21610u4rb0.jpg | 65.21.235.194 | 200 OK | 32 kB |
URL GET HTTP/2k.top4top.io/p_21610u4rb0.jpg IP65.21.235.194:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://zhh3o.ktt55.my.id/ CertificateIssuerLet's Encrypt Subject*.top4top.co Fingerprint8E:68:31:71:67:48:80:97:18:D7:75:1F:EF:2C:6E:F5:43:2B:3E:B2 ValidityMon, 01 Apr 2024 00:05:12 GMT - Sun, 30 Jun 2024 00:05:11 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 710x433, components 3 Hash1b5a18244319bfab623092ec6318c2ff aab7dfcf4e415a6d7a775330c99069c49b46305f e98754d1732cd94970d37c0c290f7a670e671b671d85114b8dcd0f39dc4dc071
GET /p_21610u4rb0.jpg HTTP/1.1
Host: k.top4top.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zhh3o.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 04:55:15 GMT
content-type: image/jpeg
content-length: 31923
set-cookie: klj_40d147_downloads=pfjcy; Max-Age=85000; Domain=.top4top.io; Path=/; Expires=Fri, 19 Apr 2024 04:31:55 GMT
last-modified: Wed, 01 Dec 2021 15:54:13 GMT
content-disposition: inline; filename="4.jpg"
etag: "61a79aa5-7cb3"
expires: Thu, 18 Apr 2024 06:55:15 GMT
cache-control: max-age=7200
x-file-id: x42715330x
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| filebagasarya.com/img/border/Borderepep.gif | 104.21.21.5 | 200 OK | 1.2 MB |
URL GET HTTP/2filebagasarya.com/img/border/Borderepep.gif IP104.21.21.5:443
Requested byhttps://zhh3o.ktt55.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfilebagasarya.com FingerprintF8:10:79:DD:D9:42:FF:FD:E3:35:9B:09:62:4F:9B:40:07:DD:BA:85 ValidityMon, 26 Feb 2024 19:06:41 GMT - Sun, 26 May 2024 19:06:40 GMT
File typeGIF image data, version 89a, 250 x 336 Size1.2 MB (1153030 bytes) Hashcb339923c6defc7d54d376cba6794d2c 095af13cc97cf5cba801d08c15bec0aef35222db 5948817a3f1fae0c743945e2cd866804ef5e116a24c1b74528c0e6af4da64615
GET /img/border/Borderepep.gif HTTP/1.1
Host: filebagasarya.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zhh3o.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 04:55:14 GMT
content-type: image/gif
content-length: 1153030
cache-control: public, max-age=604800
expires: Mon, 22 Apr 2024 17:36:07 GMT
last-modified: Sat, 04 Mar 2023 11:35:24 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 213546
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1UXTpeEVqqV0jQkNAEfsoFjDLTMAODJlfDJQTZ3W57hR%2BqMfBKMM3rNWGCwfCqkI8DOaY7nfV%2FE89Db%2F79Lf5doORt0eKj7MgIMcBBkAwOOo8Z9olaBmMF38eldo%2B77Uc3G8iQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87620fbe7d5bb505-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| zhh3o.ktt55.my.id/img/reward/season/sg2v2.png | 172.67.175.76 | 200 OK | 5.2 kB |
URL GET HTTP/3zhh3o.ktt55.my.id/img/reward/season/sg2v2.png IP172.67.175.76:443
Requested byhttps://zhh3o.ktt55.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectktt55.my.id Fingerprint8A:ED:C5:91:EA:3A:47:4E:D2:1C:E4:11:78:2D:71:BC:1D:AA:DF:DE ValiditySat, 16 Mar 2024 07:53:55 GMT - Fri, 14 Jun 2024 07:53:54 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 185x234, components 3 Hash0420771522168c66627ef34560e08652 3d986435160449958ce1481a906fe830332e4b99 145c1c61215abfb0e9d565fcc12caf0589a20a6fbf7be74170d1af19c2a53681
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/reward/season/sg2v2.png HTTP/1.1
Host: zhh3o.ktt55.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zhh3o.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 04:55:15 GMT
content-type: image/png
content-length: 5161
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 04:55:15 GMT
last-modified: Sat, 18 Sep 2021 19:58:58 GMT
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iYYH1i4ow%2Fute%2BWF20VDxEu0MtYRPAW5KAtenJ7udJnvNc4iZMO14s7995BgBi862T3MCRq%2BnqBd6OnCO%2FQkdOFj%2BcAe0UwL4xZibygL0dKJClBTqiNviHyQ4cS0HxaSdJGW2g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87620fbd58ad56ca-OSL
|
|
| f.top4top.io/p_21615khm80.jpg | 135.181.63.70 | 200 OK | 48 kB |
URL GET HTTP/2f.top4top.io/p_21615khm80.jpg IP135.181.63.70:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://zhh3o.ktt55.my.id/ CertificateIssuerLet's Encrypt Subject*.top4top.co Fingerprint8E:68:31:71:67:48:80:97:18:D7:75:1F:EF:2C:6E:F5:43:2B:3E:B2 ValidityMon, 01 Apr 2024 00:05:12 GMT - Sun, 30 Jun 2024 00:05:11 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 385x384, components 3 Hash111a3298118672cf439f72e440370777 f8c7bf3c59c294a0504a6cee7921002390711c55 3047c2c9aa5681a3491b8aabb82f4fb7f3a332f8515816e33056decac3acc450
GET /p_21615khm80.jpg HTTP/1.1
Host: f.top4top.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zhh3o.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 04:55:15 GMT
content-type: image/jpeg
content-length: 48388
set-cookie: klj_40d147_downloads=pfjtt; Max-Age=85000; Domain=.top4top.io; Path=/; Expires=Fri, 19 Apr 2024 04:31:55 GMT
last-modified: Wed, 01 Dec 2021 16:26:19 GMT
content-disposition: inline; filename="IMG_20211201_232556.jpg"
etag: "61a7a22b-bd04"
expires: Thu, 18 Apr 2024 06:55:15 GMT
cache-control: max-age=7200
x-file-id: x42715937x
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| b.top4top.io/p_2161kkufp0.jpg | 135.181.63.70 | 200 OK | 25 kB |
URL GET HTTP/2b.top4top.io/p_2161kkufp0.jpg IP135.181.63.70:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://zhh3o.ktt55.my.id/ CertificateIssuerLet's Encrypt Subject*.top4top.co Fingerprint8E:68:31:71:67:48:80:97:18:D7:75:1F:EF:2C:6E:F5:43:2B:3E:B2 ValidityMon, 01 Apr 2024 00:05:12 GMT - Sun, 30 Jun 2024 00:05:11 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 662x398, components 3 Hashef9c9c2cb4d56847161c12e1a078c07e 47cae46078ce711739bc53fdadb84e190416edfe c2541467f8ff4114af586626963a045647f64171c5e55ef82b59e0b7aa5311d5
GET /p_2161kkufp0.jpg HTTP/1.1
Host: b.top4top.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zhh3o.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 04:55:15 GMT
content-type: image/jpeg
content-length: 24872
set-cookie: klj_40d147_downloads=pfjc1; Max-Age=85000; Domain=.top4top.io; Path=/; Expires=Fri, 19 Apr 2024 04:31:55 GMT
last-modified: Wed, 01 Dec 2021 15:52:40 GMT
content-disposition: inline; filename="3.jpg"
etag: "61a79a48-6128"
expires: Thu, 18 Apr 2024 06:55:15 GMT
cache-control: max-age=7200
x-file-id: x42715297x
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| i.top4top.io/p_2161oidcm0.jpg | 65.21.235.194 | 200 OK | 217 kB |
URL GET HTTP/2i.top4top.io/p_2161oidcm0.jpg IP65.21.235.194:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://zhh3o.ktt55.my.id/ CertificateIssuerLet's Encrypt Subject*.top4top.co Fingerprint8E:68:31:71:67:48:80:97:18:D7:75:1F:EF:2C:6E:F5:43:2B:3E:B2 ValidityMon, 01 Apr 2024 00:05:12 GMT - Sun, 30 Jun 2024 00:05:11 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 720x996, components 3 Size217 kB (216931 bytes) Hash2c8726ae148aaf177c2528b5b8b32080 9b8993a6767bfb962839aa681732a1faf69f68e2 82625bc4bf122b92ba2ec8273f41a813a2934960c3136e1b537a802aee7648cd
GET /p_2161oidcm0.jpg HTTP/1.1
Host: i.top4top.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zhh3o.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 04:55:15 GMT
content-type: image/jpeg
content-length: 216931
set-cookie: klj_40d147_downloads=pfjrw; Max-Age=85000; Domain=.top4top.io; Path=/; Expires=Fri, 19 Apr 2024 04:31:55 GMT
last-modified: Wed, 01 Dec 2021 16:22:47 GMT
content-disposition: inline; filename="IMG_20211201_231852.jpg"
etag: "61a7a157-34f63"
expires: Thu, 18 Apr 2024 06:55:15 GMT
cache-control: max-age=7200
x-file-id: x42715868x
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| i.postimg.cc/T2tbjSds/Dm-Epep355.jpg | 162.19.88.69 | | 22 kB |
URL i.postimg.cc/T2tbjSds/Dm-Epep355.jpg IP162.19.88.69:0
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=4, height=277, orientation=upper-left, width=289], baseline, precision 8, 289x277, components 3 Hash8a0040ad0ba1444a09fd698d065dd7b6 a19998beb7d51b1b208b67f084f4d8a065ea01fb e3077d53a6a23343c484d5e5b405bedb59115c43fde727d7b32cc838d34dad47
GET /T2tbjSds/Dm-Epep355.jpg HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zhh3o.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 04:55:15 GMT
content-type: image/jpeg
content-length: 21720
last-modified: Sat, 04 Mar 2023 12:20:29 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| i.postimg.cc/nLKjXSS0/dmepep7290.jpg | 162.19.88.69 | 200 OK | 23 kB |
URL GET HTTP/2i.postimg.cc/nLKjXSS0/dmepep7290.jpg IP162.19.88.69:443
Requested byhttps://zhh3o.ktt55.my.id/ CertificateIssuerLet's Encrypt Subjectpostimg.cc FingerprintF9:1B:A9:B2:AB:2D:30:75:4E:44:3F:7A:6F:40:77:77:39:CE:1B:13 ValidityWed, 21 Feb 2024 07:13:33 GMT - Tue, 21 May 2024 07:13:32 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=4, height=279, orientation=upper-left, width=285], baseline, precision 8, 285x279, components 3 Hash04ca6a66d4eee968b070ba004923b675 6883bc39b9a4f33d0c811c0547afe184638e946d 97fdf5fe3befc1c903acb8d4187a058b2ffde1b494f42d5e386a946314df6c33
GET /nLKjXSS0/dmepep7290.jpg HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zhh3o.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 04:55:15 GMT
content-type: image/jpeg
content-length: 22793
last-modified: Sat, 04 Mar 2023 12:20:29 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| d.top4top.io/p_21616e01k0.jpg | 135.181.63.70 | 200 OK | 221 kB |
URL GET HTTP/2d.top4top.io/p_21616e01k0.jpg IP135.181.63.70:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://zhh3o.ktt55.my.id/ CertificateIssuerLet's Encrypt Subject*.top4top.co Fingerprint8E:68:31:71:67:48:80:97:18:D7:75:1F:EF:2C:6E:F5:43:2B:3E:B2 ValidityMon, 01 Apr 2024 00:05:12 GMT - Sun, 30 Jun 2024 00:05:11 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 720x1014, components 3 Size221 kB (221069 bytes) Hash5f0bdd70a5cc3e5852a81b466537db0f 1c87a3808e958bc1fcdcd24223e1deec2d03f5fd 1bbd5e03658f2a4c542da0358ef13a63fdd3620fb65950ff1f72a1009e7bffdb
GET /p_21616e01k0.jpg HTTP/1.1
Host: d.top4top.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zhh3o.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 04:55:15 GMT
content-type: image/jpeg
content-length: 221069
set-cookie: klj_40d147_downloads=pfjq3; Max-Age=85000; Domain=.top4top.io; Path=/; Expires=Fri, 19 Apr 2024 04:31:55 GMT
last-modified: Wed, 01 Dec 2021 16:20:24 GMT
content-disposition: inline; filename="IMG_20211201_231911.jpg"
etag: "61a7a0c8-35f8d"
expires: Thu, 18 Apr 2024 06:55:15 GMT
cache-control: max-age=7200
x-file-id: x42715803x
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| i.postimg.cc/nVkV8M0W/FfMaxx.jpg | 162.19.88.69 | 200 OK | 37 kB |
URL GET HTTP/2i.postimg.cc/nVkV8M0W/FfMaxx.jpg IP162.19.88.69:443
Requested byhttps://zhh3o.ktt55.my.id/ CertificateIssuerLet's Encrypt Subjectpostimg.cc FingerprintF9:1B:A9:B2:AB:2D:30:75:4E:44:3F:7A:6F:40:77:77:39:CE:1B:13 ValidityWed, 21 Feb 2024 07:13:33 GMT - Tue, 21 May 2024 07:13:32 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 512x512, components 3 Hash61aa45bf291755caa8f0664e4e8b91e9 33f6c6304486ce8004d9d459f08aa6b95982f0ba 323b5ffc0bc7f906cf266b1622e4de3f8dfddcb3f38c460e58b468906d51ebf3
GET /nVkV8M0W/FfMaxx.jpg HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zhh3o.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 04:55:15 GMT
content-type: image/jpeg
content-length: 37166
last-modified: Sat, 04 Mar 2023 14:21:43 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| i.postimg.cc/9fHwFHbD/dmepep3640.jpg | 162.19.88.69 | 200 OK | 23 kB |
URL GET HTTP/2i.postimg.cc/9fHwFHbD/dmepep3640.jpg IP162.19.88.69:443
Requested byhttps://zhh3o.ktt55.my.id/ CertificateIssuerLet's Encrypt Subjectpostimg.cc FingerprintF9:1B:A9:B2:AB:2D:30:75:4E:44:3F:7A:6F:40:77:77:39:CE:1B:13 ValidityWed, 21 Feb 2024 07:13:33 GMT - Tue, 21 May 2024 07:13:32 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=4, height=278, orientation=upper-left, width=283], baseline, precision 8, 283x278, components 3 Hashab69f3acf4ff82b1ad960ce5f181f801 420d4e752b42296d5d87f65e8333d576a8da6b60 a1cca7bf6671bb16255909a3365bb8e89d06633fe317160774e5847c50f8996b
GET /9fHwFHbD/dmepep3640.jpg HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zhh3o.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 04:55:15 GMT
content-type: image/jpeg
content-length: 23308
last-modified: Sat, 04 Mar 2023 12:20:29 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| i.postimg.cc/YCWmHC6c/dmepep2180.jpg | 162.19.88.69 | | 22 kB |
URL i.postimg.cc/YCWmHC6c/dmepep2180.jpg IP162.19.88.69:0
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=4, height=277, orientation=upper-left, width=283], baseline, precision 8, 283x277, components 3 Hashb9fca6bf7e1b71d680a2001e1c969fa4 289cf0d6dd1e91d1acab57f7959c1a425bed819a f5521252d08c4c46f06fdce25c0dd84f7865d5b000f68b0cb1fa263f5e4bf5c6
GET /YCWmHC6c/dmepep2180.jpg HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zhh3o.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 04:55:15 GMT
content-type: image/jpeg
content-length: 22021
last-modified: Sat, 04 Mar 2023 12:20:29 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| i.postimg.cc/jd9Jm7JQ/dmepep1450.jpg | 162.19.88.69 | 200 OK | 22 kB |
URL GET HTTP/2i.postimg.cc/jd9Jm7JQ/dmepep1450.jpg IP162.19.88.69:443
Requested byhttps://zhh3o.ktt55.my.id/ CertificateIssuerLet's Encrypt Subjectpostimg.cc FingerprintF9:1B:A9:B2:AB:2D:30:75:4E:44:3F:7A:6F:40:77:77:39:CE:1B:13 ValidityWed, 21 Feb 2024 07:13:33 GMT - Tue, 21 May 2024 07:13:32 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=4, height=277, orientation=upper-left, width=289], baseline, precision 8, 289x277, components 3 Hash18d57984a492b9784ce8a069f8f9420c 9953116ab5cba857ecf659467925313b02874f93 196ab7455526470e817fd030fd406ac872d3101140d874ab4c65695f42137315
GET /jd9Jm7JQ/dmepep1450.jpg HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zhh3o.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 04:55:15 GMT
content-type: image/jpeg
content-length: 21964
last-modified: Sat, 04 Mar 2023 12:20:29 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| i.postimg.cc/d1q7rRzv/dmepep720.jpg | 162.19.88.69 | 200 OK | 22 kB |
URL GET HTTP/2i.postimg.cc/d1q7rRzv/dmepep720.jpg IP162.19.88.69:443
Requested byhttps://zhh3o.ktt55.my.id/ CertificateIssuerLet's Encrypt Subjectpostimg.cc FingerprintF9:1B:A9:B2:AB:2D:30:75:4E:44:3F:7A:6F:40:77:77:39:CE:1B:13 ValidityWed, 21 Feb 2024 07:13:33 GMT - Tue, 21 May 2024 07:13:32 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=4, height=273, orientation=upper-left, width=286], baseline, precision 8, 286x273, components 3 Hasha3bf82a9930a26c293be8acc334c62f8 4dc161cdef96b226c2deac4dce250b85db33594a c03d9d3917f832fb435d6d6053f46901285c5f03418be3fec4da8126cc781bf8
GET /d1q7rRzv/dmepep720.jpg HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zhh3o.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 04:55:15 GMT
content-type: image/jpeg
content-length: 21532
last-modified: Sat, 04 Mar 2023 12:20:29 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| zhh3o.ktt55.my.id/hadiah/5.png | 172.67.175.76 | 200 OK | 34 kB |
URL GET HTTP/3zhh3o.ktt55.my.id/hadiah/5.png IP172.67.175.76:443
Requested byhttps://zhh3o.ktt55.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectktt55.my.id Fingerprint8A:ED:C5:91:EA:3A:47:4E:D2:1C:E4:11:78:2D:71:BC:1D:AA:DF:DE ValiditySat, 16 Mar 2024 07:53:55 GMT - Fri, 14 Jun 2024 07:53:54 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 336x371, components 3 Hashe5f52df7a6fe9b1d8cbb6344dd1e54c9 4e888fcaf94655783a4ac004d7f6e8598f5e27f2 4c8c501f2643af6e7cf81a765e7b7cdb8a76dcea523fb875bd17faa355aada23
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /hadiah/5.png HTTP/1.1
Host: zhh3o.ktt55.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zhh3o.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 04:55:15 GMT
content-type: image/png
content-length: 33878
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 04:55:15 GMT
last-modified: Sat, 18 Sep 2021 19:59:00 GMT
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2hTdwwcWecYUDDuxIpLAbJF3XsrMBOHNHNjp3Ql1fuiXnwL4ZAFxADdO%2BnKnfqNJ4L%2FB3KI2i7iehniQzhyBZNP0I0eCLlic8kbktJShKCyjqNoUrKg8pdy4%2BmkwzRlGy0GLqg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87620fbd389956ca-OSL
|
|
| dl.dir.freefiremobile.com/common/web_event/official2/dist/client/img/full_logo.969f536.png | 104.16.156.36 | 200 OK | 8.3 kB |
URL GET HTTP/1.1dl.dir.freefiremobile.com/common/web_event/official2/dist/client/img/full_logo.969f536.png IP104.16.156.36:443
Requested byhttps://zhh3o.ktt55.my.id/ CertificateIssuerDigiCert Inc Subjectdl.dir.freefiremobile.com FingerprintCF:B2:69:69:DC:AA:D6:C1:55:3F:41:DD:EA:35:45:4A:53:E0:4C:10 ValidityTue, 12 Sep 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File typePNG image data, 616 x 90, 8-bit/color RGBA, non-interlaced Hashc632e6bfd0076695e56477bdb3f7232c 5b4212f029814b5dfda946ac5e5a6ba97857feb9 86ccbc1dbeb58af3e6bce5ee52f86a47399da998ad34a0fd2ce9b0b539d92f6c
GET /common/web_event/official2/dist/client/img/full_logo.969f536.png HTTP/1.1
Host: dl.dir.freefiremobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zhh3o.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 04:55:15 GMT
Content-Type: image/png
Content-Length: 8314
Connection: keep-alive
x-obs-request-id: 0000018E5DD02A40941F994C3B36671D
Content-MD5: xjLmv9AHZpXlZHe9s/cjLA==
x-obs-replication-status: REPLICA
ETag: "c632e6bfd0076695e56477bdb3f7232c"
Last-Modified: Tue, 19 Mar 2024 08:15:04 GMT
x-obs-id-2: 32AAAQAAEAABAAAQAAEAABAAAQAAEAABCSSvczTGHI/UxbFl7tINUN5bEDcuBuNQ
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Server: cloudflare
CF-RAY: 87620fc25ad6b4f9-OSL
|
|
| filebagasarya.com/img/border/BoxOn4.gif | 104.21.21.5 | 200 OK | 121 kB |
URL GET HTTP/3filebagasarya.com/img/border/BoxOn4.gif IP104.21.21.5:443
Requested byhttps://zhh3o.ktt55.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfilebagasarya.com FingerprintF8:10:79:DD:D9:42:FF:FD:E3:35:9B:09:62:4F:9B:40:07:DD:BA:85 ValidityMon, 26 Feb 2024 19:06:41 GMT - Sun, 26 May 2024 19:06:40 GMT
File typeGIF image data, version 89a, 224 x 224 Size121 kB (120915 bytes) Hash127c4202ac37e7b0f72463cebc557b0c 84284b34dd377dbd4feb444aabeb959ac3e2b217 630f7fcbba5df4d44b11d2b9afb87d9ab75ba06f203485650f0fa26b2ca9db43
GET /img/border/BoxOn4.gif HTTP/1.1
Host: filebagasarya.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zhh3o.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 04:55:15 GMT
content-type: image/gif
content-length: 120915
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 00:17:41 GMT
last-modified: Sun, 16 Oct 2022 00:58:00 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 103054
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NDbl4OGyBcIJATbxTmfg5UFEjDywaWQ6utUv7oIXyPLRAW61B3EzF982Aq5aHnE%2FUCYwVT8OT3P2V3jXM5gKbqHupwXMBdqxcVCN0SnjKljP0XaWe%2FiMsLSqow%2FaWm9ggf%2Fycg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87620fc4ec27b4ee-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cdn.jsdelivr.net/gh/AlexHostX/mlbb@main/old/IMG-20220417-184327.jpg | 151.101.129.229 | 404 Not Found | 53 B |
URL GET HTTP/3cdn.jsdelivr.net/gh/AlexHostX/mlbb@main/old/IMG-20220417-184327.jpg IP151.101.129.229:443
Requested byhttps://zhh3o.ktt55.my.id/ CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeASCII text, with no line terminators Hashcb71d2b197dd6af21b39e0261fb1497c 9ab080da6e72161e565846ba4fe9a3279f8f9acf a3abb1833e1a60b26006a99e3ca8c8aefff91c61003548a8f34fc6c92d62acd7
GET /gh/AlexHostX/mlbb@main/old/IMG-20220417-184327.jpg HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zhh3o.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
content-length: 53
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=600, s-maxage=600
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/plain; charset=utf-8
etag: W/"30-mrCA2m5yFh5WWEa6T+mjJ5+Pms8"
content-encoding: br
accept-ranges: bytes
age: 283
date: Thu, 18 Apr 2024 04:55:16 GMT
x-served-by: cache-fra-eddf8230046-FRA, cache-hel1410026-HEL
x-cache: HIT, MISS
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
|
|
| i.postimg.cc/cHSfkTc2/1677942245853.jpg | 162.19.88.69 | | 257 kB |
URL i.postimg.cc/cHSfkTc2/1677942245853.jpg IP162.19.88.69:0
File typeJPEG image data, Exif standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], progressive, precision 8, 1280x720, components 3 Size257 kB (256707 bytes) Hash290633bcfe44a3c2cd0aba27e1450899 6621cdb5237050ecc014499179cdbb4a20038863 bb4bc1a504ddf57f52bdb35efb1cdbfac4c9f2c78f00d85c70a6424ec1aa498f
GET /cHSfkTc2/1677942245853.jpg HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zhh3o.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 04:55:15 GMT
content-type: image/jpeg
content-length: 256707
last-modified: Sat, 04 Mar 2023 15:05:20 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.youtube.com/s/player/0af6e327/www-player.css | 216.58.211.14 | 200 OK | 48 kB |
URL GET HTTP/3www.youtube.com/s/player/0af6e327/www-player.css IP216.58.211.14:443
Requested byhttps://www.youtube.com/embed/I7gy-VPjcKI?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hasheff7afac8f7ac0ed881f37ffd3eebcbe 21acf841f4603dbfaed62decef15175b5d68f20f ff1235e0e6c896931d1f31f618b35e68a469befd8c90d7a0da22f1d988b0bbc2
GET /s/player/0af6e327/www-player.css HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/I7gy-VPjcKI?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 48137
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 17 Apr 2024 07:35:25 GMT
expires: Thu, 17 Apr 2025 07:35:25 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 17 Apr 2024 04:21:26 GMT
content-type: text/css
vary: Accept-Encoding, Origin
age: 76791
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| zhh3o.ktt55.my.id/alexFrontEnd/tiktok.png | 172.67.175.76 | 404 Not Found | 9.9 kB |
URL GET HTTP/3zhh3o.ktt55.my.id/alexFrontEnd/tiktok.png IP172.67.175.76:443
Requested byhttps://zhh3o.ktt55.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectktt55.my.id Fingerprint8A:ED:C5:91:EA:3A:47:4E:D2:1C:E4:11:78:2D:71:BC:1D:AA:DF:DE ValiditySat, 16 Mar 2024 07:53:55 GMT - Fri, 14 Jun 2024 07:53:54 GMT
File typeHTML document, ASCII text, with CRLF, LF line terminators Hash0bde7d4b3da67537eaf9188e6f8049cf 64300fc482d01d38b40ab20e15960b6509665e5a 5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /alexFrontEnd/tiktok.png HTTP/1.1
Host: zhh3o.ktt55.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zhh3o.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 04:55:15 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Q4qXQG7k8gMjcA3w%2BKPOjw0TV4gaow%2FnOChiT1O1aEWbn7tGzijfPtNNyGdSheJi2IqIV6RgbV3sKhLgSD3gVAUrcibVeBFtXAX9NU8ufi3PjrJMCd6i7wSMyUeQ%2BOIq6ZosQg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87620fbd88d356ca-OSL
content-encoding: br
|
|
| www.youtube.com/s/player/0af6e327/www-embed-player.vflset/www-embed-player.js | 216.58.211.14 | 200 OK | 98 kB |
URL GET HTTP/3www.youtube.com/s/player/0af6e327/www-embed-player.vflset/www-embed-player.js IP216.58.211.14:443
Requested byhttps://www.youtube.com/embed/I7gy-VPjcKI?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (682) Hashd5b8d160ab640bfc1dd99acd65f1d38d 1be3896846933d5011c56d56b4a0609b9f1a1caf a4a828c62029e531dfd2399d717731f7a22ce1c3e2c0bb796eee2c4bae9046b7
GET /s/player/0af6e327/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/I7gy-VPjcKI?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 97800
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 17 Apr 2024 07:35:25 GMT
expires: Thu, 17 Apr 2025 07:35:25 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 17 Apr 2024 04:21:26 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 76791
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.gstatic.com/s/teko/v20/LYjNdG7kmE0gfaN9pQ.woff2 | 216.58.207.227 | 200 OK | 15 kB |
URL GET HTTP/2fonts.gstatic.com/s/teko/v20/LYjNdG7kmE0gfaN9pQ.woff2 IP216.58.207.227:443
Requested byhttps://zhh3o.ktt55.my.id/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15044, version 1.0 Hash4806226b885b3b3d0ae52142f6bfb3af 2ea5cc6d5e4adb874989a2b74bda062296fb1ad3 714088bef569d6981bfae79530ef315f4d6505f302a944ce9063601919977e6f
GET /s/teko/v20/LYjNdG7kmE0gfaN9pQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://zhh3o.ktt55.my.id
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15044
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 20:39:40 GMT
expires: Tue, 15 Apr 2025 20:39:40 GMT
cache-control: public, max-age=31536000
age: 202536
last-modified: Thu, 24 Aug 2023 21:55:11 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP216.58.207.227:443
Requested byhttps://www.youtube.com/embed/I7gy-VPjcKI?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15552, version 1.0 Hash285467176f7fe6bb6a9c6873b3dad2cc ea04e4ff5142ddd69307c183def721a160e0a64e 5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 17:25:07 GMT
expires: Fri, 11 Apr 2025 17:25:07 GMT
cache-control: public, max-age=31536000
age: 559809
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 15 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:443
Requested byhttps://www.youtube.com/embed/I7gy-VPjcKI?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15344, version 1.0 Hash5d4aeb4e5f5ef754e307d7ffaef688bd 06db651cdf354c64a7383ea9c77024ef4fb4cef8 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:43:03 GMT
expires: Fri, 18 Apr 2025 02:43:03 GMT
cache-control: public, max-age=31536000
age: 7933
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| i.postimg.cc/nVkV8M0W/FfMaxx.jpg | 162.19.88.69 | 200 OK | 37 kB |
URL GET HTTP/2i.postimg.cc/nVkV8M0W/FfMaxx.jpg IP162.19.88.69:443
Requested byhttps://zhh3o.ktt55.my.id/ CertificateIssuerLet's Encrypt Subjectpostimg.cc FingerprintF9:1B:A9:B2:AB:2D:30:75:4E:44:3F:7A:6F:40:77:77:39:CE:1B:13 ValidityWed, 21 Feb 2024 07:13:33 GMT - Tue, 21 May 2024 07:13:32 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 512x512, components 3 Hash61aa45bf291755caa8f0664e4e8b91e9 33f6c6304486ce8004d9d459f08aa6b95982f0ba 323b5ffc0bc7f906cf266b1622e4de3f8dfddcb3f38c460e58b468906d51ebf3
GET /nVkV8M0W/FfMaxx.jpg HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zhh3o.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 04:55:16 GMT
content-type: image/jpeg
content-length: 37166
last-modified: Sat, 04 Mar 2023 14:21:43 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.youtube.com/s/player/0af6e327/player_ias.vflset/en_US/base.js | 216.58.211.14 | 200 OK | 810 kB |
URL GET HTTP/3www.youtube.com/s/player/0af6e327/player_ias.vflset/en_US/base.js IP216.58.211.14:443
Requested byhttps://www.youtube.com/embed/I7gy-VPjcKI?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (555) Size810 kB (809601 bytes) Hash49d004306911152b2d9c8470c6855607 d2db3b6daf04831c2e719337fee2992d4f11917e 32b27f09f362ce9b7b218f547ff7fb3109da60a9c57217c757e17cc98108d848
GET /s/player/0af6e327/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/I7gy-VPjcKI?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-encoding: gzip
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 809601
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 17 Apr 2024 07:38:07 GMT
expires: Thu, 17 Apr 2025 07:38:07 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 17 Apr 2024 04:21:26 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 76629
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.youtube.com/s/player/0af6e327/player_ias.vflset/en_US/embed.js | 216.58.211.14 | 200 OK | 18 kB |
URL GET HTTP/3www.youtube.com/s/player/0af6e327/player_ias.vflset/en_US/embed.js IP216.58.211.14:443
Requested byhttps://www.youtube.com/embed/I7gy-VPjcKI?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (3391) Hashd402bd816dc653a38c45b999b83a09ec cafbc4938c3dfd636aa833b1003248d97353f2c0 0dd380ba638f1df10476e7866f3e04f56e13ecc0dd03974eb46122d7e31dffc8
GET /s/player/0af6e327/player_ias.vflset/en_US/embed.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/I7gy-VPjcKI?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 18201
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 17 Apr 2024 07:39:06 GMT
expires: Thu, 17 Apr 2025 07:39:06 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 17 Apr 2024 04:21:26 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 76571
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create | 142.250.74.138 | 200 OK | 0 B |
URL OPTIONS HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create IP142.250.74.138:443
Requested byhttps://www.youtube.com/embed/I7gy-VPjcKI?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Thu, 18 Apr 2024 04:55:17 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| site-assets.fontawesome.com/releases/v6.1.1/css/all.css | 172.64.147.188 | 200 OK | 124 kB |
URL GET HTTP/2site-assets.fontawesome.com/releases/v6.1.1/css/all.css IP172.64.147.188:443
Requested byhttps://zhh3o.ktt55.my.id/ CertificateIssuerDigiCert Inc Subject*.fontawesome.com Fingerprint93:F9:69:8C:73:B0:08:60:65:F3:39:41:39:66:D3:2B:78:3A:6E:3D ValidityMon, 04 Dec 2023 00:00:00 GMT - Fri, 03 Jan 2025 23:59:59 GMT
File typeASCII text, with very long lines (65360) Size124 kB (123779 bytes) Hash1423859061cb6071e6f0ab4dfb553119 9594bcb45e9fa4e71fe53e37299fd20ac4af3ff9 61a6178a958f812a4a84d281824640ed0a28859a08c72717d7ca22d6930872d1
GET /releases/v6.1.1/css/all.css HTTP/1.1
Host: site-assets.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zhh3o.ktt55.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 04:55:14 GMT
content-type: text/css
x-amz-id-2: Y1TmNuBPJ2aktX68kJThHqHYS+UBzLzvigLuxqSKGropAjQHJXqctJ8cMj8EZaj3hWZqBw7vjseo/ptPWK0rIs/nC5bnGezhyLprTTXGcJA=
x-amz-request-id: 9ZNBHYHZ9G1WY9FS
last-modified: Tue, 22 Mar 2022 15:39:41 GMT
etag: W/"325672b036bab9b57f6873aed5eccc43"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 12710396
vary: Accept-Encoding
server: cloudflare
cf-ray: 87620fbdfd025693-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.youtube.com/youtubei/v1/player?prettyPrint=false | 216.58.211.14 | 200 OK | 30 kB |
URL POST HTTP/3www.youtube.com/youtubei/v1/player?prettyPrint=false IP216.58.211.14:443
Requested byhttps://www.youtube.com/embed/I7gy-VPjcKI?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
Hash4d69cba5b4b363173c9081272e4e12dc 616dd645799f63eb5fe0f0b656cfaeed14dada84 7cc1f5c39344f6bdfbd2c766bffd760d4964e5e2a075d52cb4bf1e8fa72a8420
POST /youtubei/v1/player?prettyPrint=false HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Goog-Visitor-Id: CgtUekJBd2RPMDVZayizz4KxBjIOCgJOTxIIEgQSAgsMICA%3D
X-Youtube-Bootstrap-Logged-In: false
X-Youtube-Client-Name: 56
X-Youtube-Client-Version: 1.20240415.01.00
Content-Length: 3040
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/I7gy-VPjcKI?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Thu, 18 Apr 2024 04:55:17 GMT
server: scaffolding on HTTPServer2
content-length: 30057
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| yt3.ggpht.com/pQIjBsJLIq127A3e_QU4z93fOnlN4nkkOIq8a6S8FE5bOV2i9bGxagAU_X5DmotpxzNBIOIkTA=s68-c-k-c0x00ffffff-no-rj | 142.250.74.161 | 200 OK | 4.3 kB |
URL GET HTTP/2yt3.ggpht.com/pQIjBsJLIq127A3e_QU4z93fOnlN4nkkOIq8a6S8FE5bOV2i9bGxagAU_X5DmotpxzNBIOIkTA=s68-c-k-c0x00ffffff-no-rj IP142.250.74.161:443
Requested byhttps://www.youtube.com/embed/I7gy-VPjcKI?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.googleusercontent.com FingerprintE0:0C:38:A4:4D:4F:CB:42:05:30:9A:C4:60:B3:64:3F:EF:43:D1:2F ValidityMon, 04 Mar 2024 07:14:32 GMT - Mon, 27 May 2024 07:14:31 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 68x68, components 3 Hashdec6b42c47a0f3bdc26c2a4954f7ccaf 79779463fa1c61a4cf26d02ae5e1b55c2d3e7e5b ccffd73f5aa1679f83921212410cbece705f68379d107c67634186d1466a10d6
GET /pQIjBsJLIq127A3e_QU4z93fOnlN4nkkOIq8a6S8FE5bOV2i9bGxagAU_X5DmotpxzNBIOIkTA=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="channels4_profile.jpg"
x-content-type-options: nosniff
server: fife
content-length: 4260
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:26:36 GMT
expires: Fri, 19 Apr 2024 02:26:36 GMT
cache-control: public, max-age=86400, no-transform
age: 8921
etag: "v1"
content-type: image/jpeg
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ka-f.fontawesome.com/releases/v6.0.0/css/free-v4-shims.min.css?token=869e25b803 | 172.67.139.119 | 200 OK | 23 kB |
URL GET HTTP/2ka-f.fontawesome.com/releases/v6.0.0/css/free-v4-shims.min.css?token=869e25b803 IP172.67.139.119:443
Requested byhttps://zhh3o.ktt55.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectka-f.fontawesome.com Fingerprint8D:43:33:42:48:C0:F5:34:71:EC:49:69:9C:62:01:4A:6F:41:11:98 ValidityTue, 05 Mar 2024 09:23:28 GMT - Mon, 03 Jun 2024 09:23:27 GMT
File typeASCII text, with very long lines (26019) Hashc32e971c7d11c2407f847b61c515f1e2 85ac47a05e49f01cd62301ee121a2ca0dfdc0f83 a7fb3a26d569bec0139baaae950e43c1e10b0afbcf6e9d7654aa1181a8319759
GET /releases/v6.0.0/css/free-v4-shims.min.css?token=869e25b803 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://zhh3o.ktt55.my.id/
Origin: https://zhh3o.ktt55.my.id
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 04:55:16 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 07 Feb 2022 20:11:39 GMT
etag: W/"c32e971c7d11c2407f847b61c515f1e2"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: GmsjN7qikmCkLg2Z44o_BPQeYDxxdDJCuoWRm7rSIb1W8hmkOZpCOA==
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=824cQ7S0iqh2eCNRU%2BSZLhnURQhii2EM1z500EetPdIFhsT%2FJ7omIV3C0fvAXpmvLjZFru9h8dv2%2FwgSDOZ1hWoTO4x0l%2F0QUwBqEpmdU1IEvfsnWCHAmOIwm3NV8mjncCdlTp%2B38g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87620fc5cec656af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.youtube.com/s/player/0af6e327/player_ias.vflset/en_US/endscreen.js | 216.58.211.14 | | 8.4 kB |
URL www.youtube.com/s/player/0af6e327/player_ias.vflset/en_US/endscreen.js IP216.58.211.14:0
CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (607) Hash6af08dc7b80302c168dfaf4888a3bb5d c98682226470a511e7fa503bcdd2e925f8fe17ff 4d302c87d6e40fe52f68b55b5457a7ff7e9506a9820e010eac09510df877bce9
GET /s/player/0af6e327/player_ias.vflset/en_US/endscreen.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/I7gy-VPjcKI?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 8391
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 17 Apr 2024 07:40:42 GMT
expires: Thu, 17 Apr 2025 07:40:42 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 17 Apr 2024 04:21:26 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 76475
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.youtube.com/s/player/0af6e327/player_ias.vflset/en_US/captions.js | 216.58.211.14 | 200 OK | 24 kB |
URL GET HTTP/3www.youtube.com/s/player/0af6e327/player_ias.vflset/en_US/captions.js IP216.58.211.14:443
Requested byhttps://www.youtube.com/embed/I7gy-VPjcKI?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (546) Hash3a8e020cb957d03dab80be3b60308350 3405f072a9ea6aa0aa8de4c52d5ec3d9ce8d3167 e66b0c9233e432b4522f663da9337910b48b679f21afdd320a5712237d13d73e
GET /s/player/0af6e327/player_ias.vflset/en_US/captions.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/I7gy-VPjcKI?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 24394
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 17 Apr 2024 07:40:42 GMT
expires: Thu, 17 Apr 2025 07:40:42 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 17 Apr 2024 04:21:26 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 76475
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.googleapis.com/css2?family=Teko:wght@300;400;500;600;700&display=swap | 142.250.74.74 | 200 OK | 501 B |
URL GET HTTP/2fonts.googleapis.com/css2?family=Teko:wght@300;400;500;600;700&display=swap IP142.250.74.74:443
Requested byhttps://zhh3o.ktt55.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
Hashb5de7c5775d983f53819c51e244fca82 412b3fa87b17a9856483eb6320fa79327bd597ba cbfc929b005b468835c50e4c16b2fe61676e3a17ca6057086326ab8a1cb0f160
GET /css2?family=Teko:wght@300;400;500;600;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zhh3o.ktt55.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 18 Apr 2024 04:55:15 GMT
date: Thu, 18 Apr 2024 04:55:15 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ka-f.fontawesome.com/releases/v6.0.0/css/free.min.css?token=869e25b803 | 172.67.139.119 | 200 OK | 0 B |
URL GET HTTP/2ka-f.fontawesome.com/releases/v6.0.0/css/free.min.css?token=869e25b803 IP172.67.139.119:443
Requested byhttps://zhh3o.ktt55.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectka-f.fontawesome.com Fingerprint8D:43:33:42:48:C0:F5:34:71:EC:49:69:9C:62:01:4A:6F:41:11:98 ValidityTue, 05 Mar 2024 09:23:28 GMT - Mon, 03 Jun 2024 09:23:27 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /releases/v6.0.0/css/free.min.css?token=869e25b803 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://zhh3o.ktt55.my.id/
Origin: https://zhh3o.ktt55.my.id
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 04:55:16 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 07 Feb 2022 20:11:39 GMT
etag: W/"345f5ecc270c94968998574a2d37e31a"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: qAYc9MgYeB82_5pzN9NiapOJEcfwqESWQvBZR7CwBEMOBomIO6Np5g==
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VH%2BkrDf5pYJbzjqZnhWjinhKVBdGL5jCGcjVPrDgJ%2FNBPL6R5WqgM3kE9nn04SvA%2FpCW%2FCZOkOu15RiE4%2F7n3LxjVAkIwKih7twaUCzlbVMYkW3LwG6Hw6cXKRPemfQJP7b0H34Rmw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87620fc5be9156af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1713437717&ei=tacgZtzlEr7H0u8P4NWPuAk&ip=91.90.42.154&id=o-AFSLys0scXb7CGDdjxFjABgxYpZ3MB0Kdke3kmGJ0ynA&itag=251&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=jt&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=1618750&bui=AaUN6a2M2Y-Lfew8XmbJ-snrD-LpdDYD_sNNZ8PmTl-2VrWe3kXdOeufqX7yr25Bhbo-7WwytsORtaYx&spc=UWF9f9HVPOzvUUzVtdfuCDYeKbmoXZddmj9X5iakSYN0Sr28xlCyn0rY0Q&vprv=1&svpuc=1&mime=audio%2Fwebm&ns=ZZLxU7ngwkBrzUqmXYyktzgQ&gir=yes&clen=1617624&dur=105.721&lmt=1707007942638408&mt=1713415720&fvip=2&keepalive=yes&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=5532434&n=1oz0Gh-q5Cl44w&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cxpc%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=ALClDIEwRgIhAKu1ejcSAV3slT3gvf1tWTS8TBs8dFGsXalXIzfYp48NAiEA7S_x0Dlo70wpebP-3cTViRDbpI-QUoyXN_Qhs1PRQcU%3D&alr=yes&sig=AJfQdSswRgIhANVZlSHRf9pdh2S-L22Qepxk5utyHrVIosGqcroYW2gvAiEAvbRM9t0KCi_8su70x5bbnrAv_P_sMsYAIKtajidjQJI%3D&cpn=GG1ZWVf6We5ElKnM&cver=1.20240415.01.00&range=0-65985&rn=2&rbuf=0&pot=IjpEwUTHIuHjdAemMJQhqg6DIPMWkQmFEpsluC27PvUPuQarDY4Hpg6OELkNiAGmFZIFpjeMDYIF5HeF&ump=1&srfvp=1 | 91.90.45.173 | 200 OK | 66 kB |
URL POST HTTP/1.1rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1713437717&ei=tacgZtzlEr7H0u8P4NWPuAk&ip=91.90.42.154&id=o-AFSLys0scXb7CGDdjxFjABgxYpZ3MB0Kdke3kmGJ0ynA&itag=251&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=jt&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=1618750&bui=AaUN6a2M2Y-Lfew8XmbJ-snrD-LpdDYD_sNNZ8PmTl-2VrWe3kXdOeufqX7yr25Bhbo-7WwytsORtaYx&spc=UWF9f9HVPOzvUUzVtdfuCDYeKbmoXZddmj9X5iakSYN0Sr28xlCyn0rY0Q&vprv=1&svpuc=1&mime=audio%2Fwebm&ns=ZZLxU7ngwkBrzUqmXYyktzgQ&gir=yes&clen=1617624&dur=105.721&lmt=1707007942638408&mt=1713415720&fvip=2&keepalive=yes&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=5532434&n=1oz0Gh-q5Cl44w&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cxpc%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=ALClDIEwRgIhAKu1ejcSAV3slT3gvf1tWTS8TBs8dFGsXalXIzfYp48NAiEA7S_x0Dlo70wpebP-3cTViRDbpI-QUoyXN_Qhs1PRQcU%3D&alr=yes&sig=AJfQdSswRgIhANVZlSHRf9pdh2S-L22Qepxk5utyHrVIosGqcroYW2gvAiEAvbRM9t0KCi_8su70x5bbnrAv_P_sMsYAIKtajidjQJI%3D&cpn=GG1ZWVf6We5ElKnM&cver=1.20240415.01.00&range=0-65985&rn=2&rbuf=0&pot=IjpEwUTHIuHjdAemMJQhqg6DIPMWkQmFEpsluC27PvUPuQarDY4Hpg6OELkNiAGmFZIFpjeMDYIF5HeF&ump=1&srfvp=1 IP91.90.45.173:443 ASN#50304 Blix Solutions AS
Requested byhttps://www.youtube.com/embed/I7gy-VPjcKI?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.googlevideo.com Fingerprint05:65:DE:5B:B7:CF:9A:4A:22:AF:57:DB:9B:EC:B9:BD:E5:B0:57:E2 ValidityTue, 09 Apr 2024 14:31:07 GMT - Tue, 18 Jun 2024 14:31:06 GMT
Hashff4577dbcc24eedf992e03154d3fb008 6c11dd8225b60bd27c3cf08a236a61268e667988 e2b1395842992b8116571365584d27d25466f6b2b44c746e82f567224fd4d178
POST /videoplayback?expire=1713437717&ei=tacgZtzlEr7H0u8P4NWPuAk&ip=91.90.42.154&id=o-AFSLys0scXb7CGDdjxFjABgxYpZ3MB0Kdke3kmGJ0ynA&itag=251&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=jt&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=1618750&bui=AaUN6a2M2Y-Lfew8XmbJ-snrD-LpdDYD_sNNZ8PmTl-2VrWe3kXdOeufqX7yr25Bhbo-7WwytsORtaYx&spc=UWF9f9HVPOzvUUzVtdfuCDYeKbmoXZddmj9X5iakSYN0Sr28xlCyn0rY0Q&vprv=1&svpuc=1&mime=audio%2Fwebm&ns=ZZLxU7ngwkBrzUqmXYyktzgQ&gir=yes&clen=1617624&dur=105.721&lmt=1707007942638408&mt=1713415720&fvip=2&keepalive=yes&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=5532434&n=1oz0Gh-q5Cl44w&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cxpc%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=ALClDIEwRgIhAKu1ejcSAV3slT3gvf1tWTS8TBs8dFGsXalXIzfYp48NAiEA7S_x0Dlo70wpebP-3cTViRDbpI-QUoyXN_Qhs1PRQcU%3D&alr=yes&sig=AJfQdSswRgIhANVZlSHRf9pdh2S-L22Qepxk5utyHrVIosGqcroYW2gvAiEAvbRM9t0KCi_8su70x5bbnrAv_P_sMsYAIKtajidjQJI%3D&cpn=GG1ZWVf6We5ElKnM&cver=1.20240415.01.00&range=0-65985&rn=2&rbuf=0&pot=IjpEwUTHIuHjdAemMJQhqg6DIPMWkQmFEpsluC27PvUPuQarDY4Hpg6OELkNiAGmFZIFpjeMDYIF5HeF&ump=1&srfvp=1 HTTP/1.1
Host: rr2---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.youtube.com/
Content-Length: 2
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Last-Modified: Sun, 04 Feb 2024 00:52:22 GMT
Content-Type: application/vnd.yt-ump
Date: Thu, 18 Apr 2024 04:55:17 GMT
Expires: Thu, 18 Apr 2024 04:55:17 GMT
Cache-Control: private, max-age=21300
Transfer-Encoding: chunked
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,quic=":443"; ma=2592000; v="46"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Content-Type-Options: nosniff
Server: gvs 1.0
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT | 142.250.74.138 | 200 OK | 110 B |
URL POST HTTP/3jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT IP142.250.74.138:443
Requested byhttps://www.youtube.com/embed/I7gy-VPjcKI?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
Hashdd49aea0d30013427d33c61b622497f0 844d7e95a6a77fd4f5636cb90f9dfed4b86f9209 7877ab9e0af3a693990381927871daeb2c1368b96af7fa17a2390096e013a91c
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 878
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 18 Apr 2024 04:55:17 GMT
server: ESF
cache-control: private
content-length: 110
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1713437717&ei=tacgZtzlEr7H0u8P4NWPuAk&ip=91.90.42.154&id=o-AFSLys0scXb7CGDdjxFjABgxYpZ3MB0Kdke3kmGJ0ynA&itag=396&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278%2C394%2C395%2C396%2C397%2C398%2C399&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=jt&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=1618750&bui=AaUN6a2M2Y-Lfew8XmbJ-snrD-LpdDYD_sNNZ8PmTl-2VrWe3kXdOeufqX7yr25Bhbo-7WwytsORtaYx&spc=UWF9f9HVPOzvUUzVtdfuCDYeKbmoXZddmj9X5iakSYN0Sr28xlCyn0rY0Q&vprv=1&svpuc=1&mime=video%2Fmp4&ns=ZZLxU7ngwkBrzUqmXYyktzgQ&gir=yes&clen=3723516&dur=105.699&lmt=1707008910988573&mt=1713415720&fvip=2&keepalive=yes&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=5537434&n=1oz0Gh-q5Cl44w&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=ALClDIEwRgIhAKu1ejcSAV3slT3gvf1tWTS8TBs8dFGsXalXIzfYp48NAiEA7S_x0Dlo70wpebP-3cTViRDbpI-QUoyXN_Qhs1PRQcU%3D&alr=yes&sig=AJfQdSswRAIgU03ujucNQgE5f54yB3M0OpjnkrknUzGOhjE2mz_Z2DUCIGkCTnrEHjaPOUPpGszGbA85CTZWFdnWOSxsxJ7_IZ9x&cpn=GG1ZWVf6We5ElKnM&cver=1.20240415.01.00&range=0-92437&rn=1&rbuf=0&pot=IjojrCOqRYyEGWDLV_lGx2nuR55x_G7odfZC1UrWWZho1GHGauNgy2njd9Rq5WbLcv9iy1Dhau9iiRDo&ump=1&srfvp=1 | 91.90.45.173 | 200 OK | 92 kB |
URL POST HTTP/1.1rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1713437717&ei=tacgZtzlEr7H0u8P4NWPuAk&ip=91.90.42.154&id=o-AFSLys0scXb7CGDdjxFjABgxYpZ3MB0Kdke3kmGJ0ynA&itag=396&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278%2C394%2C395%2C396%2C397%2C398%2C399&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=jt&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=1618750&bui=AaUN6a2M2Y-Lfew8XmbJ-snrD-LpdDYD_sNNZ8PmTl-2VrWe3kXdOeufqX7yr25Bhbo-7WwytsORtaYx&spc=UWF9f9HVPOzvUUzVtdfuCDYeKbmoXZddmj9X5iakSYN0Sr28xlCyn0rY0Q&vprv=1&svpuc=1&mime=video%2Fmp4&ns=ZZLxU7ngwkBrzUqmXYyktzgQ&gir=yes&clen=3723516&dur=105.699&lmt=1707008910988573&mt=1713415720&fvip=2&keepalive=yes&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=5537434&n=1oz0Gh-q5Cl44w&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=ALClDIEwRgIhAKu1ejcSAV3slT3gvf1tWTS8TBs8dFGsXalXIzfYp48NAiEA7S_x0Dlo70wpebP-3cTViRDbpI-QUoyXN_Qhs1PRQcU%3D&alr=yes&sig=AJfQdSswRAIgU03ujucNQgE5f54yB3M0OpjnkrknUzGOhjE2mz_Z2DUCIGkCTnrEHjaPOUPpGszGbA85CTZWFdnWOSxsxJ7_IZ9x&cpn=GG1ZWVf6We5ElKnM&cver=1.20240415.01.00&range=0-92437&rn=1&rbuf=0&pot=IjojrCOqRYyEGWDLV_lGx2nuR55x_G7odfZC1UrWWZho1GHGauNgy2njd9Rq5WbLcv9iy1Dhau9iiRDo&ump=1&srfvp=1 IP91.90.45.173:443 ASN#50304 Blix Solutions AS
Requested byhttps://www.youtube.com/embed/I7gy-VPjcKI?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.googlevideo.com Fingerprint05:65:DE:5B:B7:CF:9A:4A:22:AF:57:DB:9B:EC:B9:BD:E5:B0:57:E2 ValidityTue, 09 Apr 2024 14:31:07 GMT - Tue, 18 Jun 2024 14:31:06 GMT
Hash133656818919a2929c15841f913fe659 9646d73a34d007f8ae8a793efbf90c932b8bed01 4ec469817fd2c21f2a6c2f192ad532a0c6215d57c1f52a16c192bde1d24be812
POST /videoplayback?expire=1713437717&ei=tacgZtzlEr7H0u8P4NWPuAk&ip=91.90.42.154&id=o-AFSLys0scXb7CGDdjxFjABgxYpZ3MB0Kdke3kmGJ0ynA&itag=396&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278%2C394%2C395%2C396%2C397%2C398%2C399&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=jt&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=1618750&bui=AaUN6a2M2Y-Lfew8XmbJ-snrD-LpdDYD_sNNZ8PmTl-2VrWe3kXdOeufqX7yr25Bhbo-7WwytsORtaYx&spc=UWF9f9HVPOzvUUzVtdfuCDYeKbmoXZddmj9X5iakSYN0Sr28xlCyn0rY0Q&vprv=1&svpuc=1&mime=video%2Fmp4&ns=ZZLxU7ngwkBrzUqmXYyktzgQ&gir=yes&clen=3723516&dur=105.699&lmt=1707008910988573&mt=1713415720&fvip=2&keepalive=yes&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=5537434&n=1oz0Gh-q5Cl44w&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=ALClDIEwRgIhAKu1ejcSAV3slT3gvf1tWTS8TBs8dFGsXalXIzfYp48NAiEA7S_x0Dlo70wpebP-3cTViRDbpI-QUoyXN_Qhs1PRQcU%3D&alr=yes&sig=AJfQdSswRAIgU03ujucNQgE5f54yB3M0OpjnkrknUzGOhjE2mz_Z2DUCIGkCTnrEHjaPOUPpGszGbA85CTZWFdnWOSxsxJ7_IZ9x&cpn=GG1ZWVf6We5ElKnM&cver=1.20240415.01.00&range=0-92437&rn=1&rbuf=0&pot=IjojrCOqRYyEGWDLV_lGx2nuR55x_G7odfZC1UrWWZho1GHGauNgy2njd9Rq5WbLcv9iy1Dhau9iiRDo&ump=1&srfvp=1 HTTP/1.1
Host: rr2---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.youtube.com/
Content-Length: 2
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Last-Modified: Sun, 04 Feb 2024 01:08:30 GMT
Content-Type: application/vnd.yt-ump
Date: Thu, 18 Apr 2024 04:55:17 GMT
Expires: Thu, 18 Apr 2024 04:55:17 GMT
Cache-Control: private, max-age=21300
Transfer-Encoding: chunked
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,quic=":443"; ma=2592000; v="46"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Restrict-Formats-Hint: None
X-Content-Type-Options: nosniff
Server: gvs 1.0
|
|
| www.youtube.com/generate_204?X1JoFw | 216.58.211.14 | 204 No Content | 0 B |
URL GET HTTP/3www.youtube.com/generate_204?X1JoFw IP216.58.211.14:443
Requested byhttps://www.youtube.com/embed/I7gy-VPjcKI?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /generate_204?X1JoFw HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/I7gy-VPjcKI?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-length: 0
cross-origin-resource-policy: cross-origin
date: Thu, 18 Apr 2024 04:55:17 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| i.ytimg.com/vi/I7gy-VPjcKI/sddefault.jpg?sqp=-oaymwEmCIAFEOAD8quKqQMa8AEB-AH-CYAC0AWKAgwIABABGE8gSShyMA8=&rs=AOn4CLB5ELBfYxB_OQSRhiGiqnBrzuBypg | 142.250.74.118 | 200 OK | 47 kB |
URL GET HTTP/2i.ytimg.com/vi/I7gy-VPjcKI/sddefault.jpg?sqp=-oaymwEmCIAFEOAD8quKqQMa8AEB-AH-CYAC0AWKAgwIABABGE8gSShyMA8=&rs=AOn4CLB5ELBfYxB_OQSRhiGiqnBrzuBypg IP142.250.74.118:443
Requested byhttps://www.youtube.com/embed/I7gy-VPjcKI?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subjectedgestatic.com Fingerprint78:1A:D9:37:F2:33:3C:A9:0F:4C:4A:E8:40:9E:55:8E:02:75:1E:15 ValidityMon, 04 Mar 2024 06:35:07 GMT - Mon, 27 May 2024 06:35:06 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 640x480, components 3 Hash8fa386e2664ccb654b130e6f2eb4001a 0c2badeaca6567dbcc07a4dd3c0abeee198a2f64 84214d90a97eb88efaff581648c34345231c19f2fb34a3eb03dadeb53798548d
GET /vi/I7gy-VPjcKI/sddefault.jpg?sqp=-oaymwEmCIAFEOAD8quKqQMa8AEB-AH-CYAC0AWKAgwIABABGE8gSShyMA8=&rs=AOn4CLB5ELBfYxB_OQSRhiGiqnBrzuBypg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 46985
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 04:55:18 GMT
expires: Thu, 18 Apr 2024 06:55:18 GMT
cache-control: public, max-age=7200
etag: "1677852174"
content-type: image/jpeg
vary: Origin
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 | 216.58.211.14 | 200 OK | 31 B |
URL POST HTTP/3www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 IP216.58.211.14:443
Requested byhttps://www.youtube.com/embed/I7gy-VPjcKI?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
Hash5e1fa6fd9abd549a576f3f24b1d3c8d4 d5335d7f7d33be6a0b663f03b2df4df2521c4a87 d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336
POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1713416117985
Content-Type: application/json
X-Goog-Visitor-Id: CgtUekJBd2RPMDVZayizz4KxBjIOCgJOTxIIEgQSAgsMICA%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20240415.01.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1713416117053&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C390%2C190&vis=1&wgl=true&ca_type=image
Content-Length: 16773
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/I7gy-VPjcKI?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Thu, 18 Apr 2024 04:55:18 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.youtube.com/youtubei/v1/next?prettyPrint=false | 216.58.211.14 | 200 OK | 4.9 kB |
URL POST HTTP/3www.youtube.com/youtubei/v1/next?prettyPrint=false IP216.58.211.14:443
Requested byhttps://www.youtube.com/embed/I7gy-VPjcKI?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
Hash7b25c6d059d5e7efdf2a04e2d3d99948 93f24a8ba8426262f52c96770573db3eb1827ddf 203817e4ce85e9e4f0d8d47257ec2da3b49d5367cf90206b1eb214e29225321b
POST /youtubei/v1/next?prettyPrint=false HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Goog-Visitor-Id: CgtUekJBd2RPMDVZayizz4KxBjIOCgJOTxIIEgQSAgsMICA%3D
X-Youtube-Bootstrap-Logged-In: false
X-Youtube-Client-Name: 56
X-Youtube-Client-Version: 1.20240415.01.00
Content-Length: 2651
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/I7gy-VPjcKI?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Thu, 18 Apr 2024 04:55:18 GMT
server: scaffolding on HTTPServer2
content-length: 4948
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| filebagasarya.com/css/ff/facebook.css | 104.21.21.5 | | 7.0 kB |
URL filebagasarya.com/css/ff/facebook.css IP104.21.21.5:0
File typeASCII text, with CRLF line terminators Hashae8f5eac80c514b6ccffce75de1d2d70 eff4b0347b7c8ea58833f35c07e177f80fd28ad2 a9510c5b947eedfa3d84fef078a623ebb72cd26a8acf9855a15521dffc430d62
GET /css/ff/facebook.css HTTP/1.1
Host: filebagasarya.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zhh3o.ktt55.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 04:55:14 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Mon, 22 Apr 2024 17:36:07 GMT
last-modified: Mon, 06 Nov 2023 21:44:36 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 213546
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fOegvMpVWL926%2FgeCMQmnkTAnaupVrY74P8yfhk6PjA%2FuWTijiidp33sg5C%2FUH2al%2FlaYD3mflnZk8HXrs0bqzvdr7jtJreQ6sowWlexbTlLE%2BJ3XfbI7uCVZljMXewOtTnA9A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87620fbe5d46b505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 | 216.58.211.14 | 200 OK | 31 B |
URL POST HTTP/3www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 IP216.58.211.14:443
Requested byhttps://www.youtube.com/embed/I7gy-VPjcKI?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
Hash5e1fa6fd9abd549a576f3f24b1d3c8d4 d5335d7f7d33be6a0b663f03b2df4df2521c4a87 d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336
POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1713416119316
Content-Type: application/json
X-Goog-Visitor-Id: CgtUekJBd2RPMDVZayizz4KxBjIOCgJOTxIIEgQSAgsMICA%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20240415.01.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1713416116375&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C390%2C190&vis=1&wgl=true&ca_type=image
Content-Length: 2246
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/I7gy-VPjcKI?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Thu, 18 Apr 2024 04:55:19 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| ka-f.fontawesome.com/releases/v6.0.0/css/free-v4-font-face.min.css?token=869e25b803 | 172.67.139.119 | 200 OK | 11 kB |
URL GET HTTP/2ka-f.fontawesome.com/releases/v6.0.0/css/free-v4-font-face.min.css?token=869e25b803 IP172.67.139.119:443
Requested byhttps://zhh3o.ktt55.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectka-f.fontawesome.com Fingerprint8D:43:33:42:48:C0:F5:34:71:EC:49:69:9C:62:01:4A:6F:41:11:98 ValidityTue, 05 Mar 2024 09:23:28 GMT - Mon, 03 Jun 2024 09:23:27 GMT
File typeASCII text, with very long lines (1574) Hash369cbeaee8e26da69cc5b0a0700cd62c 6410e6e42ef9c1964e102d34f9284bee7f055151 85b4b6b94b60580f6b44fd4f8152947eefdaf52fd5866219d86d5cfea0ee010d
GET /releases/v6.0.0/css/free-v4-font-face.min.css?token=869e25b803 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://zhh3o.ktt55.my.id/
Origin: https://zhh3o.ktt55.my.id
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 04:55:16 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 07 Feb 2022 20:11:39 GMT
etag: W/"369cbeaee8e26da69cc5b0a0700cd62c"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3FbANqwUtvNftJaxHBLIB5hGLHzyk4q-x7VB22L44leFDdJnT0IoaQ==
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DBBVp4tNicbY7cpM2tExfEbTztFabaWQFSuuUE1K12yk6zMpRFf7LH%2F4auGfc%2B%2FIn8%2Fs3JNPKw3%2FGiREsgHFBY0h2eQRX9UQ35IdI9mMTwkOvR1p7hBcvKddU1vjYOGCrS3H9YjgPg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87620fc5ced656af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1713437717&ei=tacgZtzlEr7H0u8P4NWPuAk&ip=91.90.42.154&id=o-AFSLys0scXb7CGDdjxFjABgxYpZ3MB0Kdke3kmGJ0ynA&itag=251&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=jt&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=1618750&bui=AaUN6a2M2Y-Lfew8XmbJ-snrD-LpdDYD_sNNZ8PmTl-2VrWe3kXdOeufqX7yr25Bhbo-7WwytsORtaYx&spc=UWF9f9HVPOzvUUzVtdfuCDYeKbmoXZddmj9X5iakSYN0Sr28xlCyn0rY0Q&vprv=1&svpuc=1&mime=audio%2Fwebm&ns=ZZLxU7ngwkBrzUqmXYyktzgQ&gir=yes&clen=1617624&dur=105.721&lmt=1707007942638408&mt=1713415720&fvip=2&keepalive=yes&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=5532434&n=1oz0Gh-q5Cl44w&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cxpc%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=ALClDIEwRgIhAKu1ejcSAV3slT3gvf1tWTS8TBs8dFGsXalXIzfYp48NAiEA7S_x0Dlo70wpebP-3cTViRDbpI-QUoyXN_Qhs1PRQcU%3D&alr=yes&sig=AJfQdSswRgIhANVZlSHRf9pdh2S-L22Qepxk5utyHrVIosGqcroYW2gvAiEAvbRM9t0KCi_8su70x5bbnrAv_P_sMsYAIKtajidjQJI%3D&cpn=GG1ZWVf6We5ElKnM&cver=1.20240415.01.00&range=65986-131521&rn=3&rbuf=4057&pot=MnZsPGMViChWsmwEe49KLS5v-zntMJXIOE3NqhmPIgZWST4aNRVLAQURfBR83iglzMS_GZOtmf27vCXRL_g2r65Bzgt1gIW_xKw0f4AaZUHkEqc6Tl8sKd5q61vfrQsdsrTTB6xCmhRRQ0n-xZY8Tip0QhUCO_L5&ump=1&srfvp=1 | 91.90.45.173 | 200 OK | 76 kB |
URL POST HTTP/3rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1713437717&ei=tacgZtzlEr7H0u8P4NWPuAk&ip=91.90.42.154&id=o-AFSLys0scXb7CGDdjxFjABgxYpZ3MB0Kdke3kmGJ0ynA&itag=251&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=jt&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=1618750&bui=AaUN6a2M2Y-Lfew8XmbJ-snrD-LpdDYD_sNNZ8PmTl-2VrWe3kXdOeufqX7yr25Bhbo-7WwytsORtaYx&spc=UWF9f9HVPOzvUUzVtdfuCDYeKbmoXZddmj9X5iakSYN0Sr28xlCyn0rY0Q&vprv=1&svpuc=1&mime=audio%2Fwebm&ns=ZZLxU7ngwkBrzUqmXYyktzgQ&gir=yes&clen=1617624&dur=105.721&lmt=1707007942638408&mt=1713415720&fvip=2&keepalive=yes&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=5532434&n=1oz0Gh-q5Cl44w&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cxpc%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=ALClDIEwRgIhAKu1ejcSAV3slT3gvf1tWTS8TBs8dFGsXalXIzfYp48NAiEA7S_x0Dlo70wpebP-3cTViRDbpI-QUoyXN_Qhs1PRQcU%3D&alr=yes&sig=AJfQdSswRgIhANVZlSHRf9pdh2S-L22Qepxk5utyHrVIosGqcroYW2gvAiEAvbRM9t0KCi_8su70x5bbnrAv_P_sMsYAIKtajidjQJI%3D&cpn=GG1ZWVf6We5ElKnM&cver=1.20240415.01.00&range=65986-131521&rn=3&rbuf=4057&pot=MnZsPGMViChWsmwEe49KLS5v-zntMJXIOE3NqhmPIgZWST4aNRVLAQURfBR83iglzMS_GZOtmf27vCXRL_g2r65Bzgt1gIW_xKw0f4AaZUHkEqc6Tl8sKd5q61vfrQsdsrTTB6xCmhRRQ0n-xZY8Tip0QhUCO_L5&ump=1&srfvp=1 IP91.90.45.173:443 ASN#50304 Blix Solutions AS
Requested byhttps://www.youtube.com/embed/I7gy-VPjcKI?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.googlevideo.com Fingerprint05:65:DE:5B:B7:CF:9A:4A:22:AF:57:DB:9B:EC:B9:BD:E5:B0:57:E2 ValidityTue, 09 Apr 2024 14:31:07 GMT - Tue, 18 Jun 2024 14:31:06 GMT
Hash95b9b1f28ac07a2e5c510719e466170f 25f43cbfc8afd1f4938399ce7050a9c6652aee7e 7829bb3b91ad29c4902bee4b47bba3be1247491bf5bdc5d11006bd08de701707
POST /videoplayback?expire=1713437717&ei=tacgZtzlEr7H0u8P4NWPuAk&ip=91.90.42.154&id=o-AFSLys0scXb7CGDdjxFjABgxYpZ3MB0Kdke3kmGJ0ynA&itag=251&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=jt&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=1618750&bui=AaUN6a2M2Y-Lfew8XmbJ-snrD-LpdDYD_sNNZ8PmTl-2VrWe3kXdOeufqX7yr25Bhbo-7WwytsORtaYx&spc=UWF9f9HVPOzvUUzVtdfuCDYeKbmoXZddmj9X5iakSYN0Sr28xlCyn0rY0Q&vprv=1&svpuc=1&mime=audio%2Fwebm&ns=ZZLxU7ngwkBrzUqmXYyktzgQ&gir=yes&clen=1617624&dur=105.721&lmt=1707007942638408&mt=1713415720&fvip=2&keepalive=yes&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=5532434&n=1oz0Gh-q5Cl44w&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cxpc%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=ALClDIEwRgIhAKu1ejcSAV3slT3gvf1tWTS8TBs8dFGsXalXIzfYp48NAiEA7S_x0Dlo70wpebP-3cTViRDbpI-QUoyXN_Qhs1PRQcU%3D&alr=yes&sig=AJfQdSswRgIhANVZlSHRf9pdh2S-L22Qepxk5utyHrVIosGqcroYW2gvAiEAvbRM9t0KCi_8su70x5bbnrAv_P_sMsYAIKtajidjQJI%3D&cpn=GG1ZWVf6We5ElKnM&cver=1.20240415.01.00&range=65986-131521&rn=3&rbuf=4057&pot=MnZsPGMViChWsmwEe49KLS5v-zntMJXIOE3NqhmPIgZWST4aNRVLAQURfBR83iglzMS_GZOtmf27vCXRL_g2r65Bzgt1gIW_xKw0f4AaZUHkEqc6Tl8sKd5q61vfrQsdsrTTB6xCmhRRQ0n-xZY8Tip0QhUCO_L5&ump=1&srfvp=1 HTTP/1.1
Host: rr2---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.youtube.com/
Content-Length: 2
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
last-modified: Sun, 04 Feb 2024 00:52:22 GMT
content-type: application/vnd.yt-ump
date: Thu, 18 Apr 2024 04:55:18 GMT
expires: Thu, 18 Apr 2024 04:55:18 GMT
cache-control: private, max-age=21299
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,quic=":443"; ma=2592000; v="46"
client-protocol: quic
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
timing-allow-origin: https://www.youtube.com
access-control-expose-headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
vary: Origin
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
server: gvs 1.0
|
|
| www.youtube.com/api/stats/qoe?fmt=396&afmt=251&cpn=GG1ZWVf6We5ElKnM&el=embedded&ns=yt&fexp=v1%2C23983296%2C21348%2C76094%2C54572%2C304051%2C60173%2C24564%2C36318%2C6271%2C26443548%2C7111%2C31785%2C4558%2C9954%2C1192%2C26496%2C6966%2C2%2C6689%2C2007%2C9072%2C12518%2C1262%2C5422%2C872%2C644%2C3865%2C4568%2C531%2C819%2C10843%2C1102%2C10458&cl=625523793&seq=2&docid=I7gy-VPjcKI&ei=tacgZtzlEr7H0u8P4NWPuAk&event=streamingstats&plid=AAYWV8cG4vDK_QwZ&referrer=https%3A%2F%2Fwww.youtube.com%2Fembed%2FI7gy-VPjcKI%3Fcontrols%3D0%26loop%3D1%26autoplay%3D1%26fs%3D1%26iv_load_policy%3D3%26showinfo%3D0%26rel%3D0%26cc_load_policy%3D0%26start%3D0%26end%3D0%26origin%3Dhttps%3A%2F%2Fyoutubeembedcode.com&qclc=ChBHRzFaV1ZmNldlNUVsS25NEAI&embargoed=0&cbr=Firefox&cbrver=96.0&c=WEB_EMBEDDED_PLAYER&cver=1.20240415.01.00&cplayer=UNIPLAYER&cos=X11&cplatform=DESKTOP&afs=0.418:251::i&cmt=0.460:0.000,10.001:0.000&vps=0.460:N&ctmp=dompaused:t.464;r.promise;m.NotAllowedError,itr:t.664;&bwm=10.001:619688:0.741&bwe=10.001:1772355&bh=10.001:13.700 | 216.58.211.14 | 204 No Content | 0 B |
URL POST HTTP/3www.youtube.com/api/stats/qoe?fmt=396&afmt=251&cpn=GG1ZWVf6We5ElKnM&el=embedded&ns=yt&fexp=v1%2C23983296%2C21348%2C76094%2C54572%2C304051%2C60173%2C24564%2C36318%2C6271%2C26443548%2C7111%2C31785%2C4558%2C9954%2C1192%2C26496%2C6966%2C2%2C6689%2C2007%2C9072%2C12518%2C1262%2C5422%2C872%2C644%2C3865%2C4568%2C531%2C819%2C10843%2C1102%2C10458&cl=625523793&seq=2&docid=I7gy-VPjcKI&ei=tacgZtzlEr7H0u8P4NWPuAk&event=streamingstats&plid=AAYWV8cG4vDK_QwZ&referrer=https%3A%2F%2Fwww.youtube.com%2Fembed%2FI7gy-VPjcKI%3Fcontrols%3D0%26loop%3D1%26autoplay%3D1%26fs%3D1%26iv_load_policy%3D3%26showinfo%3D0%26rel%3D0%26cc_load_policy%3D0%26start%3D0%26end%3D0%26origin%3Dhttps%3A%2F%2Fyoutubeembedcode.com&qclc=ChBHRzFaV1ZmNldlNUVsS25NEAI&embargoed=0&cbr=Firefox&cbrver=96.0&c=WEB_EMBEDDED_PLAYER&cver=1.20240415.01.00&cplayer=UNIPLAYER&cos=X11&cplatform=DESKTOP&afs=0.418:251::i&cmt=0.460:0.000,10.001:0.000&vps=0.460:N&ctmp=dompaused:t.464;r.promise;m.NotAllowedError,itr:t.664;&bwm=10.001:619688:0.741&bwe=10.001:1772355&bh=10.001:13.700 IP216.58.211.14:443
Requested byhttps://www.youtube.com/embed/I7gy-VPjcKI?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/stats/qoe?fmt=396&afmt=251&cpn=GG1ZWVf6We5ElKnM&el=embedded&ns=yt&fexp=v1%2C23983296%2C21348%2C76094%2C54572%2C304051%2C60173%2C24564%2C36318%2C6271%2C26443548%2C7111%2C31785%2C4558%2C9954%2C1192%2C26496%2C6966%2C2%2C6689%2C2007%2C9072%2C12518%2C1262%2C5422%2C872%2C644%2C3865%2C4568%2C531%2C819%2C10843%2C1102%2C10458&cl=625523793&seq=2&docid=I7gy-VPjcKI&ei=tacgZtzlEr7H0u8P4NWPuAk&event=streamingstats&plid=AAYWV8cG4vDK_QwZ&referrer=https%3A%2F%2Fwww.youtube.com%2Fembed%2FI7gy-VPjcKI%3Fcontrols%3D0%26loop%3D1%26autoplay%3D1%26fs%3D1%26iv_load_policy%3D3%26showinfo%3D0%26rel%3D0%26cc_load_policy%3D0%26start%3D0%26end%3D0%26origin%3Dhttps%3A%2F%2Fyoutubeembedcode.com&qclc=ChBHRzFaV1ZmNldlNUVsS25NEAI&embargoed=0&cbr=Firefox&cbrver=96.0&c=WEB_EMBEDDED_PLAYER&cver=1.20240415.01.00&cplayer=UNIPLAYER&cos=X11&cplatform=DESKTOP&afs=0.418:251::i&cmt=0.460:0.000,10.001:0.000&vps=0.460:N&ctmp=dompaused:t.464;r.promise;m.NotAllowedError,itr:t.664;&bwm=10.001:619688:0.741&bwe=10.001:1772355&bh=10.001:13.700 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Visitor-Id: CgtUekJBd2RPMDVZayizz4KxBjIOCgJOTxIIEgQSAgsMICA%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20240415.01.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1713416117053&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C390%2C190&vis=1&wgl=true&ca_type=image
Content-Type: application/x-www-form-urlencoded
Content-Length: 226
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/I7gy-VPjcKI?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
date: Thu, 18 Apr 2024 04:55:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
x-content-type-options: nosniff
server: Video Stats Server
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1713437717&ei=tacgZtzlEr7H0u8P4NWPuAk&ip=91.90.42.154&id=o-AFSLys0scXb7CGDdjxFjABgxYpZ3MB0Kdke3kmGJ0ynA&itag=396&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278%2C394%2C395%2C396%2C397%2C398%2C399&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=jt&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=1618750&bui=AaUN6a2M2Y-Lfew8XmbJ-snrD-LpdDYD_sNNZ8PmTl-2VrWe3kXdOeufqX7yr25Bhbo-7WwytsORtaYx&spc=UWF9f9HVPOzvUUzVtdfuCDYeKbmoXZddmj9X5iakSYN0Sr28xlCyn0rY0Q&vprv=1&svpuc=1&mime=video%2Fmp4&ns=ZZLxU7ngwkBrzUqmXYyktzgQ&gir=yes&clen=3723516&dur=105.699&lmt=1707008910988573&mt=1713415720&fvip=2&keepalive=yes&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=5537434&n=1oz0Gh-q5Cl44w&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=ALClDIEwRgIhAKu1ejcSAV3slT3gvf1tWTS8TBs8dFGsXalXIzfYp48NAiEA7S_x0Dlo70wpebP-3cTViRDbpI-QUoyXN_Qhs1PRQcU%3D&alr=yes&sig=AJfQdSswRAIgU03ujucNQgE5f54yB3M0OpjnkrknUzGOhjE2mz_Z2DUCIGkCTnrEHjaPOUPpGszGbA85CTZWFdnWOSxsxJ7_IZ9x&cpn=GG1ZWVf6We5ElKnM&cver=1.20240415.01.00&range=971546-2225446&rn=9&rbuf=30367&pot=MnZsPGMViChWsmwEe49KLS5v-zntMJXIOE3NqhmPIgZWST4aNRVLAQURfBR83iglzMS_GZOtmf27vCXRL_g2r65Bzgt1gIW_xKw0f4AaZUHkEqc6Tl8sKd5q61vfrQsdsrTTB6xCmhRRQ0n-xZY8Tip0QhUCO_L5&ump=1&srfvp=1 | 91.90.45.173 | | 1.3 MB |
URL rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1713437717&ei=tacgZtzlEr7H0u8P4NWPuAk&ip=91.90.42.154&id=o-AFSLys0scXb7CGDdjxFjABgxYpZ3MB0Kdke3kmGJ0ynA&itag=396&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278%2C394%2C395%2C396%2C397%2C398%2C399&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=jt&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=1618750&bui=AaUN6a2M2Y-Lfew8XmbJ-snrD-LpdDYD_sNNZ8PmTl-2VrWe3kXdOeufqX7yr25Bhbo-7WwytsORtaYx&spc=UWF9f9HVPOzvUUzVtdfuCDYeKbmoXZddmj9X5iakSYN0Sr28xlCyn0rY0Q&vprv=1&svpuc=1&mime=video%2Fmp4&ns=ZZLxU7ngwkBrzUqmXYyktzgQ&gir=yes&clen=3723516&dur=105.699&lmt=1707008910988573&mt=1713415720&fvip=2&keepalive=yes&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=5537434&n=1oz0Gh-q5Cl44w&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=ALClDIEwRgIhAKu1ejcSAV3slT3gvf1tWTS8TBs8dFGsXalXIzfYp48NAiEA7S_x0Dlo70wpebP-3cTViRDbpI-QUoyXN_Qhs1PRQcU%3D&alr=yes&sig=AJfQdSswRAIgU03ujucNQgE5f54yB3M0OpjnkrknUzGOhjE2mz_Z2DUCIGkCTnrEHjaPOUPpGszGbA85CTZWFdnWOSxsxJ7_IZ9x&cpn=GG1ZWVf6We5ElKnM&cver=1.20240415.01.00&range=971546-2225446&rn=9&rbuf=30367&pot=MnZsPGMViChWsmwEe49KLS5v-zntMJXIOE3NqhmPIgZWST4aNRVLAQURfBR83iglzMS_GZOtmf27vCXRL_g2r65Bzgt1gIW_xKw0f4AaZUHkEqc6Tl8sKd5q61vfrQsdsrTTB6xCmhRRQ0n-xZY8Tip0QhUCO_L5&ump=1&srfvp=1 IP91.90.45.173:0 ASN#50304 Blix Solutions AS
CertificateIssuerGoogle Trust Services LLC Subject*.googlevideo.com Fingerprint05:65:DE:5B:B7:CF:9A:4A:22:AF:57:DB:9B:EC:B9:BD:E5:B0:57:E2 ValidityTue, 09 Apr 2024 14:31:07 GMT - Tue, 18 Jun 2024 14:31:06 GMT
Size1.3 MB (1279982 bytes) Hash17438b126a648085a9a8539c4b8f92b5 7a21ad5f99287d8a8a7360ddfd714e7a6338e841 39e4ca08f8fb2f2d001c8a0bc982efa5c6b6cc7c4ba8288fed7672f1b253345b
POST /videoplayback?expire=1713437717&ei=tacgZtzlEr7H0u8P4NWPuAk&ip=91.90.42.154&id=o-AFSLys0scXb7CGDdjxFjABgxYpZ3MB0Kdke3kmGJ0ynA&itag=396&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278%2C394%2C395%2C396%2C397%2C398%2C399&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=jt&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=1618750&bui=AaUN6a2M2Y-Lfew8XmbJ-snrD-LpdDYD_sNNZ8PmTl-2VrWe3kXdOeufqX7yr25Bhbo-7WwytsORtaYx&spc=UWF9f9HVPOzvUUzVtdfuCDYeKbmoXZddmj9X5iakSYN0Sr28xlCyn0rY0Q&vprv=1&svpuc=1&mime=video%2Fmp4&ns=ZZLxU7ngwkBrzUqmXYyktzgQ&gir=yes&clen=3723516&dur=105.699&lmt=1707008910988573&mt=1713415720&fvip=2&keepalive=yes&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=5537434&n=1oz0Gh-q5Cl44w&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=ALClDIEwRgIhAKu1ejcSAV3slT3gvf1tWTS8TBs8dFGsXalXIzfYp48NAiEA7S_x0Dlo70wpebP-3cTViRDbpI-QUoyXN_Qhs1PRQcU%3D&alr=yes&sig=AJfQdSswRAIgU03ujucNQgE5f54yB3M0OpjnkrknUzGOhjE2mz_Z2DUCIGkCTnrEHjaPOUPpGszGbA85CTZWFdnWOSxsxJ7_IZ9x&cpn=GG1ZWVf6We5ElKnM&cver=1.20240415.01.00&range=971546-2225446&rn=9&rbuf=30367&pot=MnZsPGMViChWsmwEe49KLS5v-zntMJXIOE3NqhmPIgZWST4aNRVLAQURfBR83iglzMS_GZOtmf27vCXRL_g2r65Bzgt1gIW_xKw0f4AaZUHkEqc6Tl8sKd5q61vfrQsdsrTTB6xCmhRRQ0n-xZY8Tip0QhUCO_L5&ump=1&srfvp=1 HTTP/1.1
Host: rr2---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.youtube.com/
Content-Length: 2
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
last-modified: Sun, 04 Feb 2024 01:08:30 GMT
content-type: application/vnd.yt-ump
date: Thu, 18 Apr 2024 04:55:38 GMT
expires: Thu, 18 Apr 2024 04:55:38 GMT
cache-control: private, max-age=21279
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,quic=":443"; ma=2592000; v="46"
client-protocol: quic
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
timing-allow-origin: https://www.youtube.com
access-control-expose-headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
vary: Origin
cross-origin-resource-policy: cross-origin
x-restrict-formats-hint: None
x-content-type-options: nosniff
server: gvs 1.0
|
|
| www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 | 216.58.211.14 | 200 OK | 31 B |
URL POST HTTP/3www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 IP216.58.211.14:443
Requested byhttps://www.youtube.com/embed/I7gy-VPjcKI?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
Hash5e1fa6fd9abd549a576f3f24b1d3c8d4 d5335d7f7d33be6a0b663f03b2df4df2521c4a87 d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336
POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1713416142551
Content-Type: application/json
X-Goog-Visitor-Id: CgtUekJBd2RPMDVZayizz4KxBjIOCgJOTxIIEgQSAgsMICA%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20240415.01.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1713416116375&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C390%2C190&vis=1&wgl=true&ca_type=image
Content-Length: 914
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/I7gy-VPjcKI?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Thu, 18 Apr 2024 04:55:42 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.com/js/th/3qr7gha742YnmAUpItQqIAu3HrTIDIaDXS3XkPEq5AU.js | 142.250.74.164 | 200 OK | 53 kB |
URL GET HTTP/2www.google.com/js/th/3qr7gha742YnmAUpItQqIAu3HrTIDIaDXS3XkPEq5AU.js IP142.250.74.164:443
Requested byhttps://www.youtube.com/embed/I7gy-VPjcKI?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subjectwww.google.com FingerprintCC:CC:99:46:65:6C:77:0B:C8:AA:AD:5E:58:B6:2D:19:B2:C7:0B:06 ValidityMon, 04 Mar 2024 07:19:07 GMT - Mon, 27 May 2024 07:19:06 GMT
File typeJavaScript source, ASCII text, with very long lines (52156) Hashe72bebc20c294cb7e62bbccd15c94b1b a83fff70fe780fcbb8738f3d1cf4a7e309879dc6 deaafb8216bbe3662798052922d42a200bb71eb4c80c86835d2dd790f12ae405
GET /js/th/3qr7gha742YnmAUpItQqIAu3HrTIDIaDXS3XkPEq5AU.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 20514
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 17 Apr 2024 05:04:22 GMT
expires: Thu, 17 Apr 2025 05:04:22 GMT
cache-control: public, max-age=31536000
age: 85855
last-modified: Thu, 04 Apr 2024 18:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/gh/AlexHostX/mlbb@main/old/logo.png | 151.101.129.229 | 404 Not Found | 0 B |
URL GET HTTP/2cdn.jsdelivr.net/gh/AlexHostX/mlbb@main/old/logo.png IP151.101.129.229:443
Requested byhttps://zhh3o.ktt55.my.id/ CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /gh/AlexHostX/mlbb@main/old/logo.png HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zhh3o.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=600, s-maxage=600
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/plain; charset=utf-8
etag: W/"30-mrCA2m5yFh5WWEa6T+mjJ5+Pms8"
content-encoding: br
accept-ranges: bytes
date: Thu, 18 Apr 2024 04:55:14 GMT
age: 282
x-served-by: cache-fra-eddf8230118-FRA, cache-hel1410020-HEL
x-cache: HIT, MISS
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 53
X-Firefox-Spdy: h2
|
|
| ka-f.fontawesome.com/releases/v6.0.0/css/free-v5-font-face.min.css?token=869e25b803 | 172.67.139.119 | 200 OK | 823 B |
URL GET HTTP/2ka-f.fontawesome.com/releases/v6.0.0/css/free-v5-font-face.min.css?token=869e25b803 IP172.67.139.119:443
Requested byhttps://zhh3o.ktt55.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectka-f.fontawesome.com Fingerprint8D:43:33:42:48:C0:F5:34:71:EC:49:69:9C:62:01:4A:6F:41:11:98 ValidityTue, 05 Mar 2024 09:23:28 GMT - Mon, 03 Jun 2024 09:23:27 GMT
File typeASCII text, with very long lines (845), with no line terminators Hash1af9af6e84d6fcbedffbf79321ca46b2 0f8c679ef763d2ecdc4d775dbe9af668b2284644 ebb1355be44fef0caf09c3740d278ab9461238e988fd43375d389a16e39bed8a
GET /releases/v6.0.0/css/free-v5-font-face.min.css?token=869e25b803 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://zhh3o.ktt55.my.id/
Origin: https://zhh3o.ktt55.my.id
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 04:55:16 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 07 Feb 2022 20:11:39 GMT
etag: W/"e8ee688b3310772b65f39c69b76f4720"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 8SAhgHg_j-GgGBrp6nCefgqkGAYLv5QQhrsmPb7bzXLjnt_FDet-GQ==
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IA2XfL48y5aLu1Ts%2BfUcmkSkTp9f1niIyeNGHNydONBYt7jHGgupDtK%2FK8ImG6yeCN7t7x6ubafoOnPVrqd4CZrk%2B6iR8LTcENd0gcCoQSRPwGtkYKT%2BLF0hxDyB2hsdyIbdUZ3Pmg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87620fc5be9c56af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| yt3.ggpht.com/pQIjBsJLIq127A3e_QU4z93fOnlN4nkkOIq8a6S8FE5bOV2i9bGxagAU_X5DmotpxzNBIOIkTA=s88-c-k-c0x00ffffff-no-rj | 142.250.74.161 | 200 OK | 6.0 kB |
URL GET HTTP/3yt3.ggpht.com/pQIjBsJLIq127A3e_QU4z93fOnlN4nkkOIq8a6S8FE5bOV2i9bGxagAU_X5DmotpxzNBIOIkTA=s88-c-k-c0x00ffffff-no-rj IP142.250.74.161:443
Requested byhttps://www.youtube.com/embed/I7gy-VPjcKI?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.googleusercontent.com FingerprintE0:0C:38:A4:4D:4F:CB:42:05:30:9A:C4:60:B3:64:3F:EF:43:D1:2F ValidityMon, 04 Mar 2024 07:14:32 GMT - Mon, 27 May 2024 07:14:31 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 88x88, components 3 Hash7c16796fd81fc25db165560a1961b558 9983363b1b05a1d6cc2f0b7d0a98c47128427873 100fe9f6e2bcbcdc62dd5141a617cfc2c6736c882eff4270fa0143a8497ce678
GET /pQIjBsJLIq127A3e_QU4z93fOnlN4nkkOIq8a6S8FE5bOV2i9bGxagAU_X5DmotpxzNBIOIkTA=s88-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="channels4_profile.jpg"
x-content-type-options: nosniff
server: fife
content-length: 5987
x-xss-protection: 0
date: Thu, 18 Apr 2024 04:43:50 GMT
expires: Fri, 19 Apr 2024 04:43:50 GMT
cache-control: public, max-age=86400, no-transform
age: 688
etag: "v1"
content-type: image/jpeg
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1713437717&ei=tacgZtzlEr7H0u8P4NWPuAk&ip=91.90.42.154&id=o-AFSLys0scXb7CGDdjxFjABgxYpZ3MB0Kdke3kmGJ0ynA&itag=396&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278%2C394%2C395%2C396%2C397%2C398%2C399&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=jt&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=1618750&bui=AaUN6a2M2Y-Lfew8XmbJ-snrD-LpdDYD_sNNZ8PmTl-2VrWe3kXdOeufqX7yr25Bhbo-7WwytsORtaYx&spc=UWF9f9HVPOzvUUzVtdfuCDYeKbmoXZddmj9X5iakSYN0Sr28xlCyn0rY0Q&vprv=1&svpuc=1&mime=video%2Fmp4&ns=ZZLxU7ngwkBrzUqmXYyktzgQ&gir=yes&clen=3723516&dur=105.699&lmt=1707008910988573&mt=1713415720&fvip=2&keepalive=yes&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=5537434&n=1oz0Gh-q5Cl44w&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=ALClDIEwRgIhAKu1ejcSAV3slT3gvf1tWTS8TBs8dFGsXalXIzfYp48NAiEA7S_x0Dlo70wpebP-3cTViRDbpI-QUoyXN_Qhs1PRQcU%3D&alr=yes&sig=AJfQdSswRAIgU03ujucNQgE5f54yB3M0OpjnkrknUzGOhjE2mz_Z2DUCIGkCTnrEHjaPOUPpGszGbA85CTZWFdnWOSxsxJ7_IZ9x&cpn=GG1ZWVf6We5ElKnM&cver=1.20240415.01.00&range=92438-356417&rn=4&rbuf=5773&pot=MnZsPGMViChWsmwEe49KLS5v-zntMJXIOE3NqhmPIgZWST4aNRVLAQURfBR83iglzMS_GZOtmf27vCXRL_g2r65Bzgt1gIW_xKw0f4AaZUHkEqc6Tl8sKd5q61vfrQsdsrTTB6xCmhRRQ0n-xZY8Tip0QhUCO_L5&ump=1&srfvp=1 | 91.90.45.173 | 200 OK | 264 kB |
URL POST HTTP/3rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1713437717&ei=tacgZtzlEr7H0u8P4NWPuAk&ip=91.90.42.154&id=o-AFSLys0scXb7CGDdjxFjABgxYpZ3MB0Kdke3kmGJ0ynA&itag=396&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278%2C394%2C395%2C396%2C397%2C398%2C399&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=jt&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=1618750&bui=AaUN6a2M2Y-Lfew8XmbJ-snrD-LpdDYD_sNNZ8PmTl-2VrWe3kXdOeufqX7yr25Bhbo-7WwytsORtaYx&spc=UWF9f9HVPOzvUUzVtdfuCDYeKbmoXZddmj9X5iakSYN0Sr28xlCyn0rY0Q&vprv=1&svpuc=1&mime=video%2Fmp4&ns=ZZLxU7ngwkBrzUqmXYyktzgQ&gir=yes&clen=3723516&dur=105.699&lmt=1707008910988573&mt=1713415720&fvip=2&keepalive=yes&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=5537434&n=1oz0Gh-q5Cl44w&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=ALClDIEwRgIhAKu1ejcSAV3slT3gvf1tWTS8TBs8dFGsXalXIzfYp48NAiEA7S_x0Dlo70wpebP-3cTViRDbpI-QUoyXN_Qhs1PRQcU%3D&alr=yes&sig=AJfQdSswRAIgU03ujucNQgE5f54yB3M0OpjnkrknUzGOhjE2mz_Z2DUCIGkCTnrEHjaPOUPpGszGbA85CTZWFdnWOSxsxJ7_IZ9x&cpn=GG1ZWVf6We5ElKnM&cver=1.20240415.01.00&range=92438-356417&rn=4&rbuf=5773&pot=MnZsPGMViChWsmwEe49KLS5v-zntMJXIOE3NqhmPIgZWST4aNRVLAQURfBR83iglzMS_GZOtmf27vCXRL_g2r65Bzgt1gIW_xKw0f4AaZUHkEqc6Tl8sKd5q61vfrQsdsrTTB6xCmhRRQ0n-xZY8Tip0QhUCO_L5&ump=1&srfvp=1 IP91.90.45.173:443 ASN#50304 Blix Solutions AS
Requested byhttps://www.youtube.com/embed/I7gy-VPjcKI?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.googlevideo.com Fingerprint05:65:DE:5B:B7:CF:9A:4A:22:AF:57:DB:9B:EC:B9:BD:E5:B0:57:E2 ValidityTue, 09 Apr 2024 14:31:07 GMT - Tue, 18 Jun 2024 14:31:06 GMT
Size264 kB (264043 bytes) Hash8567da8c4c72f2b43cc14b9d24ba18bc 7f4f3a0e8c3bda573fd59f572080a43a6d47f688 268cc046547b5829a82f25508c38974ce9963f1cc2394b2eaa81c86c6ec72026
POST /videoplayback?expire=1713437717&ei=tacgZtzlEr7H0u8P4NWPuAk&ip=91.90.42.154&id=o-AFSLys0scXb7CGDdjxFjABgxYpZ3MB0Kdke3kmGJ0ynA&itag=396&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278%2C394%2C395%2C396%2C397%2C398%2C399&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=jt&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=1618750&bui=AaUN6a2M2Y-Lfew8XmbJ-snrD-LpdDYD_sNNZ8PmTl-2VrWe3kXdOeufqX7yr25Bhbo-7WwytsORtaYx&spc=UWF9f9HVPOzvUUzVtdfuCDYeKbmoXZddmj9X5iakSYN0Sr28xlCyn0rY0Q&vprv=1&svpuc=1&mime=video%2Fmp4&ns=ZZLxU7ngwkBrzUqmXYyktzgQ&gir=yes&clen=3723516&dur=105.699&lmt=1707008910988573&mt=1713415720&fvip=2&keepalive=yes&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=5537434&n=1oz0Gh-q5Cl44w&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=ALClDIEwRgIhAKu1ejcSAV3slT3gvf1tWTS8TBs8dFGsXalXIzfYp48NAiEA7S_x0Dlo70wpebP-3cTViRDbpI-QUoyXN_Qhs1PRQcU%3D&alr=yes&sig=AJfQdSswRAIgU03ujucNQgE5f54yB3M0OpjnkrknUzGOhjE2mz_Z2DUCIGkCTnrEHjaPOUPpGszGbA85CTZWFdnWOSxsxJ7_IZ9x&cpn=GG1ZWVf6We5ElKnM&cver=1.20240415.01.00&range=92438-356417&rn=4&rbuf=5773&pot=MnZsPGMViChWsmwEe49KLS5v-zntMJXIOE3NqhmPIgZWST4aNRVLAQURfBR83iglzMS_GZOtmf27vCXRL_g2r65Bzgt1gIW_xKw0f4AaZUHkEqc6Tl8sKd5q61vfrQsdsrTTB6xCmhRRQ0n-xZY8Tip0QhUCO_L5&ump=1&srfvp=1 HTTP/1.1
Host: rr2---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.youtube.com/
Content-Length: 2
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
last-modified: Sun, 04 Feb 2024 01:08:30 GMT
content-type: application/vnd.yt-ump
date: Thu, 18 Apr 2024 04:55:18 GMT
expires: Thu, 18 Apr 2024 04:55:18 GMT
cache-control: private, max-age=21299
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,quic=":443"; ma=2592000; v="46"
client-protocol: quic
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
timing-allow-origin: https://www.youtube.com
access-control-expose-headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
vary: Origin
cross-origin-resource-policy: cross-origin
x-restrict-formats-hint: None
x-content-type-options: nosniff
server: gvs 1.0
|
|
| rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1713437717&ei=tacgZtzlEr7H0u8P4NWPuAk&ip=91.90.42.154&id=o-AFSLys0scXb7CGDdjxFjABgxYpZ3MB0Kdke3kmGJ0ynA&itag=396&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278%2C394%2C395%2C396%2C397%2C398%2C399&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=jt&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=1618750&bui=AaUN6a2M2Y-Lfew8XmbJ-snrD-LpdDYD_sNNZ8PmTl-2VrWe3kXdOeufqX7yr25Bhbo-7WwytsORtaYx&spc=UWF9f9HVPOzvUUzVtdfuCDYeKbmoXZddmj9X5iakSYN0Sr28xlCyn0rY0Q&vprv=1&svpuc=1&mime=video%2Fmp4&ns=ZZLxU7ngwkBrzUqmXYyktzgQ&gir=yes&clen=3723516&dur=105.699&lmt=1707008910988573&mt=1713415720&fvip=2&keepalive=yes&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=5537434&n=1oz0Gh-q5Cl44w&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=ALClDIEwRgIhAKu1ejcSAV3slT3gvf1tWTS8TBs8dFGsXalXIzfYp48NAiEA7S_x0Dlo70wpebP-3cTViRDbpI-QUoyXN_Qhs1PRQcU%3D&alr=yes&sig=AJfQdSswRAIgU03ujucNQgE5f54yB3M0OpjnkrknUzGOhjE2mz_Z2DUCIGkCTnrEHjaPOUPpGszGbA85CTZWFdnWOSxsxJ7_IZ9x&cpn=GG1ZWVf6We5ElKnM&cver=1.20240415.01.00&range=356418-971545&rn=6&rbuf=14119&pot=MnZsPGMViChWsmwEe49KLS5v-zntMJXIOE3NqhmPIgZWST4aNRVLAQURfBR83iglzMS_GZOtmf27vCXRL_g2r65Bzgt1gIW_xKw0f4AaZUHkEqc6Tl8sKd5q61vfrQsdsrTTB6xCmhRRQ0n-xZY8Tip0QhUCO_L5&ump=1&srfvp=1 | 91.90.45.173 | 200 OK | 615 kB |
URL POST HTTP/3rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1713437717&ei=tacgZtzlEr7H0u8P4NWPuAk&ip=91.90.42.154&id=o-AFSLys0scXb7CGDdjxFjABgxYpZ3MB0Kdke3kmGJ0ynA&itag=396&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278%2C394%2C395%2C396%2C397%2C398%2C399&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=jt&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=1618750&bui=AaUN6a2M2Y-Lfew8XmbJ-snrD-LpdDYD_sNNZ8PmTl-2VrWe3kXdOeufqX7yr25Bhbo-7WwytsORtaYx&spc=UWF9f9HVPOzvUUzVtdfuCDYeKbmoXZddmj9X5iakSYN0Sr28xlCyn0rY0Q&vprv=1&svpuc=1&mime=video%2Fmp4&ns=ZZLxU7ngwkBrzUqmXYyktzgQ&gir=yes&clen=3723516&dur=105.699&lmt=1707008910988573&mt=1713415720&fvip=2&keepalive=yes&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=5537434&n=1oz0Gh-q5Cl44w&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=ALClDIEwRgIhAKu1ejcSAV3slT3gvf1tWTS8TBs8dFGsXalXIzfYp48NAiEA7S_x0Dlo70wpebP-3cTViRDbpI-QUoyXN_Qhs1PRQcU%3D&alr=yes&sig=AJfQdSswRAIgU03ujucNQgE5f54yB3M0OpjnkrknUzGOhjE2mz_Z2DUCIGkCTnrEHjaPOUPpGszGbA85CTZWFdnWOSxsxJ7_IZ9x&cpn=GG1ZWVf6We5ElKnM&cver=1.20240415.01.00&range=356418-971545&rn=6&rbuf=14119&pot=MnZsPGMViChWsmwEe49KLS5v-zntMJXIOE3NqhmPIgZWST4aNRVLAQURfBR83iglzMS_GZOtmf27vCXRL_g2r65Bzgt1gIW_xKw0f4AaZUHkEqc6Tl8sKd5q61vfrQsdsrTTB6xCmhRRQ0n-xZY8Tip0QhUCO_L5&ump=1&srfvp=1 IP91.90.45.173:443 ASN#50304 Blix Solutions AS
Requested byhttps://www.youtube.com/embed/I7gy-VPjcKI?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.googlevideo.com Fingerprint05:65:DE:5B:B7:CF:9A:4A:22:AF:57:DB:9B:EC:B9:BD:E5:B0:57:E2 ValidityTue, 09 Apr 2024 14:31:07 GMT - Tue, 18 Jun 2024 14:31:06 GMT
Size615 kB (615191 bytes) Hash4b026d7f237afcd17cb1c2a0e0c5460f a4e4ea62aec1c79ccf177748d7baefb7f86d497f 603d57079528b9677c8c563f50a54c211d9217fd8b2ecd8e611666e63d558640
POST /videoplayback?expire=1713437717&ei=tacgZtzlEr7H0u8P4NWPuAk&ip=91.90.42.154&id=o-AFSLys0scXb7CGDdjxFjABgxYpZ3MB0Kdke3kmGJ0ynA&itag=396&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278%2C394%2C395%2C396%2C397%2C398%2C399&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=jt&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=1618750&bui=AaUN6a2M2Y-Lfew8XmbJ-snrD-LpdDYD_sNNZ8PmTl-2VrWe3kXdOeufqX7yr25Bhbo-7WwytsORtaYx&spc=UWF9f9HVPOzvUUzVtdfuCDYeKbmoXZddmj9X5iakSYN0Sr28xlCyn0rY0Q&vprv=1&svpuc=1&mime=video%2Fmp4&ns=ZZLxU7ngwkBrzUqmXYyktzgQ&gir=yes&clen=3723516&dur=105.699&lmt=1707008910988573&mt=1713415720&fvip=2&keepalive=yes&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=5537434&n=1oz0Gh-q5Cl44w&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=ALClDIEwRgIhAKu1ejcSAV3slT3gvf1tWTS8TBs8dFGsXalXIzfYp48NAiEA7S_x0Dlo70wpebP-3cTViRDbpI-QUoyXN_Qhs1PRQcU%3D&alr=yes&sig=AJfQdSswRAIgU03ujucNQgE5f54yB3M0OpjnkrknUzGOhjE2mz_Z2DUCIGkCTnrEHjaPOUPpGszGbA85CTZWFdnWOSxsxJ7_IZ9x&cpn=GG1ZWVf6We5ElKnM&cver=1.20240415.01.00&range=356418-971545&rn=6&rbuf=14119&pot=MnZsPGMViChWsmwEe49KLS5v-zntMJXIOE3NqhmPIgZWST4aNRVLAQURfBR83iglzMS_GZOtmf27vCXRL_g2r65Bzgt1gIW_xKw0f4AaZUHkEqc6Tl8sKd5q61vfrQsdsrTTB6xCmhRRQ0n-xZY8Tip0QhUCO_L5&ump=1&srfvp=1 HTTP/1.1
Host: rr2---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.youtube.com/
Content-Length: 2
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
last-modified: Sun, 04 Feb 2024 01:08:30 GMT
content-type: application/vnd.yt-ump
date: Thu, 18 Apr 2024 04:55:27 GMT
expires: Thu, 18 Apr 2024 04:55:27 GMT
cache-control: private, max-age=21290
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,quic=":443"; ma=2592000; v="46"
client-protocol: quic
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
timing-allow-origin: https://www.youtube.com
access-control-expose-headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
vary: Origin
cross-origin-resource-policy: cross-origin
x-restrict-formats-hint: None
x-content-type-options: nosniff
server: gvs 1.0
|
|
| rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1713437717&ei=tacgZtzlEr7H0u8P4NWPuAk&ip=91.90.42.154&id=o-AFSLys0scXb7CGDdjxFjABgxYpZ3MB0Kdke3kmGJ0ynA&itag=251&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=jt&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=1618750&bui=AaUN6a2M2Y-Lfew8XmbJ-snrD-LpdDYD_sNNZ8PmTl-2VrWe3kXdOeufqX7yr25Bhbo-7WwytsORtaYx&spc=UWF9f9HVPOzvUUzVtdfuCDYeKbmoXZddmj9X5iakSYN0Sr28xlCyn0rY0Q&vprv=1&svpuc=1&mime=audio%2Fwebm&ns=ZZLxU7ngwkBrzUqmXYyktzgQ&gir=yes&clen=1617624&dur=105.721&lmt=1707007942638408&mt=1713415720&fvip=2&keepalive=yes&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=5532434&n=1oz0Gh-q5Cl44w&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cxpc%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=ALClDIEwRgIhAKu1ejcSAV3slT3gvf1tWTS8TBs8dFGsXalXIzfYp48NAiEA7S_x0Dlo70wpebP-3cTViRDbpI-QUoyXN_Qhs1PRQcU%3D&alr=yes&sig=AJfQdSswRgIhANVZlSHRf9pdh2S-L22Qepxk5utyHrVIosGqcroYW2gvAiEAvbRM9t0KCi_8su70x5bbnrAv_P_sMsYAIKtajidjQJI%3D&cpn=GG1ZWVf6We5ElKnM&cver=1.20240415.01.00&range=131522-262958&rn=5&rbuf=8114&pot=MnZsPGMViChWsmwEe49KLS5v-zntMJXIOE3NqhmPIgZWST4aNRVLAQURfBR83iglzMS_GZOtmf27vCXRL_g2r65Bzgt1gIW_xKw0f4AaZUHkEqc6Tl8sKd5q61vfrQsdsrTTB6xCmhRRQ0n-xZY8Tip0QhUCO_L5&ump=1&srfvp=1 | 91.90.45.173 | 200 OK | 132 kB |
URL POST HTTP/3rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1713437717&ei=tacgZtzlEr7H0u8P4NWPuAk&ip=91.90.42.154&id=o-AFSLys0scXb7CGDdjxFjABgxYpZ3MB0Kdke3kmGJ0ynA&itag=251&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=jt&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=1618750&bui=AaUN6a2M2Y-Lfew8XmbJ-snrD-LpdDYD_sNNZ8PmTl-2VrWe3kXdOeufqX7yr25Bhbo-7WwytsORtaYx&spc=UWF9f9HVPOzvUUzVtdfuCDYeKbmoXZddmj9X5iakSYN0Sr28xlCyn0rY0Q&vprv=1&svpuc=1&mime=audio%2Fwebm&ns=ZZLxU7ngwkBrzUqmXYyktzgQ&gir=yes&clen=1617624&dur=105.721&lmt=1707007942638408&mt=1713415720&fvip=2&keepalive=yes&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=5532434&n=1oz0Gh-q5Cl44w&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cxpc%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=ALClDIEwRgIhAKu1ejcSAV3slT3gvf1tWTS8TBs8dFGsXalXIzfYp48NAiEA7S_x0Dlo70wpebP-3cTViRDbpI-QUoyXN_Qhs1PRQcU%3D&alr=yes&sig=AJfQdSswRgIhANVZlSHRf9pdh2S-L22Qepxk5utyHrVIosGqcroYW2gvAiEAvbRM9t0KCi_8su70x5bbnrAv_P_sMsYAIKtajidjQJI%3D&cpn=GG1ZWVf6We5ElKnM&cver=1.20240415.01.00&range=131522-262958&rn=5&rbuf=8114&pot=MnZsPGMViChWsmwEe49KLS5v-zntMJXIOE3NqhmPIgZWST4aNRVLAQURfBR83iglzMS_GZOtmf27vCXRL_g2r65Bzgt1gIW_xKw0f4AaZUHkEqc6Tl8sKd5q61vfrQsdsrTTB6xCmhRRQ0n-xZY8Tip0QhUCO_L5&ump=1&srfvp=1 IP91.90.45.173:443 ASN#50304 Blix Solutions AS
Requested byhttps://www.youtube.com/embed/I7gy-VPjcKI?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.googlevideo.com Fingerprint05:65:DE:5B:B7:CF:9A:4A:22:AF:57:DB:9B:EC:B9:BD:E5:B0:57:E2 ValidityTue, 09 Apr 2024 14:31:07 GMT - Tue, 18 Jun 2024 14:31:06 GMT
Size132 kB (131500 bytes) Hashf95921e7f10f75ee5e269913762d5322 bfbc79fa926b2f67ca66f7f2c39ba15567aebe60 b07a1ab8d1d3b93c31cd51021a35d26f51a8d8cd566735a9efc7856a31d3b356
POST /videoplayback?expire=1713437717&ei=tacgZtzlEr7H0u8P4NWPuAk&ip=91.90.42.154&id=o-AFSLys0scXb7CGDdjxFjABgxYpZ3MB0Kdke3kmGJ0ynA&itag=251&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=jt&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=1618750&bui=AaUN6a2M2Y-Lfew8XmbJ-snrD-LpdDYD_sNNZ8PmTl-2VrWe3kXdOeufqX7yr25Bhbo-7WwytsORtaYx&spc=UWF9f9HVPOzvUUzVtdfuCDYeKbmoXZddmj9X5iakSYN0Sr28xlCyn0rY0Q&vprv=1&svpuc=1&mime=audio%2Fwebm&ns=ZZLxU7ngwkBrzUqmXYyktzgQ&gir=yes&clen=1617624&dur=105.721&lmt=1707007942638408&mt=1713415720&fvip=2&keepalive=yes&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=5532434&n=1oz0Gh-q5Cl44w&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cxpc%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=ALClDIEwRgIhAKu1ejcSAV3slT3gvf1tWTS8TBs8dFGsXalXIzfYp48NAiEA7S_x0Dlo70wpebP-3cTViRDbpI-QUoyXN_Qhs1PRQcU%3D&alr=yes&sig=AJfQdSswRgIhANVZlSHRf9pdh2S-L22Qepxk5utyHrVIosGqcroYW2gvAiEAvbRM9t0KCi_8su70x5bbnrAv_P_sMsYAIKtajidjQJI%3D&cpn=GG1ZWVf6We5ElKnM&cver=1.20240415.01.00&range=131522-262958&rn=5&rbuf=8114&pot=MnZsPGMViChWsmwEe49KLS5v-zntMJXIOE3NqhmPIgZWST4aNRVLAQURfBR83iglzMS_GZOtmf27vCXRL_g2r65Bzgt1gIW_xKw0f4AaZUHkEqc6Tl8sKd5q61vfrQsdsrTTB6xCmhRRQ0n-xZY8Tip0QhUCO_L5&ump=1&srfvp=1 HTTP/1.1
Host: rr2---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.youtube.com/
Content-Length: 2
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
last-modified: Sun, 04 Feb 2024 00:52:22 GMT
content-type: application/vnd.yt-ump
date: Thu, 18 Apr 2024 04:55:18 GMT
expires: Thu, 18 Apr 2024 04:55:18 GMT
cache-control: private, max-age=21299
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,quic=":443"; ma=2592000; v="46"
client-protocol: quic
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
timing-allow-origin: https://www.youtube.com
access-control-expose-headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
vary: Origin
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
server: gvs 1.0
|
|
| www.youtube.com/api/stats/qoe?fmt=396&cpn=GG1ZWVf6We5ElKnM&el=embedded&ns=yt&fexp=v1%2C23983296%2C21348%2C76094%2C54572%2C304051%2C60173%2C24564%2C36318%2C6271%2C26443548%2C7111%2C31785%2C4558%2C9954%2C1192%2C26496%2C6966%2C2%2C6689%2C2007%2C9072%2C12518%2C1262%2C5422%2C872%2C644%2C3865%2C4568%2C531%2C819%2C10843%2C1102%2C10458&cl=625523793&seq=1&docid=I7gy-VPjcKI&ei=tacgZtzlEr7H0u8P4NWPuAk&event=streamingstats&plid=AAYWV8cG4vDK_QwZ&referrer=https%3A%2F%2Fwww.youtube.com%2Fembed%2FI7gy-VPjcKI%3Fcontrols%3D0%26loop%3D1%26autoplay%3D1%26fs%3D1%26iv_load_policy%3D3%26showinfo%3D0%26rel%3D0%26cc_load_policy%3D0%26start%3D0%26end%3D0%26origin%3Dhttps%3A%2F%2Fyoutubeembedcode.com&qclc=ChBHRzFaV1ZmNldlNUVsS25NEAE&embargoed=0&cbr=Firefox&cbrver=96.0&c=WEB_EMBEDDED_PLAYER&cver=1.20240415.01.00&cplayer=UNIPLAYER&cos=X11&cplatform=DESKTOP&vps=0.000:N,0.024:B,0.414:B,0.414:B&cat=streaming&cmt=0.024:0.000,0.414:0.000&vfs=0.414:396:396::r&view=0.414:390:190&bwe=0.414:130000&vis=0.414:0&bh=0.414:0.000 | 216.58.211.14 | 204 No Content | 0 B |
URL POST HTTP/3www.youtube.com/api/stats/qoe?fmt=396&cpn=GG1ZWVf6We5ElKnM&el=embedded&ns=yt&fexp=v1%2C23983296%2C21348%2C76094%2C54572%2C304051%2C60173%2C24564%2C36318%2C6271%2C26443548%2C7111%2C31785%2C4558%2C9954%2C1192%2C26496%2C6966%2C2%2C6689%2C2007%2C9072%2C12518%2C1262%2C5422%2C872%2C644%2C3865%2C4568%2C531%2C819%2C10843%2C1102%2C10458&cl=625523793&seq=1&docid=I7gy-VPjcKI&ei=tacgZtzlEr7H0u8P4NWPuAk&event=streamingstats&plid=AAYWV8cG4vDK_QwZ&referrer=https%3A%2F%2Fwww.youtube.com%2Fembed%2FI7gy-VPjcKI%3Fcontrols%3D0%26loop%3D1%26autoplay%3D1%26fs%3D1%26iv_load_policy%3D3%26showinfo%3D0%26rel%3D0%26cc_load_policy%3D0%26start%3D0%26end%3D0%26origin%3Dhttps%3A%2F%2Fyoutubeembedcode.com&qclc=ChBHRzFaV1ZmNldlNUVsS25NEAE&embargoed=0&cbr=Firefox&cbrver=96.0&c=WEB_EMBEDDED_PLAYER&cver=1.20240415.01.00&cplayer=UNIPLAYER&cos=X11&cplatform=DESKTOP&vps=0.000:N,0.024:B,0.414:B,0.414:B&cat=streaming&cmt=0.024:0.000,0.414:0.000&vfs=0.414:396:396::r&view=0.414:390:190&bwe=0.414:130000&vis=0.414:0&bh=0.414:0.000 IP216.58.211.14:443
Requested byhttps://www.youtube.com/embed/I7gy-VPjcKI?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/stats/qoe?fmt=396&cpn=GG1ZWVf6We5ElKnM&el=embedded&ns=yt&fexp=v1%2C23983296%2C21348%2C76094%2C54572%2C304051%2C60173%2C24564%2C36318%2C6271%2C26443548%2C7111%2C31785%2C4558%2C9954%2C1192%2C26496%2C6966%2C2%2C6689%2C2007%2C9072%2C12518%2C1262%2C5422%2C872%2C644%2C3865%2C4568%2C531%2C819%2C10843%2C1102%2C10458&cl=625523793&seq=1&docid=I7gy-VPjcKI&ei=tacgZtzlEr7H0u8P4NWPuAk&event=streamingstats&plid=AAYWV8cG4vDK_QwZ&referrer=https%3A%2F%2Fwww.youtube.com%2Fembed%2FI7gy-VPjcKI%3Fcontrols%3D0%26loop%3D1%26autoplay%3D1%26fs%3D1%26iv_load_policy%3D3%26showinfo%3D0%26rel%3D0%26cc_load_policy%3D0%26start%3D0%26end%3D0%26origin%3Dhttps%3A%2F%2Fyoutubeembedcode.com&qclc=ChBHRzFaV1ZmNldlNUVsS25NEAE&embargoed=0&cbr=Firefox&cbrver=96.0&c=WEB_EMBEDDED_PLAYER&cver=1.20240415.01.00&cplayer=UNIPLAYER&cos=X11&cplatform=DESKTOP&vps=0.000:N,0.024:B,0.414:B,0.414:B&cat=streaming&cmt=0.024:0.000,0.414:0.000&vfs=0.414:396:396::r&view=0.414:390:190&bwe=0.414:130000&vis=0.414:0&bh=0.414:0.000 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Visitor-Id: CgtUekJBd2RPMDVZayizz4KxBjIOCgJOTxIIEgQSAgsMICA%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20240415.01.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1713416117053&flash=0&frm=2&u_tz&u_his=3&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C390%2C190&vis=1&wgl=true&ca_type=image
Content-Type: application/x-www-form-urlencoded
Content-Length: 226
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/I7gy-VPjcKI?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
date: Thu, 18 Apr 2024 04:55:17 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
x-content-type-options: nosniff
server: Video Stats Server
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| file.gifan.id/fontawesome.js | 104.21.234.34 | 200 OK | 11 kB |
URL GET HTTP/2file.gifan.id/fontawesome.js IP104.21.234.34:443
Requested byhttps://zhh3o.ktt55.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectgifan.id Fingerprint65:21:CF:78:C6:F3:9C:82:42:72:2D:29:CC:E1:28:F9:68:C7:DA:50 ValidityTue, 26 Mar 2024 02:33:24 GMT - Mon, 24 Jun 2024 02:33:23 GMT
File typeJavaScript source, ASCII text, with very long lines (10594), with CRLF line terminators Hash7653d4719abf98a98d6e9412e33976e6 0b4414adc9da488b97830ce789a79994ba55aa23 051afcaea280590a5c6a5c472ad0852783d794a8923c4d26e388656fc9dcd791
GET /fontawesome.js HTTP/1.1
Host: file.gifan.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zhh3o.ktt55.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 04:55:15 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Fri, 19 Apr 2024 22:26:59 GMT
last-modified: Tue, 03 Jan 2023 12:39:32 GMT
vary: Accept-Encoding,User-Agent
x-powered-by: Niagahoster
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 455296
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=N%2FynYCxAiHCVJ3zVk8LatwVeoLBV%2FWTiNwEu%2FOi00rhUgbqS5Lj3XcJuAUI7A4no4F37Dagb%2FMSauRO12txkJO1ZVDZVwukEvDuaSe5F1LsP4gDxHIEHgxr%2FVxJRRtCu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87620fbf7dbb368e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1713437717&ei=tacgZtzlEr7H0u8P4NWPuAk&ip=91.90.42.154&id=o-AFSLys0scXb7CGDdjxFjABgxYpZ3MB0Kdke3kmGJ0ynA&itag=251&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=jt&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=1618750&bui=AaUN6a2M2Y-Lfew8XmbJ-snrD-LpdDYD_sNNZ8PmTl-2VrWe3kXdOeufqX7yr25Bhbo-7WwytsORtaYx&spc=UWF9f9HVPOzvUUzVtdfuCDYeKbmoXZddmj9X5iakSYN0Sr28xlCyn0rY0Q&vprv=1&svpuc=1&mime=audio%2Fwebm&ns=ZZLxU7ngwkBrzUqmXYyktzgQ&gir=yes&clen=1617624&dur=105.721&lmt=1707007942638408&mt=1713415720&fvip=2&keepalive=yes&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=5532434&n=1oz0Gh-q5Cl44w&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cxpc%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=ALClDIEwRgIhAKu1ejcSAV3slT3gvf1tWTS8TBs8dFGsXalXIzfYp48NAiEA7S_x0Dlo70wpebP-3cTViRDbpI-QUoyXN_Qhs1PRQcU%3D&alr=yes&sig=AJfQdSswRgIhANVZlSHRf9pdh2S-L22Qepxk5utyHrVIosGqcroYW2gvAiEAvbRM9t0KCi_8su70x5bbnrAv_P_sMsYAIKtajidjQJI%3D&cpn=GG1ZWVf6We5ElKnM&cver=1.20240415.01.00&range=262959-479173&rn=7&rbuf=16361&pot=MnZsPGMViChWsmwEe49KLS5v-zntMJXIOE3NqhmPIgZWST4aNRVLAQURfBR83iglzMS_GZOtmf27vCXRL_g2r65Bzgt1gIW_xKw0f4AaZUHkEqc6Tl8sKd5q61vfrQsdsrTTB6xCmhRRQ0n-xZY8Tip0QhUCO_L5&ump=1&srfvp=1 | 91.90.45.173 | 200 OK | 216 kB |
URL POST HTTP/3rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1713437717&ei=tacgZtzlEr7H0u8P4NWPuAk&ip=91.90.42.154&id=o-AFSLys0scXb7CGDdjxFjABgxYpZ3MB0Kdke3kmGJ0ynA&itag=251&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=jt&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=1618750&bui=AaUN6a2M2Y-Lfew8XmbJ-snrD-LpdDYD_sNNZ8PmTl-2VrWe3kXdOeufqX7yr25Bhbo-7WwytsORtaYx&spc=UWF9f9HVPOzvUUzVtdfuCDYeKbmoXZddmj9X5iakSYN0Sr28xlCyn0rY0Q&vprv=1&svpuc=1&mime=audio%2Fwebm&ns=ZZLxU7ngwkBrzUqmXYyktzgQ&gir=yes&clen=1617624&dur=105.721&lmt=1707007942638408&mt=1713415720&fvip=2&keepalive=yes&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=5532434&n=1oz0Gh-q5Cl44w&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cxpc%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=ALClDIEwRgIhAKu1ejcSAV3slT3gvf1tWTS8TBs8dFGsXalXIzfYp48NAiEA7S_x0Dlo70wpebP-3cTViRDbpI-QUoyXN_Qhs1PRQcU%3D&alr=yes&sig=AJfQdSswRgIhANVZlSHRf9pdh2S-L22Qepxk5utyHrVIosGqcroYW2gvAiEAvbRM9t0KCi_8su70x5bbnrAv_P_sMsYAIKtajidjQJI%3D&cpn=GG1ZWVf6We5ElKnM&cver=1.20240415.01.00&range=262959-479173&rn=7&rbuf=16361&pot=MnZsPGMViChWsmwEe49KLS5v-zntMJXIOE3NqhmPIgZWST4aNRVLAQURfBR83iglzMS_GZOtmf27vCXRL_g2r65Bzgt1gIW_xKw0f4AaZUHkEqc6Tl8sKd5q61vfrQsdsrTTB6xCmhRRQ0n-xZY8Tip0QhUCO_L5&ump=1&srfvp=1 IP91.90.45.173:443 ASN#50304 Blix Solutions AS
Requested byhttps://www.youtube.com/embed/I7gy-VPjcKI?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.googlevideo.com Fingerprint05:65:DE:5B:B7:CF:9A:4A:22:AF:57:DB:9B:EC:B9:BD:E5:B0:57:E2 ValidityTue, 09 Apr 2024 14:31:07 GMT - Tue, 18 Jun 2024 14:31:06 GMT
Size216 kB (216278 bytes) Hash7c37484f976c4ea6aa600200c52ab6fd 7c14ccafff9f2555c94df4ba6045f2f785d33a87 bbe84649c085ba47a16ffe6304ab02e412e3d448250e4d62408b95f3469aab41
POST /videoplayback?expire=1713437717&ei=tacgZtzlEr7H0u8P4NWPuAk&ip=91.90.42.154&id=o-AFSLys0scXb7CGDdjxFjABgxYpZ3MB0Kdke3kmGJ0ynA&itag=251&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=jt&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=1618750&bui=AaUN6a2M2Y-Lfew8XmbJ-snrD-LpdDYD_sNNZ8PmTl-2VrWe3kXdOeufqX7yr25Bhbo-7WwytsORtaYx&spc=UWF9f9HVPOzvUUzVtdfuCDYeKbmoXZddmj9X5iakSYN0Sr28xlCyn0rY0Q&vprv=1&svpuc=1&mime=audio%2Fwebm&ns=ZZLxU7ngwkBrzUqmXYyktzgQ&gir=yes&clen=1617624&dur=105.721&lmt=1707007942638408&mt=1713415720&fvip=2&keepalive=yes&c=WEB_EMBEDDED_PLAYER&sefc=1&txp=5532434&n=1oz0Gh-q5Cl44w&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cxpc%2Cbui%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=ALClDIEwRgIhAKu1ejcSAV3slT3gvf1tWTS8TBs8dFGsXalXIzfYp48NAiEA7S_x0Dlo70wpebP-3cTViRDbpI-QUoyXN_Qhs1PRQcU%3D&alr=yes&sig=AJfQdSswRgIhANVZlSHRf9pdh2S-L22Qepxk5utyHrVIosGqcroYW2gvAiEAvbRM9t0KCi_8su70x5bbnrAv_P_sMsYAIKtajidjQJI%3D&cpn=GG1ZWVf6We5ElKnM&cver=1.20240415.01.00&range=262959-479173&rn=7&rbuf=16361&pot=MnZsPGMViChWsmwEe49KLS5v-zntMJXIOE3NqhmPIgZWST4aNRVLAQURfBR83iglzMS_GZOtmf27vCXRL_g2r65Bzgt1gIW_xKw0f4AaZUHkEqc6Tl8sKd5q61vfrQsdsrTTB6xCmhRRQ0n-xZY8Tip0QhUCO_L5&ump=1&srfvp=1 HTTP/1.1
Host: rr2---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.youtube.com/
Content-Length: 2
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
last-modified: Sun, 04 Feb 2024 00:52:22 GMT
content-type: application/vnd.yt-ump
date: Thu, 18 Apr 2024 04:55:27 GMT
expires: Thu, 18 Apr 2024 04:55:27 GMT
cache-control: private, max-age=21290
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,quic=":443"; ma=2592000; v="46"
client-protocol: quic
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
timing-allow-origin: https://www.youtube.com
access-control-expose-headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
vary: Origin
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
server: gvs 1.0
|
|
| www.youtube.com/embed/I7gy-VPjcKI?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com | 216.58.211.14 | 200 OK | 93 kB |
URL GET HTTP/2www.youtube.com/embed/I7gy-VPjcKI?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com IP216.58.211.14:443
Requested byhttps://zhh3o.ktt55.my.id/ CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /embed/I7gy-VPjcKI?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zhh3o.ktt55.my.id/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 18 Apr 2024 04:55:15 GMT
strict-transport-security: max-age=31536000
cross-origin-resource-policy: cross-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
origin-trial: AmhMBR6zCLzDDxpW+HfpP67BqwIknWnyMOXOQGfzYswFmJe+fgaI6XZgAzcxOrzNtP7hEDsOo1jdjFnVr2IdxQ4AAAB4eyJvcmlnaW4iOiJodHRwczovL3lvdXR1YmUuY29tOjQ0MyIsImZlYXR1cmUiOiJXZWJWaWV3WFJlcXVlc3RlZFdpdGhEZXByZWNhdGlvbiIsImV4cGlyeSI6MTc1ODA2NzE5OSwiaXNTdWJkb21haW4iOnRydWV9
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=MIPgwqNeDMo; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=TzBAwdO05Yk; Domain=.youtube.com; Expires=Tue, 15-Oct-2024 04:55:15 GMT; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_PRIVACY_METADATA=CgJOTxIIEgQSAgsMICA%3D; Domain=.youtube.com; Expires=Tue, 15-Oct-2024 04:55:15 GMT; Path=/; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.youtube.com/s/player/0af6e327/player_ias.vflset/en_US/annotations_module.js | 216.58.211.14 | 200 OK | 70 kB |
URL GET HTTP/3www.youtube.com/s/player/0af6e327/player_ias.vflset/en_US/annotations_module.js IP216.58.211.14:443
Requested byhttps://www.youtube.com/embed/I7gy-VPjcKI?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (1115) Hash49823e639be8a1f93f99ff798d00872e df9216c93883772f0f7a2af77ff178e2ddd7c861 6e8cb8561c1fa90ef0c54bb4ec473dce463ec570b1d1f447f9a18397a056bb63
GET /s/player/0af6e327/player_ias.vflset/en_US/annotations_module.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/I7gy-VPjcKI?controls=0&loop=1&autoplay=1&fs=1&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 18882
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 17 Apr 2024 07:40:42 GMT
expires: Thu, 17 Apr 2025 07:40:42 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 17 Apr 2024 04:21:26 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 76475
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css | 104.18.10.207 | 200 OK | 31 kB |
URL GET HTTP/2stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css IP104.18.10.207:443
Requested byhttps://zhh3o.ktt55.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectbootstrapcdn.com Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63 ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT
File typeASCII text, with very long lines (30837) Hash269550530cc127b6aa5a35925a7de6ce 512c7d79033e3028a9be61b540cf1a6870c896f8 799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zhh3o.ktt55.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 04:55:14 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"269550530cc127b6aa5a35925a7de6ce"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 10/31/2023 18:48:06
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 722
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: dd809c84048d5afa8e77adc8acacd559
cdn-cache: HIT
cf-cache-status: HIT
age: 12790289
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87620fbdcf4c0b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|